d767e4437dffd78dc9c48ecbf043000004008e0004006c0004008700"], 0x208}, 0x1, 0x0, 0x0, 0x4800}, 0x4000)

16:19:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d0000000000000000000000000000048eba5ba113fc8c513d0028d344f968fb430b2ed64ec2456d1c9d35fd418a99ba4f363a68f5ceb65a55389ab774d9b82cc12b3e9543badc75f37ab76e5fa83fff4e171d1fa143cc7d84ed6283259aa74ba1e7bdd12fc0ca6daeaca3244bd7c5bee9a2a52a688dd77007512d20557e28f652274ea2adcb03ba6fd1f155a17cda0066ef3593b2a2b71cf28516f013eaef0000000000000000"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18}, './file0\x00'})
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240), 0x40000, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000603000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="643e420f353e450f232d65660f651bc42131165ed90f3566baf80cb8e067ae8def66bafc0cb86d21543def66ba410066ed66baa100b805000000efb8010000000f01d90f20c035010000000f22c0", 0x4e}], 0x1, 0x0, &(0x7f0000000340)=[@vmwrite={0x8, 0x0, 0x9, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1}, @cr0={0x0, 0xc0000002}], 0x2) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), r2)
sendmsg$TIPC_NL_LINK_GET(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x134, r6, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x11c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x67a3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8d21}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x806}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xca18}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}]}, @TIPC_NLA_BEARER={0x4}]}, 0x134}, 0x1, 0x0, 0x0, 0x40004}, 0x8010)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r7, 0x4008ae93, &(0x7f0000000000)=0x2)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000440)={<r8=>0x0}, &(0x7f0000000480)=0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000004c0)={r8, @in={{0x2, 0x4e20, @local}}, 0x2, 0x5}, &(0x7f0000000580)=0x90)
ioctl$KVM_GET_VCPU_EVENTS(r7, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r7, 0xae80, 0x0)

16:19:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe4000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000280)) (async)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f00000002c0)) (async)
r3 = syz_open_dev$vcsu(&(0x7f0000000180), 0x7f, 0x480000)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f00000001c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 64)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x78) (rerun: 64)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
lseek(r2, 0x0, 0x1) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

16:19:02 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d0000000000000000000000000000048eba5ba113fc8c513d0028d344f968fb430b2ed64ec2456d1c9d35fd418a99ba4f363a68f5ceb65a55389ab774d9b82cc12b3e9543badc75f37ab76e5fa83fff4e171d1fa143cc7d84ed6283259aa74ba1e7bdd12fc0ca6daeaca3244bd7c5bee9a2a52a688dd77007512d20557e28f652274ea2adcb03ba6fd1f155a17cda0066ef3593b2a2b71cf28516f013eaef0000000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18}, './file0\x00'}) (async)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
r4 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240), 0x40000, 0x0)
syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000603000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="643e420f353e450f232d65660f651bc42131165ed90f3566baf80cb8e067ae8def66bafc0cb86d21543def66ba410066ed66baa100b805000000efb8010000000f01d90f20c035010000000f22c0", 0x4e}], 0x1, 0x0, &(0x7f0000000340)=[@vmwrite={0x8, 0x0, 0x9, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1}, @cr0={0x0, 0xc0000002}], 0x2) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000580)=""/251, 0xfb, 0x8)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
getdents(0xffffffffffffffff, &(0x7f0000000680)=""/157, 0x9d)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000540)={0x0, &(0x7f0000000500), 0x8, r4, 0x8})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="03002000", @ANYRES16=r6, @ANYBLOB="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"], 0x208}, 0x1, 0x0, 0x0, 0x4800}, 0x4000)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
pread64(0xffffffffffffffff, &(0x7f0000000580)=""/251, 0xfb, 0x8) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
getdents(0xffffffffffffffff, &(0x7f0000000680)=""/157, 0x9d) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000540)={0x0, &(0x7f0000000500), 0x8, r4, 0x8}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1) (async)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="03002000", @ANYRES16=r6, @ANYBLOB="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"], 0x208}, 0x1, 0x0, 0x0, 0x4800}, 0x4000) (async)

16:19:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), r2)
sendmsg$TIPC_NL_LINK_GET(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x134, r6, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x11c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x67a3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8d21}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x806}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xca18}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}]}, @TIPC_NLA_BEARER={0x4}]}, 0x134}, 0x1, 0x0, 0x0, 0x40004}, 0x8010) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r7, 0x4008ae93, &(0x7f0000000000)=0x2)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000440)={<r8=>0x0}, &(0x7f0000000480)=0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000004c0)={r8, @in={{0x2, 0x4e20, @local}}, 0x2, 0x5}, &(0x7f0000000580)=0x90) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r7, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

16:19:02 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e0a6d37b78e0500000000000000000000367300000000380000000000000008000000000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002f53269b04e76cf809a0a16aed34e7522e4bda0da69cc00ff"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)

16:19:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4004080)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x73, 0x3}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000015c0)=[{0x0}], 0x1, &(0x7f0000001740)=ANY=[@ANYBLOB="10000000bc2d0768ec5c6331001000000003000000010000000100e4001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x40}, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x46)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x32}, 0x0, @in=@private, 0x0, 0x1, 0x0, 0x44}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x10)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e0a6d37b78e0500000000000000000000367300000000380000000000000008000000000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e0a6d37b78e0500000000000000000000367300000000380000000000000008000000000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002f53269b04e76cf809a0a16aed34e7522e4bda0da69cc00ff"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002f53269b04e76cf809a0a16aed34e7522e4bda0da69cc00ff"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), r2)
sendmsg$TIPC_NL_LINK_GET(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x134, r6, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x11c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x67a3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8d21}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x806}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xca18}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}]}, @TIPC_NLA_BEARER={0x4}]}, 0x134}, 0x1, 0x0, 0x0, 0x40004}, 0x8010) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r7, 0x4008ae93, &(0x7f0000000000)=0x2)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000440)={<r8=>0x0}, &(0x7f0000000480)=0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f00000004c0)={r8, @in={{0x2, 0x4e20, @local}}, 0x2, 0x5}, &(0x7f0000000580)=0x90)
ioctl$KVM_GET_VCPU_EVENTS(r7, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r7, 0xae80, 0x0)

16:19:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES64=r2], 0xffffffffffffff12)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x131102)
fcntl$dupfd(r4, 0x406, r0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x1) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)

16:19:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a1000, 0x0)
r4 = dup2(r0, r1)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000140)={0xc0, 0x0, 0x4000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002f53269b04e76cf809a0a16aed34e7522e4bda0da69cc00ff"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:03 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e0a6d37b78e0500000000000000000000367300000000380000000000000008000000000000000000"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4004080) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x73, 0x3}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000015c0)=[{0x0}], 0x1, &(0x7f0000001740)=ANY=[@ANYBLOB="10000000bc2d0768ec5c6331001000000003000000010000000100e4001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x40}, 0x0)
sched_setscheduler(0x0, 0x0, 0x0) (async)
r3 = socket$inet6(0xa, 0x3, 0x46)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x32}, 0x0, @in=@private, 0x0, 0x1, 0x0, 0x44}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x10) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x1) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)

16:19:04 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00001800000000f8000000000000003673000000003800000000000000001402"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00005fc000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000280)="f30f09baf80c66b86ae2658f66efbafc0cecbaf80c66b886ee158466efbafc0cb88600ef0f01db0fca0f20e06635000010000f22e02e0f06b8500a8ec00fc75c870fc7bd9600", 0x46}], 0x1, 0x68, &(0x7f0000000340)=[@cr0={0x0, 0x8005000a}], 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000380)={0x10002, 0x1, 0x4000, 0x2000, &(0x7f0000fec000/0x2000)=nil})

16:19:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4004080)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x73, 0x3}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000015c0)=[{0x0}], 0x1, &(0x7f0000001740)=ANY=[@ANYBLOB="10000000bc2d0768ec5c6331001000000003000000010000000100e4001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x40}, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x46)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x32}, 0x0, @in=@private, 0x0, 0x1, 0x0, 0x44}}, 0xe8)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x10)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x4004080) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
sched_setscheduler(0x0, 0x5, &(0x7f0000000380)) (async)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x73, 0x3}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000240)=@abs, 0x6e, &(0x7f00000015c0)=[{0x0}], 0x1, &(0x7f0000001740)=ANY=[@ANYBLOB="10000000bc2d0768ec5c6331001000000003000000010000000100e4001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x40}, 0x0) (async)
sched_setscheduler(0x0, 0x0, 0x0) (async)
socket$inet6(0xa, 0x3, 0x46) (async)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) (async)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@empty, 0x0, 0x32}, 0x0, @in=@private, 0x0, 0x1, 0x0, 0x44}}, 0xe8) (async)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x10) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a1000, 0x0)
r4 = dup2(r0, r1)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000140)={0xc0, 0x0, 0x4000}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000080)={0xfa})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321200afd832889688c9d208dccc5f5f926391caa46232844b32c60ee88900a0bb54c76633da9e24f37bdb8d4bd32f5f3ba9b6a0e997cb44ca94f3e7fb672ecb1a0f1e2488c28c80763d049815aae6e1c0ab9bceb34d4a7727cf1691450d72322662d3bb742c73eff5519c0bd982fa159d92b5be04c560f65b2d2ed56b33a8f63afdb6b7fd7b51ab15e4dd136ddff58ae5f559f0f526c48a54bfa6f1a6611c5bb73e4a023af69db38d5b657825b5ddc3d99377800"/202], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1417.040502][ T2667] syz-executor.0: vmalloc error: size 12288, page order 0, failed to allocate pages, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 1417.060870][ T2667] CPU: 0 PID: 2667 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1417.069896][ T2667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1417.081485][ T2667] Call Trace:
[ 1417.085212][ T2667]  <TASK>
[ 1417.088418][ T2667]  dump_stack_lvl+0x1ff/0x28e
[ 1417.093295][ T2667]  dump_stack+0x25/0x28
[ 1417.097625][ T2667]  warn_alloc+0x4d9/0x690
[ 1417.102200][ T2667]  ? kmsan_get_metadata+0x33/0x220
[ 1417.107650][ T2667]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1417.113686][ T2667]  __vmalloc_node_range+0x1290/0x17b0
[ 1417.119336][ T2667]  __vmalloc+0xf8/0x110
[ 1417.123774][ T2667]  ? kvm_dev_ioctl+0x295/0x3290
[ 1417.128830][ T2667]  ? kvm_dev_ioctl+0x295/0x3290
[ 1417.134076][ T2667]  kvm_dev_ioctl+0x295/0x3290
[ 1417.138989][ T2667]  ? kmsan_get_metadata+0x33/0x220
[ 1417.146312][ T2667]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1417.152446][ T2667]  ? kvm_reboot+0xb0/0xb0
[ 1417.156971][ T2667]  __se_sys_ioctl+0x2df/0x4a0
[ 1417.161932][ T2667]  __x64_sys_ioctl+0xd8/0x110
[ 1417.166802][ T2667]  do_syscall_64+0x54/0xd0
[ 1417.171385][ T2667]  ? syscall_exit_to_user_mode+0xa2/0xc0
[ 1417.177206][ T2667]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1417.183292][ T2667] RIP: 0033:0x7f7822693059
[ 1417.187840][ T2667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1417.207964][ T2667] RSP: 002b:00007f7820f84168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1417.216558][ T2667] RAX: ffffffffffffffda RBX: 00007f78227a62a0 RCX: 00007f7822693059
[ 1417.224736][ T2667] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[ 1417.232823][ T2667] RBP: 00007f78226ed08d R08: 0000000000000000 R09: 0000000000000000
[ 1417.241099][ T2667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1417.249259][ T2667] R13: 00007f7822cd9b1f R14: 00007f7820f84300 R15: 0000000000022000
[ 1417.258863][ T2667]  </TASK>
[ 1417.262098][ T2667] Mem-Info:
[ 1417.265379][ T2667] active_anon:314 inactive_anon:120927 isolated_anon:0
[ 1417.265379][ T2667]  active_file:2333 inactive_file:51623 isolated_file:0
[ 1417.265379][ T2667]  unevictable:768 dirty:0 writeback:0
[ 1417.265379][ T2667]  slab_reclaimable:8948 slab_unreclaimable:19556
[ 1417.265379][ T2667]  mapped:27994 shmem:1525 pagetables:941 bounce:0
[ 1417.265379][ T2667]  kernel_misc_reclaimable:0
[ 1417.265379][ T2667]  free:297501 free_pcp:13456 free_cma:0
[ 1417.307500][ T2667] Node 0 active_anon:1256kB inactive_anon:483708kB active_file:9332kB inactive_file:206488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111976kB dirty:0kB writeback:0kB shmem:4564kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 495616kB writeback_tmp:0kB kernel_stack:4496kB pagetables:3760kB all_unreclaimable? no
[ 1417.339686][ T2667] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:0kB pagetables:4kB all_unreclaimable? no
[ 1417.369415][ T2667] Node 0 DMA free:4096kB boost:0kB min:156kB low:192kB high:228kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1417.396831][ T2667] lowmem_reserve[]: 0 907 1220 1220 1220
[ 1417.404215][ T2667] Node 0 DMA32 free:138572kB boost:0kB min:36056kB low:45068kB high:54080kB reserved_highatomic:0KB active_anon:588kB inactive_anon:426624kB active_file:0kB inactive_file:189788kB unevictable:0kB writepending:0kB present:3129332kB managed:934724kB mlocked:0kB bounce:0kB free_pcp:40508kB local_pcp:18148kB free_cma:0kB
[ 1417.434691][ T2667] lowmem_reserve[]: 0 0 313 313 313
[ 1417.440451][ T2667] Node 0 Normal free:56656kB boost:0kB min:12440kB low:15548kB high:18656kB reserved_highatomic:0KB active_anon:668kB inactive_anon:57032kB active_file:9332kB inactive_file:16700kB unevictable:1536kB writepending:0kB present:1048576kB managed:320516kB mlocked:0kB bounce:0kB free_pcp:13432kB local_pcp:6592kB free_cma:0kB
[ 1417.472093][ T2667] lowmem_reserve[]: 0 0 0 0 0
[ 1417.477141][ T2667] Node 1 Normal free:990680kB boost:0kB min:41452kB low:51812kB high:62172kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194304kB managed:1067980kB mlocked:0kB bounce:0kB free_pcp:84kB local_pcp:84kB free_cma:0kB
[ 1417.506470][ T2667] lowmem_reserve[]: 0 0 0 0 0
[ 1417.511603][ T2667] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1417.524269][ T2667] Node 0 DMA32: 2275*4kB (UME) 1570*8kB (UME) 1101*16kB (UME) 827*32kB (UME) 452*64kB (UME) 57*128kB (UME) 9*256kB (UME) 3*512kB (UME) 2*1024kB (M) 3*2048kB (UM) 6*4096kB (UM) = 138572kB
[ 1417.543937][ T2667] Node 0 Normal: 1336*4kB (UME) 590*8kB (UME) 642*16kB (UME) 415*32kB (UME) 160*64kB (ME) 60*128kB (UME) 14*256kB (UM) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 56656kB
[ 1417.562315][ T2667] Node 1 Normal: 4*4kB (UME) 11*8kB (UME) 11*16kB (UE) 14*32kB (UE) 8*64kB (UME) 6*128kB (UME) 2*256kB (UM) 2*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 239*4096kB (M) = 990680kB
[ 1417.581071][ T2667] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1417.590982][ T2667] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1417.600613][ T2667] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1417.610550][ T2667] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1417.620117][ T2667] 7845 total pagecache pages
[ 1417.624918][ T2667] 0 pages in swap cache
[ 1417.629143][ T2667] Swap cache stats: add 0, delete 0, find 0/0
[ 1417.635471][ T2667] Free swap  = 0kB
[ 1417.639275][ T2667] Total swap = 0kB
[ 1417.643191][ T2667] 2097051 pages RAM
[ 1417.647066][ T2667] 0 pages HighMem/MovableOnly
[ 1417.651801][ T2667] 1515222 pages reserved
[ 1417.656378][ T2667] 0 pages cma reserved
16:19:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES64=r2], 0xffffffffffffff12) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r4 = syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x131102)
fcntl$dupfd(r4, 0x406, r0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (rerun: 64)

16:19:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x1a1000, 0x0) (async)
r4 = dup2(r0, r1)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_CAP_DIRTY_LOG_RING(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000140)={0xc0, 0x0, 0x4000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00001800000000f8000000000000003673000000003800000000000000001402"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00005fc000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000280)="f30f09baf80c66b86ae2658f66efbafc0cecbaf80c66b886ee158466efbafc0cb88600ef0f01db0fca0f20e06635000010000f22e02e0f06b8500a8ec00fc75c870fc7bd9600", 0x46}], 0x1, 0x68, &(0x7f0000000340)=[@cr0={0x0, 0x8005000a}], 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000380)={0x10002, 0x1, 0x4000, 0x2000, &(0x7f0000fec000/0x2000)=nil})

16:19:06 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000080)={0xfa})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321200afd832889688c9d208dccc5f5f926391caa46232844b32c60ee88900a0bb54c76633da9e24f37bdb8d4bd32f5f3ba9b6a0e997cb44ca94f3e7fb672ecb1a0f1e2488c28c80763d049815aae6e1c0ab9bceb34d4a7727cf1691450d72322662d3bb742c73eff5519c0bd982fa159d92b5be04c560f65b2d2ed56b33a8f63afdb6b7fd7b51ab15e4dd136ddff58ae5f559f0f526c48a54bfa6f1a6611c5bb73e4a023af69db38d5b657825b5ddc3d99377800"/202], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x29, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x4, 0x0, 0xf000, 0x1000, &(0x7f0000ff0000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00001800000000f8000000000000003673000000003800000000000000001402"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00005fc000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000280)="f30f09baf80c66b86ae2658f66efbafc0cecbaf80c66b886ee158466efbafc0cb88600ef0f01db0fca0f20e06635000010000f22e02e0f06b8500a8ec00fc75c870fc7bd9600", 0x46}], 0x1, 0x68, &(0x7f0000000340)=[@cr0={0x0, 0x8005000a}], 0x1)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000380)={0x10002, 0x1, 0x4000, 0x2000, &(0x7f0000fec000/0x2000)=nil})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00001800000000f8000000000000003673000000003800000000000000001402"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000180), 0x10000, 0x0) (async)
openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f00005fc000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000280)="f30f09baf80c66b86ae2658f66efbafc0cecbaf80c66b886ee158466efbafc0cb88600ef0f01db0fca0f20e06635000010000f22e02e0f06b8500a8ec00fc75c870fc7bd9600", 0x46}], 0x1, 0x68, &(0x7f0000000340)=[@cr0={0x0, 0x8005000a}], 0x1) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000380)={0x10002, 0x1, 0x4000, 0x2000, &(0x7f0000fec000/0x2000)=nil}) (async)

16:19:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x29, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x4, 0x0, 0xf000, 0x1000, &(0x7f0000ff0000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc000000000000003f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x4, 0x0, 0xf000, 0x1000, &(0x7f0000ff0000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc000000000000003f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 32)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x29, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (rerun: 64)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000080)={0xfa})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321200afd832889688c9d208dccc5f5f926391caa46232844b32c60ee88900a0bb54c76633da9e24f37bdb8d4bd32f5f3ba9b6a0e997cb44ca94f3e7fb672ecb1a0f1e2488c28c80763d049815aae6e1c0ab9bceb34d4a7727cf1691450d72322662d3bb742c73eff5519c0bd982fa159d92b5be04c560f65b2d2ed56b33a8f63afdb6b7fd7b51ab15e4dd136ddff58ae5f559f0f526c48a54bfa6f1a6611c5bb73e4a023af69db38d5b657825b5ddc3d99377800"/202], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000080)={0xfa}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321200afd832889688c9d208dccc5f5f926391caa46232844b32c60ee88900a0bb54c76633da9e24f37bdb8d4bd32f5f3ba9b6a0e997cb44ca94f3e7fb672ecb1a0f1e2488c28c80763d049815aae6e1c0ab9bceb34d4a7727cf1691450d72322662d3bb742c73eff5519c0bd982fa159d92b5be04c560f65b2d2ed56b33a8f63afdb6b7fd7b51ab15e4dd136ddff58ae5f559f0f526c48a54bfa6f1a6611c5bb73e4a023af69db38d5b657825b5ddc3d99377800"/202], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:09 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES64=r2], 0xffffffffffffff12)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = syz_open_dev$vcsa(&(0x7f0000000080), 0x0, 0x131102)
fcntl$dupfd(r4, 0x406, r0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (rerun: 64)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000100)="430f01c448b800000080000000000f23d00f21f835200000010f23f8410f005458ab0fc7ab0b000000c744240031010000c74424020f000000ff2c240f01c5c461c9da48000f20c035200000000f22c066b8e2000f00d80f00920b000000", 0x5e}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
close$fd_v4l2_buffer(r3)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000100)="430f01c448b800000080000000000f23d00f21f835200000010f23f8410f005458ab0fc7ab0b000000c744240031010000c74424020f000000ff2c240f01c5c461c9da48000f20c035200000000f22c066b8e2000f00d80f00920b000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
close$fd_v4l2_buffer(r3)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000078a000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="c4c37969bd05000000c966b8d5000f00d8dbd1360f5d54d463b80c2300000f23d835400000600f23f8f30fc77000c4e15d5dd20fc7a87e52d3d50f01c1640f01b98f0000000f01c4"}], 0x1, 0x0, 0x0, 0xfffffffffffffe55)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc000000000000003f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc000000000000003f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:10 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000280)=""/233)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000140)={0x5000, 0x4000, 0x6, 0x3, 0x5})

16:19:10 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0)
openat(r0, &(0x7f0000000140)='./file0\x00', 0x10000, 0x80)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x9, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000100)="430f01c448b800000080000000000f23d00f21f835200000010f23f8410f005458ab0fc7ab0b000000c744240031010000c74424020f000000ff2c240f01c5c461c9da48000f20c035200000000f22c066b8e2000f00d80f00920b000000", 0x5e}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8)
close$fd_v4l2_buffer(r3)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000100)="430f01c448b800000080000000000f23d00f21f835200000010f23f8410f005458ab0fc7ab0b000000c744240031010000c74424020f000000ff2c240f01c5c461c9da48000f20c035200000000f22c066b8e2000f00d80f00920b000000", 0x5e}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) (async)
close$fd_v4l2_buffer(r3) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000280)="0f20c06635040000000f22c00f07baf80c66b8484bb18966efbafc0cec6665652e660f38827900f2ad0fa9f4bad10466b8f47f000066ef66b95a0b000066b83e57000066ba000000000f30360fc718", 0x4f}], 0x1, 0x8, &(0x7f0000000300), 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dffffffffff7ff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000078a000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="c4c37969bd05000000c966b8d5000f00d8dbd1360f5d54d463b80c2300000f23d835400000600f23f8f30fc77000c4e15d5dd20fc7a87e52d3d50f01c1640f01b98f0000000f01c4"}], 0x1, 0x0, 0x0, 0xfffffffffffffe55)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000280)="0f20c06635040000000f22c00f07baf80c66b8484bb18966efbafc0cec6665652e660f38827900f2ad0fa9f4bad10466b8f47f000066ef66b95a0b000066b83e57000066ba000000000f30360fc718", 0x4f}], 0x1, 0x8, &(0x7f0000000300), 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000280)=""/233)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000140)={0x5000, 0x4000, 0x6, 0x3, 0x5})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000280)=""/233) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000140)={0x5000, 0x4000, 0x6, 0x3, 0x5}) (async)

16:19:13 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0)
openat(r0, &(0x7f0000000140)='./file0\x00', 0x10000, 0x80)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x9, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0) (async)
openat(r0, &(0x7f0000000140)='./file0\x00', 0x10000, 0x80) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r1, 0x0, r2, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000078a000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="c4c37969bd05000000c966b8d5000f00d8dbd1360f5d54d463b80c2300000f23d835400000600f23f8f30fc77000c4e15d5dd20fc7a87e52d3d50f01c1640f01b98f0000000f01c4"}], 0x1, 0x0, 0x0, 0xfffffffffffffe55) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:13 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0)
openat(r0, &(0x7f0000000140)='./file0\x00', 0x10000, 0x80)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x9, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0) (async)
openat(r0, &(0x7f0000000140)='./file0\x00', 0x10000, 0x80) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r1, 0x0, r2, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000280)="0f20c06635040000000f22c00f07baf80c66b8484bb18966efbafc0cec6665652e660f38827900f2ad0fa9f4bad10466b8f47f000066ef66b95a0b000066b83e57000066ba000000000f30360fc718", 0x4f}], 0x1, 0x8, &(0x7f0000000300), 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8) (async)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dffffffffff7ff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000280)=""/233) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000140)={0x5000, 0x4000, 0x6, 0x3, 0x5})

16:19:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d00e3d064660f3a2066f500640f01c40f35e6b8ea008ee0b9800000c01a1a3235008000000f3092db639c52d18134023402d80f22d8", 0x3e}], 0x1, 0x10, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dffffffffff7ff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r4, {0x3}}, './file0\x00'})
r6 = fsmount(r5, 0x1, 0x6)
ioctl$KVM_SET_TSS_ADDR(r6, 0xae47, 0xd000)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000100)=0x8)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x119802, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = accept4$alg(r1, 0x0, 0x0, 0x80000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0))
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746fc662617461647600"], 0x40}}, 0x0)
bind(r4, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e23, @multicast1}, 0x0, 0x4, 0x1}}, 0x80)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async, rerun: 32)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8) (async)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180)) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

16:19:14 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000140)="0f350fc7382e2e0fb507660f71e0000f20e035000002000f22e0b9030900000f32b9800000c00f3235000800000f300f072e650f01c5b94f020000b8816c3844ba000000000f30", 0x47}], 0x1, 0x10, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280)={0x800, 0x180, 0x2}, 0x18)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

16:19:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d00e3d064660f3a2066f500640f01c40f35e6b8ea008ee0b9800000c01a1a3235008000000f3092db639c52d18134023402d80f22d8", 0x3e}], 0x1, 0x10, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r4, {0x3}}, './file0\x00'})
r6 = fsmount(r5, 0x1, 0x6)
ioctl$KVM_SET_TSS_ADDR(r6, 0xae47, 0xd000) (async)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000100)=0x8)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x119802, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x9, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newnexthop={0x70, 0x68, 0x400, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x16}, [@NHA_ID={0x8, 0x1, 0x1}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@empty}, @NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_OUT={0xc, 0x2, 0x0, 0x1, @LWT_BPF_PROG_FD={0x8, 0x1, r3}}}, @NHA_GROUP={0x1c, 0x2, [{0x2, 0x2}, {0x1, 0xff}, {0x1, 0x93}]}, @NHA_ID={0x8}]}, 0x70}}, 0x80)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfff00f800001000000000367300000000380000007f000000000000000000"], 0x78)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r6, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r7, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
write$binfmt_elf64(r6, &(0x7f0000000280)={{0x7f, 0x45, 0x4c, 0x46, 0xf8, 0x4, 0xfb, 0xeb, 0x80, 0x2, 0x3b, 0x0, 0xbc, 0x40, 0x223, 0x7fff, 0x6, 0x38, 0x1, 0xffff, 0x7f, 0xfff}, [{0x60000000, 0x8, 0x1115ff96, 0x660000, 0x6, 0x200, 0x6, 0x1}], "0cde17bdc43255d245350fe899a27a4e077afd00f2eb66f843c581885b7e00babd56fdfaee695af39d637ced1512aab07dd379d19a6266e97d61f4a66af62e71e285cc28a779e55c51e4b0798a07630aa7e4ac03f2433b560024da287c7381bec133bde72f14280c0ae9734e0bccbb5e7a4eb421d67422266ecd9ed2f09bac52ca671c10613868103549afad", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa04)

16:19:14 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000140)="0f350fc7382e2e0fb507660f71e0000f20e035000002000f22e0b9030900000f32b9800000c00f3235000800000f300f072e650f01c5b94f020000b8816c3844ba000000000f30", 0x47}], 0x1, 0x10, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280)={0x800, 0x180, 0x2}, 0x18)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

16:19:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = accept4$alg(r1, 0x0, 0x0, 0x80000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0))
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746fc662617461647600"], 0x40}}, 0x0)
bind(r4, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e23, @multicast1}, 0x0, 0x4, 0x1}}, 0x80)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
accept4$alg(r1, 0x0, 0x0, 0x80000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0)) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746fc662617461647600"], 0x40}}, 0x0) (async)
bind(r4, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e23, @multicast1}, 0x0, 0x4, 0x1}}, 0x80) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d00e3d064660f3a2066f500640f01c40f35e6b8ea008ee0b9800000c01a1a3235008000000f3092db639c52d18134023402d80f22d8", 0x3e}], 0x1, 0x10, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d00e3d064660f3a2066f500640f01c40f35e6b8ea008ee0b9800000c01a1a3235008000000f3092db639c52d18134023402d80f22d8", 0x3e}], 0x1, 0x10, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:15 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000140)="0f350fc7382e2e0fb507660f71e0000f20e035000002000f22e0b9030900000f32b9800000c00f3235000800000f300f072e650f01c5b94f020000b8816c3844ba000000000f30", 0x47}], 0x1, 0x10, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
r1 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280)={0x800, 0x180, 0x2}, 0x18)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

16:19:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r5=>r4, {0x3}}, './file0\x00'})
r6 = fsmount(r5, 0x1, 0x6)
ioctl$KVM_SET_TSS_ADDR(r6, 0xae47, 0xd000)
pipe(&(0x7f0000000080)={<r7=>0xffffffffffffffff})
ioctl$int_in(r7, 0x5452, &(0x7f0000000100)=0x8)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x119802, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r4, {0x3}}, './file0\x00'}) (async)
fsmount(r5, 0x1, 0x6) (async)
ioctl$KVM_SET_TSS_ADDR(r6, 0xae47, 0xd000) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r7, 0x5452, &(0x7f0000000100)=0x8) (async)
openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x119802, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000180)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = accept4$alg(r1, 0x0, 0x0, 0x80000)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0))
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746fc662617461647600"], 0x40}}, 0x0)
bind(r4, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e23, @multicast1}, 0x0, 0x4, 0x1}}, 0x80)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
accept4$alg(r1, 0x0, 0x0, 0x80000) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000001c0)) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746fc662617461647600"], 0x40}}, 0x0) (async)
bind(r4, &(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, r5, {0x2, 0x4e23, @multicast1}, 0x0, 0x4, 0x1}}, 0x80) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x9001)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x78)
r1 = syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2)
splice(r0, &(0x7f0000000140)=0x7, r1, &(0x7f00000001c0)=0x7, 0x0, 0x9)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000100)={0x5000, &(0x7f0000000080), 0x8, 0xffffffffffffffff, 0x7})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x9, 0x0) (async, rerun: 32)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (rerun: 32)
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newnexthop={0x70, 0x68, 0x400, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x16}, [@NHA_ID={0x8, 0x1, 0x1}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@empty}, @NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_OUT={0xc, 0x2, 0x0, 0x1, @LWT_BPF_PROG_FD={0x8, 0x1, r3}}}, @NHA_GROUP={0x1c, 0x2, [{0x2, 0x2}, {0x1, 0xff}, {0x1, 0x93}]}, @NHA_ID={0x8}]}, 0x70}}, 0x80) (async, rerun: 32)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfff00f800001000000000367300000000380000007f000000000000000000"], 0x78) (async, rerun: 32)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async, rerun: 32)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r6, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r7, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
write$binfmt_elf64(r6, &(0x7f0000000280)={{0x7f, 0x45, 0x4c, 0x46, 0xf8, 0x4, 0xfb, 0xeb, 0x80, 0x2, 0x3b, 0x0, 0xbc, 0x40, 0x223, 0x7fff, 0x6, 0x38, 0x1, 0xffff, 0x7f, 0xfff}, [{0x60000000, 0x8, 0x1115ff96, 0x660000, 0x6, 0x200, 0x6, 0x1}], "0cde17bdc43255d245350fe899a27a4e077afd00f2eb66f843c581885b7e00babd56fdfaee695af39d637ced1512aab07dd379d19a6266e97d61f4a66af62e71e285cc28a779e55c51e4b0798a07630aa7e4ac03f2433b560024da287c7381bec133bde72f14280c0ae9734e0bccbb5e7a4eb421d67422266ecd9ed2f09bac52ca671c10613868103549afad", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa04)

16:19:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x10201, 0x0, 0xf000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:16 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
r3 = open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x9001)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:16 executing program 1:
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000380)={<r0=>0x0, 0xfb, "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"}, &(0x7f00000001c0)=0x103)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240)={r0, 0x1}, &(0x7f0000000280)=0x8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = syz_open_dev$vcsu(&(0x7f0000000200), 0x10001, 0x4e4900)
setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f00000014c0)={@isdn={0x22, 0x81, 0xfa, 0x80, 0x6}, {&(0x7f00000004c0)=""/4096, 0x1000}, &(0x7f00000002c0), 0x22}, 0xa0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000100)="65f4042b0f380aaaf92c2ef3a5ba400066edbaf80c66b870b78a8166efbafc0c66ed0fc77456660f3815bc2c000fc75c003e0fc7b1d036", 0x37}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:16 executing program 1:
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000380)={<r0=>0x0, 0xfb, "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"}, &(0x7f00000001c0)=0x103)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240)={r0, 0x1}, &(0x7f0000000280)=0x8)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = syz_open_dev$vcsu(&(0x7f0000000200), 0x10001, 0x4e4900)
setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f00000014c0)={@isdn={0x22, 0x81, 0xfa, 0x80, 0x6}, {&(0x7f00000004c0)=""/4096, 0x1000}, &(0x7f00000002c0), 0x22}, 0xa0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000100)="65f4042b0f380aaaf92c2ef3a5ba400066edbaf80c66b870b78a8166efbafc0c66ed0fc77456660f3815bc2c000fc75c003e0fc7b1d036", 0x37}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = open_tree(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x9001)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x78) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2)
splice(r0, &(0x7f0000000140)=0x7, r1, &(0x7f00000001c0)=0x7, 0x0, 0x9) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000100)={0x5000, &(0x7f0000000080), 0x8, 0xffffffffffffffff, 0x7}) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:17 executing program 1:
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000380)={<r0=>0x0, 0xfb, "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"}, &(0x7f00000001c0)=0x103)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000240)={r0, 0x1}, &(0x7f0000000280)=0x8) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = syz_open_dev$vcsu(&(0x7f0000000200), 0x10001, 0x4e4900)
setsockopt$RDS_GET_MR_FOR_DEST(r2, 0x114, 0x7, &(0x7f00000014c0)={@isdn={0x22, 0x81, 0xfa, 0x80, 0x6}, {&(0x7f00000004c0)=""/4096, 0x1000}, &(0x7f00000002c0), 0x22}, 0xa0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000100)="65f4042b0f380aaaf92c2ef3a5ba400066edbaf80c66b870b78a8166efbafc0c66ed0fc77456660f3815bc2c000fc75c003e0fc7b1d036", 0x37}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x10201, 0x0, 0xf000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00')
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r0, {0x4}}, './file0\x00'})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)

16:19:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r2, 0x0, 0x9, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
sendmsg$nl_route(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=@newnexthop={0x70, 0x68, 0x400, 0x70bd2b, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x16}, [@NHA_ID={0x8, 0x1, 0x1}, @NHA_ID={0x8, 0x1, 0x2}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@empty}, @NHA_ENCAP={0x10, 0x8, 0x0, 0x1, @LWT_BPF_OUT={0xc, 0x2, 0x0, 0x1, @LWT_BPF_PROG_FD={0x8, 0x1, r3}}}, @NHA_GROUP={0x1c, 0x2, [{0x2, 0x2}, {0x1, 0xff}, {0x1, 0x93}]}, @NHA_ID={0x8}]}, 0x70}}, 0x80)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfff00f800001000000000367300000000380000007f000000000000000000"], 0x78)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async, rerun: 64)
r6 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r6, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r7, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
write$binfmt_elf64(r6, &(0x7f0000000280)={{0x7f, 0x45, 0x4c, 0x46, 0xf8, 0x4, 0xfb, 0xeb, 0x80, 0x2, 0x3b, 0x0, 0xbc, 0x40, 0x223, 0x7fff, 0x6, 0x38, 0x1, 0xffff, 0x7f, 0xfff}, [{0x60000000, 0x8, 0x1115ff96, 0x660000, 0x6, 0x200, 0x6, 0x1}], "0cde17bdc43255d245350fe899a27a4e077afd00f2eb66f843c581885b7e00babd56fdfaee695af39d637ced1512aab07dd379d19a6266e97d61f4a66af62e71e285cc28a779e55c51e4b0798a07630aa7e4ac03f2433b560024da287c7381bec133bde72f14280c0ae9734e0bccbb5e7a4eb421d67422266ecd9ed2f09bac52ca671c10613868103549afad", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa04)

16:19:17 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x321a00, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
syz_open_dev$mouse(&(0x7f0000000040), 0x8c51, 0x1)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x9, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66544a658c9d208dccc5f5f926391caa4623280000fa00000000000000"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 32)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (rerun: 32)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)={0x10201, 0x0, 0xf000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async, rerun: 32)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_targets\x00') (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x78) (async)
r1 = syz_open_dev$vim2m(&(0x7f0000000180), 0x0, 0x2)
splice(r0, &(0x7f0000000140)=0x7, r1, &(0x7f00000001c0)=0x7, 0x0, 0x9) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000100)={0x5000, &(0x7f0000000080), 0x8, 0xffffffffffffffff, 0x7}) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r0, {0x4}}, './file0\x00'})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) (async)

16:19:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f80000000000000036730000000038000000000000000000020000000000000000000000000000000000000000020000b700000000001d0000000000000000000000000000046eeea9d47b2ee0a9312ebb8447f1dc88ee2b05dab4a93087657a209dfdd9be272b82c983c6dde2bdb656acba582fd3e1df80526fd3a826fd712b20e709320d0d53b845e2c10ccee53496c5650a91013174402cd88ce6283f5a8aecb42bc37e604c6647fef1455f59d09be51220c06087531219748e12547ed9b44f257fab995ce97a7451ff0afa48096f8e989136aea9843c89117ad7eaea6bcb1ce7eef08474662c01eb1a6098d09828c5e2926a00"/272], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

16:19:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:19 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x321a00, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
syz_open_dev$mouse(&(0x7f0000000040), 0x8c51, 0x1)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x9, 0x0) (async)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66544a658c9d208dccc5f5f926391caa4623280000fa00000000000000"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f00000001c0)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00856300dc00000000000000dfffffffffffff3f000000000000100000000036735cd4a11dd6af4d4c000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000609a41ba429dae6d8fead1efa6355ef24f986891b28d4ab6b56c3995252e", @ANYRES16=r4, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746f5f62617461647600"], 0x40}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r5, 0x0, r7, 0x0, 0x9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000001", @ANYRES32=r7, @ANYBLOB="04000000000000002e2f66696c653000"])
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff})
ioctl$int_in(r8, 0x5452, &(0x7f0000000100)=0x8)
pipe(&(0x7f0000000000)={<r9=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(r9, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r3=>r0, {0x4}}, './file0\x00'})
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)

16:19:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"/272], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f80000000000000036730000000038000000000000000000020000000000000000000000000000000000000000020000b700000000001d0000000000000000000000000000046eeea9d47b2ee0a9312ebb8447f1dc88ee2b05dab4a93087657a209dfdd9be272b82c983c6dde2bdb656acba582fd3e1df80526fd3a826fd712b20e709320d0d53b845e2c10ccee53496c5650a91013174402cd88ce6283f5a8aecb42bc37e604c6647fef1455f59d09be51220c06087531219748e12547ed9b44f257fab995ce97a7451ff0afa48096f8e989136aea9843c89117ad7eaea6bcb1ce7eef08474662c01eb1a6098d09828c5e2926a00"/272], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

16:19:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000180))
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000280)={[0x4, 0x5, 0x2, 0xffffffffffff1877, 0x7fff, 0x5, 0x100000000, 0xfff, 0x8001, 0x100, 0x7, 0x8, 0x400, 0x6, 0x1, 0x400], 0x4, 0x4040})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x942c0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:19 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="000022bc6397cf516a2826e9e1dc00000000000000dfffffffffffff3f00000000000000f800000000000000367300000000"], 0x78)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x9, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
open_by_handle_at(r4, &(0x7f00000001c0)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x7f, 0x42, 0x6, 0x7fff}, {0xffffff8e, 0x1, 0x0, 0x6}}}, 0x408100)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
r5 = open(&(0x7f0000000180)='./file0\x00', 0x66002, 0x148)
ioctl$KVM_SET_GSI_ROUTING(r5, 0x4008ae6a, &(0x7f0000000280)={0x3, 0x0, [{0x1000, 0x1, 0x0, 0x0, @irqchip={0x6}}, {0x9, 0x2, 0x0, 0x0, @sint={0x251, 0x1}}, {0x1000, 0x1, 0x0, 0x0, @adapter={0xf7e, 0x80000001, 0x8, 0x6, 0xe4}}]})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000340))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 1432.047273][ T3272] warn_alloc: 4 callbacks suppressed
[ 1432.047341][ T3272] syz-executor.2: vmalloc error: size 36864, page order 0, failed to allocate pages, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 1432.071077][ T3272] CPU: 1 PID: 3272 Comm: syz-executor.2 Not tainted 5.16.0-rc5-syzkaller #0
[ 1432.080007][ T3272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1432.090370][ T3272] Call Trace:
[ 1432.093734][ T3272]  <TASK>
[ 1432.096737][ T3272]  dump_stack_lvl+0x1ff/0x28e
[ 1432.101577][ T3272]  dump_stack+0x25/0x28
[ 1432.105859][ T3272]  warn_alloc+0x4d9/0x690
[ 1432.110394][ T3272]  ? kmsan_get_metadata+0x33/0x220
[ 1432.115694][ T3272]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1432.121689][ T3272]  __vmalloc_node_range+0x1290/0x17b0
[ 1432.127296][ T3272]  __vmalloc+0xf8/0x110
[ 1432.131606][ T3272]  ? kvm_dev_ioctl+0x295/0x3290
[ 1432.136621][ T3272]  ? kvm_dev_ioctl+0x295/0x3290
[ 1432.141751][ T3272]  kvm_dev_ioctl+0x295/0x3290
[ 1432.146629][ T3272]  ? kmsan_get_metadata+0x33/0x220
[ 1432.151913][ T3272]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1432.157996][ T3272]  ? kvm_reboot+0xb0/0xb0
[ 1432.162580][ T3272]  __se_sys_ioctl+0x2df/0x4a0
[ 1432.167434][ T3272]  __x64_sys_ioctl+0xd8/0x110
[ 1432.172271][ T3272]  do_syscall_64+0x54/0xd0
[ 1432.177011][ T3272]  ? syscall_exit_to_user_mode+0xa2/0xc0
[ 1432.183344][ T3272]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1432.189433][ T3272] RIP: 0033:0x7f08d2e75059
[ 1432.193963][ T3272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1432.213726][ T3272] RSP: 002b:00007f08d1766168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1432.222296][ T3272] RAX: ffffffffffffffda RBX: 00007f08d2f882a0 RCX: 00007f08d2e75059
[ 1432.230397][ T3272] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[ 1432.239348][ T3272] RBP: 00007f08d2ecf08d R08: 0000000000000000 R09: 0000000000000000
[ 1432.247432][ T3272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1432.255601][ T3272] R13: 00007f08d34bbb1f R14: 00007f08d1766300 R15: 0000000000022000
[ 1432.263725][ T3272]  </TASK>
[ 1432.270044][ T3272] Mem-Info:
[ 1432.273620][ T3272] active_anon:316 inactive_anon:121425 isolated_anon:0
[ 1432.273620][ T3272]  active_file:2333 inactive_file:51623 isolated_file:0
[ 1432.273620][ T3272]  unevictable:768 dirty:0 writeback:0
[ 1432.273620][ T3272]  slab_reclaimable:8940 slab_unreclaimable:19483
[ 1432.273620][ T3272]  mapped:27994 shmem:1528 pagetables:949 bounce:0
[ 1432.273620][ T3272]  kernel_misc_reclaimable:0
[ 1432.273620][ T3272]  free:298346 free_pcp:12242 free_cma:0
[ 1432.315853][ T3272] Node 0 active_anon:1264kB inactive_anon:487716kB active_file:9332kB inactive_file:206488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111976kB dirty:0kB writeback:0kB shmem:4576kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 499712kB writeback_tmp:0kB kernel_stack:4464kB pagetables:3792kB all_unreclaimable? no
16:19:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[ 1432.347665][ T3272] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:0kB pagetables:4kB all_unreclaimable? no
[ 1432.378016][ T3272] Node 0 DMA free:4096kB boost:0kB min:156kB low:192kB high:228kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1432.405511][ T3272] lowmem_reserve[]: 0 907 1220 1220 1220
[ 1432.412582][ T3272] Node 0 DMA32 free:140656kB boost:0kB min:36056kB low:45068kB high:54080kB reserved_highatomic:0KB active_anon:588kB inactive_anon:430720kB active_file:0kB inactive_file:189788kB unevictable:0kB writepending:0kB present:3129332kB managed:934724kB mlocked:0kB bounce:0kB free_pcp:34328kB local_pcp:18260kB free_cma:0kB
[ 1432.442952][ T3272] lowmem_reserve[]: 0 0 313 313 313
[ 1432.448473][ T3272] Node 0 Normal free:57952kB boost:0kB min:12440kB low:15548kB high:18656kB reserved_highatomic:0KB active_anon:676kB inactive_anon:56932kB active_file:9332kB inactive_file:16700kB unevictable:1536kB writepending:0kB present:1048576kB managed:320516kB mlocked:0kB bounce:0kB free_pcp:12720kB local_pcp:5212kB free_cma:0kB
[ 1432.479212][ T3272] lowmem_reserve[]: 0 0 0 0 0
[ 1432.484383][ T3272] Node 1 Normal free:990680kB boost:0kB min:41452kB low:51812kB high:62172kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194304kB managed:1067980kB mlocked:0kB bounce:0kB free_pcp:84kB local_pcp:0kB free_cma:0kB
[ 1432.513663][ T3272] lowmem_reserve[]: 0 0 0 0 0
[ 1432.518611][ T3272] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1432.531466][ T3272] Node 0 DMA32: 2272*4kB (UME) 1570*8kB (UME) 1102*16kB (UME) 826*32kB (UME) 453*64kB (UME) 57*128kB (UME) 9*256kB (UME) 3*512kB (UME) 2*1024kB (M) 4*2048kB (UM) 6*4096kB (UM) = 140656kB
[ 1432.551431][ T3272] Node 0 Normal: 1284*4kB (UME) 530*8kB (UME) 684*16kB (UME) 446*32kB (UME) 159*64kB (ME) 57*128kB (UME) 15*256kB (UM) 2*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 57952kB
[ 1432.570014][ T3272] Node 1 Normal: 4*4kB (UME) 11*8kB (UME) 11*16kB (UE) 14*32kB (UE) 8*64kB (UME) 6*128kB (UME) 2*256kB (UM) 2*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 239*4096kB (M) = 990680kB
[ 1432.588656][ T3272] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1432.598559][ T3272] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1432.608100][ T3272] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1432.617983][ T3272] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1432.627534][ T3272] 7848 total pagecache pages
[ 1432.632360][ T3272] 0 pages in swap cache
[ 1432.636589][ T3272] Swap cache stats: add 0, delete 0, find 0/0
16:19:20 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x321a00, 0x0) (async)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
syz_open_dev$mouse(&(0x7f0000000040), 0x8c51, 0x1)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x9, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66544a658c9d208dccc5f5f926391caa4623280000fa00000000000000"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

[ 1432.647693][ T3272] Free swap  = 0kB
[ 1432.651505][ T3272] Total swap = 0kB
[ 1432.655504][ T3272] 2097051 pages RAM
[ 1432.659385][ T3272] 0 pages HighMem/MovableOnly
[ 1432.664282][ T3272] 1515222 pages reserved
[ 1432.668600][ T3272] 0 pages cma reserved
16:19:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00856300dc00000000000000dfffffffffffff3f000000000000100000000036735cd4a11dd6af4d4c000000000000"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000609a41ba429dae6d8fead1efa6355ef24f986891b28d4ab6b56c3995252e", @ANYRES16=r4, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746f5f62617461647600"], 0x40}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r5, 0x0, r7, 0x0, 0x9, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000001", @ANYRES32=r7, @ANYBLOB="04000000000000002e2f66696c653000"])
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff})
ioctl$int_in(r8, 0x5452, &(0x7f0000000100)=0x8) (async, rerun: 32)
pipe(&(0x7f0000000000)={<r9=>0xffffffffffffffff}) (rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r9, 0x4400ae8f, &(0x7f0000000080)) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

16:19:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000180))
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000280)={[0x4, 0x5, 0x2, 0xffffffffffff1877, 0x7fff, 0x5, 0x100000000, 0xfff, 0x8001, 0x100, 0x7, 0x8, 0x400, 0x6, 0x1, 0x400], 0x4, 0x4040})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x942c0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) (async)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000180)) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000280)={[0x4, 0x5, 0x2, 0xffffffffffff1877, 0x7fff, 0x5, 0x100000000, 0xfff, 0x8001, 0x100, 0x7, 0x8, 0x400, 0x6, 0x1, 0x400], 0x4, 0x4040}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x942c0, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"/272], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"/272], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}, {}, {}, {}], 0x4, 0x5)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea0026660f38802ab9800000c077222222008000000f309adb9c52d181000f20d8", 0x3f}], 0xaaaaaaaaaaaacae, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0xc40, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socketpair(0xb, 0x1, 0x401, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
fcntl$F_SET_FILE_RW_HINT(r4, 0x40e, &(0x7f0000000280)=0x3)

16:19:21 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="000022bc6397cf516a2826e9e1dc00000000000000dfffffffffffff3f00000000000000f800000000000000367300000000"], 0x78)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x9, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
open_by_handle_at(r4, &(0x7f00000001c0)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x7f, 0x42, 0x6, 0x7fff}, {0xffffff8e, 0x1, 0x0, 0x6}}}, 0x408100)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
r5 = open(&(0x7f0000000180)='./file0\x00', 0x66002, 0x148)
ioctl$KVM_SET_GSI_ROUTING(r5, 0x4008ae6a, &(0x7f0000000280)={0x3, 0x0, [{0x1000, 0x1, 0x0, 0x0, @irqchip={0x6}}, {0x9, 0x2, 0x0, 0x0, @sint={0x251, 0x1}}, {0x1000, 0x1, 0x0, 0x0, @adapter={0xf7e, 0x80000001, 0x8, 0x6, 0xe4}}]})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000340))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="000022bc6397cf516a2826e9e1dc00000000000000dfffffffffffff3f00000000000000f800000000000000367300000000"], 0x78) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r0, 0x0, r2, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
open_by_handle_at(r4, &(0x7f00000001c0)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x7f, 0x42, 0x6, 0x7fff}, {0xffffff8e, 0x1, 0x0, 0x6}}}, 0x408100) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
open(&(0x7f0000000180)='./file0\x00', 0x66002, 0x148) (async)
ioctl$KVM_SET_GSI_ROUTING(r5, 0x4008ae6a, &(0x7f0000000280)={0x3, 0x0, [{0x1000, 0x1, 0x0, 0x0, @irqchip={0x6}}, {0x9, 0x2, 0x0, 0x0, @sint={0x251, 0x1}}, {0x1000, 0x1, 0x0, 0x0, @adapter={0xf7e, 0x80000001, 0x8, 0x6, 0xe4}}]}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000340)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000180)) (async)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff}) (async, rerun: 32)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000280)={[0x4, 0x5, 0x2, 0xffffffffffff1877, 0x7fff, 0x5, 0x100000000, 0xfff, 0x8001, 0x100, 0x7, 0x8, 0x400, 0x6, 0x1, 0x400], 0x4, 0x4040}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x942c0, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:21 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="000022bc6397cf516a2826e9e1dc00000000000000dfffffffffffff3f00000000000000f800000000000000367300000000"], 0x78)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x9, 0x0)
r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
open_by_handle_at(r4, &(0x7f00000001c0)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x7f, 0x42, 0x6, 0x7fff}, {0xffffff8e, 0x1, 0x0, 0x6}}}, 0x408100)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
r5 = open(&(0x7f0000000180)='./file0\x00', 0x66002, 0x148)
ioctl$KVM_SET_GSI_ROUTING(r5, 0x4008ae6a, &(0x7f0000000280)={0x3, 0x0, [{0x1000, 0x1, 0x0, 0x0, @irqchip={0x6}}, {0x9, 0x2, 0x0, 0x0, @sint={0x251, 0x1}}, {0x1000, 0x1, 0x0, 0x0, @adapter={0xf7e, 0x80000001, 0x8, 0x6, 0xe4}}]})
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000340))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="000022bc6397cf516a2826e9e1dc00000000000000dfffffffffffff3f00000000000000f800000000000000367300000000"], 0x78) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r0, 0x0, r2, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
open_by_handle_at(r4, &(0x7f00000001c0)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x7f, 0x42, 0x6, 0x7fff}, {0xffffff8e, 0x1, 0x0, 0x6}}}, 0x408100) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
open(&(0x7f0000000180)='./file0\x00', 0x66002, 0x148) (async)
ioctl$KVM_SET_GSI_ROUTING(r5, 0x4008ae6a, &(0x7f0000000280)={0x3, 0x0, [{0x1000, 0x1, 0x0, 0x0, @irqchip={0x6}}, {0x9, 0x2, 0x0, 0x0, @sint={0x251, 0x1}}, {0x1000, 0x1, 0x0, 0x0, @adapter={0xf7e, 0x80000001, 0x8, 0x6, 0xe4}}]}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000340)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x1c7203, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000480)={0x1bc, r3, 0x100, 0x0, 0x200000, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x46, 0x5, "4a8c8d9e53b757760c76eb308ed0d6a984e65cbbaa50a39503aa34cfc906b10e7d09ffcab5678a56b3e8e5a38e7ab85c1ffd47e047b108c87a38f11c6c178c8384ac"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x800}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x4}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'veth1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x9c, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '^[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa6d}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2bac}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'\'(\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '##\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'syz1'}]}]}, @ETHTOOL_A_BITSET_VALUE={0x70, 0x4, "f557500f90950d6c56e4dd98643f1d501d6e275262dd329fdbb670e57a29ac22e763588e59a420de489624391384d6e8af44d7caf07248f51768f54226ea3080accd93dc5b770d1d4ca40a0cad4295fe174b3dd6cf8d846995f130eca8821575180ba0d8151e48dab40188d5"}]}]}, 0x1bc}}, 0x20040800)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, ']&^@'}], 0xa, "ae58cb351674866b809992345503bebfb67d3627541dc8077a6638d44093"}, 0x42)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
fallocate(0xffffffffffffffff, 0x10, 0xfffffffffffffffb, 0x7f)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000380)={'syz1', "7e5ba7f17b0a87fa62c6a38ab15e3a9748a9f316513ab729fb279e5831c03a84eadc24585835c5a8a291aefaaabba9b72107117513fc48f4041d3b3bd65748e32fc80cd79e5ba5bde2d0ad432072d884ad31bd0baaec2c42e2b9f7778d63b3b2557a9e4f8d9fcd244a2eb5dc043ffa6ecb32da3d55200b69ff71e7646bce6dd1a83e117b9329174ef4028cc96050b3751ad5ebbfc86b5c55ccefde725e0a071e4dee06baeca24c8ed3283f9baa9f6678e75e019c449144e7ac92f84e5fbfdac0f99d87cc1d2181c66bc623a0284d8e9d14f8e7423d207edcc8b4f279b450afca63b6fb"}, 0xe7)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x9, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000080)=0xd000)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}, {}, {}, {}], 0x4, 0x5) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea0026660f38802ab9800000c077222222008000000f309adb9c52d181000f20d8", 0x3f}], 0xaaaaaaaaaaaacae, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0xc40, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
socketpair(0xb, 0x1, 0x401, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
fcntl$F_SET_FILE_RW_HINT(r4, 0x40e, &(0x7f0000000280)=0x3)

16:19:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00856300dc00000000000000dfffffffffffff3f000000000000100000000036735cd4a11dd6af4d4c000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000609a41ba429dae6d8fead1efa6355ef24f986891b28d4ab6b56c3995252e", @ANYRES16=r4, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746f5f62617461647600"], 0x40}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
splice(r5, 0x0, r7, 0x0, 0x9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000001", @ANYRES32=r7, @ANYBLOB="04000000000000002e2f66696c653000"])
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff})
ioctl$int_in(r8, 0x5452, &(0x7f0000000100)=0x8)
pipe(&(0x7f0000000000)={<r9=>0xffffffffffffffff})
ioctl$KVM_GET_VCPU_EVENTS(r9, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00856300dc00000000000000dfffffffffffff3f000000000000100000000036735cd4a11dd6af4d4c000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000609a41ba429dae6d8fead1efa6355ef24f986891b28d4ab6b56c3995252e", @ANYRES16=r4, @ANYBLOB="010000000000000000000c00000014000380100003800c0001800500020000000000180001801400020076657468315f746f5f62617461647600"], 0x40}}, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r5, 0x0, r7, 0x0, 0x9, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000001", @ANYRES32=r7, @ANYBLOB="04000000000000002e2f66696c653000"]) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r8, 0x5452, &(0x7f0000000100)=0x8) (async)
pipe(&(0x7f0000000000)) (async)
ioctl$KVM_GET_VCPU_EVENTS(r9, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x1c7203, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000480)={0x1bc, r3, 0x100, 0x0, 0x200000, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x46, 0x5, "4a8c8d9e53b757760c76eb308ed0d6a984e65cbbaa50a39503aa34cfc906b10e7d09ffcab5678a56b3e8e5a38e7ab85c1ffd47e047b108c87a38f11c6c178c8384ac"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x800}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x4}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'veth1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x9c, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '^[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa6d}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2bac}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'\'(\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '##\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'syz1'}]}]}, @ETHTOOL_A_BITSET_VALUE={0x70, 0x4, "f557500f90950d6c56e4dd98643f1d501d6e275262dd329fdbb670e57a29ac22e763588e59a420de489624391384d6e8af44d7caf07248f51768f54226ea3080accd93dc5b770d1d4ca40a0cad4295fe174b3dd6cf8d846995f130eca8821575180ba0d8151e48dab40188d5"}]}]}, 0x1bc}}, 0x20040800)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, ']&^@'}], 0xa, "ae58cb351674866b809992345503bebfb67d3627541dc8077a6638d44093"}, 0x42)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
fallocate(0xffffffffffffffff, 0x10, 0xfffffffffffffffb, 0x7f)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000380)={'syz1', "7e5ba7f17b0a87fa62c6a38ab15e3a9748a9f316513ab729fb279e5831c03a84eadc24585835c5a8a291aefaaabba9b72107117513fc48f4041d3b3bd65748e32fc80cd79e5ba5bde2d0ad432072d884ad31bd0baaec2c42e2b9f7778d63b3b2557a9e4f8d9fcd244a2eb5dc043ffa6ecb32da3d55200b69ff71e7646bce6dd1a83e117b9329174ef4028cc96050b3751ad5ebbfc86b5c55ccefde725e0a071e4dee06baeca24c8ed3283f9baa9f6678e75e019c449144e7ac92f84e5fbfdac0f99d87cc1d2181c66bc623a0284d8e9d14f8e7423d207edcc8b4f279b450afca63b6fb"}, 0xe7)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x1c7203, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000480)={0x1bc, r3, 0x100, 0x0, 0x200000, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x46, 0x5, "4a8c8d9e53b757760c76eb308ed0d6a984e65cbbaa50a39503aa34cfc906b10e7d09ffcab5678a56b3e8e5a38e7ab85c1ffd47e047b108c87a38f11c6c178c8384ac"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x800}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x4}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'veth1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x9c, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '^[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa6d}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2bac}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'\'(\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '##\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'syz1'}]}]}, @ETHTOOL_A_BITSET_VALUE={0x70, 0x4, "f557500f90950d6c56e4dd98643f1d501d6e275262dd329fdbb670e57a29ac22e763588e59a420de489624391384d6e8af44d7caf07248f51768f54226ea3080accd93dc5b770d1d4ca40a0cad4295fe174b3dd6cf8d846995f130eca8821575180ba0d8151e48dab40188d5"}]}]}, 0x1bc}}, 0x20040800) (async)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, ']&^@'}], 0xa, "ae58cb351674866b809992345503bebfb67d3627541dc8077a6638d44093"}, 0x42) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
fallocate(0xffffffffffffffff, 0x10, 0xfffffffffffffffb, 0x7f) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000380)={'syz1', "7e5ba7f17b0a87fa62c6a38ab15e3a9748a9f316513ab729fb279e5831c03a84eadc24585835c5a8a291aefaaabba9b72107117513fc48f4041d3b3bd65748e32fc80cd79e5ba5bde2d0ad432072d884ad31bd0baaec2c42e2b9f7778d63b3b2557a9e4f8d9fcd244a2eb5dc043ffa6ecb32da3d55200b69ff71e7646bce6dd1a83e117b9329174ef4028cc96050b3751ad5ebbfc86b5c55ccefde725e0a071e4dee06baeca24c8ed3283f9baa9f6678e75e019c449144e7ac92f84e5fbfdac0f99d87cc1d2181c66bc623a0284d8e9d14f8e7423d207edcc8b4f279b450afca63b6fb"}, 0xe7) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="0000dc0043d1b767000000000000dfebfffffffffff8ffffff7c4f0000f8000006000000003600f01db833e90685f47b4d8b0002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x1c7203, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000480)={0x1bc, r3, 0x100, 0x0, 0x200000, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x46, 0x5, "4a8c8d9e53b757760c76eb308ed0d6a984e65cbbaa50a39503aa34cfc906b10e7d09ffcab5678a56b3e8e5a38e7ab85c1ffd47e047b108c87a38f11c6c178c8384ac"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x800}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x4}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'veth1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x9c, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '^[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa6d}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2bac}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'\'(\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '##\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'syz1'}]}]}, @ETHTOOL_A_BITSET_VALUE={0x70, 0x4, "f557500f90950d6c56e4dd98643f1d501d6e275262dd329fdbb670e57a29ac22e763588e59a420de489624391384d6e8af44d7caf07248f51768f54226ea3080accd93dc5b770d1d4ca40a0cad4295fe174b3dd6cf8d846995f130eca8821575180ba0d8151e48dab40188d5"}]}]}, 0x1bc}}, 0x20040800)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, ']&^@'}], 0xa, "ae58cb351674866b809992345503bebfb67d3627541dc8077a6638d44093"}, 0x42)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
fallocate(0xffffffffffffffff, 0x10, 0xfffffffffffffffb, 0x7f)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000380)={'syz1', "7e5ba7f17b0a87fa62c6a38ab15e3a9748a9f316513ab729fb279e5831c03a84eadc24585835c5a8a291aefaaabba9b72107117513fc48f4041d3b3bd65748e32fc80cd79e5ba5bde2d0ad432072d884ad31bd0baaec2c42e2b9f7778d63b3b2557a9e4f8d9fcd244a2eb5dc043ffa6ecb32da3d55200b69ff71e7646bce6dd1a83e117b9329174ef4028cc96050b3751ad5ebbfc86b5c55ccefde725e0a071e4dee06baeca24c8ed3283f9baa9f6678e75e019c449144e7ac92f84e5fbfdac0f99d87cc1d2181c66bc623a0284d8e9d14f8e7423d207edcc8b4f279b450afca63b6fb"}, 0xe7)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x1c7203, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000480)={0x1bc, r3, 0x100, 0x0, 0x200000, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x46, 0x5, "4a8c8d9e53b757760c76eb308ed0d6a984e65cbbaa50a39503aa34cfc906b10e7d09ffcab5678a56b3e8e5a38e7ab85c1ffd47e047b108c87a38f11c6c178c8384ac"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x800}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x4}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'veth1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x9c, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '^[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xa6d}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2bac}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '\'\'(\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '##\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, ']&^@'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '/dev/kvm\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, 'syz1'}]}]}, @ETHTOOL_A_BITSET_VALUE={0x70, 0x4, "f557500f90950d6c56e4dd98643f1d501d6e275262dd329fdbb670e57a29ac22e763588e59a420de489624391384d6e8af44d7caf07248f51768f54226ea3080accd93dc5b770d1d4ca40a0cad4295fe174b3dd6cf8d846995f130eca8821575180ba0d8151e48dab40188d5"}]}]}, 0x1bc}}, 0x20040800) (async)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, ']&^@'}], 0xa, "ae58cb351674866b809992345503bebfb67d3627541dc8077a6638d44093"}, 0x42) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
fallocate(0xffffffffffffffff, 0x10, 0xfffffffffffffffb, 0x7f) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000380)={'syz1', "7e5ba7f17b0a87fa62c6a38ab15e3a9748a9f316513ab729fb279e5831c03a84eadc24585835c5a8a291aefaaabba9b72107117513fc48f4041d3b3bd65748e32fc80cd79e5ba5bde2d0ad432072d884ad31bd0baaec2c42e2b9f7778d63b3b2557a9e4f8d9fcd244a2eb5dc043ffa6ecb32da3d55200b69ff71e7646bce6dd1a83e117b9329174ef4028cc96050b3751ad5ebbfc86b5c55ccefde725e0a071e4dee06baeca24c8ed3283f9baa9f6678e75e019c449144e7ac92f84e5fbfdac0f99d87cc1d2181c66bc623a0284d8e9d14f8e7423d207edcc8b4f279b450afca63b6fb"}, 0xe7) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
epoll_wait(0xffffffffffffffff, &(0x7f0000000100)=[{}, {}, {}, {}], 0x4, 0x5) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000140)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea0026660f38802ab9800000c077222222008000000f309adb9c52d181000f20d8", 0x3f}], 0xaaaaaaaaaaaacae, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0xc40, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
socketpair(0xb, 0x1, 0x401, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
fcntl$F_SET_FILE_RW_HINT(r4, 0x40e, &(0x7f0000000280)=0x3)

16:19:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000073aeb2c93761702273000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f000060f000/0x3000)=nil, 0x3000, 0x0, 0x2010, 0xffffffffffffffff, 0x0)
r4 = syz_io_uring_complete(r3)
syz_io_uring_setup(0x2714, &(0x7f0000000580)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r4}, &(0x7f0000068000/0x12000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
r7 = socket$inet6_dccp(0xa, 0x6, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x5, 0x2004, @fd_index=0x5, 0x1, &(0x7f0000000280)="f42854c9755111553be1a19faab1bd9ea0bb584a9ee4ed9f17327ddab2486cf734b056ec08e407b05bcf00be424d50a7ffba2dbfff1073866ba6d85aa48c11cf8979b353f194bfeaf6b63c338a71969f23e4772c1821247a2958a925d3881f3775ea9d2ec2c6f53f4e039815909e36619231ee575c9b7f63ef2cb83fda11ef1524a2a054547756b426718fc4b5bab4cb08c29fb3bda5364f293cbdde93249f45d211550a7e8360ad1399c073a2449e02ca13b56f5d23daca5f", 0xb9, 0x14, 0x1}, 0x1000)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000100)={&(0x7f0000000080)=[0x8], 0x1, 0x41c00, 0x0, <r8=>0xffffffffffffffff})
r9 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r8, 0x0, &(0x7f0000000140)='./file0\x00', 0x4, 0x60882, 0x12345}, 0x9)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)

16:19:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x402000, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000609000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f0000000280)="b8d6000f00d0b850008ec80fc7ac5c00b8e0008ed0360f01d10fc768006766c7442400006000006766c744240247e100006766c744240600000000670f011424660f38146100c1c6ce0f00dd", 0x4c}], 0x1, 0x1, &(0x7f0000000300)=[@vmwrite={0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, @efer={0x2, 0xd000}], 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x9, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000080)=0xd000)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="0000dc0043d1b767000000000000dfebfffffffffff8ffffff7c4f0000f8000006000000003600f01db833e90685f47b4d8b0002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000073aeb2c93761702273000000003800"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f000060f000/0x3000)=nil, 0x3000, 0x0, 0x2010, 0xffffffffffffffff, 0x0)
r4 = syz_io_uring_complete(r3)
syz_io_uring_setup(0x2714, &(0x7f0000000580)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r4}, &(0x7f0000068000/0x12000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
r7 = socket$inet6_dccp(0xa, 0x6, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x5, 0x2004, @fd_index=0x5, 0x1, &(0x7f0000000280)="f42854c9755111553be1a19faab1bd9ea0bb584a9ee4ed9f17327ddab2486cf734b056ec08e407b05bcf00be424d50a7ffba2dbfff1073866ba6d85aa48c11cf8979b353f194bfeaf6b63c338a71969f23e4772c1821247a2958a925d3881f3775ea9d2ec2c6f53f4e039815909e36619231ee575c9b7f63ef2cb83fda11ef1524a2a054547756b426718fc4b5bab4cb08c29fb3bda5364f293cbdde93249f45d211550a7e8360ad1399c073a2449e02ca13b56f5d23daca5f", 0xb9, 0x14, 0x1}, 0x1000) (async)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000100)={&(0x7f0000000080)=[0x8], 0x1, 0x41c00, 0x0, <r8=>0xffffffffffffffff}) (async)
r9 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r8, 0x0, &(0x7f0000000140)='./file0\x00', 0x4, 0x60882, 0x12345}, 0x9) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)

16:19:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 1436.570719][ T1195] ieee802154 phy0 wpan0: encryption failed: -22
[ 1436.577488][ T1195] ieee802154 phy1 wpan1: encryption failed: -22
16:19:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000073aeb2c93761702273000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f000060f000/0x3000)=nil, 0x3000, 0x0, 0x2010, 0xffffffffffffffff, 0x0)
r4 = syz_io_uring_complete(r3)
syz_io_uring_setup(0x2714, &(0x7f0000000580)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r4}, &(0x7f0000068000/0x12000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480)=<r5=>0x0, &(0x7f0000000080)=<r6=>0x0)
r7 = socket$inet6_dccp(0xa, 0x6, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x5, 0x2004, @fd_index=0x5, 0x1, &(0x7f0000000280)="f42854c9755111553be1a19faab1bd9ea0bb584a9ee4ed9f17327ddab2486cf734b056ec08e407b05bcf00be424d50a7ffba2dbfff1073866ba6d85aa48c11cf8979b353f194bfeaf6b63c338a71969f23e4772c1821247a2958a925d3881f3775ea9d2ec2c6f53f4e039815909e36619231ee575c9b7f63ef2cb83fda11ef1524a2a054547756b426718fc4b5bab4cb08c29fb3bda5364f293cbdde93249f45d211550a7e8360ad1399c073a2449e02ca13b56f5d23daca5f", 0xb9, 0x14, 0x1}, 0x1000)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000100)={&(0x7f0000000080)=[0x8], 0x1, 0x41c00, 0x0, <r8=>0xffffffffffffffff})
r9 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0)
ioctl$KVM_RUN(r9, 0xae80, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r8, 0x0, &(0x7f0000000140)='./file0\x00', 0x4, 0x60882, 0x12345}, 0x9)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000073aeb2c93761702273000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
mmap$IORING_OFF_SQ_RING(&(0x7f000060f000/0x3000)=nil, 0x3000, 0x0, 0x2010, 0xffffffffffffffff, 0x0) (async)
syz_io_uring_complete(r3) (async)
syz_io_uring_setup(0x2714, &(0x7f0000000580)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r4}, &(0x7f0000068000/0x12000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000480), &(0x7f0000000080)) (async)
socket$inet6_dccp(0xa, 0x6, 0x0) (async)
syz_io_uring_submit(r5, r6, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x0, 0x0}, 0x0) (async)
syz_io_uring_submit(0x0, r6, &(0x7f0000000340)=@IORING_OP_WRITE={0x17, 0x5, 0x2004, @fd_index=0x5, 0x1, &(0x7f0000000280)="f42854c9755111553be1a19faab1bd9ea0bb584a9ee4ed9f17327ddab2486cf734b056ec08e407b05bcf00be424d50a7ffba2dbfff1073866ba6d85aa48c11cf8979b353f194bfeaf6b63c338a71969f23e4772c1821247a2958a925d3881f3775ea9d2ec2c6f53f4e039815909e36619231ee575c9b7f63ef2cb83fda11ef1524a2a054547756b426718fc4b5bab4cb08c29fb3bda5364f293cbdde93249f45d211550a7e8360ad1399c073a2449e02ca13b56f5d23daca5f", 0xb9, 0x14, 0x1}, 0x1000) (async)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(0xffffffffffffffff, 0xc01864c6, &(0x7f0000000100)={&(0x7f0000000080)=[0x8], 0x1, 0x41c00}) (async)
openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x80, 0x0) (async)
ioctl$KVM_RUN(r9, 0xae80, 0x0) (async)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r8, 0x0, &(0x7f0000000140)='./file0\x00', 0x4, 0x60882, 0x12345}, 0x9) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)

16:19:24 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x402000, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000609000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f0000000280)="b8d6000f00d0b850008ec80fc7ac5c00b8e0008ed0360f01d10fc768006766c7442400006000006766c744240247e100006766c744240600000000670f011424660f38146100c1c6ce0f00dd", 0x4c}], 0x1, 0x1, &(0x7f0000000300)=[@vmwrite={0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, @efer={0x2, 0xd000}], 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000001c0)={0xa0000000})
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000240), 0xffff, 0x6880)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="400000002e6cf68cb4792a126daeae27854d7d575120da993100d07a3cbf91b30bdd225cf79a8f456ce0b2ec860e548ab943539e1ec90be406954de0e4e6596f725bf958100fc31b55df883eadef5ba542d29fad4881daffc299f4818db030d858ee", @ANYRES16=r6, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r7, @ANYBLOB="11002a00dd0b6562636465666768696a6b00000010002d800a0000000202020202020000"], 0x40}}, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r6, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x810)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r8, 0xae80, 0x0)

16:19:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="0000dc0043d1b767000000000000dfebfffffffffff8ffffff7c4f0000f8000006000000003600f01db833e90685f47b4d8b0002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="0000dc0043d1b767000000000000dfebfffffffffff8ffffff7c4f0000f8000006000000003600f01db833e90685f47b4d8b0002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff}) (async, rerun: 64)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0x9, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000080)=0xd000) (async, rerun: 32)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:25 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

[ 1437.369310][ T3550] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2912932418 (5825864836 ns) > initial count (2985473764 ns). Using initial count to start timer.
16:19:25 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x402000, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000609000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f0000000280)="b8d6000f00d0b850008ec80fc7ac5c00b8e0008ed0360f01d10fc768006766c7442400006000006766c744240247e100006766c744240600000000670f011424660f38146100c1c6ce0f00dd", 0x4c}], 0x1, 0x1, &(0x7f0000000300)=[@vmwrite={0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, @efer={0x2, 0xd000}], 0x2) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f00000002c0)={0x60, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x34, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x30, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '\xfbR\'a\x13\x1b\x93\xc1\x1bp7AJ\xe5\xfd[x\xd5\xae\xff\xce\x02kq\xe2\\\x1f\x1b\xf5,\xc1\xb6{\xb1\xf3\xb4'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x60}}, 0x0)
fstat(r0, &(0x7f0000000240))
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x78)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000340)={0x10001, 0x3, 0x4000, 0x2000, &(0x7f000060f000/0x2000)=nil})
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
dup(r6)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000380)={0x1ff, 0x3, 0xf000, 0x2000, &(0x7f000060b000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:19:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000001c0)={0xa0000000})
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000240), 0xffff, 0x6880)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="400000002e6cf68cb4792a126daeae27854d7d575120da993100d07a3cbf91b30bdd225cf79a8f456ce0b2ec860e548ab943539e1ec90be406954de0e4e6596f725bf958100fc31b55df883eadef5ba542d29fad4881daffc299f4818db030d858ee", @ANYRES16=r6, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r7, @ANYBLOB="11002a00dd0b6562636465666768696a6b00000010002d800a0000000202020202020000"], 0x40}}, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r6, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x810)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r8, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0) (async)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000001c0)={0xa0000000}) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000240), 0xffff, 0x6880) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) (async)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="400000002e6cf68cb4792a126daeae27854d7d575120da993100d07a3cbf91b30bdd225cf79a8f456ce0b2ec860e548ab943539e1ec90be406954de0e4e6596f725bf958100fc31b55df883eadef5ba542d29fad4881daffc299f4818db030d858ee", @ANYRES16=r6, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r7, @ANYBLOB="11002a00dd0b6562636465666768696a6b00000010002d800a0000000202020202020000"], 0x40}}, 0x0) (async)
sendmsg$NL80211_CMD_STOP_NAN(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r6, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x810) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)

16:19:26 executing program 4:
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(0xffffffffffffffff, 0xc0305602, &(0x7f0000000780)={0x0, 0xd39, 0x100d})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x82000, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r3, 0x4068aea3, &(0x7f0000000280)={0xa8, 0x0, 0x2})
r4 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000001c0), 0x400800, 0x0)
ioctl$KVM_GET_LAPIC(r4, 0x8400ae8e, &(0x7f0000000300)={"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"})
r5 = openat2(r4, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x19, 0x6}, 0x18)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)

[ 1438.176921][ T3604] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2912932418 (5825864836 ns) > initial count (2985473764 ns). Using initial count to start timer.
16:19:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000001c0)={0xa0000000})
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r4 = syz_open_dev$mouse(&(0x7f0000000240), 0xffff, 0x6880)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="400000002e6cf68cb4792a126daeae27854d7d575120da993100d07a3cbf91b30bdd225cf79a8f456ce0b2ec860e548ab943539e1ec90be406954de0e4e6596f725bf958100fc31b55df883eadef5ba542d29fad4881daffc299f4818db030d858ee", @ANYRES16=r6, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r7, @ANYBLOB="11002a00dd0b6562636465666768696a6b00000010002d800a0000000202020202020000"], 0x40}}, 0x0)
sendmsg$NL80211_CMD_STOP_NAN(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r6, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x810)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r8, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000140), 0x800, 0x0) (async)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000001c0)={0xa0000000}) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_open_dev$mouse(&(0x7f0000000240), 0xffff, 0x6880) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) (async)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) (async)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="400000002e6cf68cb4792a126daeae27854d7d575120da993100d07a3cbf91b30bdd225cf79a8f456ce0b2ec860e548ab943539e1ec90be406954de0e4e6596f725bf958100fc31b55df883eadef5ba542d29fad4881daffc299f4818db030d858ee", @ANYRES16=r6, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r7, @ANYBLOB="11002a00dd0b6562636465666768696a6b00000010002d800a0000000202020202020000"], 0x40}}, 0x0) (async)
sendmsg$NL80211_CMD_STOP_NAN(r4, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r6, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x810) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)

16:19:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:26 executing program 4:
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(0xffffffffffffffff, 0xc0305602, &(0x7f0000000780)={0x0, 0xd39, 0x100d}) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x82000, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r3, 0x4068aea3, &(0x7f0000000280)={0xa8, 0x0, 0x2}) (async)
r4 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000001c0), 0x400800, 0x0)
ioctl$KVM_GET_LAPIC(r4, 0x8400ae8e, &(0x7f0000000300)={"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"}) (async)
r5 = openat2(r4, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x19, 0x6}, 0x18)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f00000002c0)={0x60, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x34, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x30, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '\xfbR\'a\x13\x1b\x93\xc1\x1bp7AJ\xe5\xfd[x\xd5\xae\xff\xce\x02kq\xe2\\\x1f\x1b\xf5,\xc1\xb6{\xb1\xf3\xb4'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x60}}, 0x0)
fstat(r0, &(0x7f0000000240))
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x78)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000340)={0x10001, 0x3, 0x4000, 0x2000, &(0x7f000060f000/0x2000)=nil}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
dup(r6) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000380)={0x1ff, 0x3, 0xf000, 0x2000, &(0x7f000060b000/0x2000)=nil}) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:19:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x100)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001640)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000", @ANYRESDEC=r0, @ANYRES16=r0, @ANYRESOCT=0x0], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000280)={{0x0, 0x3, 0x100, 0x22, 0xfffffffffffffff9, 0x6, 0x3, 0x1, 0x1, 0x2, 0x9, 0x3, 0x6, 0x1, 0x1000}, 0x18, [0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
io_submit(0x0, 0x2, &(0x7f0000001540)=[&(0x7f00000013c0)={0x0, 0x0, 0x0, 0x7, 0xc5e, 0xffffffffffffffff, &(0x7f00000003c0)="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", 0x1000, 0xbcc7, 0x0, 0x2, r1}, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x20, 0xffffffffffffffff, &(0x7f0000001400)="8faea52cc20a9252faac9e05c178edc1028346c1b00e6fa8255f0e8c8f9ddf9370a17b13c8ff74d8dc001d44780b67e84f810d653fd49e349dfe15e33961627e0e97914bad90cbfc21fabc48ce95105305f764973d85cf7e6fe1c818c172b4dd16ed81b6fe737155e857c17d35cef370d7bea313e02cdebc32b283928f44c834ae34dc9cd366bafcf4a1d9ca0a113bea42217727d1f45f77ac8578990000c5faa52e4aa75480edf1b3f4f8e83a7ca499ba7ac3f989b5480edb4fa8b61128c9723bc5d43260d56d936ca27b2a46064b37211ea9facf757840d8621656659055b1ecf0a30c67cc880d89eed4e4271d29f9091d12132360", 0xf6, 0x3, 0x0, 0x3}])
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
mmap$KVM_VCPU(&(0x7f00004ce000/0x1000)=nil, 0x930, 0x0, 0x4000010, r3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000240)={0x10001, 0x3, 0x3000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) (async)

16:19:27 executing program 4:
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(0xffffffffffffffff, 0xc0305602, &(0x7f0000000780)={0x0, 0xd39, 0x100d})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x82000, 0x0)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r3, 0x4068aea3, &(0x7f0000000280)={0xa8, 0x0, 0x2})
r4 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000001c0), 0x400800, 0x0)
ioctl$KVM_GET_LAPIC(r4, 0x8400ae8e, &(0x7f0000000300)={"9e13b829bb205a55577bc6fa033a31fd75f210f0b06c4ea2a83b86d5bbb79758d3ee9724b46fffcb03a7816e1a32638138c22b897c1654e1bcaf9adcda0e5e1b771655f2584d20c961cff988391cbb66cbba3c3c60bd456f56296f5da13648f17ecf9a591df596e8bb76d2f3b139c5cbca6cc38326dcb84631f640938023fd77dcf6cf0495ddbefd5f9a3e05908f042ece2a7e9bb15a973bd42043c38f5e74bad74039d6d32f7d1f3a7a1002ac6d75ffb0abbe4efe9f3a5a4df515ecadb7ce5ed7df36e7aa0e3f76e5b6b179aa86fa9ea2d3da6064e97709b7465efd06a3f96084139b5cb5aa48167a62b5f7fd0d02671c9c50351d0f1335803883847342e1e9aa4b4b62b976857dd4172abc06b63a9723d9713ed5ab5129b20bf39f5e943a6859fce3d6ed20163ea31bda9d035633f77b0c2de127e11ff6fa2ab328f355e8c05e0049769650dced964bf7f24af852908c3836568bb4133f5c314f4b6e2b699960cbbb59ec9724c921ffd22a304fbd1985153b4c356f0bea1c9b4494abee260757c8ae584e19d4a72d37656b7ff12c452c37491808840fef1f037dd71baf5c97f1663e08b2bc98e159666769a5c33736d7f5d9389c920ecfdb64b91f3b05c94d426463e2be4270bcc23cc027af29decd495e2527779e8b1a0d645224c662d9dce14fa471a052e391f9d5ff92e70c29eedbd19fc4baafb905e4ec2732a0c6f7f71e30e4fbe72903af6842e32eccfab35e5f332621c970f9bc31c62afb09e33d444147aa7777f5e551a835db7beba01b170774ac1da11d46411e8b3ad116696fb092ae1610a753a399e52d5feb18594d1766a1873eeb27f74deb31a3ca6117d1f0a34561f277e60a6aba232c5386a028df8b71bb6bc63b3acc05a7d58ee2c8a790071c3aefbb353a0e919d0a5ec60e6f5fc982522a6fa2fb9157c7143f79dd0da35b812aa266284e71bf198cb7f3d61627512ea29fc6f72cef0bc8c3089fedb4b506714ff72e327bc945ae576b5901d193ba06e889be7688a2b203d0414bada0bac31962bb05369beab44c6ae3b4cb91a7065feb55cb388db8b23d988ff05bc7012e15a772f337cff480f4eed3a015c5a8a3dc7fe29a218450a47e2f91e69a598b3e961ad03008e7de72e33fd4820381e0181ca80f60effe9d980732e11fe4009f2ba3d062c7ea34c0a3d48338de19d08b4ce2e3331fba8923d168b1d22df942f863b10340b571a5cc6516eeaa819caef5ca1584379dc810bc76aec28ae7c00881dc6e47a88cdc79dde8e045d9e416bf229d35fe62d0db2b353844c5fdb4afcfce6013f8e87b4b9092dc4eb95e38cb6d9adc92d8b5567968aaa20f65fae25d7076f20d878f37eac14defdef3f4575d0739cb42bd85663a1c97658a4303598009295b685f36a3921eb5d9186e4f3378f2ccf20d316b3f1426bbee32248692106283"})
r5 = openat2(r4, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x19, 0x6}, 0x18)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(0xffffffffffffffff, 0xc0305602, &(0x7f0000000780)={0x0, 0xd39, 0x100d}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180), 0x82000, 0x0) (async)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r3, 0x4068aea3, &(0x7f0000000280)={0xa8, 0x0, 0x2}) (async)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000001c0), 0x400800, 0x0) (async)
ioctl$KVM_GET_LAPIC(r4, 0x8400ae8e, &(0x7f0000000300)={"9e13b829bb205a55577bc6fa033a31fd75f210f0b06c4ea2a83b86d5bbb79758d3ee9724b46fffcb03a7816e1a32638138c22b897c1654e1bcaf9adcda0e5e1b771655f2584d20c961cff988391cbb66cbba3c3c60bd456f56296f5da13648f17ecf9a591df596e8bb76d2f3b139c5cbca6cc38326dcb84631f640938023fd77dcf6cf0495ddbefd5f9a3e05908f042ece2a7e9bb15a973bd42043c38f5e74bad74039d6d32f7d1f3a7a1002ac6d75ffb0abbe4efe9f3a5a4df515ecadb7ce5ed7df36e7aa0e3f76e5b6b179aa86fa9ea2d3da6064e97709b7465efd06a3f96084139b5cb5aa48167a62b5f7fd0d02671c9c50351d0f1335803883847342e1e9aa4b4b62b976857dd4172abc06b63a9723d9713ed5ab5129b20bf39f5e943a6859fce3d6ed20163ea31bda9d035633f77b0c2de127e11ff6fa2ab328f355e8c05e0049769650dced964bf7f24af852908c3836568bb4133f5c314f4b6e2b699960cbbb59ec9724c921ffd22a304fbd1985153b4c356f0bea1c9b4494abee260757c8ae584e19d4a72d37656b7ff12c452c37491808840fef1f037dd71baf5c97f1663e08b2bc98e159666769a5c33736d7f5d9389c920ecfdb64b91f3b05c94d426463e2be4270bcc23cc027af29decd495e2527779e8b1a0d645224c662d9dce14fa471a052e391f9d5ff92e70c29eedbd19fc4baafb905e4ec2732a0c6f7f71e30e4fbe72903af6842e32eccfab35e5f332621c970f9bc31c62afb09e33d444147aa7777f5e551a835db7beba01b170774ac1da11d46411e8b3ad116696fb092ae1610a753a399e52d5feb18594d1766a1873eeb27f74deb31a3ca6117d1f0a34561f277e60a6aba232c5386a028df8b71bb6bc63b3acc05a7d58ee2c8a790071c3aefbb353a0e919d0a5ec60e6f5fc982522a6fa2fb9157c7143f79dd0da35b812aa266284e71bf198cb7f3d61627512ea29fc6f72cef0bc8c3089fedb4b506714ff72e327bc945ae576b5901d193ba06e889be7688a2b203d0414bada0bac31962bb05369beab44c6ae3b4cb91a7065feb55cb388db8b23d988ff05bc7012e15a772f337cff480f4eed3a015c5a8a3dc7fe29a218450a47e2f91e69a598b3e961ad03008e7de72e33fd4820381e0181ca80f60effe9d980732e11fe4009f2ba3d062c7ea34c0a3d48338de19d08b4ce2e3331fba8923d168b1d22df942f863b10340b571a5cc6516eeaa819caef5ca1584379dc810bc76aec28ae7c00881dc6e47a88cdc79dde8e045d9e416bf229d35fe62d0db2b353844c5fdb4afcfce6013f8e87b4b9092dc4eb95e38cb6d9adc92d8b5567968aaa20f65fae25d7076f20d878f37eac14defdef3f4575d0739cb42bd85663a1c97658a4303598009295b685f36a3921eb5d9186e4f3378f2ccf20d316b3f1426bbee32248692106283"}) (async)
openat2(r4, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x19, 0x6}, 0x18) (async)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="000326bd7000fedbdf255700000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x408c0}, 0x4000)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:19:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f00000002c0)={0x60, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x34, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x30, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x28, 0x2, '\xfbR\'a\x13\x1b\x93\xc1\x1bp7AJ\xe5\xfd[x\xd5\xae\xff\xce\x02kq\xe2\\\x1f\x1b\xf5,\xc1\xb6{\xb1\xf3\xb4'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x60}}, 0x0)
fstat(r0, &(0x7f0000000240)) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x78)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000340)={0x10001, 0x3, 0x4000, 0x2000, &(0x7f000060f000/0x2000)=nil}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
dup(r6) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000380)={0x1ff, 0x3, 0xf000, 0x2000, &(0x7f000060b000/0x2000)=nil})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

[ 1439.816863][ T3728] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=87 (87 ns) > initial count (28 ns). Using initial count to start timer.
16:19:27 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x100)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001640)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000", @ANYRESDEC=r0, @ANYRES16=r0, @ANYRESOCT=0x0], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000280)={{0x0, 0x3, 0x100, 0x22, 0xfffffffffffffff9, 0x6, 0x3, 0x1, 0x1, 0x2, 0x9, 0x3, 0x6, 0x1, 0x1000}, 0x18, [0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
io_submit(0x0, 0x2, &(0x7f0000001540)=[&(0x7f00000013c0)={0x0, 0x0, 0x0, 0x7, 0xc5e, 0xffffffffffffffff, &(0x7f00000003c0)="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", 0x1000, 0xbcc7, 0x0, 0x2, r1}, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x20, 0xffffffffffffffff, &(0x7f0000001400)="8faea52cc20a9252faac9e05c178edc1028346c1b00e6fa8255f0e8c8f9ddf9370a17b13c8ff74d8dc001d44780b67e84f810d653fd49e349dfe15e33961627e0e97914bad90cbfc21fabc48ce95105305f764973d85cf7e6fe1c818c172b4dd16ed81b6fe737155e857c17d35cef370d7bea313e02cdebc32b283928f44c834ae34dc9cd366bafcf4a1d9ca0a113bea42217727d1f45f77ac8578990000c5faa52e4aa75480edf1b3f4f8e83a7ca499ba7ac3f989b5480edb4fa8b61128c9723bc5d43260d56d936ca27b2a46064b37211ea9facf757840d8621656659055b1ecf0a30c67cc880d89eed4e4271d29f9091d12132360", 0xf6, 0x3, 0x0, 0x3}])
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f00004ce000/0x1000)=nil, 0x930, 0x0, 0x4000010, r3, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000240)={0x10001, 0x3, 0x3000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x10003, 0x3, 0x3000, 0x1000, &(0x7f0000614000/0x1000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f80000100000000036730000000038001c1a6961793b5e5d5d8e8e1a636c5df1734187cbe1425f9ee619e237d2a87019493cc15008b304b2d811d43416a1bc819df66a2e50f08217dcb0a884cc7a8eec3d258529ffeba213921cff382702c21f51"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:28 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)

16:19:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="000326bd7000fedbdf255700000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x408c0}, 0x4000)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1) (async)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="000326bd7000fedbdf255700000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x408c0}, 0x4000) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)

16:19:28 executing program 4:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, &(0x7f0000000180)={0x5d28, 0x5, 0x8})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
r6 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x20a00)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:28 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x100)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001640)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000", @ANYRESDEC=r0, @ANYRES16=r0, @ANYRESOCT=0x0], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f0000000280)={{0x0, 0x3, 0x100, 0x22, 0xfffffffffffffff9, 0x6, 0x3, 0x1, 0x1, 0x2, 0x9, 0x3, 0x6, 0x1, 0x1000}, 0x18, [0x0, 0x0, 0x0]}) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async, rerun: 64)
io_submit(0x0, 0x2, &(0x7f0000001540)=[&(0x7f00000013c0)={0x0, 0x0, 0x0, 0x7, 0xc5e, 0xffffffffffffffff, &(0x7f00000003c0)="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", 0x1000, 0xbcc7, 0x0, 0x2, r1}, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x20, 0xffffffffffffffff, &(0x7f0000001400)="8faea52cc20a9252faac9e05c178edc1028346c1b00e6fa8255f0e8c8f9ddf9370a17b13c8ff74d8dc001d44780b67e84f810d653fd49e349dfe15e33961627e0e97914bad90cbfc21fabc48ce95105305f764973d85cf7e6fe1c818c172b4dd16ed81b6fe737155e857c17d35cef370d7bea313e02cdebc32b283928f44c834ae34dc9cd366bafcf4a1d9ca0a113bea42217727d1f45f77ac8578990000c5faa52e4aa75480edf1b3f4f8e83a7ca499ba7ac3f989b5480edb4fa8b61128c9723bc5d43260d56d936ca27b2a46064b37211ea9facf757840d8621656659055b1ecf0a30c67cc880d89eed4e4271d29f9091d12132360", 0xf6, 0x3, 0x0, 0x3}]) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
mmap$KVM_VCPU(&(0x7f00004ce000/0x1000)=nil, 0x930, 0x0, 0x4000010, r3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000240)={0x10001, 0x3, 0x3000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f80000100000000036730000000038001c1a6961793b5e5d5d8e8e1a636c5df1734187cbe1425f9ee619e237d2a87019493cc15008b304b2d811d43416a1bc819df66a2e50f08217dcb0a884cc7a8eec3d258529ffeba213921cff382702c21f51"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f80000100000000036730000000038001c1a6961793b5e5d5d8e8e1a636c5df1734187cbe1425f9ee619e237d2a87019493cc15008b304b2d811d43416a1bc819df66a2e50f08217dcb0a884cc7a8eec3d258529ffeba213921cff382702c21f51"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x10003, 0x3, 0x3000, 0x1000, &(0x7f0000614000/0x1000)=nil}) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 1440.725376][ T3791] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=87 (87 ns) > initial count (28 ns). Using initial count to start timer.
16:19:29 executing program 4:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, &(0x7f0000000180)={0x5d28, 0x5, 0x8})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
r6 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x20a00)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, &(0x7f0000000180)={0x5d28, 0x5, 0x8}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x20a00) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r1)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="000326bd7000fedbdf255700000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x408c0}, 0x4000) (async, rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async, rerun: 64)
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:19:29 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x2, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x10003, 0x3, 0x3000, 0x1000, &(0x7f0000614000/0x1000)=nil}) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f80000100000000036730000000038001c1a6961793b5e5d5d8e8e1a636c5df1734187cbe1425f9ee619e237d2a87019493cc15008b304b2d811d43416a1bc819df66a2e50f08217dcb0a884cc7a8eec3d258529ffeba213921cff382702c21f51"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f80000100000000036730000000038001c1a6961793b5e5d5d8e8e1a636c5df1734187cbe1425f9ee619e237d2a87019493cc15008b304b2d811d43416a1bc819df66a2e50f08217dcb0a884cc7a8eec3d258529ffeba213921cff382702c21f51"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000180)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000c40)={0x4b4, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x49c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x44, 0x3, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '^/\'#-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}]}, @ETHTOOL_A_BITSET_MASK={0xae, 0x5, "18c4fced7ea7f1a1790a9c4deacb5bf37bf7a1d6e59a635a37708ae3f1f81ac11e0b696522d5e8dd4afbb3fa5e5735eb2be7088cc2e73386ed90e6dc97bab5f2d0d3da067f8352dd57da97cdd5f015b58415f586a2d3f8c4871e526cab22b13c1c728bde19ec650c3a20cca3aadb7baac2b925b909fd01b3e1119c7e1e6414c9056520366b3aeae22268a0ac936cbbc2c9bbef5c517b3d7b621a044bb370b73aab1b6c060563dcd39adf"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}, @ETHTOOL_A_BITSET_BITS={0x180, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tunl0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6gre0\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xbc4e}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '-!/{/@)E%%&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd2d6}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '\x95#\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '%!$,-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x200}]}, {0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7ff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '[{(-+{\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'!(+(&\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_VALUE={0x5f, 0x4, "acd5e0f08d72441f5ddf114ddb23df4f294eaa3d53e44c4f1495f8bef50e9f2ddf7bf52916689f6f4c03edc90f9e9582c17828096b5618c2d0cfbac59f66de0f76a7d8e69a57f068e8db402761e2607753e78cd248af70ed9b2133"}, @ETHTOOL_A_BITSET_MASK={0xe0, 0x5, "e91facd37344441719fe5b90f6c5e9e4d3d0b9b1110518f27715106e65dd05919f40947bd3b3dd868d556754e6c75caae8cfc5e09f35875e753d93b93a38bce6c8a6b99895485b14fccce935299a34e7ff65a32e614610625c15c9f03b1d6a48ded4919bea2cc0013997d56f27b4d83eb918c1aa905d3a61efdc0d2983c403e476777ecabfc6f98555541b32fe76102b0fb50982fe37e259ea103b5e6a3539797607dd7e60dd2c6840bdbe6e142b84ab56c391e057457c39ba4ee7f0053cdc58ec14af74258aa05c2d804f8223b4125f23746d5c3ddeedb58a9ec3d9"}, @ETHTOOL_A_BITSET_VALUE={0xa0, 0x4, "6faa8fdfc9bb06f0e57c7526230a899c9075c7e4fc9e3037e0b4d3b4d48ac2658108e23ff0f0d2756e19866144ea9a55659a06a3d5a6020fb08b067e1d454a944b56c91f1baefe0d7fedcafa7341f91b336f19b629fd7883fddde9174648cf9d127b0b719bcb7441cb3e84b507d748e7a946a30146ed69865fd24b738ebc3a09ee92baba800badbb5d8917aa0e30745f854dd055957105409f59c1cc"}, @ETHTOOL_A_BITSET_MASK={0x39, 0x5, "cf5b9b22e6f9ec897ad2fe101ce52c127213571769a773faa38f630fee104533f12a883f4d16084aaaf22b60d3013496a54739daa6"}]}, @ETHTOOL_A_FEATURES_HEADER={0x4}]}, 0x4b4}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)={0x30, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x30}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r8, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000000280)={0x1, 0x315f, 0x8, 0x0, 0x0, [{{}, 0x7}, {{r1}, 0x7}, {}, {{}, 0x80}, {{r3}, 0x50}, {{r5}, 0x7}, {{r7}}, {{}, 0x4eb}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:29 executing program 4:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$IOCTL_VMCI_SET_NOTIFY(r1, 0x7cb, &(0x7f0000000180)={0x5d28, 0x5, 0x8}) (async)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
r6 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x20a00)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ftruncate(r3, 0x401)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:30 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
r2 = creat(&(0x7f0000000040)='\x00', 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r0, 0xae80, 0x0)

16:19:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x2, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000180)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000c40)={0x4b4, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x49c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x44, 0x3, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '^/\'#-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}]}, @ETHTOOL_A_BITSET_MASK={0xae, 0x5, "18c4fced7ea7f1a1790a9c4deacb5bf37bf7a1d6e59a635a37708ae3f1f81ac11e0b696522d5e8dd4afbb3fa5e5735eb2be7088cc2e73386ed90e6dc97bab5f2d0d3da067f8352dd57da97cdd5f015b58415f586a2d3f8c4871e526cab22b13c1c728bde19ec650c3a20cca3aadb7baac2b925b909fd01b3e1119c7e1e6414c9056520366b3aeae22268a0ac936cbbc2c9bbef5c517b3d7b621a044bb370b73aab1b6c060563dcd39adf"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}, @ETHTOOL_A_BITSET_BITS={0x180, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tunl0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6gre0\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xbc4e}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '-!/{/@)E%%&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd2d6}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '\x95#\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '%!$,-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x200}]}, {0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7ff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '[{(-+{\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'!(+(&\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_VALUE={0x5f, 0x4, "acd5e0f08d72441f5ddf114ddb23df4f294eaa3d53e44c4f1495f8bef50e9f2ddf7bf52916689f6f4c03edc90f9e9582c17828096b5618c2d0cfbac59f66de0f76a7d8e69a57f068e8db402761e2607753e78cd248af70ed9b2133"}, @ETHTOOL_A_BITSET_MASK={0xe0, 0x5, "e91facd37344441719fe5b90f6c5e9e4d3d0b9b1110518f27715106e65dd05919f40947bd3b3dd868d556754e6c75caae8cfc5e09f35875e753d93b93a38bce6c8a6b99895485b14fccce935299a34e7ff65a32e614610625c15c9f03b1d6a48ded4919bea2cc0013997d56f27b4d83eb918c1aa905d3a61efdc0d2983c403e476777ecabfc6f98555541b32fe76102b0fb50982fe37e259ea103b5e6a3539797607dd7e60dd2c6840bdbe6e142b84ab56c391e057457c39ba4ee7f0053cdc58ec14af74258aa05c2d804f8223b4125f23746d5c3ddeedb58a9ec3d9"}, @ETHTOOL_A_BITSET_VALUE={0xa0, 0x4, "6faa8fdfc9bb06f0e57c7526230a899c9075c7e4fc9e3037e0b4d3b4d48ac2658108e23ff0f0d2756e19866144ea9a55659a06a3d5a6020fb08b067e1d454a944b56c91f1baefe0d7fedcafa7341f91b336f19b629fd7883fddde9174648cf9d127b0b719bcb7441cb3e84b507d748e7a946a30146ed69865fd24b738ebc3a09ee92baba800badbb5d8917aa0e30745f854dd055957105409f59c1cc"}, @ETHTOOL_A_BITSET_MASK={0x39, 0x5, "cf5b9b22e6f9ec897ad2fe101ce52c127213571769a773faa38f630fee104533f12a883f4d16084aaaf22b60d3013496a54739daa6"}]}, @ETHTOOL_A_FEATURES_HEADER={0x4}]}, 0x4b4}}, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)={0x30, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x30}}, 0x0) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r8, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000000280)={0x1, 0x315f, 0x8, 0x0, 0x0, [{{}, 0x7}, {{r1}, 0x7}, {}, {{}, 0x80}, {{r3}, 0x50}, {{r5}, 0x7}, {{r7}}, {{}, 0x4eb}]}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:30 executing program 2:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x248841, 0x0)
dup(r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r6 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
dup3(r4, r6, 0x0)

16:19:30 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
r2 = creat(&(0x7f0000000040)='\x00', 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

16:19:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20c01, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x10000)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:30 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ftruncate(r3, 0x401)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
ftruncate(r3, 0x401) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:30 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x2, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:30 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
r2 = creat(&(0x7f0000000040)='\x00', 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r0, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r1, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
creat(&(0x7f0000000040)='\x00', 0x1) (async)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r0, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r0, 0xae80, 0x0) (async)

[ 1443.008159][ T3940] syz-executor.0: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[ 1443.026821][ T3940] CPU: 0 PID: 3940 Comm: syz-executor.0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1443.035673][ T3940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1443.045860][ T3940] Call Trace:
[ 1443.049429][ T3940]  <TASK>
[ 1443.052525][ T3940]  dump_stack_lvl+0x1ff/0x28e
[ 1443.057466][ T3940]  dump_stack+0x25/0x28
[ 1443.061848][ T3940]  warn_alloc+0x4d9/0x690
[ 1443.066474][ T3940]  ? kmsan_get_metadata+0x33/0x220
[ 1443.071771][ T3940]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1443.077773][ T3940]  __vmalloc_node_range+0x1290/0x17b0
[ 1443.083406][ T3940]  __vmalloc+0xf8/0x110
[ 1443.087812][ T3940]  ? kvm_dev_ioctl+0x295/0x3290
[ 1443.092895][ T3940]  ? kvm_dev_ioctl+0x295/0x3290
[ 1443.097939][ T3940]  kvm_dev_ioctl+0x295/0x3290
[ 1443.102843][ T3940]  ? kmsan_get_metadata+0x33/0x220
[ 1443.108143][ T3940]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1443.114147][ T3940]  ? kvm_reboot+0xb0/0xb0
[ 1443.118657][ T3940]  __se_sys_ioctl+0x2df/0x4a0
[ 1443.123522][ T3940]  __x64_sys_ioctl+0xd8/0x110
[ 1443.128367][ T3940]  do_syscall_64+0x54/0xd0
[ 1443.132931][ T3940]  ? syscall_exit_to_user_mode+0xa2/0xc0
[ 1443.138731][ T3940]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1443.144840][ T3940] RIP: 0033:0x7f7822693059
[ 1443.149372][ T3940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1443.169139][ T3940] RSP: 002b:00007f7820f84168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1443.177720][ T3940] RAX: ffffffffffffffda RBX: 00007f78227a62a0 RCX: 00007f7822693059
[ 1443.185839][ T3940] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[ 1443.193932][ T3940] RBP: 00007f78226ed08d R08: 0000000000000000 R09: 0000000000000000
[ 1443.202266][ T3940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1443.210628][ T3940] R13: 00007f7822cd9b1f R14: 00007f7820f84300 R15: 0000000000022000
[ 1443.218800][ T3940]  </TASK>
[ 1443.224293][ T3940] Mem-Info:
[ 1443.227850][ T3940] active_anon:319 inactive_anon:120372 isolated_anon:0
[ 1443.227850][ T3940]  active_file:2333 inactive_file:51623 isolated_file:0
[ 1443.227850][ T3940]  unevictable:768 dirty:0 writeback:0
[ 1443.227850][ T3940]  slab_reclaimable:8934 slab_unreclaimable:19436
[ 1443.227850][ T3940]  mapped:27993 shmem:1529 pagetables:901 bounce:0
16:19:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000180)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000c40)={0x4b4, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x49c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x44, 0x3, 0x0, 0x1, [{0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '^/\'#-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}]}, @ETHTOOL_A_BITSET_MASK={0xae, 0x5, "18c4fced7ea7f1a1790a9c4deacb5bf37bf7a1d6e59a635a37708ae3f1f81ac11e0b696522d5e8dd4afbb3fa5e5735eb2be7088cc2e73386ed90e6dc97bab5f2d0d3da067f8352dd57da97cdd5f015b58415f586a2d3f8c4871e526cab22b13c1c728bde19ec650c3a20cca3aadb7baac2b925b909fd01b3e1119c7e1e6414c9056520366b3aeae22268a0ac936cbbc2c9bbef5c517b3d7b621a044bb370b73aab1b6c060563dcd39adf"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}, @ETHTOOL_A_BITSET_BITS={0x180, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'tunl0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6gre0\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xbc4e}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x81}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '-!/{/@)E%%&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd2d6}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '\x95#\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, '%!$,-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x200}]}, {0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7ff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '[{(-+{\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '\'!(+(&\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_VALUE={0x5f, 0x4, "acd5e0f08d72441f5ddf114ddb23df4f294eaa3d53e44c4f1495f8bef50e9f2ddf7bf52916689f6f4c03edc90f9e9582c17828096b5618c2d0cfbac59f66de0f76a7d8e69a57f068e8db402761e2607753e78cd248af70ed9b2133"}, @ETHTOOL_A_BITSET_MASK={0xe0, 0x5, "e91facd37344441719fe5b90f6c5e9e4d3d0b9b1110518f27715106e65dd05919f40947bd3b3dd868d556754e6c75caae8cfc5e09f35875e753d93b93a38bce6c8a6b99895485b14fccce935299a34e7ff65a32e614610625c15c9f03b1d6a48ded4919bea2cc0013997d56f27b4d83eb918c1aa905d3a61efdc0d2983c403e476777ecabfc6f98555541b32fe76102b0fb50982fe37e259ea103b5e6a3539797607dd7e60dd2c6840bdbe6e142b84ab56c391e057457c39ba4ee7f0053cdc58ec14af74258aa05c2d804f8223b4125f23746d5c3ddeedb58a9ec3d9"}, @ETHTOOL_A_BITSET_VALUE={0xa0, 0x4, "6faa8fdfc9bb06f0e57c7526230a899c9075c7e4fc9e3037e0b4d3b4d48ac2658108e23ff0f0d2756e19866144ea9a55659a06a3d5a6020fb08b067e1d454a944b56c91f1baefe0d7fedcafa7341f91b336f19b629fd7883fddde9174648cf9d127b0b719bcb7441cb3e84b507d748e7a946a30146ed69865fd24b738ebc3a09ee92baba800badbb5d8917aa0e30745f854dd055957105409f59c1cc"}, @ETHTOOL_A_BITSET_MASK={0x39, 0x5, "cf5b9b22e6f9ec897ad2fe101ce52c127213571769a773faa38f630fee104533f12a883f4d16084aaaf22b60d3013496a54739daa6"}]}, @ETHTOOL_A_FEATURES_HEADER={0x4}]}, 0x4b4}}, 0x0) (async)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000140)={0x30, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x30}}, 0x0) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r8, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000000280)={0x1, 0x315f, 0x8, 0x0, 0x0, [{{}, 0x7}, {{r1}, 0x7}, {}, {{}, 0x80}, {{r3}, 0x50}, {{r5}, 0x7}, {{r7}}, {{}, 0x4eb}]}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:31 executing program 2:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x248841, 0x0)
dup(r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (rerun: 32)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 64)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
r6 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
dup3(r4, r6, 0x0)

[ 1443.227850][ T3940]  kernel_misc_reclaimable:0
[ 1443.227850][ T3940]  free:298010 free_pcp:13822 free_cma:0
[ 1443.270382][ T3940] Node 0 active_anon:1276kB inactive_anon:481488kB active_file:9332kB inactive_file:206488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111972kB dirty:0kB writeback:0kB shmem:4580kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 493568kB writeback_tmp:0kB kernel_stack:4560kB pagetables:3600kB all_unreclaimable? no
[ 1443.302165][ T3940] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:0kB pagetables:4kB all_unreclaimable? no
[ 1443.331269][ T3940] Node 0 DMA free:4096kB boost:0kB min:156kB low:192kB high:228kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1443.358592][ T3940] lowmem_reserve[]: 0 907 1220 1220 1220
[ 1443.364944][ T3940] Node 0 DMA32 free:138660kB boost:0kB min:36056kB low:45068kB high:54080kB reserved_highatomic:0KB active_anon:588kB inactive_anon:424576kB active_file:0kB inactive_file:189788kB unevictable:0kB writepending:0kB present:3129332kB managed:934724kB mlocked:0kB bounce:0kB free_pcp:42468kB local_pcp:20112kB free_cma:0kB
[ 1443.395476][ T3940] lowmem_reserve[]: 0 0 313 313 313
[ 1443.400950][ T3940] Node 0 Normal free:58604kB boost:0kB min:12440kB low:15548kB high:18656kB reserved_highatomic:0KB active_anon:688kB inactive_anon:56888kB active_file:9332kB inactive_file:16700kB unevictable:1536kB writepending:0kB present:1048576kB managed:320516kB mlocked:0kB bounce:0kB free_pcp:12736kB local_pcp:7584kB free_cma:0kB
[ 1443.432461][ T3940] lowmem_reserve[]: 0 0 0 0 0
[ 1443.437419][ T3940] Node 1 Normal free:990680kB boost:0kB min:41452kB low:51812kB high:62172kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194304kB managed:1067980kB mlocked:0kB bounce:0kB free_pcp:84kB local_pcp:84kB free_cma:0kB
[ 1443.467212][ T3940] lowmem_reserve[]: 0 0 0 0 0
[ 1443.472294][ T3940] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1443.485031][ T3940] Node 0 DMA32: 2267*4kB (UME) 1571*8kB (UME) 1104*16kB (UME) 827*32kB (UME) 453*64kB (UME) 57*128kB (UME) 9*256kB (UME) 3*512kB (UME) 2*1024kB (M) 1*2048kB (U) 7*4096kB (UM) = 138660kB
[ 1443.504536][ T3940] Node 0 Normal: 1283*4kB (UME) 496*8kB (UME) 662*16kB (UME) 462*32kB (UME) 165*64kB (UME) 58*128kB (UME) 16*256kB (UM) 2*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 58604kB
[ 1443.522900][ T3940] Node 1 Normal: 4*4kB (UME) 11*8kB (UME) 11*16kB (UE) 14*32kB (UE) 8*64kB (UME) 6*128kB (UME) 2*256kB (UM) 2*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 239*4096kB (M) = 990680kB
[ 1443.541666][ T3940] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1443.551477][ T3940] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1443.561093][ T3940] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1443.570897][ T3940] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1443.580660][ T3940] 7849 total pagecache pages
[ 1443.585530][ T3940] 0 pages in swap cache
[ 1443.589765][ T3940] Swap cache stats: add 0, delete 0, find 0/0
[ 1443.596105][ T3940] Free swap  = 0kB
[ 1443.599933][ T3940] Total swap = 0kB
[ 1443.604010][ T3940] 2097051 pages RAM
16:19:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20c01, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x10000)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[ 1443.607895][ T3940] 0 pages HighMem/MovableOnly
[ 1443.612975][ T3940] 1515222 pages reserved
[ 1443.617308][ T3940] 0 pages cma reserved
16:19:31 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0xfc000000]}, 0x8, 0x180800)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/nf_conntrack_expect\x00')
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:31 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x307100, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r3 = pidfd_getfd(r2, r2, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@bridge_getlink={0x30, 0x12, 0x400, 0x70bd2d, 0x25dfdbfb, {0x7, 0x0, 0x0, 0x0, 0xe900}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x4}, @IFLA_GROUP={0x8, 0x1b, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x4040081)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ftruncate(r3, 0x401)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
ftruncate(r3, 0x401) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:32 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000140))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:32 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0xfc000000]}, 0x8, 0x180800) (async, rerun: 32)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/nf_conntrack_expect\x00') (rerun: 32)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:32 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x307100, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r3 = pidfd_getfd(r2, r2, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@bridge_getlink={0x30, 0x12, 0x400, 0x70bd2d, 0x25dfdbfb, {0x7, 0x0, 0x0, 0x0, 0xe900}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x4}, @IFLA_GROUP={0x8, 0x1b, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x4040081)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
socket$packet(0x11, 0x3, 0x300) (async)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x307100, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
pidfd_getfd(r2, r2, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@bridge_getlink={0x30, 0x12, 0x400, 0x70bd2d, 0x25dfdbfb, {0x7, 0x0, 0x0, 0x0, 0xe900}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x4}, @IFLA_GROUP={0x8, 0x1b, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x4040081) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:32 executing program 2:
r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x248841, 0x0)
dup(r0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r6 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
dup3(r4, r6, 0x0)

16:19:32 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000140))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000140)) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000140)=0x57bd386d)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x2, 0x0, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x1)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, 0xfffffffffffffffe)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000280)=0xd000)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:32 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0xfc000000]}, 0x8, 0x180800) (async, rerun: 64)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/nf_conntrack_expect\x00') (rerun: 64)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20c01, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x10000)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x20c01, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x10000) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (rerun: 32)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000140)) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

16:19:33 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x307100, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r3 = pidfd_getfd(r2, r2, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@bridge_getlink={0x30, 0x12, 0x400, 0x70bd2d, 0x25dfdbfb, {0x7, 0x0, 0x0, 0x0, 0xe900}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x4}, @IFLA_GROUP={0x8, 0x1b, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x4040081)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
socket$packet(0x11, 0x3, 0x300) (async)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x307100, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
pidfd_getfd(r2, r2, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@bridge_getlink={0x30, 0x12, 0x400, 0x70bd2d, 0x25dfdbfb, {0x7, 0x0, 0x0, 0x0, 0xe900}, [@IFLA_TARGET_NETNSID={0x8, 0x2e, 0x4}, @IFLA_GROUP={0x8, 0x1b, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x4040081) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000140)=0x57bd386d) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x2, 0x0, 0x0) (async)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x1)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, 0xfffffffffffffffe)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000280)=0xd000) (async)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:33 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2a0000000000dfffffffffffff3f00000000000068f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x4, 0x3, 0x0, 0x2000, &(0x7f00005fd000/0x2000)=nil})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000280)={0xfff})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000180))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4000)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 64)

16:19:34 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2a0000000000dfffffffffffff3f00000000000068f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x4, 0x3, 0x0, 0x2000, &(0x7f00005fd000/0x2000)=nil})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000280)={0xfff})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000180))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2a0000000000dfffffffffffff3f00000000000068f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x4, 0x3, 0x0, 0x2000, &(0x7f00005fd000/0x2000)=nil}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0) (async)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0) (async)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000280)={0xfff}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000180)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:34 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000380)={0x10001, 0x3, 0x1000, 0x1000, &(0x7f0000718000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
fgetxattr(r4, &(0x7f00000001c0)=@known='system.sockprotoname\x00', &(0x7f0000000240)=""/247, 0xf7)

16:19:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000080}, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000140)=0x57bd386d)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x2, 0x0, 0x0)
r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x1)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, 0xfffffffffffffffe)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000280)=0xd000)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) (async)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000140)=0x57bd386d) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f00000002c0)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x2, 0x0, 0x0) (async)
syz_open_dev$char_usb(0xc, 0xb4, 0x1) (async)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, 0xfffffffffffffffe) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000280)=0xd000) (async)
openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x80100, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000180)="f30f1bda660f38ddd466baf80cb87c55088eef66bafc0c66ed67670fd46f0df30f093666262e0f088fe8108f04c2aab9c4090000b8212ef9ceba010e790a0f30b9400900000f32b8000000000f23d00f21f835000000040f23f8", 0x5a}], 0x1, 0x14, 0x0, 0x0)
write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30aa961501"], 0x8)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x1)
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000002c0))

16:19:35 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2a0000000000dfffffffffffff3f00000000000068f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x4, 0x3, 0x0, 0x2000, &(0x7f00005fd000/0x2000)=nil}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0)
ioctl$KVM_CREATE_PIT2(r4, 0x4040ae77, &(0x7f0000000280)={0xfff}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000180)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0xc880}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x3, 0x0, 0x5000, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000180)="f30f1bda660f38ddd466baf80cb87c55088eef66bafc0c66ed67670fd46f0df30f093666262e0f088fe8108f04c2aab9c4090000b8212ef9ceba010e790a0f30b9400900000f32b8000000000f23d00f21f835000000040f23f8", 0x5a}], 0x1, 0x14, 0x0, 0x0) (async)
write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30aa961501"], 0x8)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
r3 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x1)
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000002c0))

16:19:35 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2005c0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYRES64=r0, @ANYRESHEX=r0, @ANYRESDEC], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x0, 0x4)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000100)={[{0x0, 0x5, 0x4, 0x5, 0x46, 0xac, 0x5, 0x93, 0x2, 0x6, 0x8, 0x2, 0xfff}, {0x3, 0x1ff, 0x9, 0x0, 0x1, 0x7c, 0x4, 0xac, 0x50, 0x2d, 0x40, 0x3f, 0x6}, {0x8000, 0x400, 0x1, 0x7f, 0x0, 0x1, 0x7, 0x8, 0x20, 0x20, 0x81, 0x3, 0xffff}], 0x3})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xa)
ioctl$KVM_CAP_HALT_POLL(r6, 0x4068aea3, &(0x7f0000000180)={0xb6, 0x0, 0x7})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:35 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000380)={0x10001, 0x3, 0x1000, 0x1000, &(0x7f0000718000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
fgetxattr(r4, &(0x7f00000001c0)=@known='system.sockprotoname\x00', &(0x7f0000000240)=""/247, 0xf7)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000380)={0x10001, 0x3, 0x1000, 0x1000, &(0x7f0000718000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
fgetxattr(r4, &(0x7f00000001c0)=@known='system.sockprotoname\x00', &(0x7f0000000240)=""/247, 0xf7) (async)

16:19:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0xc880}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0xc880}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:19:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:36 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000380)={0x10001, 0x3, 0x1000, 0x1000, &(0x7f0000718000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
fgetxattr(r4, &(0x7f00000001c0)=@known='system.sockprotoname\x00', &(0x7f0000000240)=""/247, 0xf7)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000380)={0x10001, 0x3, 0x1000, 0x1000, &(0x7f0000718000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
fgetxattr(r4, &(0x7f00000001c0)=@known='system.sockprotoname\x00', &(0x7f0000000240)=""/247, 0xf7) (async)

16:19:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000180)="f30f1bda660f38ddd466baf80cb87c55088eef66bafc0c66ed67670fd46f0df30f093666262e0f088fe8108f04c2aab9c4090000b8212ef9ceba010e790a0f30b9400900000f32b8000000000f23d00f21f835000000040f23f8", 0x5a}], 0x1, 0x14, 0x0, 0x0)
write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30aa961501"], 0x8)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x1)
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000002c0))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000180)="f30f1bda660f38ddd466baf80cb87c55088eef66bafc0c66ed67670fd46f0df30f093666262e0f088fe8108f04c2aab9c4090000b8212ef9ceba010e790a0f30b9400900000f32b8000000000f23d00f21f835000000040f23f8", 0x5a}], 0x1, 0x14, 0x0, 0x0) (async)
write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30aa961501"], 0x8) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x1) (async)
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000002c0)) (async)

16:19:36 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2005c0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYRES64=r0, @ANYRESHEX=r0, @ANYRESDEC], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x0, 0x4) (rerun: 64)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000100)={[{0x0, 0x5, 0x4, 0x5, 0x46, 0xac, 0x5, 0x93, 0x2, 0x6, 0x8, 0x2, 0xfff}, {0x3, 0x1ff, 0x9, 0x0, 0x1, 0x7c, 0x4, 0xac, 0x50, 0x2d, 0x40, 0x3f, 0x6}, {0x8000, 0x400, 0x1, 0x7f, 0x0, 0x1, 0x7, 0x8, 0x20, 0x20, 0x81, 0x3, 0xffff}], 0x3}) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (rerun: 32)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xa) (async, rerun: 64)
ioctl$KVM_CAP_HALT_POLL(r6, 0x4068aea3, &(0x7f0000000180)={0xb6, 0x0, 0x7}) (rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x3, 0x0, 0x5000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0xc880}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r6=>0xffffffffffffffff}) (rerun: 32)
write$binfmt_misc(r6, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:19:37 executing program 2:
ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000080)=0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x3, 0x0, 0x5000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:37 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRESOCT=r1], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
timer_create(0x2, &(0x7f0000000400)={0x0, 0x26, 0x1, @thr={&(0x7f00000003c0)="3d232a3362678d27c21b6ead2b9512", &(0x7f0000000540)="09b72a5661536bb8e7e62efd9012f30223c5fba7aea2562c9e5028ad28d80bf4547396d31f03c7f544fa74e9d43cb3535b1cc57b29eb06fd7ad985c476811668f218d5fdd8ea4114848536452ff16613dd00283a50df51e338316f6f66ee8ca3360ec6abd7fc16e0e1a13b9643a1d0ddc1ee0e18a3b7c07cca70a912cb265706c78b265c860a09b54ffce3c8969e7a964e564bbfd9986325fad50c360aecf47bdf18c60b61185bbd7442d2592b57276f01d62d4dcd557a2323c1df0ba167b9442a532c882c522c2aecc7fc5aaddac37f03e7b097e33d83765707f28026fe719f2a927190124396756386267f6aa085c4c8c5c9b2"}}, &(0x7f0000000440))
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x4, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32=r4], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0x1, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x24008001}, 0x804)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
splice(r4, &(0x7f0000000300)=0x3ff, r0, &(0x7f0000000480)=0x200, 0x5, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000180)={0x8f, 0x0, 0x4})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:38 executing program 2:
ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000080)=0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000080)=0x1) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2005c0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYRES64=r0, @ANYRESHEX=r0, @ANYRESDEC], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
setsockopt$pppl2tp_PPPOL2TP_SO_RECVSEQ(0xffffffffffffffff, 0x111, 0x2, 0x0, 0x4)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_SET_PIT(r5, 0x8048ae66, &(0x7f0000000100)={[{0x0, 0x5, 0x4, 0x5, 0x46, 0xac, 0x5, 0x93, 0x2, 0x6, 0x8, 0x2, 0xfff}, {0x3, 0x1ff, 0x9, 0x0, 0x1, 0x7c, 0x4, 0xac, 0x50, 0x2d, 0x40, 0x3f, 0x6}, {0x8000, 0x400, 0x1, 0x7f, 0x0, 0x1, 0x7, 0x8, 0x20, 0x20, 0x81, 0x3, 0xffff}], 0x3}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$binfmt_misc(r6, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xa) (async)
ioctl$KVM_CAP_HALT_POLL(r6, 0x4068aea3, &(0x7f0000000180)={0xb6, 0x0, 0x7}) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$audion(&(0x7f0000000140), 0x10001, 0x7c9280)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00006de000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x24, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f00000001c0))
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, 0xffffffffffffffff, 0x10000000)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc000000000000eedfffffffffff080000000000000000f800001000000044a3621caf7fb32400"], 0x78)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x40200, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x91)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
r6 = fcntl$dupfd(r0, 0x406, r0)
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000280)=[0xffffffffffffffff, r3, r4, r6, r7, r1], 0x6)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000100)={[0x4, 0x8001, 0x6, 0xfffffffffffffff9, 0x5, 0x100, 0x6, 0x7796, 0x9, 0x9, 0xfff, 0x4, 0xe107, 0x1, 0x1, 0x9], 0x1000, 0x4401})
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r8, 0xae80, 0x0)

16:19:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async, rerun: 64)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000180)={0x8f, 0x0, 0x4}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
open(&(0x7f0000000180)='./file0\x00', 0x8000, 0x88)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, <r2=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, &(0x7f0000000680)={r2, 0xff, 0x1, [0x83b, 0x401, 0x3, 0x2b2, 0x7ff], [0x7be949f7, 0x2, 0xfff, 0x6, 0x200, 0x793, 0x9, 0x5, 0x4efc, 0xfffffffffffffffb, 0xfff, 0x200, 0x4, 0x401, 0xfffffffffffffffe, 0x7f, 0x1, 0x44, 0x6, 0x1ff, 0x80000001, 0x7, 0x0, 0x7f, 0x8, 0x2, 0x6, 0x5, 0x3, 0x1, 0x2ee, 0x7, 0x80, 0x1, 0x1, 0x6, 0xffffffffffff99b8, 0x200, 0x5, 0x0, 0x7, 0x2, 0x657, 0xfffffffffffffffd, 0x7f, 0x42d4, 0xffff, 0xff, 0x9, 0x401, 0x5, 0x4, 0x5, 0x400, 0x1000, 0x7, 0x4, 0x1, 0xffffffffffffff75, 0x3, 0x800, 0x4, 0xffff, 0x8, 0x200, 0x0, 0xc57d, 0x5, 0x3, 0x8, 0x101, 0x0, 0x6, 0x4, 0x3, 0x1, 0xd3, 0x3f, 0x3, 0x1f, 0x5, 0x4, 0x0, 0x3f, 0x7, 0x9, 0xf2, 0xffff, 0x4, 0x400, 0x672, 0x832, 0x2aa, 0xe176, 0x8a9e, 0x1f, 0x8, 0x7, 0x2, 0x5, 0x3, 0x0, 0x2, 0x20, 0x8, 0x5679, 0x20, 0x1, 0x816, 0x0, 0x0, 0x6, 0xff, 0x3, 0x7fff, 0x0, 0x80000001, 0xd67, 0x3, 0x3, 0x3]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x444000, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

16:19:38 executing program 2:
ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000080)=0x1) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc000000000000eedfffffffffff080000000000000000f800001000000044a3621caf7fb32400"], 0x78) (async)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x40200, 0x0)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async, rerun: 64)
r3 = socket$inet6(0xa, 0x1, 0x91) (async, rerun: 64)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 32)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async, rerun: 64)
r6 = fcntl$dupfd(r0, 0x406, r0) (rerun: 64)
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000280)=[0xffffffffffffffff, r3, r4, r6, r7, r1], 0x6)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000100)={[0x4, 0x8001, 0x6, 0xfffffffffffffff9, 0x5, 0x100, 0x6, 0x7796, 0x9, 0x9, 0xfff, 0x4, 0xe107, 0x1, 0x1, 0x9], 0x1000, 0x4401}) (rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040)) (rerun: 32)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

16:19:39 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
open(&(0x7f0000000180)='./file0\x00', 0x8000, 0x88) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, <r2=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, &(0x7f0000000680)={r2, 0xff, 0x1, [0x83b, 0x401, 0x3, 0x2b2, 0x7ff], [0x7be949f7, 0x2, 0xfff, 0x6, 0x200, 0x793, 0x9, 0x5, 0x4efc, 0xfffffffffffffffb, 0xfff, 0x200, 0x4, 0x401, 0xfffffffffffffffe, 0x7f, 0x1, 0x44, 0x6, 0x1ff, 0x80000001, 0x7, 0x0, 0x7f, 0x8, 0x2, 0x6, 0x5, 0x3, 0x1, 0x2ee, 0x7, 0x80, 0x1, 0x1, 0x6, 0xffffffffffff99b8, 0x200, 0x5, 0x0, 0x7, 0x2, 0x657, 0xfffffffffffffffd, 0x7f, 0x42d4, 0xffff, 0xff, 0x9, 0x401, 0x5, 0x4, 0x5, 0x400, 0x1000, 0x7, 0x4, 0x1, 0xffffffffffffff75, 0x3, 0x800, 0x4, 0xffff, 0x8, 0x200, 0x0, 0xc57d, 0x5, 0x3, 0x8, 0x101, 0x0, 0x6, 0x4, 0x3, 0x1, 0xd3, 0x3f, 0x3, 0x1f, 0x5, 0x4, 0x0, 0x3f, 0x7, 0x9, 0xf2, 0xffff, 0x4, 0x400, 0x672, 0x832, 0x2aa, 0xe176, 0x8a9e, 0x1f, 0x8, 0x7, 0x2, 0x5, 0x3, 0x0, 0x2, 0x20, 0x8, 0x5679, 0x20, 0x1, 0x816, 0x0, 0x0, 0x6, 0xff, 0x3, 0x7fff, 0x0, 0x80000001, 0xd67, 0x3, 0x3, 0x3]}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x444000, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

16:19:39 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (rerun: 64)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$audion(&(0x7f0000000140), 0x10001, 0x7c9280)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00006de000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x24, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f00000001c0)) (async, rerun: 64)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, 0xffffffffffffffff, 0x10000000) (async)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:40 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRESOCT=r1], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
timer_create(0x2, &(0x7f0000000400)={0x0, 0x26, 0x1, @thr={&(0x7f00000003c0)="3d232a3362678d27c21b6ead2b9512", &(0x7f0000000540)="09b72a5661536bb8e7e62efd9012f30223c5fba7aea2562c9e5028ad28d80bf4547396d31f03c7f544fa74e9d43cb3535b1cc57b29eb06fd7ad985c476811668f218d5fdd8ea4114848536452ff16613dd00283a50df51e338316f6f66ee8ca3360ec6abd7fc16e0e1a13b9643a1d0ddc1ee0e18a3b7c07cca70a912cb265706c78b265c860a09b54ffce3c8969e7a964e564bbfd9986325fad50c360aecf47bdf18c60b61185bbd7442d2592b57276f01d62d4dcd557a2323c1df0ba167b9442a532c882c522c2aecc7fc5aaddac37f03e7b097e33d83765707f28026fe719f2a927190124396756386267f6aa085c4c8c5c9b2"}}, &(0x7f0000000440)) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async, rerun: 64)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x4, 0x0) (rerun: 64)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32=r4], 0xd0) (async, rerun: 32)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0x1, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x24008001}, 0x804) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (rerun: 64)
splice(r4, &(0x7f0000000300)=0x3ff, r0, &(0x7f0000000480)=0x200, 0x5, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:40 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
open(&(0x7f0000000180)='./file0\x00', 0x8000, 0x88) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, <r2=>0x0}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, &(0x7f0000000680)={r2, 0xff, 0x1, [0x83b, 0x401, 0x3, 0x2b2, 0x7ff], [0x7be949f7, 0x2, 0xfff, 0x6, 0x200, 0x793, 0x9, 0x5, 0x4efc, 0xfffffffffffffffb, 0xfff, 0x200, 0x4, 0x401, 0xfffffffffffffffe, 0x7f, 0x1, 0x44, 0x6, 0x1ff, 0x80000001, 0x7, 0x0, 0x7f, 0x8, 0x2, 0x6, 0x5, 0x3, 0x1, 0x2ee, 0x7, 0x80, 0x1, 0x1, 0x6, 0xffffffffffff99b8, 0x200, 0x5, 0x0, 0x7, 0x2, 0x657, 0xfffffffffffffffd, 0x7f, 0x42d4, 0xffff, 0xff, 0x9, 0x401, 0x5, 0x4, 0x5, 0x400, 0x1000, 0x7, 0x4, 0x1, 0xffffffffffffff75, 0x3, 0x800, 0x4, 0xffff, 0x8, 0x200, 0x0, 0xc57d, 0x5, 0x3, 0x8, 0x101, 0x0, 0x6, 0x4, 0x3, 0x1, 0xd3, 0x3f, 0x3, 0x1f, 0x5, 0x4, 0x0, 0x3f, 0x7, 0x9, 0xf2, 0xffff, 0x4, 0x400, 0x672, 0x832, 0x2aa, 0xe176, 0x8a9e, 0x1f, 0x8, 0x7, 0x2, 0x5, 0x3, 0x0, 0x2, 0x20, 0x8, 0x5679, 0x20, 0x1, 0x816, 0x0, 0x0, 0x6, 0xff, 0x3, 0x7fff, 0x0, 0x80000001, 0xd67, 0x3, 0x3, 0x3]})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140), 0x444000, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

16:19:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004", @ANYRES16=r0, @ANYRES32=r4, @ANYRES32=r3, @ANYRESDEC=r2, @ANYBLOB="9af0291978a0ac8d47745e3d09ba5df8e2d54abb1458cb4995f689ca3c3b79a29691168a20cf75e996f33bd4ce90117b2f6c291b6229806190d2258d9a22d995e15f6de5be", @ANYRES32=r3], 0x78)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xf1e7)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:19:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc000000000000eedfffffffffff080000000000000000f800001000000044a3621caf7fb32400"], 0x78)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x40200, 0x0) (async, rerun: 64)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (rerun: 64)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async, rerun: 32)
r3 = socket$inet6(0xa, 0x1, 0x91) (async, rerun: 32)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r4, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r5, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async, rerun: 64)
r6 = fcntl$dupfd(r0, 0x406, r0) (async, rerun: 64)
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000001c0), 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000280)=[0xffffffffffffffff, r3, r4, r6, r7, r1], 0x6) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000100)={[0x4, 0x8001, 0x6, 0xfffffffffffffff9, 0x5, 0x100, 0x6, 0x7796, 0x9, 0x9, 0xfff, 0x4, 0xe107, 0x1, 0x1, 0x9], 0x1000, 0x4401}) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

16:19:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_open_dev$audion(&(0x7f0000000140), 0x10001, 0x7c9280) (async)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00006de000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x24, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f00000001c0))
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, 0xffffffffffffffff, 0x10000000) (async)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r6, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x1) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)={0x77359400}, 0x1, 0x0, 0x0, {0x0, r7}}, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000180)={0x8f, 0x0, 0x4})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000180)={0x8f, 0x0, 0x4}) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:41 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
write(r3, &(0x7f0000000100)="bdaa95934472f461ffd66816b1591a559a9e36a6945b5a42978bc29108ce241b8a953eeb6ed96910004d98a0a9617c319968fbd8d1870066d73498595a734fd3256767b0e7c4ed800d8c29bc3622272630ce69648e66983b2b4a01cae892207b1b874d17e557dcce519d385aab29e7fc6a8e4170871aba40272d7ccf98b99616149fba2e39d522a8ef7a1b16", 0x8c)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:41 executing program 5:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, <r0=>0x0})
r1 = syz_open_procfs(r0, &(0x7f0000000180)='net/rt_cache\x00')
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000))
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffff49ffff3f00000000000000f80000000000000036eb095758003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:41 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
write(r3, &(0x7f0000000100)="bdaa95934472f461ffd66816b1591a559a9e36a6945b5a42978bc29108ce241b8a953eeb6ed96910004d98a0a9617c319968fbd8d1870066d73498595a734fd3256767b0e7c4ed800d8c29bc3622272630ce69648e66983b2b4a01cae892207b1b874d17e557dcce519d385aab29e7fc6a8e4170871aba40272d7ccf98b99616149fba2e39d522a8ef7a1b16", 0x8c)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
write(r3, &(0x7f0000000100)="bdaa95934472f461ffd66816b1591a559a9e36a6945b5a42978bc29108ce241b8a953eeb6ed96910004d98a0a9617c319968fbd8d1870066d73498595a734fd3256767b0e7c4ed800d8c29bc3622272630ce69648e66983b2b4a01cae892207b1b874d17e557dcce519d385aab29e7fc6a8e4170871aba40272d7ccf98b99616149fba2e39d522a8ef7a1b16", 0x8c) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:41 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x20)
mmap(&(0x7f000066a000/0x1000)=nil, 0x1000, 0x1000002, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = memfd_secret(0x80000)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0x7, &(0x7f0000000640)={0x4, 0x80000001, 0x5, 0x1}, 0x10)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000005c0)={{'\x00', 0x1}, {0x1ff}, 0x100, 0x0, 0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)="74ddb6e85bc5910f0efe216dbfeb9a5d257d9c8ff49eeef59b51ee0fad08e701fb094c1dd1b2c1ffc8fdf9c3c72726b79444de43c89990e23e170a341c4142bd56a0ff6eb0e75b6f15fa393142a06168fe24647f037201c1733464ef381142bd9f61a85464fe852e2672bd2a30bb04e9d4959520c64c917ba867be7898d16a8ad1739c60a29f5383903f7096ca539ea3d74870b3125cac9328495d3e5054771bccb4e9271ba2c27c74d5028c6f01e73a4c6cc65bb5897b34c2f3b3a09bb99a759522c2de51b756491c4fe95881026fcc179a0c9295868e8faeba3fa1753f998712bcb06db699db8bf17dc6f06ce80f92ef614b81568f46759d0b3a81ff873d9f340bffe82f9960b6628b4aff1ff053355d9a98521b12ee294fdb260f62d4afdb9ffa649117e7ff82594fd68dd11602b605f06e6b9ac1e7fc1b138f3c0bf1c8ece8797c39acaa8620fb5147dcd9d0535228642cd7caf46e596e94e593642f2ccbb301ff3e982b02989034906986012c1d45ee133dd01abca3ad135f455f72211fe560830357a97c", 0x187, 0x0, &(0x7f0000000400)={0x2, 0x187, {0x0, 0xc, 0x7b, "876f69016a40de89a71ab2b8382442b6cb545e46f5342dddd04bab2a69883c08117e7507b1e2098ed28ad1d2d6f6d6437b79248dcbe024749f6ef961375cc0264d20a3150039552fa3adc79aaaf6ba0f22ba48de7e44997ccdf87d1d50277ca2cd5af1ec343abc4cc351faa43f4994c2db451cf0af199708ffed0e", 0xff, "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"}}, 0x193})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:42 executing program 5:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, <r0=>0x0})
r1 = syz_open_procfs(r0, &(0x7f0000000180)='net/rt_cache\x00')
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:44 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRESOCT=r1], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
timer_create(0x2, &(0x7f0000000400)={0x0, 0x26, 0x1, @thr={&(0x7f00000003c0)="3d232a3362678d27c21b6ead2b9512", &(0x7f0000000540)="09b72a5661536bb8e7e62efd9012f30223c5fba7aea2562c9e5028ad28d80bf4547396d31f03c7f544fa74e9d43cb3535b1cc57b29eb06fd7ad985c476811668f218d5fdd8ea4114848536452ff16613dd00283a50df51e338316f6f66ee8ca3360ec6abd7fc16e0e1a13b9643a1d0ddc1ee0e18a3b7c07cca70a912cb265706c78b265c860a09b54ffce3c8969e7a964e564bbfd9986325fad50c360aecf47bdf18c60b61185bbd7442d2592b57276f01d62d4dcd557a2323c1df0ba167b9442a532c882c522c2aecc7fc5aaddac37f03e7b097e33d83765707f28026fe719f2a927190124396756386267f6aa085c4c8c5c9b2"}}, &(0x7f0000000440))
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x4, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32=r4], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0x1, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x24008001}, 0x804)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
splice(r4, &(0x7f0000000300)=0x3ff, r0, &(0x7f0000000480)=0x200, 0x5, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRESOCT=r1], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
timer_create(0x2, &(0x7f0000000400)={0x0, 0x26, 0x1, @thr={&(0x7f00000003c0)="3d232a3362678d27c21b6ead2b9512", &(0x7f0000000540)="09b72a5661536bb8e7e62efd9012f30223c5fba7aea2562c9e5028ad28d80bf4547396d31f03c7f544fa74e9d43cb3535b1cc57b29eb06fd7ad985c476811668f218d5fdd8ea4114848536452ff16613dd00283a50df51e338316f6f66ee8ca3360ec6abd7fc16e0e1a13b9643a1d0ddc1ee0e18a3b7c07cca70a912cb265706c78b265c860a09b54ffce3c8969e7a964e564bbfd9986325fad50c360aecf47bdf18c60b61185bbd7442d2592b57276f01d62d4dcd557a2323c1df0ba167b9442a532c882c522c2aecc7fc5aaddac37f03e7b097e33d83765707f28026fe719f2a927190124396756386267f6aa085c4c8c5c9b2"}}, &(0x7f0000000440)) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000001c0), 0x4, 0x0) (async)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000240)={0x79, 0x0, 0x1}) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYRES32=r4], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0x1, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYRES16], 0x24}, 0x1, 0x0, 0x0, 0x24008001}, 0x804) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
splice(r4, &(0x7f0000000300)=0x3ff, r0, &(0x7f0000000480)=0x200, 0x5, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x20)
mmap(&(0x7f000066a000/0x1000)=nil, 0x1000, 0x1000002, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = memfd_secret(0x80000)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0x7, &(0x7f0000000640)={0x4, 0x80000001, 0x5, 0x1}, 0x10)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000005c0)={{'\x00', 0x1}, {0x1ff}, 0x100, 0x0, 0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)="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", 0x187, 0x0, &(0x7f0000000400)={0x2, 0x187, {0x0, 0xc, 0x7b, "876f69016a40de89a71ab2b8382442b6cb545e46f5342dddd04bab2a69883c08117e7507b1e2098ed28ad1d2d6f6d6437b79248dcbe024749f6ef961375cc0264d20a3150039552fa3adc79aaaf6ba0f22ba48de7e44997ccdf87d1d50277ca2cd5af1ec343abc4cc351faa43f4994c2db451cf0af199708ffed0e", 0xff, "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"}}, 0x193})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x20) (async)
mmap(&(0x7f000066a000/0x1000)=nil, 0x1000, 0x1000002, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
memfd_secret(0x80000) (async)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0x7, &(0x7f0000000640)={0x4, 0x80000001, 0x5, 0x1}, 0x10) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000005c0)={{'\x00', 0x1}, {0x1ff}, 0x100, 0x0, 0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)="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", 0x187, 0x0, &(0x7f0000000400)={0x2, 0x187, {0x0, 0xc, 0x7b, "876f69016a40de89a71ab2b8382442b6cb545e46f5342dddd04bab2a69883c08117e7507b1e2098ed28ad1d2d6f6d6437b79248dcbe024749f6ef961375cc0264d20a3150039552fa3adc79aaaf6ba0f22ba48de7e44997ccdf87d1d50277ca2cd5af1ec343abc4cc351faa43f4994c2db451cf0af199708ffed0e", 0xff, "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"}}, 0x193}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:44 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
write(r3, &(0x7f0000000100)="bdaa95934472f461ffd66816b1591a559a9e36a6945b5a42978bc29108ce241b8a953eeb6ed96910004d98a0a9617c319968fbd8d1870066d73498595a734fd3256767b0e7c4ed800d8c29bc3622272630ce69648e66983b2b4a01cae892207b1b874d17e557dcce519d385aab29e7fc6a8e4170871aba40272d7ccf98b99616149fba2e39d522a8ef7a1b16", 0x8c)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
write(r3, &(0x7f0000000100)="bdaa95934472f461ffd66816b1591a559a9e36a6945b5a42978bc29108ce241b8a953eeb6ed96910004d98a0a9617c319968fbd8d1870066d73498595a734fd3256767b0e7c4ed800d8c29bc3622272630ce69648e66983b2b4a01cae892207b1b874d17e557dcce519d385aab29e7fc6a8e4170871aba40272d7ccf98b99616149fba2e39d522a8ef7a1b16", 0x8c) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffff49ffff3f00000000000000f80000000000000036eb095758003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:44 executing program 5:
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000140)={0x0, <r0=>0x0})
r1 = syz_open_procfs(r0, &(0x7f0000000180)='net/rt_cache\x00')
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async, rerun: 64)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040)) (rerun: 64)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004", @ANYRES16=r0, @ANYRES32=r4, @ANYRES32=r3, @ANYRESDEC=r2, @ANYBLOB="9af0291978a0ac8d47745e3d09ba5df8e2d54abb1458cb4995f689ca3c3b79a29691168a20cf75e996f33bd4ce90117b2f6c291b6229806190d2258d9a22d995e15f6de5be", @ANYRES32=r3], 0x78)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xf1e7)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004", @ANYRES16=r0, @ANYRES32=r4, @ANYRES32=r3, @ANYRESDEC=r2, @ANYBLOB="9af0291978a0ac8d47745e3d09ba5df8e2d54abb1458cb4995f689ca3c3b79a29691168a20cf75e996f33bd4ce90117b2f6c291b6229806190d2258d9a22d995e15f6de5be", @ANYRES32=r3], 0x78) (async)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xf1e7) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)

16:19:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffff49ffff3f00000000000000f80000000000000036eb095758003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffff49ffff3f00000000000000f80000000000000036eb095758003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x20)
mmap(&(0x7f000066a000/0x1000)=nil, 0x1000, 0x1000002, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = memfd_secret(0x80000)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0x7, &(0x7f0000000640)={0x4, 0x80000001, 0x5, 0x1}, 0x10)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000005c0)={{'\x00', 0x1}, {0x1ff}, 0x100, 0x0, 0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)="74ddb6e85bc5910f0efe216dbfeb9a5d257d9c8ff49eeef59b51ee0fad08e701fb094c1dd1b2c1ffc8fdf9c3c72726b79444de43c89990e23e170a341c4142bd56a0ff6eb0e75b6f15fa393142a06168fe24647f037201c1733464ef381142bd9f61a85464fe852e2672bd2a30bb04e9d4959520c64c917ba867be7898d16a8ad1739c60a29f5383903f7096ca539ea3d74870b3125cac9328495d3e5054771bccb4e9271ba2c27c74d5028c6f01e73a4c6cc65bb5897b34c2f3b3a09bb99a759522c2de51b756491c4fe95881026fcc179a0c9295868e8faeba3fa1753f998712bcb06db699db8bf17dc6f06ce80f92ef614b81568f46759d0b3a81ff873d9f340bffe82f9960b6628b4aff1ff053355d9a98521b12ee294fdb260f62d4afdb9ffa649117e7ff82594fd68dd11602b605f06e6b9ac1e7fc1b138f3c0bf1c8ece8797c39acaa8620fb5147dcd9d0535228642cd7caf46e596e94e593642f2ccbb301ff3e982b02989034906986012c1d45ee133dd01abca3ad135f455f72211fe560830357a97c", 0x187, 0x0, &(0x7f0000000400)={0x2, 0x187, {0x0, 0xc, 0x7b, "876f69016a40de89a71ab2b8382442b6cb545e46f5342dddd04bab2a69883c08117e7507b1e2098ed28ad1d2d6f6d6437b79248dcbe024749f6ef961375cc0264d20a3150039552fa3adc79aaaf6ba0f22ba48de7e44997ccdf87d1d50277ca2cd5af1ec343abc4cc351faa43f4994c2db451cf0af199708ffed0e", 0xff, "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"}}, 0x193})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x20) (async)
mmap(&(0x7f000066a000/0x1000)=nil, 0x1000, 0x1000002, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
memfd_secret(0x80000) (async)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0x7, &(0x7f0000000640)={0x4, 0x80000001, 0x5, 0x1}, 0x10) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000005c0)={{'\x00', 0x1}, {0x1ff}, 0x100, 0x0, 0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)="74ddb6e85bc5910f0efe216dbfeb9a5d257d9c8ff49eeef59b51ee0fad08e701fb094c1dd1b2c1ffc8fdf9c3c72726b79444de43c89990e23e170a341c4142bd56a0ff6eb0e75b6f15fa393142a06168fe24647f037201c1733464ef381142bd9f61a85464fe852e2672bd2a30bb04e9d4959520c64c917ba867be7898d16a8ad1739c60a29f5383903f7096ca539ea3d74870b3125cac9328495d3e5054771bccb4e9271ba2c27c74d5028c6f01e73a4c6cc65bb5897b34c2f3b3a09bb99a759522c2de51b756491c4fe95881026fcc179a0c9295868e8faeba3fa1753f998712bcb06db699db8bf17dc6f06ce80f92ef614b81568f46759d0b3a81ff873d9f340bffe82f9960b6628b4aff1ff053355d9a98521b12ee294fdb260f62d4afdb9ffa649117e7ff82594fd68dd11602b605f06e6b9ac1e7fc1b138f3c0bf1c8ece8797c39acaa8620fb5147dcd9d0535228642cd7caf46e596e94e593642f2ccbb301ff3e982b02989034906986012c1d45ee133dd01abca3ad135f455f72211fe560830357a97c", 0x187, 0x0, &(0x7f0000000400)={0x2, 0x187, {0x0, 0xc, 0x7b, "876f69016a40de89a71ab2b8382442b6cb545e46f5342dddd04bab2a69883c08117e7507b1e2098ed28ad1d2d6f6d6437b79248dcbe024749f6ef961375cc0264d20a3150039552fa3adc79aaaf6ba0f22ba48de7e44997ccdf87d1d50277ca2cd5af1ec343abc4cc351faa43f4994c2db451cf0af199708ffed0e", 0xff, "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"}}, 0x193}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:44 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:44 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000060b000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000240)="d9970a000000b9b10100000f32c7442400f7da0000c744240223000000c7442406000000000f0114240f20c035010000000f22c0b9800000c00f3235000800000f309a0200000042003e0fc76b62c4e27d30ab00200000f26526f0fe0cb466baf80cb86cccbd82ef66bafc0cb80c000000ef", 0x72}], 0x1, 0x71, &(0x7f00000002c0)=[@flags={0x3, 0x2005c2}], 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005ee000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="3e0f0016450f18cdf30f32660f687d438f497c806f3266baf80cb86672d78eef66bafc0c66ed440fc7bd16000000420f01cb0f070f01df", 0x37}], 0x1, 0x2, &(0x7f0000000180)=[@dstype0={0x6, 0x8}], 0x1)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x4200, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000140), 0xa0c00)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:45 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

[ 1457.616062][ T4596] warn_alloc: 1 callbacks suppressed
[ 1457.616122][ T4596] syz-executor.5: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1
[ 1457.640208][ T4596] CPU: 0 PID: 4596 Comm: syz-executor.5 Not tainted 5.16.0-rc5-syzkaller #0
[ 1457.649066][ T4596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1457.659253][ T4596] Call Trace:
[ 1457.662621][ T4596]  <TASK>
[ 1457.665638][ T4596]  dump_stack_lvl+0x1ff/0x28e
[ 1457.670537][ T4596]  dump_stack+0x25/0x28
[ 1457.674837][ T4596]  warn_alloc+0x4d9/0x690
[ 1457.679395][ T4596]  ? kmsan_get_metadata+0x33/0x220
[ 1457.684790][ T4596]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1457.690794][ T4596]  __vmalloc_node_range+0x1290/0x17b0
[ 1457.696418][ T4596]  __vmalloc+0xf8/0x110
[ 1457.700930][ T4596]  ? kvm_dev_ioctl+0x295/0x3290
[ 1457.705961][ T4596]  ? kvm_dev_ioctl+0x295/0x3290
[ 1457.710991][ T4596]  kvm_dev_ioctl+0x295/0x3290
[ 1457.715870][ T4596]  ? kmsan_get_metadata+0x33/0x220
[ 1457.721246][ T4596]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1457.727250][ T4596]  ? kvm_reboot+0xb0/0xb0
[ 1457.731754][ T4596]  __se_sys_ioctl+0x2df/0x4a0
[ 1457.736616][ T4596]  __x64_sys_ioctl+0xd8/0x110
[ 1457.741539][ T4596]  do_syscall_64+0x54/0xd0
[ 1457.746101][ T4596]  ? syscall_exit_to_user_mode+0xa2/0xc0
[ 1457.751905][ T4596]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1457.758128][ T4596] RIP: 0033:0x7fc07e163059
[ 1457.762674][ T4596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1457.782432][ T4596] RSP: 002b:00007fc07ca96168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1457.791001][ T4596] RAX: ffffffffffffffda RBX: 00007fc07e276100 RCX: 00007fc07e163059
[ 1457.799102][ T4596] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[ 1457.807181][ T4596] RBP: 00007fc07e1bd08d R08: 0000000000000000 R09: 0000000000000000
[ 1457.815278][ T4596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1457.823370][ T4596] R13: 00007fc07e7a9b1f R14: 00007fc07ca96300 R15: 0000000000022000
[ 1457.831502][ T4596]  </TASK>
[ 1457.836731][ T4596] Mem-Info:
[ 1457.839939][ T4596] active_anon:322 inactive_anon:121880 isolated_anon:0
[ 1457.839939][ T4596]  active_file:2333 inactive_file:51623 isolated_file:0
[ 1457.839939][ T4596]  unevictable:768 dirty:0 writeback:0
[ 1457.839939][ T4596]  slab_reclaimable:8966 slab_unreclaimable:19481
[ 1457.839939][ T4596]  mapped:27995 shmem:1534 pagetables:905 bounce:0
[ 1457.839939][ T4596]  kernel_misc_reclaimable:0
[ 1457.839939][ T4596]  free:296936 free_pcp:13280 free_cma:0
[ 1457.883050][ T4596] Node 0 active_anon:1288kB inactive_anon:487520kB active_file:9332kB inactive_file:206488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111980kB dirty:0kB writeback:0kB shmem:4600kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 499712kB writeback_tmp:0kB kernel_stack:4384kB pagetables:3616kB all_unreclaimable? no
[ 1457.914965][ T4596] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:0kB pagetables:4kB all_unreclaimable? no
[ 1457.946337][ T4596] Node 0 DMA free:4096kB boost:0kB min:156kB low:192kB high:228kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1457.973754][ T4596] lowmem_reserve[]: 0 907 1220 1220 1220
[ 1457.979669][ T4596] Node 0 DMA32 free:134596kB boost:0kB min:36056kB low:45068kB high:54080kB reserved_highatomic:0KB active_anon:588kB inactive_anon:430720kB active_file:0kB inactive_file:189788kB unevictable:0kB writepending:0kB present:3129332kB managed:934724kB mlocked:0kB bounce:0kB free_pcp:40388kB local_pcp:18036kB free_cma:0kB
[ 1458.010162][ T4596] lowmem_reserve[]: 0 0 313 313 313
[ 1458.015962][ T4596] Node 0 Normal free:58372kB boost:0kB min:12440kB low:15548kB high:18656kB reserved_highatomic:0KB active_anon:700kB inactive_anon:56808kB active_file:9332kB inactive_file:16700kB unevictable:1536kB writepending:0kB present:1048576kB managed:320516kB mlocked:0kB bounce:0kB free_pcp:12640kB local_pcp:7008kB free_cma:0kB
[ 1458.046660][ T4596] lowmem_reserve[]: 0 0 0 0 0
[ 1458.051628][ T4596] Node 1 Normal free:990680kB boost:0kB min:41452kB low:51812kB high:62172kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194304kB managed:1067980kB mlocked:0kB bounce:0kB free_pcp:84kB local_pcp:84kB free_cma:0kB
[ 1458.081015][ T4596] lowmem_reserve[]: 0 0 0 0 0
[ 1458.086306][ T4596] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1458.099012][ T4596] Node 0 DMA32: 2267*4kB (UME) 1573*8kB (UME) 1105*16kB (UME) 827*32kB (UME) 453*64kB (UME) 57*128kB (UME) 9*256kB (UME) 3*512kB (UME) 2*1024kB (M) 1*2048kB (U) 6*4096kB (UM) = 134596kB
[ 1458.119286][ T4596] Node 0 Normal: 1363*4kB (UME) 505*8kB (ME) 623*16kB (UME) 460*32kB (UME) 168*64kB (UME) 57*128kB (UME) 16*256kB (UM) 2*512kB (UM) 1*1024kB (M) 0*2048kB 0*4096kB = 58372kB
[ 1458.137893][ T4596] Node 1 Normal: 4*4kB (UME) 11*8kB (UME) 11*16kB (UE) 14*32kB (UE) 8*64kB (UME) 6*128kB (UME) 2*256kB (UM) 2*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 239*4096kB (M) = 990680kB
[ 1458.156597][ T4596] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1458.166426][ T4596] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1458.176060][ T4596] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1458.185864][ T4596] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1458.195418][ T4596] 7856 total pagecache pages
[ 1458.200102][ T4596] 0 pages in swap cache
[ 1458.205058][ T4596] Swap cache stats: add 0, delete 0, find 0/0
[ 1458.211235][ T4596] Free swap  = 0kB
[ 1458.215232][ T4596] Total swap = 0kB
[ 1458.219037][ T4596] 2097051 pages RAM
[ 1458.223040][ T4596] 0 pages HighMem/MovableOnly
[ 1458.227790][ T4596] 1515222 pages reserved
[ 1458.232354][ T4596] 0 pages cma reserved
16:19:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000140)=0x1000)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x44, r5, 0x621, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x44}}, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x5, &(0x7f0000000380))
r7 = getpid()
sched_setscheduler(r7, 0x5, &(0x7f0000000380))
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="cc00000013c0599c9f009cdac7892919bba097fc251c253149e4729ddb509ebd09b0c126a2066459875d05d14a2e6245540324a8d00e95dcee1cf9c6cab1805dfad98c64d6bbf231ea3dc83163ca8a0665d2475f205a9ab8b4e5879a627a9fb22ffca8beadd8737f4e25c725c9cf6577f03b81f4918a85e6b59316ed6570b3f3ee70eb6898ba8e3a9554b36b145d537ff36d6e9e42018808dad444e4b55e2ab205fbb1ec003b84dc516823c8055ed788be4655ebf6b25fc52746721e10cca5a2f0d825c619ee858e93fb1b2b24b5e84205fd97c8b9c5dffc6551686b646fa5", @ANYRES16=r5, @ANYBLOB="00022dbd7000fddbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008c0002000000080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r6, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r7, @ANYBLOB="0e0001006e6574646576f3696d0000000f0002006e657464657673696d30000008008a00", @ANYRES32=r0, @ANYBLOB], 0xcc}, 0x1, 0x0, 0x0, 0x8}, 0x40000)

16:19:47 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000060b000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000240)="d9970a000000b9b10100000f32c7442400f7da0000c744240223000000c7442406000000000f0114240f20c035010000000f22c0b9800000c00f3235000800000f309a0200000042003e0fc76b62c4e27d30ab00200000f26526f0fe0cb466baf80cb86cccbd82ef66bafc0cb80c000000ef", 0x72}], 0x1, 0x71, &(0x7f00000002c0)=[@flags={0x3, 0x2005c2}], 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005ee000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="3e0f0016450f18cdf30f32660f687d438f497c806f3266baf80cb86672d78eef66bafc0c66ed440fc7bd16000000420f01cb0f070f01df", 0x37}], 0x1, 0x2, &(0x7f0000000180)=[@dstype0={0x6, 0x8}], 0x1)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x4200, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000060b000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000240)="d9970a000000b9b10100000f32c7442400f7da0000c744240223000000c7442406000000000f0114240f20c035010000000f22c0b9800000c00f3235000800000f309a0200000042003e0fc76b62c4e27d30ab00200000f26526f0fe0cb466baf80cb86cccbd82ef66bafc0cb80c000000ef", 0x72}], 0x1, 0x71, &(0x7f00000002c0)=[@flags={0x3, 0x2005c2}], 0x1) (async)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005ee000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="3e0f0016450f18cdf30f32660f687d438f497c806f3266baf80cb86672d78eef66bafc0c66ed440fc7bd16000000420f01cb0f070f01df", 0x37}], 0x1, 0x2, &(0x7f0000000180)=[@dstype0={0x6, 0x8}], 0x1) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x4200, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000140), 0xa0c00)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000140), 0xa0c00) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:47 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:47 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f000044e000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000240)="e391b9800000c00f3235001000000f30c4c3616bed0066660fc7363e0f0f590f96d9caf30f090f08c4e179289b000000000f01cb", 0x34}], 0x1, 0x5, &(0x7f00000002c0), 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004", @ANYRES16=r0, @ANYRES32=r4, @ANYRES32=r3, @ANYRESDEC=r2, @ANYBLOB="9af0291978a0ac8d47745e3d09ba5df8e2d54abb1458cb4995f689ca3c3b79a29691168a20cf75e996f33bd4ce90117b2f6c291b6229806190d2258d9a22d995e15f6de5be", @ANYRES32=r3], 0x78) (async)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xf1e7)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:19:47 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000140)=0x1000) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x44, r5, 0x621, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x44}}, 0x0) (async)
r6 = getpid()
sched_setscheduler(r6, 0x5, &(0x7f0000000380)) (async)
r7 = getpid()
sched_setscheduler(r7, 0x5, &(0x7f0000000380)) (async)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="cc00000013c0599c9f009cdac7892919bba097fc251c253149e4729ddb509ebd09b0c126a2066459875d05d14a2e6245540324a8d00e95dcee1cf9c6cab1805dfad98c64d6bbf231ea3dc83163ca8a0665d2475f205a9ab8b4e5879a627a9fb22ffca8beadd8737f4e25c725c9cf6577f03b81f4918a85e6b59316ed6570b3f3ee70eb6898ba8e3a9554b36b145d537ff36d6e9e42018808dad444e4b55e2ab205fbb1ec003b84dc516823c8055ed788be4655ebf6b25fc52746721e10cca5a2f0d825c619ee858e93fb1b2b24b5e84205fd97c8b9c5dffc6551686b646fa5", @ANYRES16=r5, @ANYBLOB="00022dbd7000fddbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008c0002000000080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r6, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r7, @ANYBLOB="0e0001006e6574646576f3696d0000000f0002006e657464657673696d30000008008a00", @ANYRES32=r0, @ANYBLOB], 0xcc}, 0x1, 0x0, 0x0, 0x8}, 0x40000)

16:19:47 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000060b000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000240)="d9970a000000b9b10100000f32c7442400f7da0000c744240223000000c7442406000000000f0114240f20c035010000000f22c0b9800000c00f3235000800000f309a0200000042003e0fc76b62c4e27d30ab00200000f26526f0fe0cb466baf80cb86cccbd82ef66bafc0cb80c000000ef", 0x72}], 0x1, 0x71, &(0x7f00000002c0)=[@flags={0x3, 0x2005c2}], 0x1)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005ee000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="3e0f0016450f18cdf30f32660f687d438f497c806f3266baf80cb86672d78eef66bafc0c66ed440fc7bd16000000420f01cb0f070f01df", 0x37}], 0x1, 0x2, &(0x7f0000000180)=[@dstype0={0x6, 0x8}], 0x1)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x4200, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000060b000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, &(0x7f0000000240)="d9970a000000b9b10100000f32c7442400f7da0000c744240223000000c7442406000000000f0114240f20c035010000000f22c0b9800000c00f3235000800000f309a0200000042003e0fc76b62c4e27d30ab00200000f26526f0fe0cb466baf80cb86cccbd82ef66bafc0cb80c000000ef", 0x72}], 0x1, 0x71, &(0x7f00000002c0)=[@flags={0x3, 0x2005c2}], 0x1) (async)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00005ee000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="3e0f0016450f18cdf30f32660f687d438f497c806f3266baf80cb86672d78eef66bafc0c66ed440fc7bd16000000420f01cb0f070f01df", 0x37}], 0x1, 0x2, &(0x7f0000000180)=[@dstype0={0x6, 0x8}], 0x1) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x4200, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:47 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x40101, 0x72)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'})
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x6e2101, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async, rerun: 64)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f000044e000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000240)="e391b9800000c00f3235001000000f30c4c3616bed0066660fc7363e0f0f590f96d9caf30f090f08c4e179289b000000000f01cb", 0x34}], 0x1, 0x5, &(0x7f00000002c0), 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async, rerun: 64)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000140), 0xa0c00)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000140), 0xa0c00) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000140)=0x1000) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x44, r5, 0x621, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x44}}, 0x0) (async)
r6 = getpid()
sched_setscheduler(r6, 0x5, &(0x7f0000000380)) (async)
r7 = getpid()
sched_setscheduler(r7, 0x5, &(0x7f0000000380)) (async)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000400)=ANY=[@ANYBLOB="cc00000013c0599c9f009cdac7892919bba097fc251c253149e4729ddb509ebd09b0c126a2066459875d05d14a2e6245540324a8d00e95dcee1cf9c6cab1805dfad98c64d6bbf231ea3dc83163ca8a0665d2475f205a9ab8b4e5879a627a9fb22ffca8beadd8737f4e25c725c9cf6577f03b81f4918a85e6b59316ed6570b3f3ee70eb6898ba8e3a9554b36b145d537ff36d6e9e42018808dad444e4b55e2ab205fbb1ec003b84dc516823c8055ed788be4655ebf6b25fc52746721e10cca5a2f0d825c619ee858e93fb1b2b24b5e84205fd97c8b9c5dffc6551686b646fa5", @ANYRES16=r5, @ANYBLOB="00022dbd7000fddbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008c0002000000080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r6, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32, @ANYBLOB="080001007063690011000200303030303a30303a31302e300000000008008b00", @ANYRES32=r7, @ANYBLOB="0e0001006e6574646576f3696d0000000f0002006e657464657673696d30000008008a00", @ANYRES32=r0, @ANYBLOB], 0xcc}, 0x1, 0x0, 0x0, 0x8}, 0x40000)

16:19:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
sendmsg$TIPC_NL_PEER_REMOVE(r1, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x1cc, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x1b8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "a3006b19c013d60cd95d906ebb6294ac9431353391d1c7593a"}}, @TIPC_NLA_NODE_ID={0xc7, 0x3, "df1c9c2a0565292dde828f820e9f10d4b09ad00ee1a0eb9e865a6af0728c9351f23340c2329fc18beb599518dbab704dad6c3a1b2946771f546f7d899fdb95c33432ac65a4336e60d5530235420ea4cdff023113fca6bc211ae881cddb37a4d4388cf6525a67e549ddebf8eaf70411f2f06aa9b47c72296f99590e8fbb16c92b78e6e7fff53b44f42a842619c49c92889bd3c8269bded6d123535016879d51bf0b4e39c5cdf43b4b63c951f9561e5acb8ea49288982db2c4604b62c1afcfb967903286"}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "1c4d92f822d19b4740b7c05f39c982524a10a10dfdedf3c2dee4c0269d1dcdf1dd943f618697f4a70185e9b4be3dffa41584c5fa8712e2fec0548ad2d2926da121c3ce6cc1fbe0c00439c25c4f499ccab9d32e3f1850d2fb53a1346868fdf16fd189cd35c690ae592c57e99241349d7a07525ce28d2bcd4887f99ef2e439a90a9238aeed69659c29077a0b85fecd2714badb9c97bcae56fcfbaaf0c1d41a3b6f"}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:48 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x40101, 0x72)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'}) (async, rerun: 32)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x6e2101, 0x0) (rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f00000001c0)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:48 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00bc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:48 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f000044e000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000240)="e391b9800000c00f3235001000000f30c4c3616bed0066660fc7363e0f0f590f96d9caf30f090f08c4e179289b000000000f01cb", 0x34}], 0x1, 0x5, &(0x7f00000002c0), 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00009daaf1cce85be557ff00200000000000f8000000000300000002000000003800000000000000000002"], 0x78)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
fchmod(r1, 0x1b0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

[ 1460.943561][ T4723] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2464765740 (4929531480 ns) > initial count (3496559270 ns). Using initial count to start timer.
16:19:50 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYRES64=r0], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000100))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:50 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x40101, 0x72)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file0\x00'}) (async)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x6e2101, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f00000001c0)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00bc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800000000000000"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00bc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
fcntl$notify(r2, 0x402, 0x80000004)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000280)="c4c21904350000008064650f01c866baf80cb87ce4a485ef66bafc0cecdf0d0070000066ba4200ec0fc7ade7ffffff360f01caf30f01b61500000066ba420066edc4c12dc2a26381000096", 0x4b}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
move_mount(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
sendmsg$TIPC_NL_PEER_REMOVE(r1, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x1cc, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x1b8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "a3006b19c013d60cd95d906ebb6294ac9431353391d1c7593a"}}, @TIPC_NLA_NODE_ID={0xc7, 0x3, "df1c9c2a0565292dde828f820e9f10d4b09ad00ee1a0eb9e865a6af0728c9351f23340c2329fc18beb599518dbab704dad6c3a1b2946771f546f7d899fdb95c33432ac65a4336e60d5530235420ea4cdff023113fca6bc211ae881cddb37a4d4388cf6525a67e549ddebf8eaf70411f2f06aa9b47c72296f99590e8fbb16c92b78e6e7fff53b44f42a842619c49c92889bd3c8269bded6d123535016879d51bf0b4e39c5cdf43b4b63c951f9561e5acb8ea49288982db2c4604b62c1afcfb967903286"}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "1c4d92f822d19b4740b7c05f39c982524a10a10dfdedf3c2dee4c0269d1dcdf1dd943f618697f4a70185e9b4be3dffa41584c5fa8712e2fec0548ad2d2926da121c3ce6cc1fbe0c00439c25c4f499ccab9d32e3f1850d2fb53a1346868fdf16fd189cd35c690ae592c57e99241349d7a07525ce28d2bcd4887f99ef2e439a90a9238aeed69659c29077a0b85fecd2714badb9c97bcae56fcfbaaf0c1d41a3b6f"}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00009daaf1cce85be557ff00200000000000f8000000000300000002000000003800000000000000000002"], 0x78) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
fchmod(r1, 0x1b0) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:50 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
r6 = eventfd2(0x3, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r7 = accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
sendmsg$TIPC_NL_PEER_REMOVE(r1, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000240)={0x1cc, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x1b8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "a3006b19c013d60cd95d906ebb6294ac9431353391d1c7593a"}}, @TIPC_NLA_NODE_ID={0xc7, 0x3, "df1c9c2a0565292dde828f820e9f10d4b09ad00ee1a0eb9e865a6af0728c9351f23340c2329fc18beb599518dbab704dad6c3a1b2946771f546f7d899fdb95c33432ac65a4336e60d5530235420ea4cdff023113fca6bc211ae881cddb37a4d4388cf6525a67e549ddebf8eaf70411f2f06aa9b47c72296f99590e8fbb16c92b78e6e7fff53b44f42a842619c49c92889bd3c8269bded6d123535016879d51bf0b4e39c5cdf43b4b63c951f9561e5acb8ea49288982db2c4604b62c1afcfb967903286"}, @TIPC_NLA_NODE_ID={0xa4, 0x3, "1c4d92f822d19b4740b7c05f39c982524a10a10dfdedf3c2dee4c0269d1dcdf1dd943f618697f4a70185e9b4be3dffa41584c5fa8712e2fec0548ad2d2926da121c3ce6cc1fbe0c00439c25c4f499ccab9d32e3f1850d2fb53a1346868fdf16fd189cd35c690ae592c57e99241349d7a07525ce28d2bcd4887f99ef2e439a90a9238aeed69659c29077a0b85fecd2714badb9c97bcae56fcfbaaf0c1d41a3b6f"}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:50 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
fcntl$notify(r2, 0x402, 0x80000004)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000280)="c4c21904350000008064650f01c866baf80cb87ce4a485ef66bafc0cecdf0d0070000066ba4200ec0fc7ade7ffffff360f01caf30f01b61500000066ba420066edc4c12dc2a26381000096", 0x4b}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
move_mount(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00009daaf1cce85be557ff00200000000000f8000000000300000002000000003800000000000000000002"], 0x78)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
fchmod(r1, 0x1b0) (async, rerun: 64)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (rerun: 32)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00bc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800000000000000"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYRES64=r0], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff}) (rerun: 32)
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000100)) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 64)

16:19:51 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f000022e000/0x4000)=nil, 0x4000, 0x2, 0x110, r0, 0x3bc1b000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:51 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000c00dfffffffffffff3f0000000073000000003c51613860a1766a052a837fd706499f3800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = accept4$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000240)=0x6e, 0x80800)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000280))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000100))

16:19:51 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
fcntl$notify(r2, 0x402, 0x80000004)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000280)="c4c21904350000008064650f01c866baf80cb87ce4a485ef66bafc0cecdf0d0070000066ba4200ec0fc7ade7ffffff360f01caf30f01b61500000066ba420066edc4c12dc2a26381000096", 0x4b}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
move_mount(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
fcntl$notify(r2, 0x402, 0x80000004) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000280)="c4c21904350000008064650f01c866baf80cb87ce4a485ef66bafc0cecdf0d0070000066ba4200ec0fc7ade7ffffff360f01caf30f01b61500000066ba420066edc4c12dc2a26381000096", 0x4b}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r4, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
move_mount(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYRES64=r0], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000100)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:52 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
r6 = eventfd2(0x3, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r7 = accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r5, 0x0, 0x9, 0x0) (async)
eventfd2(0x3, 0x801) (async)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2}) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80) (async)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:52 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000c00dfffffffffffff3f0000000073000000003c51613860a1766a052a837fd706499f3800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = accept4$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000240)=0x6e, 0x80800)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000280))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000100))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000c00dfffffffffffff3f0000000073000000003c51613860a1766a052a837fd706499f3800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
accept4$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000240)=0x6e, 0x80800) (async)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000280)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000100)) (async)

16:19:52 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f000022e000/0x4000)=nil, 0x4000, 0x2, 0x110, r0, 0x3bc1b000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f000022e000/0x4000)=nil, 0x4000, 0x2, 0x110, r0, 0x3bc1b000) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:52 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f0000085000/0x3000)=nil, 0x930, 0x1000001, 0x40010, r3, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)={{0x2, 0x2, 0x10, 0x80, 0x1, 0x9, 0x1, 0x2f, 0x1, 0x80, 0x1, 0x54}, {0x4, 0x3000, 0x9, 0x3f, 0x5, 0x55, 0x3, 0x81, 0x4, 0x0, 0x3}, {0x3000, 0x4000, 0xc, 0x40, 0xfb, 0x2, 0x5, 0x9, 0x8, 0x0, 0x3f, 0x9}, {0x3000, 0x100000, 0xa, 0x2, 0x8, 0x1, 0xba, 0x5, 0x9, 0x49, 0x4, 0x73}, {0x3000, 0x4, 0xb, 0x0, 0x2, 0x3, 0x9, 0x81, 0x3, 0x8, 0x1, 0x9e}, {0x0, 0x2, 0x3, 0x2, 0x0, 0x7, 0x9, 0x2, 0x59, 0x6, 0x67, 0x40}, {0xd000, 0x10000, 0x1c, 0x0, 0x40, 0x4, 0x3, 0x1f, 0x0, 0x84, 0x2, 0xff}, {0x2000, 0x4000, 0xa, 0x2, 0x10, 0x5, 0x8, 0x2, 0x6, 0x25, 0xb0, 0xc}, {0xf000, 0x4}, {0x2000, 0x3}, 0x1000c, 0x0, 0x1000, 0x208, 0x8, 0x1a101, 0x1000, [0xe476, 0x5ca, 0xffffffff, 0x7f]})

16:19:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="0000dc000000000000d6be1d3e9700dfffff0000f8000000000000003673000000f639000000000000000000020000000000dadf0000000000872f45f4f1ece04c0c11509f8a859849671173166170abb670095637c3763d7ae84bfbe669c617db736195992a6a4cd3b917d547e8153398895a95a05714f209aebf7bdc307030ff6342fcd59c38761c4a4d7e8320ae712737531be1cb042873f0c80acb5eea2a7ce387345098a7e45ff6863aff50b89cf0fd63f02f87d094ffca4f18ddd59d2e0e37ad97d74f6903d8945442b669b02a3e94c9fa90863c46b42952e972542c57546a2b653f56c87b81b30113f55124bcf1b50bc15dd1fb0206e602eca4a33628db65213e4b28ba7afcf7edbc4f9acb2daaed05c2711ad0fa6bde7c0098dbdf74bc4f4efcefb8b72e98d6e045f8306463ed444f1afdf4bcc069aa7f5b910ad696dc5a4cf1c3c6084ea14864db5af267c9f5f96cc842b5d4c139046654cd05f1ff06a91f319a85f5bd08351e13ca16056ccfa462aabda9e13d6ae3d7433ca6c194495a2bba8b0d15877d53ca0cb1bed1448792024f44c23a1762e08a94fd879148949ac9c79b90c5af3512d9307d7524e3a654f683fc4f1d722e2123ef414853cd8e39ccd800fb49af95e3ad5b01f283700f428d2e52c499debfc23d42820fbfe93bb36815503dce27f9341c0bbc44552cbc9d34807501b1f871dc407517de3a67c365729c9ec6d38a1d0d2eeaa9330252447efb67c5727869f11a78e1a3a06b6a38f44a099daf9b2bccd4a5def504d1449abd1b6b40c525105a0d920063158ab7f5da094d71a88345ea2f580bccc7ac338418704432fb9f8a578c581832ab99ab2700"/624], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
r6 = eventfd2(0x3, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r7 = accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 64)

16:19:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000c00dfffffffffffff3f0000000073000000003c51613860a1766a052a837fd706499f3800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = accept4$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000240)=0x6e, 0x80800)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000280))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000100))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000c00dfffffffffffff3f0000000073000000003c51613860a1766a052a837fd706499f3800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
accept4$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, &(0x7f0000000240)=0x6e, 0x80800) (async)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000280)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000100)) (async)

16:19:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f000022e000/0x4000)=nil, 0x4000, 0x2, 0x110, r0, 0x3bc1b000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f000022e000/0x4000)=nil, 0x4000, 0x2, 0x110, r0, 0x3bc1b000) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:53 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f0000085000/0x3000)=nil, 0x930, 0x1000001, 0x40010, r3, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)={{0x2, 0x2, 0x10, 0x80, 0x1, 0x9, 0x1, 0x2f, 0x1, 0x80, 0x1, 0x54}, {0x4, 0x3000, 0x9, 0x3f, 0x5, 0x55, 0x3, 0x81, 0x4, 0x0, 0x3}, {0x3000, 0x4000, 0xc, 0x40, 0xfb, 0x2, 0x5, 0x9, 0x8, 0x0, 0x3f, 0x9}, {0x3000, 0x100000, 0xa, 0x2, 0x8, 0x1, 0xba, 0x5, 0x9, 0x49, 0x4, 0x73}, {0x3000, 0x4, 0xb, 0x0, 0x2, 0x3, 0x9, 0x81, 0x3, 0x8, 0x1, 0x9e}, {0x0, 0x2, 0x3, 0x2, 0x0, 0x7, 0x9, 0x2, 0x59, 0x6, 0x67, 0x40}, {0xd000, 0x10000, 0x1c, 0x0, 0x40, 0x4, 0x3, 0x1f, 0x0, 0x84, 0x2, 0xff}, {0x2000, 0x4000, 0xa, 0x2, 0x10, 0x5, 0x8, 0x2, 0x6, 0x25, 0xb0, 0xc}, {0xf000, 0x4}, {0x2000, 0x3}, 0x1000c, 0x0, 0x1000, 0x208, 0x8, 0x1a101, 0x1000, [0xe476, 0x5ca, 0xffffffff, 0x7f]})

16:19:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/624], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/624], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:53 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x5a)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getxattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000240)=""/150, 0x96)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, 0x0, &(0x7f0000000280))
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:54 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4100, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000140))
r4 = dup2(r3, r0)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x121202, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="260f35450f080fc76908430f01bd02000000440f20c0350f000000440f22c066b85f008ee8c401c1f54700c44161fdad0258000066baf80cb8b82bf48def66bafc0c66ed65f081636f00800000", 0x4d}], 0x1, 0x14, &(0x7f0000000340)=[@flags={0x3, 0x10}], 0x1)

16:19:54 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r5=>r1}, './file0\x00'})
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000100))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 64)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (rerun: 64)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async, rerun: 32)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (rerun: 32)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f0000085000/0x3000)=nil, 0x930, 0x1000001, 0x40010, r3, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)={{0x2, 0x2, 0x10, 0x80, 0x1, 0x9, 0x1, 0x2f, 0x1, 0x80, 0x1, 0x54}, {0x4, 0x3000, 0x9, 0x3f, 0x5, 0x55, 0x3, 0x81, 0x4, 0x0, 0x3}, {0x3000, 0x4000, 0xc, 0x40, 0xfb, 0x2, 0x5, 0x9, 0x8, 0x0, 0x3f, 0x9}, {0x3000, 0x100000, 0xa, 0x2, 0x8, 0x1, 0xba, 0x5, 0x9, 0x49, 0x4, 0x73}, {0x3000, 0x4, 0xb, 0x0, 0x2, 0x3, 0x9, 0x81, 0x3, 0x8, 0x1, 0x9e}, {0x0, 0x2, 0x3, 0x2, 0x0, 0x7, 0x9, 0x2, 0x59, 0x6, 0x67, 0x40}, {0xd000, 0x10000, 0x1c, 0x0, 0x40, 0x4, 0x3, 0x1f, 0x0, 0x84, 0x2, 0xff}, {0x2000, 0x4000, 0xa, 0x2, 0x10, 0x5, 0x8, 0x2, 0x6, 0x25, 0xb0, 0xc}, {0xf000, 0x4}, {0x2000, 0x3}, 0x1000c, 0x0, 0x1000, 0x208, 0x8, 0x1a101, 0x1000, [0xe476, 0x5ca, 0xffffffff, 0x7f]})

16:19:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x9}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/624], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/624], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:54 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4100, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000140))
r4 = dup2(r3, r0)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x121202, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="260f35450f080fc76908430f01bd02000000440f20c0350f000000440f22c066b85f008ee8c401c1f54700c44161fdad0258000066baf80cb8b82bf48def66bafc0c66ed65f081636f00800000", 0x4d}], 0x1, 0x14, &(0x7f0000000340)=[@flags={0x3, 0x10}], 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4100, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000140)) (async)
dup2(r3, r0) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x121202, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="260f35450f080fc76908430f01bd02000000440f20c0350f000000440f22c066b85f008ee8c401c1f54700c44161fdad0258000066baf80cb8b82bf48def66bafc0c66ed65f081636f00800000", 0x4d}], 0x1, 0x14, &(0x7f0000000340)=[@flags={0x3, 0x10}], 0x1) (async)

16:19:54 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x5a)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getxattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000240)=""/150, 0x96)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, 0x0, &(0x7f0000000280))
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x5a) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
getxattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000240)=""/150, 0x96) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, 0x0, &(0x7f0000000280)) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fanotify_mark(r1, 0x9, 0x40000001, r1, &(0x7f0000000280)='./file0\x00')
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffffffc}}, './file0\x00'})
ioctl$KVM_PPC_ALLOCATE_HTAB(r2, 0xc004aea7, &(0x7f00000001c0)=0x8000)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:55 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r5=>r1}, './file0\x00'})
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000100))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRESDEC=r1, @ANYRESOCT=r1, @ANYRESHEX=r0], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f00000001c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)

16:19:55 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4100, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000140))
r4 = dup2(r3, r0)
r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x121202, 0x0)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="260f35450f080fc76908430f01bd02000000440f20c0350f000000440f22c066b85f008ee8c401c1f54700c44161fdad0258000066baf80cb8b82bf48def66bafc0c66ed65f081636f00800000", 0x4d}], 0x1, 0x14, &(0x7f0000000340)=[@flags={0x3, 0x10}], 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x4100, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x8040ae9f, &(0x7f0000000140)) (async)
dup2(r3, r0) (async)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000001c0), 0x121202, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000280)="260f35450f080fc76908430f01bd02000000440f20c0350f000000440f22c066b85f008ee8c401c1f54700c44161fdad0258000066baf80cb8b82bf48def66bafc0c66ed65f081636f00800000", 0x4d}], 0x1, 0x14, &(0x7f0000000340)=[@flags={0x3, 0x10}], 0x1) (async)

16:19:55 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x5a)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
getxattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000240)=""/150, 0x96)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, 0x0, &(0x7f0000000280))
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x5a) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
getxattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=@random={'trusted.', '/dev/kvm\x00'}, &(0x7f0000000240)=""/150, 0x96) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
socket$inet_sctp(0x2, 0x5, 0x84) (async)
getsockopt$inet_sctp_SCTP_RECVRCVINFO(r4, 0x84, 0x20, 0x0, &(0x7f0000000280)) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f00000001c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (rerun: 32)

16:19:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fanotify_mark(r1, 0x9, 0x40000001, r1, &(0x7f0000000280)='./file0\x00') (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffffffc}}, './file0\x00'}) (rerun: 32)
ioctl$KVM_PPC_ALLOCATE_HTAB(r2, 0xc004aea7, &(0x7f00000001c0)=0x8000)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 32)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32)

16:19:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30069fb7abf40ffc2069a4bb66b0fefc8edb86b35c4d181661f36689b6806baedba52ee07ba6a9f452b5387e595dac3bc07575a0db207afb2d13d8f97f758f9f6f5990b12f734a9c88d72b8e7c060040283253b475d0261e08021edc22dddcc30ccb8c5610f49c04749273d2be498db64a0a52c12117b4d792aaeb8fd91670a58f80f420"], 0xa)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x30, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
mmap(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x200000a, 0x20010, r1, 0xa387f000)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r1, 0x4068aea3, &(0x7f0000000140)={0xcc, 0x0, 0x1})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000280)={0x10200, 0x1, 0x2000, 0x1000, &(0x7f00005ff000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r5=>r1}, './file0\x00'})
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000100))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000100)) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async, rerun: 32)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 32)
r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f00000001c0)) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)

16:19:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async, rerun: 32)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
fanotify_mark(r1, 0x9, 0x40000001, r1, &(0x7f0000000280)='./file0\x00') (async, rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xfffffffc}}, './file0\x00'}) (async)
ioctl$KVM_PPC_ALLOCATE_HTAB(r2, 0xc004aea7, &(0x7f00000001c0)=0x8000) (async, rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (rerun: 64)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async, rerun: 32)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1468.859833][ T5125] warn_alloc: 2 callbacks suppressed
[ 1468.859896][ T5125] syz-executor.3: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0x400dc0(GFP_KERNEL_ACCOUNT|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1
[ 1468.884729][ T5125] CPU: 1 PID: 5125 Comm: syz-executor.3 Not tainted 5.16.0-rc5-syzkaller #0
[ 1468.893572][ T5125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1468.903745][ T5125] Call Trace:
[ 1468.907113][ T5125]  <TASK>
[ 1468.910119][ T5125]  dump_stack_lvl+0x1ff/0x28e
[ 1468.914989][ T5125]  dump_stack+0x25/0x28
[ 1468.919308][ T5125]  warn_alloc+0x4d9/0x690
[ 1468.923885][ T5125]  ? kmsan_get_metadata+0x33/0x220
[ 1468.929198][ T5125]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1468.935250][ T5125]  __vmalloc_node_range+0x1290/0x17b0
[ 1468.941140][ T5125]  __vmalloc+0xf8/0x110
[ 1468.945835][ T5125]  ? kvm_dev_ioctl+0x295/0x3290
[ 1468.950873][ T5125]  ? kvm_dev_ioctl+0x295/0x3290
[ 1468.955927][ T5125]  kvm_dev_ioctl+0x295/0x3290
[ 1468.960831][ T5125]  ? kmsan_get_metadata+0x33/0x220
[ 1468.967094][ T5125]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1468.973107][ T5125]  ? kvm_reboot+0xb0/0xb0
[ 1468.977609][ T5125]  __se_sys_ioctl+0x2df/0x4a0
[ 1468.982913][ T5125]  __x64_sys_ioctl+0xd8/0x110
[ 1468.987787][ T5125]  do_syscall_64+0x54/0xd0
[ 1468.992368][ T5125]  ? syscall_exit_to_user_mode+0xa2/0xc0
[ 1468.998178][ T5125]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1469.004265][ T5125] RIP: 0033:0x7fd567faa059
[ 1469.008790][ T5125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 1469.028572][ T5125] RSP: 002b:00007fd5668bc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1469.037135][ T5125] RAX: ffffffffffffffda RBX: 00007fd5680bd1d0 RCX: 00007fd567faa059
[ 1469.045231][ T5125] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[ 1469.053306][ T5125] RBP: 00007fd56800408d R08: 0000000000000000 R09: 0000000000000000
[ 1469.061391][ T5125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1469.069470][ T5125] R13: 00007fd5685f0b1f R14: 00007fd5668bc300 R15: 0000000000022000
[ 1469.077912][ T5125]  </TASK>
[ 1469.082385][ T5125] Mem-Info:
[ 1469.085602][ T5125] active_anon:323 inactive_anon:122451 isolated_anon:0
[ 1469.085602][ T5125]  active_file:2333 inactive_file:51623 isolated_file:0
[ 1469.085602][ T5125]  unevictable:768 dirty:0 writeback:0
[ 1469.085602][ T5125]  slab_reclaimable:8984 slab_unreclaimable:19923
[ 1469.085602][ T5125]  mapped:27994 shmem:1534 pagetables:946 bounce:0
[ 1469.085602][ T5125]  kernel_misc_reclaimable:0
[ 1469.085602][ T5125]  free:298002 free_pcp:10880 free_cma:0
[ 1469.127650][ T5125] Node 0 active_anon:1292kB inactive_anon:489868kB active_file:9332kB inactive_file:206488kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:111976kB dirty:0kB writeback:0kB shmem:4600kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 501760kB writeback_tmp:0kB kernel_stack:4656kB pagetables:3836kB all_unreclaimable? no
[ 1469.159519][ T5125] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:0kB pagetables:4kB all_unreclaimable? no
[ 1469.188637][ T5125] Node 0 DMA free:4096kB boost:0kB min:156kB low:192kB high:228kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1469.216587][ T5125] lowmem_reserve[]: 0 907 1220 1220 1220
[ 1469.222628][ T5125] Node 0 DMA32 free:140280kB boost:0kB min:36056kB low:45068kB high:54080kB reserved_highatomic:0KB active_anon:588kB inactive_anon:432768kB active_file:0kB inactive_file:189788kB unevictable:0kB writepending:0kB present:3129332kB managed:934724kB mlocked:0kB bounce:0kB free_pcp:32144kB local_pcp:14112kB free_cma:0kB
[ 1469.252974][ T5125] lowmem_reserve[]: 0 0 313 313 313
[ 1469.258474][ T5125] Node 0 Normal free:56632kB boost:0kB min:12440kB low:15548kB high:18656kB reserved_highatomic:0KB active_anon:704kB inactive_anon:57080kB active_file:9332kB inactive_file:16700kB unevictable:1536kB writepending:0kB present:1048576kB managed:320516kB mlocked:0kB bounce:0kB free_pcp:11076kB local_pcp:4984kB free_cma:0kB
[ 1469.290780][ T5125] lowmem_reserve[]: 0 0 0 0 0
[ 1469.295867][ T5125] Node 1 Normal free:990680kB boost:0kB min:41452kB low:51812kB high:62172kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:1536kB writepending:0kB present:4194304kB managed:1067980kB mlocked:0kB bounce:0kB free_pcp:84kB local_pcp:0kB free_cma:0kB
[ 1469.325152][ T5125] lowmem_reserve[]: 0 0 0 0 0
[ 1469.330313][ T5125] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB
[ 1469.342994][ T5125] Node 0 DMA32: 2270*4kB (UME) 1574*8kB (UME) 1107*16kB (UME) 827*32kB (UME) 453*64kB (UME) 53*128kB (UME) 9*256kB (UME) 3*512kB (UME) 2*1024kB (M) 2*2048kB (UM) 7*4096kB (UM) = 140280kB
[ 1469.362648][ T5125] Node 0 Normal: 1360*4kB (UME) 489*8kB (ME) 623*16kB (UME) 456*32kB (UME) 167*64kB (UM) 52*128kB (M) 15*256kB (ME) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 56632kB
[ 1469.380779][ T5125] Node 1 Normal: 4*4kB (UME) 11*8kB (UME) 11*16kB (UE) 14*32kB (UE) 8*64kB (UME) 6*128kB (UME) 2*256kB (UM) 2*512kB (UM) 4*1024kB (UME) 2*2048kB (UE) 239*4096kB (M) = 990680kB
[ 1469.399743][ T5125] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1469.409554][ T5125] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1469.420772][ T5125] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1469.430721][ T5125] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1469.440328][ T5125] 7854 total pagecache pages
[ 1469.445093][ T5125] 0 pages in swap cache
[ 1469.449320][ T5125] Swap cache stats: add 0, delete 0, find 0/0
[ 1469.455607][ T5125] Free swap  = 0kB
[ 1469.459401][ T5125] Total swap = 0kB
[ 1469.463374][ T5125] 2097051 pages RAM
[ 1469.467346][ T5125] 0 pages HighMem/MovableOnly
[ 1469.472194][ T5125] 1515222 pages reserved
[ 1469.476511][ T5125] 0 pages cma reserved
16:19:57 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x30, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
mmap(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x200000a, 0x20010, r1, 0xa387f000)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r1, 0x4068aea3, &(0x7f0000000140)={0xcc, 0x0, 0x1})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000280)={0x10200, 0x1, 0x2000, 0x1000, &(0x7f00005ff000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x30, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
mmap(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x200000a, 0x20010, r1, 0xa387f000) (async)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r1, 0x4068aea3, &(0x7f0000000140)={0xcc, 0x0, 0x1}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000280)={0x10200, 0x1, 0x2000, 0x1000, &(0x7f00005ff000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0) (async)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 64)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0) (rerun: 64)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async, rerun: 64)
write$binfmt_elf64(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="00ffffffffffff3f00caa600000000f80000000000000036730000000038000000000000000000020000000002000000000000000000a9df00800000000002a95beeeee83241cdf1631177e3da000000000000000000000060f798d4125d30ced23a1d0000000000000000000000000000042aed3848f34f31eda0eeedf237490fd5d8dda89a3302c0f97b3b31f4d9b7d6ef3909f143a2928448c601c76d86b8079cff5ba63a132c4574c1c1575f8402ed4eb7bcd47fec8306c1206b5d2913445b557a8236735be7eab1ae6b0819d073c4995eaca330cddeb8a29f0b27b04cf720ed787e01c19d4f6dba2c516f142a44c906b25542afb17d4d009f80f0238ad521ea09c219ea46d5950c2d2fae385f7b5af63eba4c3e0100fcba9639135e3e2968d6fd10d9faa16d8a9712a0c574173726c2cdfa55e801894ff7717dd07563160d4d8562094ef080cf0349495c2add6afa207eb3fff987ad3a536d7a0669916034b81fbff6f10a399bc5f4b6a4ddae8bbd8fa829c03d77f8ceffb744eccf18eedb9c25b6e7edaf0cdc7e788626fd3e39018f2120711fb21d4c07139c4b62d9e49bd21db7ad9492a87cd4c1639d7f0ab4e77f9438997ee3d5c076f1700a0e7e377934d7082b1a527bf58b4e2d3c240a6cbfc9fc2c77ec82ae05357501a0a7569eb0d677a3417eca8dbe2d", @ANYRESDEC=r1, @ANYRESOCT=r1, @ANYRESHEX=r0], 0x78) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30069fb7abf40ffc2069a4bb66b0fefc8edb86b35c4d181661f36689b6806baedba52ee07ba6a9f452b5387e595dac3bc07575a0db207afb2d13d8f97f758f9f6f5990b12f734a9c88d72b8e7c060040283253b475d0261e08021edc22dddcc30ccb8c5610f49c04749273d2be498db64a0a52c12117b4d792aaeb8fd91670a58f80f420"], 0xa)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:19:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x8)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/175, 0xaf}, {&(0x7f0000000280)=""/115, 0x73}], 0x2)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
signalfd(r2, &(0x7f0000000080)={[0x4]}, 0x8)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = syz_open_dev$vcsn(&(0x7f0000000180), 0x80000001, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:58 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x30, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
mmap(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x200000a, 0x20010, r1, 0xa387f000) (async)
ioctl$KVM_CAP_EXIT_ON_EMULATION_FAILURE(r1, 0x4068aea3, &(0x7f0000000140)={0xcc, 0x0, 0x1}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000280)={0x10200, 0x1, 0x2000, 0x1000, &(0x7f00005ff000/0x1000)=nil}) (async)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000001c0)={0xa8, "658780d72c598fd8d1566328a3436f71b6afc53757cac19ae4793edf5de2e573", <r4=>0xffffffffffffffff})
sendfile(r4, r3, &(0x7f0000000240)=0x8, 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:19:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = syz_open_dev$vcsn(&(0x7f0000000180), 0x80000001, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
syz_open_dev$vcsn(&(0x7f0000000180), 0x80000001, 0x80) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:19:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000001c0)={0xa8, "658780d72c598fd8d1566328a3436f71b6afc53757cac19ae4793edf5de2e573", <r4=>0xffffffffffffffff})
sendfile(r4, r3, &(0x7f0000000240)=0x8, 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000001c0)={0xa8, "658780d72c598fd8d1566328a3436f71b6afc53757cac19ae4793edf5de2e573"}) (async)
sendfile(r4, r3, &(0x7f0000000240)=0x8, 0x1) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:19:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000140)="450f015c3ee9450f1897080000000f01c9b9af0b0000b80f000000ba000000000f3066baa00066b8008066ef36dfc8430f3566baf80cb8456e3b8cef66bafc0cb0bfeec482690df866baf80cb860fded85ef66bafc0cb800000080ef", 0x5c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = syz_open_dev$vcsn(&(0x7f0000000180), 0x80000001, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:19:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30069fb7abf40ffc2069a4bb66b0fefc8edb86b35c4d181661f36689b6806baedba52ee07ba6a9f452b5387e595dac3bc07575a0db207afb2d13d8f97f758f9f6f5990b12f734a9c88d72b8e7c060040283253b475d0261e08021edc22dddcc30ccb8c5610f49c04749273d2be498db64a0a52c12117b4d792aaeb8fd91670a58f80f420"], 0xa)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r3, &(0x7f0000000240)=ANY=[@ANYBLOB="73797a30069fb7abf40ffc2069a4bb66b0fefc8edb86b35c4d181661f36689b6806baedba52ee07ba6a9f452b5387e595dac3bc07575a0db207afb2d13d8f97f758f9f6f5990b12f734a9c88d72b8e7c060040283253b475d0261e08021edc22dddcc30ccb8c5610f49c04749273d2be498db64a0a52c12117b4d792aaeb8fd91670a58f80f420"], 0xa) (async)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r5, 0x0, r6, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:19:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000001c0)={0xa8, "658780d72c598fd8d1566328a3436f71b6afc53757cac19ae4793edf5de2e573", <r4=>0xffffffffffffffff})
sendfile(r4, r3, &(0x7f0000000240)=0x8, 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, &(0x7f00000001c0)={0xa8, "658780d72c598fd8d1566328a3436f71b6afc53757cac19ae4793edf5de2e573"}) (async)
sendfile(r4, r3, &(0x7f0000000240)=0x8, 0x1) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRESDEC=r1, @ANYRESOCT=r1, @ANYRESHEX=r0], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r1, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="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", @ANYRESDEC=r1, @ANYRESOCT=r1, @ANYRESHEX=r0], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x8)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/175, 0xaf}, {&(0x7f0000000280)=""/115, 0x73}], 0x2)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
signalfd(r2, &(0x7f0000000080)={[0x4]}, 0x8)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x8) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/175, 0xaf}, {&(0x7f0000000280)=""/115, 0x73}], 0x2) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
signalfd(r2, &(0x7f0000000080)={[0x4]}, 0x8) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000140)="450f015c3ee9450f1897080000000f01c9b9af0b0000b80f000000ba000000000f3066baa00066b8008066ef36dfc8430f3566baf80cb8456e3b8cef66bafc0cb0bfeec482690df866baf80cb860fded85ef66bafc0cb800000080ef", 0x5c}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

16:20:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="0000dc0000000000c21ddfffffff0600ff3f00000000000000f80000000000000400000000000000d429484dbc932bf7783ffd450000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x3, 0x9}}, './file0\x00'})
ioctl$KVM_NMI(r2, 0xae9a)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x38, r4, 0x100, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x20}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x38}}, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x12, r3, 0xb8a8a000)
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x9, 0x0)
r6 = mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x7)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x50, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="03630840", @ANYRES64=r6, @ANYBLOB="0963104094ebd4d2806d01000000000200000000000000000000096310400200000000000000000000000000000005630440030000000806a26b87b8a3d349aff96310400200000000076d5d46956e3ef18816dcaf930bb669e61add1a3b9da43b839e1022733326f64564a27e2d2f5c6877baf37267d9c6e7aa4a3e3e4c000400000015dd9bf93d6989da143a3bdd39fc3f0085339e8052e67ecba63819479c1d4dfaa5853112da241df6d836a89f2cd040f494957fa2bdcfe7be283d30e329677b76e2150ff2092d38458d4b930c2e1b7d3a274ba47f47df5148c965e123562f1c501443fbb00300010000190400f731df01642300000000"], 0xdb, 0x0, &(0x7f0000000300)="a0e6d92635525d7a56b19ff241b81bfd4fcd1def06199c9cbb5574860e5b44574d6e03bd24a0cfa4fe6081bcdca520c7e1e14833df330ddb4da8d98dc75f76e9a98e6ec56cbbcaf4e84bb32455f72c8e0a305868236edf1f442ccbca1b1db34b670211288158dc46efa421f82c52dac295781e7d18672c7d17c4f49368e3e748e9873f88eea635bd00a82978358ec342499e85db4e577fb2b404139a19cdab31d3cd8dc57f541b73b871f71d890f207172d39c62cc8a6d3e18ba25f8acba2fae28e02734771aafc412dab019c93458d8334e396342550ab7a83daf"})

16:20:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x280000, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa, 0x20010, r1, 0x4000)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000140)="450f015c3ee9450f1897080000000f01c9b9af0b0000b80f000000ba000000000f3066baa00066b8008066ef36dfc8430f3566baf80cb8456e3b8cef66bafc0cb0bfeec482690df866baf80cb860fded85ef66bafc0cb800000080ef", 0x5c}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:02 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x8) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/175, 0xaf}, {&(0x7f0000000280)=""/115, 0x73}], 0x2)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
signalfd(r2, &(0x7f0000000080)={[0x4]}, 0x8)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa, 0x20010, r1, 0x4000)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x280000, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="0000dc0000000000c21ddfffffff0600ff3f00000000000000f80000000000000400000000000000d429484dbc932bf7783ffd450000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x3, 0x9}}, './file0\x00'})
ioctl$KVM_NMI(r2, 0xae9a)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x38, r4, 0x100, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x20}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x38}}, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x12, r3, 0xb8a8a000)
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x9, 0x0)
r6 = mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x7)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x50, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="03630840", @ANYRES64=r6, @ANYBLOB="0963104094ebd4d2806d01000000000200000000000000000000096310400200000000000000000000000000000005630440030000000806a26b87b8a3d349aff96310400200000000076d5d46956e3ef18816dcaf930bb669e61add1a3b9da43b839e1022733326f64564a27e2d2f5c6877baf37267d9c6e7aa4a3e3e4c000400000015dd9bf93d6989da143a3bdd39fc3f0085339e8052e67ecba63819479c1d4dfaa5853112da241df6d836a89f2cd040f494957fa2bdcfe7be283d30e329677b76e2150ff2092d38458d4b930c2e1b7d3a274ba47f47df5148c965e123562f1c501443fbb00300010000190400f731df01642300000000"], 0xdb, 0x0, &(0x7f0000000300)="a0e6d92635525d7a56b19ff241b81bfd4fcd1def06199c9cbb5574860e5b44574d6e03bd24a0cfa4fe6081bcdca520c7e1e14833df330ddb4da8d98dc75f76e9a98e6ec56cbbcaf4e84bb32455f72c8e0a305868236edf1f442ccbca1b1db34b670211288158dc46efa421f82c52dac295781e7d18672c7d17c4f49368e3e748e9873f88eea635bd00a82978358ec342499e85db4e577fb2b404139a19cdab31d3cd8dc57f541b73b871f71d890f207172d39c62cc8a6d3e18ba25f8acba2fae28e02734771aafc412dab019c93458d8334e396342550ab7a83daf"})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="0000dc0000000000c21ddfffffff0600ff3f00000000000000f80000000000000400000000000000d429484dbc932bf7783ffd450000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3, 0x9}}, './file0\x00'}) (async)
ioctl$KVM_NMI(r2, 0xae9a) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x38, r4, 0x100, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x20}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x38}}, 0x0) (async)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x12, r3, 0xb8a8a000) (async)
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x9, 0x0) (async)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x7) (async)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x50, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="03630840", @ANYRES64=r6, @ANYBLOB="0963104094ebd4d2806d01000000000200000000000000000000096310400200000000000000000000000000000005630440030000000806a26b87b8a3d349aff96310400200000000076d5d46956e3ef18816dcaf930bb669e61add1a3b9da43b839e1022733326f64564a27e2d2f5c6877baf37267d9c6e7aa4a3e3e4c000400000015dd9bf93d6989da143a3bdd39fc3f0085339e8052e67ecba63819479c1d4dfaa5853112da241df6d836a89f2cd040f494957fa2bdcfe7be283d30e329677b76e2150ff2092d38458d4b930c2e1b7d3a274ba47f47df5148c965e123562f1c501443fbb00300010000190400f731df01642300000000"], 0xdb, 0x0, &(0x7f0000000300)="a0e6d92635525d7a56b19ff241b81bfd4fcd1def06199c9cbb5574860e5b44574d6e03bd24a0cfa4fe6081bcdca520c7e1e14833df330ddb4da8d98dc75f76e9a98e6ec56cbbcaf4e84bb32455f72c8e0a305868236edf1f442ccbca1b1db34b670211288158dc46efa421f82c52dac295781e7d18672c7d17c4f49368e3e748e9873f88eea635bd00a82978358ec342499e85db4e577fb2b404139a19cdab31d3cd8dc57f541b73b871f71d890f207172d39c62cc8a6d3e18ba25f8acba2fae28e02734771aafc412dab019c93458d8334e396342550ab7a83daf"}) (async)

16:20:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xa, 0x20010, r1, 0x4000) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000100)={'ip6gre0\x00', <r4=>0x0, 0x29, 0x9, 0x40, 0xde37, 0x20, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, 0x8, 0x20, 0x9, 0x7}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'gre0\x00', &(0x7f00000001c0)={'syztnl2\x00', <r5=>0x0, 0x40, 0x8000, 0x479, 0x8047, {{0x7, 0x4, 0x0, 0x37, 0x1c, 0x64, 0x0, 0x40, 0x4, 0x0, @multicast2, @remote, {[@lsrr={0x83, 0x7, 0x52, [@multicast2]}]}}}}})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000300)={0x58, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x58}}, 0x0)
sendfile(r0, r2, &(0x7f0000000080)=0x7ea181c0, 0x4)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:20:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x280000, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="0000dc0000000000c21ddfffffff0600ff3f00000000000000f80000000000000400000000000000d429484dbc932bf7783ffd450000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0x3, 0x9}}, './file0\x00'})
ioctl$KVM_NMI(r2, 0xae9a)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x38, r4, 0x100, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x20}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x38}}, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x12, r3, 0xb8a8a000)
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x9, 0x0)
r6 = mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x7)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x50, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="03630840", @ANYRES64=r6, @ANYBLOB="0963104094ebd4d2806d01000000000200000000000000000000096310400200000000000000000000000000000005630440030000000806a26b87b8a3d349aff96310400200000000076d5d46956e3ef18816dcaf930bb669e61add1a3b9da43b839e1022733326f64564a27e2d2f5c6877baf37267d9c6e7aa4a3e3e4c000400000015dd9bf93d6989da143a3bdd39fc3f0085339e8052e67ecba63819479c1d4dfaa5853112da241df6d836a89f2cd040f494957fa2bdcfe7be283d30e329677b76e2150ff2092d38458d4b930c2e1b7d3a274ba47f47df5148c965e123562f1c501443fbb00300010000190400f731df01642300000000"], 0xdb, 0x0, &(0x7f0000000300)="a0e6d92635525d7a56b19ff241b81bfd4fcd1def06199c9cbb5574860e5b44574d6e03bd24a0cfa4fe6081bcdca520c7e1e14833df330ddb4da8d98dc75f76e9a98e6ec56cbbcaf4e84bb32455f72c8e0a305868236edf1f442ccbca1b1db34b670211288158dc46efa421f82c52dac295781e7d18672c7d17c4f49368e3e748e9873f88eea635bd00a82978358ec342499e85db4e577fb2b404139a19cdab31d3cd8dc57f541b73b871f71d890f207172d39c62cc8a6d3e18ba25f8acba2fae28e02734771aafc412dab019c93458d8334e396342550ab7a83daf"})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="0000dc0000000000c21ddfffffff0600ff3f00000000000000f80000000000000400000000000000d429484dbc932bf7783ffd450000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3, 0x9}}, './file0\x00'}) (async)
ioctl$KVM_NMI(r2, 0xae9a) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x38, r4, 0x100, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x20}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x38}}, 0x0) (async)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x12, r3, 0xb8a8a000) (async)
ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
splice(0xffffffffffffffff, 0x0, r5, 0x0, 0x9, 0x0) (async)
mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, r2, 0x7) (async)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000001c0)={0x50, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="03630840", @ANYRES64=r6, @ANYBLOB="0963104094ebd4d2806d01000000000200000000000000000000096310400200000000000000000000000000000005630440030000000806a26b87b8a3d349aff96310400200000000076d5d46956e3ef18816dcaf930bb669e61add1a3b9da43b839e1022733326f64564a27e2d2f5c6877baf37267d9c6e7aa4a3e3e4c000400000015dd9bf93d6989da143a3bdd39fc3f0085339e8052e67ecba63819479c1d4dfaa5853112da241df6d836a89f2cd040f494957fa2bdcfe7be283d30e329677b76e2150ff2092d38458d4b930c2e1b7d3a274ba47f47df5148c965e123562f1c501443fbb00300010000190400f731df01642300000000"], 0xdb, 0x0, &(0x7f0000000300)="a0e6d92635525d7a56b19ff241b81bfd4fcd1def06199c9cbb5574860e5b44574d6e03bd24a0cfa4fe6081bcdca520c7e1e14833df330ddb4da8d98dc75f76e9a98e6ec56cbbcaf4e84bb32455f72c8e0a305868236edf1f442ccbca1b1db34b670211288158dc46efa421f82c52dac295781e7d18672c7d17c4f49368e3e748e9873f88eea635bd00a82978358ec342499e85db4e577fb2b404139a19cdab31d3cd8dc57f541b73b871f71d890f207172d39c62cc8a6d3e18ba25f8acba2fae28e02734771aafc412dab019c93458d8334e396342550ab7a83daf"}) (async)

16:20:04 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000001c0)="66fc450f3066baa000ec0f01378ec8c4e239b80d62700000c7442400c5000000c402a1ad955d36e0c4ff1c24c46379637ad8400f2188f4f3430f1afc", 0x3c}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000140)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:04 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f00000002c0)=0x4)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=@ipv6_newnexthop={0x94, 0x68, 0x20, 0x70bd2b, 0x25dfdbff, {0xa, 0x0, 0x4, 0x0, 0xa}, [@NHA_GROUP={0x3c, 0x2, [{0x0, 0x7}, {0x2, 0x7}, {0x1, 0x5}, {0x0, 0x3}, {0x2, 0x80}, {0x2}, {0x2, 0xa0}]}, @NHA_BLACKHOLE={0x4}, @NHA_RES_GROUP={0x34, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x1f}, @NHA_RES_GROUP_IDLE_TIMER={0x8, 0x2, 0x1}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x80}, @NHA_RES_GROUP_UNBALANCED_TIMER={0x8, 0x3, 0x8e3b}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x2}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x94}, 0x1, 0x0, 0x0, 0x8005}, 0x4a811)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000002400)=ANY=[@ANYBLOB="0000dc000000000000194afe0470f27c943f0000d400000000f80000000000000026730000000038000000000000000000020000000000000000000000000000002d0000000002000000008c6d8a75db42a6bc6bfc0000000000000000000000000000000000000000000400000000000011d7dc3319b5f36dc8cc1f9d90376dc288d9"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f00000001c0)=0x1)
write$capi20_data(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="100008000383dfea0000010000000000613834162eb8d11e46e092b7a8c0b3b25a67b3dc5e8e27a58e4053450f729424e3140e4a6730ffa6e1043cef0871b05b826b690d02816cd3057a7986a2b54f2ea75822174138639ab741d4f724335a8e29d2a3434aa1ce26e6"], 0x73)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000025c0)={0x3})
r4 = dup3(r2, r0, 0x80000)
ioctl$CAPI_CLR_FLAGS(r4, 0x80044325, &(0x7f0000000080))
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/162, 0xa2}, {&(0x7f00000024c0)=""/251, 0xfb}], 0x2, 0x4, 0xff)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x4, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_GET_NESTED_STATE(r3, 0xc080aebe, &(0x7f0000000380)={{0x0, 0x0, 0x80}})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000001c0)="66fc450f3066baa000ec0f01378ec8c4e239b80d62700000c7442400c5000000c402a1ad955d36e0c4ff1c24c46379637ad8400f2188f4f3430f1afc", 0x3c}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000140)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000001c0)="66fc450f3066baa000ec0f01378ec8c4e239b80d62700000c7442400c5000000c402a1ad955d36e0c4ff1c24c46379637ad8400f2188f4f3430f1afc", 0x3c}], 0x1, 0x51, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000140)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:05 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f00000002c0)=0x4) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=@ipv6_newnexthop={0x94, 0x68, 0x20, 0x70bd2b, 0x25dfdbff, {0xa, 0x0, 0x4, 0x0, 0xa}, [@NHA_GROUP={0x3c, 0x2, [{0x0, 0x7}, {0x2, 0x7}, {0x1, 0x5}, {0x0, 0x3}, {0x2, 0x80}, {0x2}, {0x2, 0xa0}]}, @NHA_BLACKHOLE={0x4}, @NHA_RES_GROUP={0x34, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x1f}, @NHA_RES_GROUP_IDLE_TIMER={0x8, 0x2, 0x1}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x80}, @NHA_RES_GROUP_UNBALANCED_TIMER={0x8, 0x3, 0x8e3b}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x2}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x94}, 0x1, 0x0, 0x0, 0x8005}, 0x4a811) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:05 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000100)={'ip6gre0\x00', <r4=>0x0, 0x29, 0x9, 0x40, 0xde37, 0x20, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, 0x8, 0x20, 0x9, 0x7}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'gre0\x00', &(0x7f00000001c0)={'syztnl2\x00', <r5=>0x0, 0x40, 0x8000, 0x479, 0x8047, {{0x7, 0x4, 0x0, 0x37, 0x1c, 0x64, 0x0, 0x40, 0x4, 0x0, @multicast2, @remote, {[@lsrr={0x83, 0x7, 0x52, [@multicast2]}]}}}}})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000300)={0x58, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x58}}, 0x0)
sendfile(r0, r2, &(0x7f0000000080)=0x7ea181c0, 0x4)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x800) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000100)={'ip6gre0\x00', 0x0, 0x29, 0x9, 0x40, 0xde37, 0x20, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, 0x8, 0x20, 0x9, 0x7}}) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'gre0\x00', &(0x7f00000001c0)={'syztnl2\x00', 0x0, 0x40, 0x8000, 0x479, 0x8047, {{0x7, 0x4, 0x0, 0x37, 0x1c, 0x64, 0x0, 0x40, 0x4, 0x0, @multicast2, @remote, {[@lsrr={0x83, 0x7, 0x52, [@multicast2]}]}}}}}) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000300)={0x58, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x58}}, 0x0) (async)
sendfile(r0, r2, &(0x7f0000000080)=0x7ea181c0, 0x4) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)

16:20:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000002400)=ANY=[@ANYBLOB="0000dc000000000000194afe0470f27c943f0000d400000000f80000000000000026730000000038000000000000000000020000000000000000000000000000002d0000000002000000008c6d8a75db42a6bc6bfc0000000000000000000000000000000000000000000400000000000011d7dc3319b5f36dc8cc1f9d90376dc288d9"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f00000001c0)=0x1)
write$capi20_data(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="100008000383dfea0000010000000000613834162eb8d11e46e092b7a8c0b3b25a67b3dc5e8e27a58e4053450f729424e3140e4a6730ffa6e1043cef0871b05b826b690d02816cd3057a7986a2b54f2ea75822174138639ab741d4f724335a8e29d2a3434aa1ce26e6"], 0x73)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000025c0)={0x3})
r4 = dup3(r2, r0, 0x80000)
ioctl$CAPI_CLR_FLAGS(r4, 0x80044325, &(0x7f0000000080))
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/162, 0xa2}, {&(0x7f00000024c0)=""/251, 0xfb}], 0x2, 0x4, 0xff)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x4, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_GET_NESTED_STATE(r3, 0xc080aebe, &(0x7f0000000380)={{0x0, 0x0, 0x80}})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000002400)=ANY=[@ANYBLOB="0000dc000000000000194afe0470f27c943f0000d400000000f80000000000000026730000000038000000000000000000020000000000000000000000000000002d0000000002000000008c6d8a75db42a6bc6bfc0000000000000000000000000000000000000000000400000000000011d7dc3319b5f36dc8cc1f9d90376dc288d9"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f00000001c0)=0x1) (async)
write$capi20_data(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="100008000383dfea0000010000000000613834162eb8d11e46e092b7a8c0b3b25a67b3dc5e8e27a58e4053450f729424e3140e4a6730ffa6e1043cef0871b05b826b690d02816cd3057a7986a2b54f2ea75822174138639ab741d4f724335a8e29d2a3434aa1ce26e6"], 0x73) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000025c0)={0x3}) (async)
dup3(r2, r0, 0x80000) (async)
ioctl$CAPI_CLR_FLAGS(r4, 0x80044325, &(0x7f0000000080)) (async)
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/162, 0xa2}, {&(0x7f00000024c0)=""/251, 0xfb}], 0x2, 0x4, 0xff) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x4, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_GET_NESTED_STATE(r3, 0xc080aebe, &(0x7f0000000380)={{0x0, 0x0, 0x80}}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:05 executing program 4:
r0 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil}) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 32)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff}) (rerun: 32)
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000001c0)="66fc450f3066baa000ec0f01378ec8c4e239b80d62700000c7442400c5000000c402a1ad955d36e0c4ff1c24c46379637ad8400f2188f4f3430f1afc", 0x3c}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000140)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f00000001c0)="66fc450f3066baa000ec0f01378ec8c4e239b80d62700000c7442400c5000000c402a1ad955d36e0c4ff1c24c46379637ad8400f2188f4f3430f1afc", 0x3c}], 0x1, 0x51, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000140)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:06 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff})
ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f00000002c0)=0x4)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=@ipv6_newnexthop={0x94, 0x68, 0x20, 0x70bd2b, 0x25dfdbff, {0xa, 0x0, 0x4, 0x0, 0xa}, [@NHA_GROUP={0x3c, 0x2, [{0x0, 0x7}, {0x2, 0x7}, {0x1, 0x5}, {0x0, 0x3}, {0x2, 0x80}, {0x2}, {0x2, 0xa0}]}, @NHA_BLACKHOLE={0x4}, @NHA_RES_GROUP={0x34, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x1f}, @NHA_RES_GROUP_IDLE_TIMER={0x8, 0x2, 0x1}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x80}, @NHA_RES_GROUP_UNBALANCED_TIMER={0x8, 0x3, 0x8e3b}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x2}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x94}, 0x1, 0x0, 0x0, 0x8005}, 0x4a811)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r1, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f00000002c0)=0x4) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=@ipv6_newnexthop={0x94, 0x68, 0x20, 0x70bd2b, 0x25dfdbff, {0xa, 0x0, 0x4, 0x0, 0xa}, [@NHA_GROUP={0x3c, 0x2, [{0x0, 0x7}, {0x2, 0x7}, {0x1, 0x5}, {0x0, 0x3}, {0x2, 0x80}, {0x2}, {0x2, 0xa0}]}, @NHA_BLACKHOLE={0x4}, @NHA_RES_GROUP={0x34, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x1f}, @NHA_RES_GROUP_IDLE_TIMER={0x8, 0x2, 0x1}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x80}, @NHA_RES_GROUP_UNBALANCED_TIMER={0x8, 0x3, 0x8e3b}, @NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x2}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x94}, 0x1, 0x0, 0x0, 0x8005}, 0x4a811) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:06 executing program 4:
r0 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 64)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (rerun: 64)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000002400)=ANY=[@ANYBLOB="0000dc000000000000194afe0470f27c943f0000d400000000f80000000000000026730000000038000000000000000000020000000000000000000000000000002d0000000002000000008c6d8a75db42a6bc6bfc0000000000000000000000000000000000000000000400000000000011d7dc3319b5f36dc8cc1f9d90376dc288d9"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f00000001c0)=0x1) (async)
write$capi20_data(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="100008000383dfea0000010000000000613834162eb8d11e46e092b7a8c0b3b25a67b3dc5e8e27a58e4053450f729424e3140e4a6730ffa6e1043cef0871b05b826b690d02816cd3057a7986a2b54f2ea75822174138639ab741d4f724335a8e29d2a3434aa1ce26e6"], 0x73)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f00000025c0)={0x3}) (async)
r4 = dup3(r2, r0, 0x80000)
ioctl$CAPI_CLR_FLAGS(r4, 0x80044325, &(0x7f0000000080)) (async)
preadv(r4, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/162, 0xa2}, {&(0x7f00000024c0)=""/251, 0xfb}], 0x2, 0x4, 0xff)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x4, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_GET_NESTED_STATE(r3, 0xc080aebe, &(0x7f0000000380)={{0x0, 0x0, 0x80}}) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000380)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x800) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000100)={'ip6gre0\x00', <r4=>0x0, 0x29, 0x9, 0x40, 0xde37, 0x20, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, 0x8, 0x20, 0x9, 0x7}}) (async)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000002c0)={'gre0\x00', &(0x7f00000001c0)={'syztnl2\x00', <r5=>0x0, 0x40, 0x8000, 0x479, 0x8047, {{0x7, 0x4, 0x0, 0x37, 0x1c, 0x64, 0x0, 0x40, 0x4, 0x0, @multicast2, @remote, {[@lsrr={0x83, 0x7, 0x52, [@multicast2]}]}}}}})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000300)={0x58, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x58}}, 0x0) (async, rerun: 32)
sendfile(r0, r2, &(0x7f0000000080)=0x7ea181c0, 0x4) (rerun: 32)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

16:20:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673007df4ae4c7f4679af000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000599000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000440)="0f01c00f01cfbaf80c66b8a426c98466efbafc0c66b80000000066ef66b81a00c0fe0f23c00f21f8663503000d000b2354fafa00baf80c66b88073108966efbafc0c66b80010000066efbaf80c66a9485a110366efbafc0c66b8817dc92166ef0f38cbb64a620f20c06635000001000f22c0660f3840850e00", 0x79}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd83286b688c9d208dccaa462328341dc32c9536fe6aa833843a9af7e6115ee49acfcf16c47bcedba4295c20aa5ed59dced9fb7c2760fd22007771b5def2be3d96e3ea1d4d2392c12ff4e0376928eb59d2bdb40d2e9be40c31493d7c2e0a"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000380))
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x1a1)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000464000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000240)="0f20618f0978d7ea410f772e45f43e410fdc2dddae0000b9130a00000f320f20e035400000000f22e066f3460f20850f07407905", 0x34}], 0x1, 0x18, &(0x7f00000002c0)=[@cstype3={0x5, 0xa}, @cr4={0x1, 0x40020}], 0x2)

16:20:07 executing program 4:
r0 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18}, './file0\x00'}) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f81e001000000000367300000000380001745988918372b1f2e278f3ce9decd091375fac45ce7f587e7cbb75055521"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10001, 0x1, 0x6000, 0x2000, &(0x7f00005ff000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000180)=0xd000)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'})
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d00000000000000000000000000000c", @ANYBLOB="910c60ff495452277d35207d2c408b3ab695ece8cc4e8de0d1ad4699796cf318e13986b3c1e2fbdc3a8b8974a919f22ed711676ccd7a04dced66ccad852b573d23064811af82bf023b2fe279ba85c9509fe3ab7d7586edf34f8722660e011ed6eac7f4d96600983c7a", @ANYBLOB="26b2ce4328f6c51e8815f151649e6702f1d903debe971e44c75f", @ANYRES16=r2], 0x78)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="73797a30f89f01000100"], 0xa)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8)
syz_open_dev$audion(&(0x7f0000000240), 0x8, 0x129000)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r8 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000)
dup3(r7, r8, 0x0)

16:20:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f81e001000000000367300000000380001745988918372b1f2e278f3ce9decd091375fac45ce7f587e7cbb75055521"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10001, 0x1, 0x6000, 0x2000, &(0x7f00005ff000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000180)=0xd000)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
fcntl$dupfd(r1, 0x0, r2) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000180)=0xd000) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)

16:20:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673007df4ae4c7f4679af000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000599000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000440)="0f01c00f01cfbaf80c66b8a426c98466efbafc0c66b80000000066ef66b81a00c0fe0f23c00f21f8663503000d000b2354fafa00baf80c66b88073108966efbafc0c66b80010000066efbaf80c66a9485a110366efbafc0c66b8817dc92166ef0f38cbb64a620f20c06635000001000f22c0660f3840850e00", 0x79}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd83286b688c9d208dccaa462328341dc32c9536fe6aa833843a9af7e6115ee49acfcf16c47bcedba4295c20aa5ed59dced9fb7c2760fd22007771b5def2be3d96e3ea1d4d2392c12ff4e0376928eb59d2bdb40d2e9be40c31493d7c2e0a"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000380)) (async)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x1a1) (async)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000464000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000240)="0f20618f0978d7ea410f772e45f43e410fdc2dddae0000b9130a00000f320f20e035400000000f22e066f3460f20850f07407905", 0x34}], 0x1, 0x18, &(0x7f00000002c0)=[@cstype3={0x5, 0xa}, @cr4={0x1, 0x40020}], 0x2)

16:20:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f81e001000000000367300000000380001745988918372b1f2e278f3ce9decd091375fac45ce7f587e7cbb75055521"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x10001, 0x1, 0x6000, 0x2000, &(0x7f00005ff000/0x2000)=nil}) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (rerun: 32)

16:20:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000180)=0xd000) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673007df4ae4c7f4679af000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000599000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000440)="0f01c00f01cfbaf80c66b8a426c98466efbafc0c66b80000000066ef66b81a00c0fe0f23c00f21f8663503000d000b2354fafa00baf80c66b88073108966efbafc0c66b80010000066efbaf80c66a9485a110366efbafc0c66b8817dc92166ef0f38cbb64a620f20c06635000001000f22c0660f3840850e00", 0x79}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd83286b688c9d208dccaa462328341dc32c9536fe6aa833843a9af7e6115ee49acfcf16c47bcedba4295c20aa5ed59dced9fb7c2760fd22007771b5def2be3d96e3ea1d4d2392c12ff4e0376928eb59d2bdb40d2e9be40c31493d7c2e0a"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000380))
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x1a1)
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000464000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000240)="0f20618f0978d7ea410f772e45f43e410fdc2dddae0000b9130a00000f320f20e035400000000f22e066f3460f20850f07407905", 0x34}], 0x1, 0x18, &(0x7f00000002c0)=[@cstype3={0x5, 0xa}, @cr4={0x1, 0x40020}], 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673007df4ae4c7f4679af000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000599000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000440)="0f01c00f01cfbaf80c66b8a426c98466efbafc0c66b80000000066ef66b81a00c0fe0f23c00f21f8663503000d000b2354fafa00baf80c66b88073108966efbafc0c66b80010000066efbaf80c66a9485a110366efbafc0c66b8817dc92166ef0f38cbb64a620f20c06635000001000f22c0660f3840850e00", 0x79}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd83286b688c9d208dccaa462328341dc32c9536fe6aa833843a9af7e6115ee49acfcf16c47bcedba4295c20aa5ed59dced9fb7c2760fd22007771b5def2be3d96e3ea1d4d2392c12ff4e0376928eb59d2bdb40d2e9be40c31493d7c2e0a"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000380)) (async)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
creat(&(0x7f00000001c0)='./file0\x00', 0x1a1) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r5, 0x0, r6, 0x0, 0x9, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, r6, &(0x7f0000464000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, &(0x7f0000000240)="0f20618f0978d7ea410f772e45f43e410fdc2dddae0000b9130a00000f320f20e035400000000f22e066f3460f20850f07407905", 0x34}], 0x1, 0x18, &(0x7f00000002c0)=[@cstype3={0x5, 0xa}, @cr4={0x1, 0x40020}], 0x2) (async)

16:20:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x10, 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x6c, r3, 0x240, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x2, 0xe}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x6}, @NL80211_ATTR_ADMITTED_TIME={0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20004001}, 0x54)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$int_in(r6, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:20:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
shutdown(0xffffffffffffffff, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_misc(r2, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async, rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x10, 0x0, 0x0) (async, rerun: 64)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) (async)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0)
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x6c, r3, 0x240, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x2, 0xe}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x6}, @NL80211_ATTR_ADMITTED_TIME={0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20004001}, 0x54)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$int_in(r6, 0x5452, &(0x7f0000000100)=0x8) (async)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async, rerun: 64)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (rerun: 64)

16:20:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000601000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000480)="c74424003cbba7cfc744240206b6d34cc7442406000000000f011424b8010000000f01c167f30f07c4c17b2d010f01c10f001ab805000000b9000000000f01d9db2d00500000c4c1056ccaf0825f3453", 0x50}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000280)="c744240038010000c744240202000000ff1c243e460f220266baf80cb824eb0285ef66bafc0ced410f73f2b166460fc7b50f000000b90d0a0000b85a740000ba000000000f30c744240025010000c7442402fd610000ff2c24420f01f866470f3a0f7b8c132e2e0f0f271d", 0x6b}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r0, @ANYBLOB="02000000000000002e2f66696c653000fadd2535ebbdaaaf442afdcbee9d076a51002a4896faf421977364000000008000000176ce0b2859aa7d1ea3f831920d5141f3742504fb5e03a498f9e51ef8ca906a130bd28000453f880c8d4601e96d372b7641747a752399a646985f2df204cdd4a3ac318c6f2915f3600dbd5c84f4416b6bda5648f3b398f09cc3cf7db50549c4fc16746621f3c571b70a9dd8ea5921ad256b28ed2004cfcf84421da1594d8e6b59c8134d1c08d2bb450ec5e243c80db08147d14e693e2a71cdd38b9477ebd4"])
mmap$KVM_VCPU(&(0x7f0000615000/0x2000)=nil, 0x930, 0x4, 0x40010, r2, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
r6 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r6, 0xc008ae05, &(0x7f0000000500)=""/147)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000300)={0x81, 0x0, 0x2})

16:20:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'})
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d00000000000000000000000000000c", @ANYBLOB="910c60ff495452277d35207d2c408b3ab695ece8cc4e8de0d1ad4699796cf318e13986b3c1e2fbdc3a8b8974a919f22ed711676ccd7a04dced66ccad852b573d23064811af82bf023b2fe279ba85c9509fe3ab7d7586edf34f8722660e011ed6eac7f4d96600983c7a", @ANYBLOB="26b2ce4328f6c51e8815f151649e6702f1d903debe971e44c75f", @ANYRES16=r2], 0x78)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="73797a30f89f01000100"], 0xa)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8)
syz_open_dev$audion(&(0x7f0000000240), 0x8, 0x129000)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
r8 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000)
dup3(r7, r8, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)) (async)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d00000000000000000000000000000c", @ANYBLOB="910c60ff495452277d35207d2c408b3ab695ece8cc4e8de0d1ad4699796cf318e13986b3c1e2fbdc3a8b8974a919f22ed711676ccd7a04dced66ccad852b573d23064811af82bf023b2fe279ba85c9509fe3ab7d7586edf34f8722660e011ed6eac7f4d96600983c7a", @ANYBLOB="26b2ce4328f6c51e8815f151649e6702f1d903debe971e44c75f", @ANYRES16=r2], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="73797a30f89f01000100"], 0xa) (async)
pipe(&(0x7f0000000080)) (async)
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8) (async)
syz_open_dev$audion(&(0x7f0000000240), 0x8, 0x129000) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r6, 0xae80, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000) (async)
dup3(r7, r8, 0x0) (async)

16:20:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 64)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x10, 0x0, 0x0) (async, rerun: 64)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) (rerun: 64)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x40, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IE={0x11, 0x2a, [@random={0xdd, 0xb, 'abcdefghijk'}]}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ap_ssid}]}]}, 0x40}}, 0x0) (async, rerun: 32)
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x6c, r3, 0x240, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x2, 0xe}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x6}, @NL80211_ATTR_ADMITTED_TIME={0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20004001}, 0x54) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (rerun: 32)
pipe(&(0x7f0000000080)={<r6=>0xffffffffffffffff})
ioctl$int_in(r6, 0x5452, &(0x7f0000000100)=0x8)
ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:20:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000601000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000480)="c74424003cbba7cfc744240206b6d34cc7442406000000000f011424b8010000000f01c167f30f07c4c17b2d010f01c10f001ab805000000b9000000000f01d9db2d00500000c4c1056ccaf0825f3453", 0x50}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000280)="c744240038010000c744240202000000ff1c243e460f220266baf80cb824eb0285ef66bafc0ced410f73f2b166460fc7b50f000000b90d0a0000b85a740000ba000000000f30c744240025010000c7442402fd610000ff2c24420f01f866470f3a0f7b8c132e2e0f0f271d", 0x6b}], 0x1, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r0, @ANYBLOB="02000000000000002e2f66696c653000fadd2535ebbdaaaf442afdcbee9d076a51002a4896faf421977364000000008000000176ce0b2859aa7d1ea3f831920d5141f3742504fb5e03a498f9e51ef8ca906a130bd28000453f880c8d4601e96d372b7641747a752399a646985f2df204cdd4a3ac318c6f2915f3600dbd5c84f4416b6bda5648f3b398f09cc3cf7db50549c4fc16746621f3c571b70a9dd8ea5921ad256b28ed2004cfcf84421da1594d8e6b59c8134d1c08d2bb450ec5e243c80db08147d14e693e2a71cdd38b9477ebd4"])
mmap$KVM_VCPU(&(0x7f0000615000/0x2000)=nil, 0x930, 0x4, 0x40010, r2, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
r6 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r6, 0xc008ae05, &(0x7f0000000500)=""/147) (async, rerun: 64)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (rerun: 64)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000300)={0x81, 0x0, 0x2})

16:20:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
shutdown(0xffffffffffffffff, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_misc(r2, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
shutdown(0xffffffffffffffff, 0x1) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r2, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f00000df000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0xf3ab7000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000080000000000003000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f000021d000/0x18000)=nil, &(0x7f0000000340)=[@text16={0x10, &(0x7f00000002c0)="650f0197890eba210066b8a7886bd866ef36660f3882090f0f897e60b72e2cf866b9200800000f320fc76e0066b8010000000f01d966b9800000c00f326635010000000f300f162c", 0x48}], 0x1, 0x35, &(0x7f0000000380)=[@dstype3={0x7, 0x3}], 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696cccc5f5f926391caa462328644a60f30f5a4f29ab97e7b2a4c437caaced6e0c4cb9e6000073950a7b72e754d5578d5260dc6cb0ecd4a2b56b40c6119c7eb5718f284e"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r5, 0x80045301, &(0x7f0000000040))

16:20:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000140))
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
shutdown(0xffffffffffffffff, 0x1)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_misc(r2, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
shutdown(0xffffffffffffffff, 0x1) (async)
pipe(&(0x7f0000000000)) (async)
write$binfmt_misc(r2, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000601000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000480)="c74424003cbba7cfc744240206b6d34cc7442406000000000f011424b8010000000f01c167f30f07c4c17b2d010f01c10f001ab805000000b9000000000f01d9db2d00500000c4c1056ccaf0825f3453", 0x50}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000280)="c744240038010000c744240202000000ff1c243e460f220266baf80cb824eb0285ef66bafc0ced410f73f2b166460fc7b50f000000b90d0a0000b85a740000ba000000000f30c744240025010000c7442402fd610000ff2c24420f01f866470f3a0f7b8c132e2e0f0f271d", 0x6b}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r0, @ANYBLOB="02000000000000002e2f66696c653000fadd2535ebbdaaaf442afdcbee9d076a51002a4896faf421977364000000008000000176ce0b2859aa7d1ea3f831920d5141f3742504fb5e03a498f9e51ef8ca906a130bd28000453f880c8d4601e96d372b7641747a752399a646985f2df204cdd4a3ac318c6f2915f3600dbd5c84f4416b6bda5648f3b398f09cc3cf7db50549c4fc16746621f3c571b70a9dd8ea5921ad256b28ed2004cfcf84421da1594d8e6b59c8134d1c08d2bb450ec5e243c80db08147d14e693e2a71cdd38b9477ebd4"]) (rerun: 64)
mmap$KVM_VCPU(&(0x7f0000615000/0x2000)=nil, 0x930, 0x4, 0x40010, r2, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff}) (rerun: 64)
write$binfmt_misc(r5, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
r6 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x20000, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r6, 0xc008ae05, &(0x7f0000000500)=""/147)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000300)={0x81, 0x0, 0x2})

16:20:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000140)) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (rerun: 32)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f00000df000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0xf3ab7000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000080000000000003000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async, rerun: 32)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x9, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f000021d000/0x18000)=nil, &(0x7f0000000340)=[@text16={0x10, &(0x7f00000002c0)="650f0197890eba210066b8a7886bd866ef36660f3882090f0f897e60b72e2cf866b9200800000f320fc76e0066b8010000000f01d966b9800000c00f326635010000000f300f162c", 0x48}], 0x1, 0x35, &(0x7f0000000380)=[@dstype3={0x7, 0x3}], 0x1) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696cccc5f5f926391caa462328644a60f30f5a4f29ab97e7b2a4c437caaced6e0c4cb9e6000073950a7b72e754d5578d5260dc6cb0ecd4a2b56b40c6119c7eb5718f284e"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000001c0)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 64)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r5, 0x80045301, &(0x7f0000000040)) (rerun: 64)

16:20:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000280), 0x202000)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@alg={0xe0, 0x10, 0x1, 0x0, 0x0, {{'ecb-aes-aesni\x00'}}}, 0xe0}}, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:20:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x20)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async, rerun: 64)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r1, 0x8040ae9f, &(0x7f0000000140)) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file0\x00'}) (async)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x15, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d00000000000000000000000000000c", @ANYBLOB="910c60ff495452277d35207d2c408b3ab695ece8cc4e8de0d1ad4699796cf318e13986b3c1e2fbdc3a8b8974a919f22ed711676ccd7a04dced66ccad852b573d23064811af82bf023b2fe279ba85c9509fe3ab7d7586edf34f8722660e011ed6eac7f4d96600983c7a", @ANYBLOB="26b2ce4328f6c51e8815f151649e6702f1d903debe971e44c75f", @ANYRES16=r2], 0x78) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
write$binfmt_misc(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="73797a30f89f01000100"], 0xa)
pipe(&(0x7f0000000080)={<r5=>0xffffffffffffffff})
ioctl$int_in(r5, 0x5452, &(0x7f0000000100)=0x8) (async)
syz_open_dev$audion(&(0x7f0000000240), 0x8, 0x129000) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0) (async)
r8 = openat$mice(0xffffffffffffff9c, &(0x7f00000001c0), 0x10000)
dup3(r7, r8, 0x0)

16:20:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000280), 0x202000)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@alg={0xe0, 0x10, 0x1, 0x0, 0x0, {{'ecb-aes-aesni\x00'}}}, 0xe0}}, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000280), 0x202000) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
socket$nl_crypto(0x10, 0x3, 0x15) (async)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@alg={0xe0, 0x10, 0x1, 0x0, 0x0, {{'ecb-aes-aesni\x00'}}}, 0xe0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:20:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000cc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000280)={[0x3ad7, 0x1, 0x4, 0x8, 0x100, 0x100000001, 0x4, 0xfffffffffffffffe, 0x0, 0xffffffffffffff01, 0xff, 0x1ff, 0x8, 0x8001, 0x1, 0x8], 0x4, 0xb0480})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x309402, 0x0)
r4 = openat2(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x200, 0x85, 0x8}, 0x18)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000060f000/0x18000)=nil, &(0x7f0000000480)=[@text32={0x20, &(0x7f0000000400)="66b810008ee866ba6100b800800000ef660f38f5b606000000660f388134fff466b8bf000f00d8c4c1e1dbbd09000000c4c27d19f33e2e0f01d10f01bca70c000000", 0x42}], 0x1, 0x26, &(0x7f00000004c0), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000180)={[{0x3, 0xf800, 0x7f, 0x1a, 0x8, 0xd7, 0x9, 0x6, 0x61, 0xb2, 0xb4, 0xe2, 0x1}, {0x1, 0x6, 0x1, 0x40, 0x1, 0x6, 0xe3, 0x7f, 0x1, 0x8, 0x7f, 0xfe, 0x80000000}, {0x4, 0x100, 0x4, 0x40, 0x7, 0x80, 0x4f, 0xff, 0x2, 0x8, 0x6d, 0x1, 0x81}]})

16:20:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f00000df000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0xf3ab7000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000080000000000003000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f000021d000/0x18000)=nil, &(0x7f0000000340)=[@text16={0x10, &(0x7f00000002c0)="650f0197890eba210066b8a7886bd866ef36660f3882090f0f897e60b72e2cf866b9200800000f320fc76e0066b8010000000f01d966b9800000c00f326635010000000f300f162c", 0x48}], 0x1, 0x35, &(0x7f0000000380)=[@dstype3={0x7, 0x3}], 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696cccc5f5f926391caa462328644a60f30f5a4f29ab97e7b2a4c437caaced6e0c4cb9e6000073950a7b72e754d5578d5260dc6cb0ecd4a2b56b40c6119c7eb5718f284e"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000001c0))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r5, 0x80045301, &(0x7f0000000040))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f00000df000/0x4000)=nil, 0x4000, 0x2000000, 0x10, 0xffffffffffffffff, 0xf3ab7000) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000080000000000003000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r4, 0x0, r6, 0x0, 0x9, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f000021d000/0x18000)=nil, &(0x7f0000000340)=[@text16={0x10, &(0x7f00000002c0)="650f0197890eba210066b8a7886bd866ef36660f3882090f0f897e60b72e2cf866b9200800000f320fc76e0066b8010000000f01d966b9800000c00f326635010000000f300f162c", 0x48}], 0x1, 0x35, &(0x7f0000000380)=[@dstype3={0x7, 0x3}], 0x1) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696cccc5f5f926391caa462328644a60f30f5a4f29ab97e7b2a4c437caaced6e0c4cb9e6000073950a7b72e754d5578d5260dc6cb0ecd4a2b56b40c6119c7eb5718f284e"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000001c0)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r5, 0x80045301, &(0x7f0000000040)) (async)

16:20:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x9}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime(0x0, &(0x7f00000002c0)={<r4=>0x0, <r5=>0x0})
clock_gettime(0x0, &(0x7f0000000300)={<r6=>0x0, <r7=>0x0})
utimes(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)={{r4, r5/1000+60000}, {r6, r7/1000+60000}})
pipe(&(0x7f0000000140))
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a80)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x401, 0x0, 0x0, {0xc, 0x0, 0x3}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_DELSET={0x1c, 0xb, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x24}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x6}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}}, @NFT_MSG_DELTABLE={0x278, 0x2, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_TABLE_USERDATA={0x9, 0x6, "e17ae047c0"}, @NFTA_TABLE_USERDATA={0xf0, 0x6, "ca1af30964b4caf3bac5a7c6b84423576df29cb8f95d0fc160effdebf5f5fe2b4d9a1c41ae7b89ee36394ee187d83389e04cf6ed96c449373eea3f1339d5917042a82bd5bbf374eaee4e094b7a91f83dd81ac4bfcbea1fe9cc2561088f8116fe169b74ca914922ec83f2ec284c90f4cf86af949f345efcfd8a1f092b1e8c4094ed442185ce94afff8cb7bf62f789284c5bbbf5804314c631c8ac02be7d12b7c602ae68cc3f197a9e05cabf37a1eb8b393f29c539e50cb3d134fc90fe879b4ff3a2e7749fa5d8fd10813fec501f7448b569ee1ea4558a9faa4b66ed9914387f2f1ced33b16661dad1e76b4df7"}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x91, 0x6, "bb9e2af244c3ea8f79e909ae7887040b6c717643bb6aaefe322ce80965e48d5ab076b2a9812af0c05cec2656ff947046826b81ba5fda8f6fc3a28e5ca7e5c6c02b83052bd28bf7388ef5fec5e49552e71952494f168ca943e58cdbddc7f288d3a4fff5399e60c9ce1aacda464322bb5ae347fc4059f81ea770d1ad0af21d41afe6942fef536a133562a1fc05a0"}, @NFTA_TABLE_USERDATA={0x1d, 0x6, "0f9f8b98bf4fb9afea2083c6d2cbe0abdc6b11608604e84eb5"}, @NFTA_TABLE_USERDATA={0x9e, 0x6, "77d75d1029e871129e7d94d32992e8c14d9120e770bd81466c2384996072e9c0f7d2b8bb398f2af0dbf583b4c122859d4815358cd0d654ed0d7bc7363cb014df4550ea492c44d4aab3d074014aa7192a7657f7255e55f117349343eaa157e727a20c46e6e9c9e202c64c1db45faab3cf1e8da69e544383258e4ce31a4c10f19fe84fe8f909915c221c636345dcf2a26d18fb2da97dd5a39d9312"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x4c, 0x3, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x6}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_HOOK={0x24, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x57471823}]}]}, @NFT_MSG_NEWSETELEM={0x35c, 0xc, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2f0, 0x3, 0x0, 0x1, [{0x2ec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x224, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VALUE={0xa8, 0x1, "1c7d44f6438dc57efe2a55e517da400724d9f068ac4316b9abaee9a3d02a0c13eb1a1ed627c9f4b9c3cca547fe52156b5e4f49b89a3339ec92a564b681bd5e4462a4e9698fd4e829f3361a45f4bb858fa1df13488c09057e1efb84887cc443aacd22cfdab2d1b3604970ce043c1bab6ff337f304ceb03d334ac663cb68b2e760b2977cd8ac0da76bf760999ca1fb1c221ee76711b03c10d198c95528e0d8c93553a6895f"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x1a, 0x1, "55dd777bf31cbfe98213959940ef706c45ff21be4adb"}, @NFTA_DATA_VALUE={0xc8, 0x1, "1abca3952c4349570a2021ac128c0787fb38b283a083fa98322af3ddd277d86a1ae99c35e3a388c524b140d155162b647747a408a25683a9bc433f157ebb64070ecae07dd62af9b70ffa732e7f0ff6648719fb04562ff561a0e5ebaac209cf383ba30258283b877dfdccde8bc4c621addf36849df17adf8bcec76e03ef47d2eaeb09d3002d4ab07f7dd596fc4d2c8b1b6611b9144d9b9797db9d9710ee82c83f8ec0b84e6860801aa60767061958565dc01d5af1c707d878e72ac0c24d658f92996de082"}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x43}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x38, 0x1, "aa9802a4932b81140e066ec729862f6b4b5271a385b56f01cbeeaa2d211e9a663efc6340e17684ef298bd851466fd12017068b19"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_USERDATA={0x22, 0x6, 0x1, 0x0, "02f0bfbd4c08d061c3848fddabfeaf2b9bbbc9e69bf47946f2bf95016011"}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x7c, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x3c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x8000}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0xff}]}}}, {0x30, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz2\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xa}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x6a0}}, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

[ 1486.217679][ T5742] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1486.229949][ T5743] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=167772160 (5368709120 ns) > initial count (640 ns). Using initial count to start timer.
16:20:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)={&(0x7f00000001c0)='./file0\x00'}, 0x10)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000540)="66baf80cb8ad8e2b80ef66bafc0cecb9730b00000f320fc7b321730000b805000000b9030000000f01c166baf80cb80c9a1d8aef66bafc0c66b8000066ef0f381d2e3e0fc76d25b95a080000b839000000ba000000000f3066ba430066b8cdf266ef66ba4000b806000000ef", 0x6c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = accept4$alg(r1, 0x0, 0x0, 0x80800)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r5=>r1, {0x1}}, './file0\x00'})
ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f0000000480))
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000380)="66baf80cb884887d88ef66bafc0cb800700000ef0f01c40f01b8b3b9a70e36642e0fc2066366baf80cb880f1ac80ef66bafc0c66ed660f38814373b9520200000f32980f20e035400000000f22e0f264315a00", 0x53}], 0x1, 0x72, &(0x7f0000000400)=[@cr4={0x1, 0x46600}, @dstype0={0x6, 0x8}], 0x2)
write$binfmt_misc(r4, &(0x7f0000000280)={'syz0', "425a6a9290ef8f7d3d06a1f738984a5fb25a9f84027d8d3f3cf5e348d74363b9986d8d999cac7aa9cea4bf3170be0f62c458d6a42e30ab11bff19ce7c10d0ab8de91f25faccb754cf2a49b6ad287a6b2604225257d6724460f67fedf67dae861133fac79e5e7ac342260f7"}, 0x6f)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000280), 0x202000)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0)
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
r6 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@alg={0xe0, 0x10, 0x1, 0x0, 0x0, {{'ecb-aes-aesni\x00'}}}, 0xe0}}, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000280), 0x202000) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) (async)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000003700)={0x0, 0x0, &(0x7f00000036c0)={&(0x7f0000000740)={0x40, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}]}, 0x40}}, 0x0) (async)
ioctl$BTRFS_IOC_SYNC(r2, 0x9408, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) (async)
socket$nl_crypto(0x10, 0x3, 0x15) (async)
sendmsg$nl_crypto(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@alg={0xe0, 0x10, 0x1, 0x0, 0x0, {{'ecb-aes-aesni\x00'}}}, 0xe0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

16:20:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000cc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000280)={[0x3ad7, 0x1, 0x4, 0x8, 0x100, 0x100000001, 0x4, 0xfffffffffffffffe, 0x0, 0xffffffffffffff01, 0xff, 0x1ff, 0x8, 0x8001, 0x1, 0x8], 0x4, 0xb0480})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x309402, 0x0)
r4 = openat2(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x200, 0x85, 0x8}, 0x18)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000060f000/0x18000)=nil, &(0x7f0000000480)=[@text32={0x20, &(0x7f0000000400)="66b810008ee866ba6100b800800000ef660f38f5b606000000660f388134fff466b8bf000f00d8c4c1e1dbbd09000000c4c27d19f33e2e0f01d10f01bca70c000000", 0x42}], 0x1, 0x26, &(0x7f00000004c0), 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000180)={[{0x3, 0xf800, 0x7f, 0x1a, 0x8, 0xd7, 0x9, 0x6, 0x61, 0xb2, 0xb4, 0xe2, 0x1}, {0x1, 0x6, 0x1, 0x40, 0x1, 0x6, 0xe3, 0x7f, 0x1, 0x8, 0x7f, 0xfe, 0x80000000}, {0x4, 0x100, 0x4, 0x40, 0x7, 0x80, 0x4f, 0xff, 0x2, 0x8, 0x6d, 0x1, 0x81}]})

16:20:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x9}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime(0x0, &(0x7f00000002c0)={<r4=>0x0, <r5=>0x0})
clock_gettime(0x0, &(0x7f0000000300)={<r6=>0x0, <r7=>0x0})
utimes(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)={{r4, r5/1000+60000}, {r6, r7/1000+60000}})
pipe(&(0x7f0000000140))
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a80)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x401, 0x0, 0x0, {0xc, 0x0, 0x3}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_DELSET={0x1c, 0xb, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x24}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x6}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}}, @NFT_MSG_DELTABLE={0x278, 0x2, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_TABLE_USERDATA={0x9, 0x6, "e17ae047c0"}, @NFTA_TABLE_USERDATA={0xf0, 0x6, "ca1af30964b4caf3bac5a7c6b84423576df29cb8f95d0fc160effdebf5f5fe2b4d9a1c41ae7b89ee36394ee187d83389e04cf6ed96c449373eea3f1339d5917042a82bd5bbf374eaee4e094b7a91f83dd81ac4bfcbea1fe9cc2561088f8116fe169b74ca914922ec83f2ec284c90f4cf86af949f345efcfd8a1f092b1e8c4094ed442185ce94afff8cb7bf62f789284c5bbbf5804314c631c8ac02be7d12b7c602ae68cc3f197a9e05cabf37a1eb8b393f29c539e50cb3d134fc90fe879b4ff3a2e7749fa5d8fd10813fec501f7448b569ee1ea4558a9faa4b66ed9914387f2f1ced33b16661dad1e76b4df7"}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x91, 0x6, "bb9e2af244c3ea8f79e909ae7887040b6c717643bb6aaefe322ce80965e48d5ab076b2a9812af0c05cec2656ff947046826b81ba5fda8f6fc3a28e5ca7e5c6c02b83052bd28bf7388ef5fec5e49552e71952494f168ca943e58cdbddc7f288d3a4fff5399e60c9ce1aacda464322bb5ae347fc4059f81ea770d1ad0af21d41afe6942fef536a133562a1fc05a0"}, @NFTA_TABLE_USERDATA={0x1d, 0x6, "0f9f8b98bf4fb9afea2083c6d2cbe0abdc6b11608604e84eb5"}, @NFTA_TABLE_USERDATA={0x9e, 0x6, "77d75d1029e871129e7d94d32992e8c14d9120e770bd81466c2384996072e9c0f7d2b8bb398f2af0dbf583b4c122859d4815358cd0d654ed0d7bc7363cb014df4550ea492c44d4aab3d074014aa7192a7657f7255e55f117349343eaa157e727a20c46e6e9c9e202c64c1db45faab3cf1e8da69e544383258e4ce31a4c10f19fe84fe8f909915c221c636345dcf2a26d18fb2da97dd5a39d9312"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x4c, 0x3, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x6}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_HOOK={0x24, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x57471823}]}]}, @NFT_MSG_NEWSETELEM={0x35c, 0xc, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2f0, 0x3, 0x0, 0x1, [{0x2ec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x224, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VALUE={0xa8, 0x1, "1c7d44f6438dc57efe2a55e517da400724d9f068ac4316b9abaee9a3d02a0c13eb1a1ed627c9f4b9c3cca547fe52156b5e4f49b89a3339ec92a564b681bd5e4462a4e9698fd4e829f3361a45f4bb858fa1df13488c09057e1efb84887cc443aacd22cfdab2d1b3604970ce043c1bab6ff337f304ceb03d334ac663cb68b2e760b2977cd8ac0da76bf760999ca1fb1c221ee76711b03c10d198c95528e0d8c93553a6895f"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x1a, 0x1, "55dd777bf31cbfe98213959940ef706c45ff21be4adb"}, @NFTA_DATA_VALUE={0xc8, 0x1, "1abca3952c4349570a2021ac128c0787fb38b283a083fa98322af3ddd277d86a1ae99c35e3a388c524b140d155162b647747a408a25683a9bc433f157ebb64070ecae07dd62af9b70ffa732e7f0ff6648719fb04562ff561a0e5ebaac209cf383ba30258283b877dfdccde8bc4c621addf36849df17adf8bcec76e03ef47d2eaeb09d3002d4ab07f7dd596fc4d2c8b1b6611b9144d9b9797db9d9710ee82c83f8ec0b84e6860801aa60767061958565dc01d5af1c707d878e72ac0c24d658f92996de082"}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x43}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x38, 0x1, "aa9802a4932b81140e066ec729862f6b4b5271a385b56f01cbeeaa2d211e9a663efc6340e17684ef298bd851466fd12017068b19"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_USERDATA={0x22, 0x6, 0x1, 0x0, "02f0bfbd4c08d061c3848fddabfeaf2b9bbbc9e69bf47946f2bf95016011"}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x7c, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x3c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x8000}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0xff}]}}}, {0x30, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz2\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xa}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x6a0}}, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x9}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
clock_gettime(0x0, &(0x7f00000002c0)) (async)
clock_gettime(0x0, &(0x7f0000000300)) (async)
utimes(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)={{r4, r5/1000+60000}, {r6, r7/1000+60000}}) (async)
pipe(&(0x7f0000000140)) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
sendmsg$NFT_BATCH(r2, &(0x7f0000000ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a80)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x401, 0x0, 0x0, {0xc, 0x0, 0x3}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_DELSET={0x1c, 0xb, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x24}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x6}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}}, @NFT_MSG_DELTABLE={0x278, 0x2, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_TABLE_USERDATA={0x9, 0x6, "e17ae047c0"}, @NFTA_TABLE_USERDATA={0xf0, 0x6, "ca1af30964b4caf3bac5a7c6b84423576df29cb8f95d0fc160effdebf5f5fe2b4d9a1c41ae7b89ee36394ee187d83389e04cf6ed96c449373eea3f1339d5917042a82bd5bbf374eaee4e094b7a91f83dd81ac4bfcbea1fe9cc2561088f8116fe169b74ca914922ec83f2ec284c90f4cf86af949f345efcfd8a1f092b1e8c4094ed442185ce94afff8cb7bf62f789284c5bbbf5804314c631c8ac02be7d12b7c602ae68cc3f197a9e05cabf37a1eb8b393f29c539e50cb3d134fc90fe879b4ff3a2e7749fa5d8fd10813fec501f7448b569ee1ea4558a9faa4b66ed9914387f2f1ced33b16661dad1e76b4df7"}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x91, 0x6, "bb9e2af244c3ea8f79e909ae7887040b6c717643bb6aaefe322ce80965e48d5ab076b2a9812af0c05cec2656ff947046826b81ba5fda8f6fc3a28e5ca7e5c6c02b83052bd28bf7388ef5fec5e49552e71952494f168ca943e58cdbddc7f288d3a4fff5399e60c9ce1aacda464322bb5ae347fc4059f81ea770d1ad0af21d41afe6942fef536a133562a1fc05a0"}, @NFTA_TABLE_USERDATA={0x1d, 0x6, "0f9f8b98bf4fb9afea2083c6d2cbe0abdc6b11608604e84eb5"}, @NFTA_TABLE_USERDATA={0x9e, 0x6, "77d75d1029e871129e7d94d32992e8c14d9120e770bd81466c2384996072e9c0f7d2b8bb398f2af0dbf583b4c122859d4815358cd0d654ed0d7bc7363cb014df4550ea492c44d4aab3d074014aa7192a7657f7255e55f117349343eaa157e727a20c46e6e9c9e202c64c1db45faab3cf1e8da69e544383258e4ce31a4c10f19fe84fe8f909915c221c636345dcf2a26d18fb2da97dd5a39d9312"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x4c, 0x3, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x6}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_HOOK={0x24, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x57471823}]}]}, @NFT_MSG_NEWSETELEM={0x35c, 0xc, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2f0, 0x3, 0x0, 0x1, [{0x2ec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x224, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VALUE={0xa8, 0x1, "1c7d44f6438dc57efe2a55e517da400724d9f068ac4316b9abaee9a3d02a0c13eb1a1ed627c9f4b9c3cca547fe52156b5e4f49b89a3339ec92a564b681bd5e4462a4e9698fd4e829f3361a45f4bb858fa1df13488c09057e1efb84887cc443aacd22cfdab2d1b3604970ce043c1bab6ff337f304ceb03d334ac663cb68b2e760b2977cd8ac0da76bf760999ca1fb1c221ee76711b03c10d198c95528e0d8c93553a6895f"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x1a, 0x1, "55dd777bf31cbfe98213959940ef706c45ff21be4adb"}, @NFTA_DATA_VALUE={0xc8, 0x1, "1abca3952c4349570a2021ac128c0787fb38b283a083fa98322af3ddd277d86a1ae99c35e3a388c524b140d155162b647747a408a25683a9bc433f157ebb64070ecae07dd62af9b70ffa732e7f0ff6648719fb04562ff561a0e5ebaac209cf383ba30258283b877dfdccde8bc4c621addf36849df17adf8bcec76e03ef47d2eaeb09d3002d4ab07f7dd596fc4d2c8b1b6611b9144d9b9797db9d9710ee82c83f8ec0b84e6860801aa60767061958565dc01d5af1c707d878e72ac0c24d658f92996de082"}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x43}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x38, 0x1, "aa9802a4932b81140e066ec729862f6b4b5271a385b56f01cbeeaa2d211e9a663efc6340e17684ef298bd851466fd12017068b19"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_USERDATA={0x22, 0x6, 0x1, 0x0, "02f0bfbd4c08d061c3848fddabfeaf2b9bbbc9e69bf47946f2bf95016011"}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x7c, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x3c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x8000}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0xff}]}}}, {0x30, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz2\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xa}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x6a0}}, 0x80) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0) (async)

16:20:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000cc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000280)={[0x3ad7, 0x1, 0x4, 0x8, 0x100, 0x100000001, 0x4, 0xfffffffffffffffe, 0x0, 0xffffffffffffff01, 0xff, 0x1ff, 0x8, 0x8001, 0x1, 0x8], 0x4, 0xb0480})
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x309402, 0x0)
r4 = openat2(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x200, 0x85, 0x8}, 0x18)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000060f000/0x18000)=nil, &(0x7f0000000480)=[@text32={0x20, &(0x7f0000000400)="66b810008ee866ba6100b800800000ef660f38f5b606000000660f388134fff466b8bf000f00d8c4c1e1dbbd09000000c4c27d19f33e2e0f01d10f01bca70c000000", 0x42}], 0x1, 0x26, &(0x7f00000004c0), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000180)={[{0x3, 0xf800, 0x7f, 0x1a, 0x8, 0xd7, 0x9, 0x6, 0x61, 0xb2, 0xb4, 0xe2, 0x1}, {0x1, 0x6, 0x1, 0x40, 0x1, 0x6, 0xe3, 0x7f, 0x1, 0x8, 0x7f, 0xfe, 0x80000000}, {0x4, 0x100, 0x4, 0x40, 0x7, 0x80, 0x4f, 0xff, 0x2, 0x8, 0x6d, 0x1, 0x81}]})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000cc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000280)={[0x3ad7, 0x1, 0x4, 0x8, 0x100, 0x100000001, 0x4, 0xfffffffffffffffe, 0x0, 0xffffffffffffff01, 0xff, 0x1ff, 0x8, 0x8001, 0x1, 0x8], 0x4, 0xb0480}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x309402, 0x0) (async)
openat2(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x200, 0x85, 0x8}, 0x18) (async)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f000060f000/0x18000)=nil, &(0x7f0000000480)=[@text32={0x20, &(0x7f0000000400)="66b810008ee866ba6100b800800000ef660f38f5b606000000660f388134fff466b8bf000f00d8c4c1e1dbbd09000000c4c27d19f33e2e0f01d10f01bca70c000000", 0x42}], 0x1, 0x26, &(0x7f00000004c0), 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000180)={[{0x3, 0xf800, 0x7f, 0x1a, 0x8, 0xd7, 0x9, 0x6, 0x61, 0xb2, 0xb4, 0xe2, 0x1}, {0x1, 0x6, 0x1, 0x40, 0x1, 0x6, 0xe3, 0x7f, 0x1, 0x8, 0x7f, 0xfe, 0x80000000}, {0x4, 0x100, 0x4, 0x40, 0x7, 0x80, 0x4f, 0xff, 0x2, 0x8, 0x6d, 0x1, 0x81}]}) (async)

16:20:15 executing program 3:
syz_open_dev$evdev(&(0x7f0000000100), 0x101, 0x40)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="f58463767b8db89f0f000000000000000000000000dfffffffffff09e5ff0000f8000010000000003673000000003852bb22db9cdae2c7ffa6f9904e278cd7fb2246cd572fc06d5f1d67d974eb4a82142079ffcdc622cb27a8f59b0775c027d5e6b0d7c1339a778ae832bb"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)={&(0x7f00000001c0)='./file0\x00'}, 0x10) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000540)="66baf80cb8ad8e2b80ef66bafc0cecb9730b00000f320fc7b321730000b805000000b9030000000f01c166baf80cb80c9a1d8aef66bafc0c66b8000066ef0f381d2e3e0fc76d25b95a080000b839000000ba000000000f3066ba430066b8cdf266ef66ba4000b806000000ef", 0x6c}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = accept4$alg(r1, 0x0, 0x0, 0x80800) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r5=>r1, {0x1}}, './file0\x00'})
ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f0000000480))
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000380)="66baf80cb884887d88ef66bafc0cb800700000ef0f01c40f01b8b3b9a70e36642e0fc2066366baf80cb880f1ac80ef66bafc0c66ed660f38814373b9520200000f32980f20e035400000000f22e0f264315a00", 0x53}], 0x1, 0x72, &(0x7f0000000400)=[@cr4={0x1, 0x46600}, @dstype0={0x6, 0x8}], 0x2) (async)
write$binfmt_misc(r4, &(0x7f0000000280)={'syz0', "425a6a9290ef8f7d3d06a1f738984a5fb25a9f84027d8d3f3cf5e348d74363b9986d8d999cac7aa9cea4bf3170be0f62c458d6a42e30ab11bff19ce7c10d0ab8de91f25faccb754cf2a49b6ad287a6b2604225257d6724460f67fedf67dae861133fac79e5e7ac342260f7"}, 0x6f) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[ 1487.116271][ T5778] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=167772160 (5368709120 ns) > initial count (640 ns). Using initial count to start timer.
[ 1487.351474][ T5797] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
16:20:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000080)="0f01c50f234b2e0f01d10fc76d0066b8e2008ed8d0210f0966baa00066b8000066efc4e23dbf354900000066b839018ed0", 0x31}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x6000)
ioctl$KVM_CAP_HYPERV_SYNIC(r2, 0x4068aea3, &(0x7f0000000100))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)={&(0x7f00000001c0)='./file0\x00'}, 0x10)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000540)="66baf80cb8ad8e2b80ef66bafc0cecb9730b00000f320fc7b321730000b805000000b9030000000f01c166baf80cb80c9a1d8aef66bafc0c66b8000066ef0f381d2e3e0fc76d25b95a080000b839000000ba000000000f3066ba430066b8cdf266ef66ba4000b806000000ef", 0x6c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r4 = accept4$alg(r1, 0x0, 0x0, 0x80800)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r5=>r1, {0x1}}, './file0\x00'})
ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f0000000480))
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000380)="66baf80cb884887d88ef66bafc0cb800700000ef0f01c40f01b8b3b9a70e36642e0fc2066366baf80cb880f1ac80ef66bafc0c66ed660f38814373b9520200000f32980f20e035400000000f22e0f264315a00", 0x53}], 0x1, 0x72, &(0x7f0000000400)=[@cr4={0x1, 0x46600}, @dstype0={0x6, 0x8}], 0x2)
write$binfmt_misc(r4, &(0x7f0000000280)={'syz0', "425a6a9290ef8f7d3d06a1f738984a5fb25a9f84027d8d3f3cf5e348d74363b9986d8d999cac7aa9cea4bf3170be0f62c458d6a42e30ab11bff19ce7c10d0ab8de91f25faccb754cf2a49b6ad287a6b2604225257d6724460f67fedf67dae861133fac79e5e7ac342260f7"}, 0x6f)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000240)={&(0x7f00000001c0)='./file0\x00'}, 0x10) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000540)="66baf80cb8ad8e2b80ef66bafc0cecb9730b00000f320fc7b321730000b805000000b9030000000f01c166baf80cb80c9a1d8aef66bafc0c66b8000066ef0f381d2e3e0fc76d25b95a080000b839000000ba000000000f3066ba430066b8cdf266ef66ba4000b806000000ef", 0x6c}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
accept4$alg(r1, 0x0, 0x0, 0x80800) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) (async)
ioctl$KVM_GET_REGS(r5, 0x8090ae81, &(0x7f0000000480)) (async)
syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000380)="66baf80cb884887d88ef66bafc0cb800700000ef0f01c40f01b8b3b9a70e36642e0fc2066366baf80cb880f1ac80ef66bafc0c66ed660f38814373b9520200000f32980f20e035400000000f22e0f264315a00", 0x53}], 0x1, 0x72, &(0x7f0000000400)=[@cr4={0x1, 0x46600}, @dstype0={0x6, 0x8}], 0x2) (async)
write$binfmt_misc(r4, &(0x7f0000000280)={'syz0', "425a6a9290ef8f7d3d06a1f738984a5fb25a9f84027d8d3f3cf5e348d74363b9986d8d999cac7aa9cea4bf3170be0f62c458d6a42e30ab11bff19ce7c10d0ab8de91f25faccb754cf2a49b6ad287a6b2604225257d6724460f67fedf67dae861133fac79e5e7ac342260f7"}, 0x6f) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x9}]}}}]}], {0x14, 0x10}}, 0xa4}}, 0x0) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r2, 0x0) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
clock_gettime(0x0, &(0x7f00000002c0)={<r4=>0x0, <r5=>0x0}) (async)
clock_gettime(0x0, &(0x7f0000000300)={<r6=>0x0, <r7=>0x0})
utimes(&(0x7f0000000280)='./file0\x00', &(0x7f0000000340)={{r4, r5/1000+60000}, {r6, r7/1000+60000}}) (async)
pipe(&(0x7f0000000140))
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
sendmsg$NFT_BATCH(r2, &(0x7f0000000ac0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000a80)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWOBJ={0x1c, 0x12, 0xa, 0x401, 0x0, 0x0, {0xc, 0x0, 0x3}, @NFT_OBJECT_LIMIT=@NFTA_OBJ_TYPE={0x8}}, @NFT_MSG_DELSET={0x1c, 0xb, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x24}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x6}, @NFT_OBJECT_SYNPROXY=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}}, @NFT_MSG_DELTABLE={0x278, 0x2, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x9}, [@NFTA_TABLE_USERDATA={0x9, 0x6, "e17ae047c0"}, @NFTA_TABLE_USERDATA={0xf0, 0x6, "ca1af30964b4caf3bac5a7c6b84423576df29cb8f95d0fc160effdebf5f5fe2b4d9a1c41ae7b89ee36394ee187d83389e04cf6ed96c449373eea3f1339d5917042a82bd5bbf374eaee4e094b7a91f83dd81ac4bfcbea1fe9cc2561088f8116fe169b74ca914922ec83f2ec284c90f4cf86af949f345efcfd8a1f092b1e8c4094ed442185ce94afff8cb7bf62f789284c5bbbf5804314c631c8ac02be7d12b7c602ae68cc3f197a9e05cabf37a1eb8b393f29c539e50cb3d134fc90fe879b4ff3a2e7749fa5d8fd10813fec501f7448b569ee1ea4558a9faa4b66ed9914387f2f1ced33b16661dad1e76b4df7"}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x91, 0x6, "bb9e2af244c3ea8f79e909ae7887040b6c717643bb6aaefe322ce80965e48d5ab076b2a9812af0c05cec2656ff947046826b81ba5fda8f6fc3a28e5ca7e5c6c02b83052bd28bf7388ef5fec5e49552e71952494f168ca943e58cdbddc7f288d3a4fff5399e60c9ce1aacda464322bb5ae347fc4059f81ea770d1ad0af21d41afe6942fef536a133562a1fc05a0"}, @NFTA_TABLE_USERDATA={0x1d, 0x6, "0f9f8b98bf4fb9afea2083c6d2cbe0abdc6b11608604e84eb5"}, @NFTA_TABLE_USERDATA={0x9e, 0x6, "77d75d1029e871129e7d94d32992e8c14d9120e770bd81466c2384996072e9c0f7d2b8bb398f2af0dbf583b4c122859d4815358cd0d654ed0d7bc7363cb014df4550ea492c44d4aab3d074014aa7192a7657f7255e55f117349343eaa157e727a20c46e6e9c9e202c64c1db45faab3cf1e8da69e544383258e4ce31a4c10f19fe84fe8f909915c221c636345dcf2a26d18fb2da97dd5a39d9312"}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x4c, 0x3, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x6}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_HOOK={0x24, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x57471823}]}]}, @NFT_MSG_NEWSETELEM={0x35c, 0xc, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2f0, 0x3, 0x0, 0x1, [{0x2ec, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x224, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VALUE={0xa8, 0x1, "1c7d44f6438dc57efe2a55e517da400724d9f068ac4316b9abaee9a3d02a0c13eb1a1ed627c9f4b9c3cca547fe52156b5e4f49b89a3339ec92a564b681bd5e4462a4e9698fd4e829f3361a45f4bb858fa1df13488c09057e1efb84887cc443aacd22cfdab2d1b3604970ce043c1bab6ff337f304ceb03d334ac663cb68b2e760b2977cd8ac0da76bf760999ca1fb1c221ee76711b03c10d198c95528e0d8c93553a6895f"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x1a, 0x1, "55dd777bf31cbfe98213959940ef706c45ff21be4adb"}, @NFTA_DATA_VALUE={0xc8, 0x1, "1abca3952c4349570a2021ac128c0787fb38b283a083fa98322af3ddd277d86a1ae99c35e3a388c524b140d155162b647747a408a25683a9bc433f157ebb64070ecae07dd62af9b70ffa732e7f0ff6648719fb04562ff561a0e5ebaac209cf383ba30258283b877dfdccde8bc4c621addf36849df17adf8bcec76e03ef47d2eaeb09d3002d4ab07f7dd596fc4d2c8b1b6611b9144d9b9797db9d9710ee82c83f8ec0b84e6860801aa60767061958565dc01d5af1c707d878e72ac0c24d658f92996de082"}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x43}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x38, 0x1, "aa9802a4932b81140e066ec729862f6b4b5271a385b56f01cbeeaa2d211e9a663efc6340e17684ef298bd851466fd12017068b19"}]}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_ELEM_USERDATA={0x22, 0x6, 0x1, 0x0, "02f0bfbd4c08d061c3848fddabfeaf2b9bbbc9e69bf47946f2bf95016011"}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_EXPRESSIONS={0x7c, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @void}}, {0x3c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_NG_OFFSET={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x8000}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0xff}]}}}, {0x30, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz2\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xa}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x6a0}}, 0x80)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r8 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r8, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

16:20:17 executing program 3:
syz_open_dev$evdev(&(0x7f0000000100), 0x101, 0x40)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="f58463767b8db89f0f000000000000000000000000dfffffffffff09e5ff0000f8000010000000003673000000003852bb22db9cdae2c7ffa6f9904e278cd7fb2246cd572fc06d5f1d67d974eb4a82142079ffcdc622cb27a8f59b0775c027d5e6b0d7c1339a778ae832bb"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000005c98000200"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000280))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000005c98000200"], 0x78) (async, rerun: 64)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000280))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:17 executing program 0:
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000140)={0x100, 0x50313134, 0x10000, 0x1, 0x2, @stepwise={{0x9, 0x81}, {0x1, 0x1}, {0x400, 0x80000000}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffffffffff7)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:20:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000080)="0f01c50f234b2e0f01d10fc76d0066b8e2008ed8d0210f0966baa00066b8000066efc4e23dbf354900000066b839018ed0", 0x31}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x6000) (async)
ioctl$KVM_CAP_HYPERV_SYNIC(r2, 0x4068aea3, &(0x7f0000000100))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:18 executing program 3:
syz_open_dev$evdev(&(0x7f0000000100), 0x101, 0x40) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="f58463767b8db89f0f000000000000000000000000dfffffffffff09e5ff0000f8000010000000003673000000003852bb22db9cdae2c7ffa6f9904e278cd7fb2246cd572fc06d5f1d67d974eb4a82142079ffcdc622cb27a8f59b0775c027d5e6b0d7c1339a778ae832bb"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffffffffff7)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:20:18 executing program 0:
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000140)={0x100, 0x50313134, 0x10000, 0x1, 0x2, @stepwise={{0x9, 0x81}, {0x1, 0x1}, {0x400, 0x80000000}}}) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000080)="0f01c50f234b2e0f01d10fc76d0066b8e2008ed8d0210f0966baa00066b8000066efc4e23dbf354900000066b839018ed0", 0x31}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x6000)
ioctl$KVM_CAP_HYPERV_SYNIC(r2, 0x4068aea3, &(0x7f0000000100))
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={<r3=>r1, 0x0, 0xff, 0x7})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:19 executing program 0:
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000140)={0x100, 0x50313134, 0x10000, 0x1, 0x2, @stepwise={{0x9, 0x81}, {0x1, 0x1}, {0x400, 0x80000000}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(0xffffffffffffffff, 0xc034564b, &(0x7f0000000140)={0x100, 0x50313134, 0x10000, 0x1, 0x2, @stepwise={{0x9, 0x81}, {0x1, 0x1}, {0x400, 0x80000000}}}) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)

16:20:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$binfmt_misc(r3, &(0x7f0000000140)={'syz0', "069fb7abf40f"}, 0xa) (async, rerun: 32)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffffffffffff7) (rerun: 32)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:20:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r0, {0x10001}}, './file0\x00'})
ioctl$KVM_DEASSIGN_DEV_IRQ(r5, 0x4040ae75, &(0x7f0000000100)={0x9, 0x0, 0x51, 0x200})

16:20:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000005c98000200"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000280))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 32)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 32)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:19 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={<r3=>r1, 0x0, 0xff, 0x7})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl(r2, 0xda3, &(0x7f0000000240)="b72d7554c7204ef6d83bed7e84e31400e90a6b5f53000e391416c32797a15c886ad4e18137e72ee847eb52bc9c42ea666160b3cb3246148f9330973844d054a9dc7d6144cf81e090e6b89ae3b3cf2a0eba57a96bd0df53215ca276c50cc1cc94c1f5c850c87241bba8a65edaee2b9054eb525791aaf268c8bc646dc44351aa00e0fe2718fde56a7f32")
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = fcntl$dupfd(r2, 0x0, r0)
sendmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000240)=@qipcrtr={0x2a, 0xf, 0x1}, 0x80, &(0x7f0000000600)=[{&(0x7f00000002c0)="d5db27", 0x3}, {&(0x7f0000000380)="8ae2417a972dcfc1cd9ab8989bbad7e7a9c4dafd3f937aeb476970b3c729c888815bf4cd5b1d93632c476b65bb6b355a6de419714eeb45502d3d48bca02501a96ea046e84d69da0895804abb784f553c7d6c2eec679b347d6876712f87f503", 0x5f}, {&(0x7f0000000400)="ce293f0e78cd0661b12253c5b20d17e261f6db9a9c48bc3bab3ac23ec5f30487d79671359c4d2ad9b7a9519bcc74f4dbff295a2b15acafbf246532b04f4597888dbc", 0x42}, {&(0x7f0000000480)="3f5d0c60211975b65c23941462902ba7cfd8e523983ae98443951dd3b42fc5f840350c0744f0b556ac545a966483feec136b1ff8a8d4087a5940c5b22f76d0eb53b53bddc6d4872110070b8e66de5b1b125240f4e81a168d9aec12738627559afbaaebfd81d945d3d72db7413b66e84adc4fb35d01e8f3c88e5d83784bfa154edb348f2b425f38bf6f77ad444314850a0662b78216a8a96c9e5d66dd0897e3a3a1443f44b178ffde416f876e5d40014d01ddb40771bb089390e042359fc0fd4b81f42a82f75bba0236ca27c00637db5f507d8aa5cb86a0817be06f91416dfd459e615e5f824314fca32a", 0xea}, {&(0x7f0000000580)="ca8c70be6e10f9ddc75cae53e6a29b0e0ea4fa6f2ba2e913d0d191ed70ca05a125b2cd2dae2db782e2563e19b4a3efbcb324e48c0cb29a02594eb35ca13a02ec3d24854ea11a34f148e9167717b7dac842b49b86bb", 0x55}], 0x5, &(0x7f0000000680)=[{0xc8, 0x112, 0x0, "1364ebdfff5ae828416d0da1660e0da1a42ffc3133b53a656d591d8d727da8346f569452127c17a4e015dd168d758e11ae8b925d22d901a09d48b7d07253a97537049bf57060eed5e8a9e03f7191d77657b78495f216ea551288ed23021ae8c88c1ca41a1b6b8c2f5f6923b002058b10c31b9b954ca32b92f03d55ba3f75333be892eb65de492023428391bef41c23cb3e8c98e8f06137bbfaee60fae1e02db24d72dbaa1b00a745bd6a44711f4bbfa495063fb9cb712c1d"}], 0xc8}}], 0x1, 0x8040)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe2(&(0x7f00000001c0), 0x44800)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:20:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r0, {0x10001}}, './file0\x00'})
ioctl$KVM_DEASSIGN_DEV_IRQ(r5, 0x4040ae75, &(0x7f0000000100)={0x9, 0x0, 0x51, 0x200})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x10001}}, './file0\x00'}) (async)
ioctl$KVM_DEASSIGN_DEV_IRQ(r5, 0x4040ae75, &(0x7f0000000100)={0x9, 0x0, 0x51, 0x200}) (async)

[ 1492.476170][ T5949] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3962465405 (63399446480 ns) > initial count (62351083232 ns). Using initial count to start timer.
16:20:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000280)="0fd1e0b9800000c00f3235002000000f3036400f07c421fa12cf3ef3440f38f6010f013966b8fc008ec8c4c11c59e3b805000000b9001000000f01c13626410fc5fca8"}], 0xb43, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x42)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f00000001c0))
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000340)={[{0x1f, 0x3ec5, 0x40, 0x40, 0xa9, 0x7f, 0x3f, 0xfc, 0x5, 0x7, 0x0, 0x9, 0xda}, {0x3, 0x2, 0x0, 0x1, 0x5, 0x4, 0x3, 0x0, 0x40, 0x1, 0x8, 0x3, 0x100}, {0xfffffeff, 0x335, 0x81, 0x80, 0x1, 0x0, 0xa0, 0x3, 0x7, 0x40, 0x7, 0x5, 0x6e}], 0x2})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, &(0x7f0000000300))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

16:20:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = fcntl$dupfd(r2, 0x0, r0)
sendmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000240)=@qipcrtr={0x2a, 0xf, 0x1}, 0x80, &(0x7f0000000600)=[{&(0x7f00000002c0)="d5db27", 0x3}, {&(0x7f0000000380)="8ae2417a972dcfc1cd9ab8989bbad7e7a9c4dafd3f937aeb476970b3c729c888815bf4cd5b1d93632c476b65bb6b355a6de419714eeb45502d3d48bca02501a96ea046e84d69da0895804abb784f553c7d6c2eec679b347d6876712f87f503", 0x5f}, {&(0x7f0000000400)="ce293f0e78cd0661b12253c5b20d17e261f6db9a9c48bc3bab3ac23ec5f30487d79671359c4d2ad9b7a9519bcc74f4dbff295a2b15acafbf246532b04f4597888dbc", 0x42}, {&(0x7f0000000480)="3f5d0c60211975b65c23941462902ba7cfd8e523983ae98443951dd3b42fc5f840350c0744f0b556ac545a966483feec136b1ff8a8d4087a5940c5b22f76d0eb53b53bddc6d4872110070b8e66de5b1b125240f4e81a168d9aec12738627559afbaaebfd81d945d3d72db7413b66e84adc4fb35d01e8f3c88e5d83784bfa154edb348f2b425f38bf6f77ad444314850a0662b78216a8a96c9e5d66dd0897e3a3a1443f44b178ffde416f876e5d40014d01ddb40771bb089390e042359fc0fd4b81f42a82f75bba0236ca27c00637db5f507d8aa5cb86a0817be06f91416dfd459e615e5f824314fca32a", 0xea}, {&(0x7f0000000580)="ca8c70be6e10f9ddc75cae53e6a29b0e0ea4fa6f2ba2e913d0d191ed70ca05a125b2cd2dae2db782e2563e19b4a3efbcb324e48c0cb29a02594eb35ca13a02ec3d24854ea11a34f148e9167717b7dac842b49b86bb", 0x55}], 0x5, &(0x7f0000000680)=[{0xc8, 0x112, 0x0, "1364ebdfff5ae828416d0da1660e0da1a42ffc3133b53a656d591d8d727da8346f569452127c17a4e015dd168d758e11ae8b925d22d901a09d48b7d07253a97537049bf57060eed5e8a9e03f7191d77657b78495f216ea551288ed23021ae8c88c1ca41a1b6b8c2f5f6923b002058b10c31b9b954ca32b92f03d55ba3f75333be892eb65de492023428391bef41c23cb3e8c98e8f06137bbfaee60fae1e02db24d72dbaa1b00a745bd6a44711f4bbfa495063fb9cb712c1d"}], 0xc8}}], 0x1, 0x8040)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
pipe2(&(0x7f00000001c0), 0x44800)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
fcntl$dupfd(r2, 0x0, r0) (async)
sendmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000240)=@qipcrtr={0x2a, 0xf, 0x1}, 0x80, &(0x7f0000000600)=[{&(0x7f00000002c0)="d5db27", 0x3}, {&(0x7f0000000380)="8ae2417a972dcfc1cd9ab8989bbad7e7a9c4dafd3f937aeb476970b3c729c888815bf4cd5b1d93632c476b65bb6b355a6de419714eeb45502d3d48bca02501a96ea046e84d69da0895804abb784f553c7d6c2eec679b347d6876712f87f503", 0x5f}, {&(0x7f0000000400)="ce293f0e78cd0661b12253c5b20d17e261f6db9a9c48bc3bab3ac23ec5f30487d79671359c4d2ad9b7a9519bcc74f4dbff295a2b15acafbf246532b04f4597888dbc", 0x42}, {&(0x7f0000000480)="3f5d0c60211975b65c23941462902ba7cfd8e523983ae98443951dd3b42fc5f840350c0744f0b556ac545a966483feec136b1ff8a8d4087a5940c5b22f76d0eb53b53bddc6d4872110070b8e66de5b1b125240f4e81a168d9aec12738627559afbaaebfd81d945d3d72db7413b66e84adc4fb35d01e8f3c88e5d83784bfa154edb348f2b425f38bf6f77ad444314850a0662b78216a8a96c9e5d66dd0897e3a3a1443f44b178ffde416f876e5d40014d01ddb40771bb089390e042359fc0fd4b81f42a82f75bba0236ca27c00637db5f507d8aa5cb86a0817be06f91416dfd459e615e5f824314fca32a", 0xea}, {&(0x7f0000000580)="ca8c70be6e10f9ddc75cae53e6a29b0e0ea4fa6f2ba2e913d0d191ed70ca05a125b2cd2dae2db782e2563e19b4a3efbcb324e48c0cb29a02594eb35ca13a02ec3d24854ea11a34f148e9167717b7dac842b49b86bb", 0x55}], 0x5, &(0x7f0000000680)=[{0xc8, 0x112, 0x0, "1364ebdfff5ae828416d0da1660e0da1a42ffc3133b53a656d591d8d727da8346f569452127c17a4e015dd168d758e11ae8b925d22d901a09d48b7d07253a97537049bf57060eed5e8a9e03f7191d77657b78495f216ea551288ed23021ae8c88c1ca41a1b6b8c2f5f6923b002058b10c31b9b954ca32b92f03d55ba3f75333be892eb65de492023428391bef41c23cb3e8c98e8f06137bbfaee60fae1e02db24d72dbaa1b00a745bd6a44711f4bbfa495063fb9cb712c1d"}], 0xc8}}], 0x1, 0x8040) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe2(&(0x7f00000001c0), 0x44800) (async)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)

16:20:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl(r2, 0xda3, &(0x7f0000000240)="b72d7554c7204ef6d83bed7e84e31400e90a6b5f53000e391416c32797a15c886ad4e18137e72ee847eb52bc9c42ea666160b3cb3246148f9330973844d054a9dc7d6144cf81e090e6b89ae3b3cf2a0eba57a96bd0df53215ca276c50cc1cc94c1f5c850c87241bba8a65edaee2b9054eb525791aaf268c8bc646dc44351aa00e0fe2718fde56a7f32") (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:21 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="008563767b8d2abc7e66ea00dc00000000000000dfffffffffffff3f00000000000000f8000010000000003673000000003800"], 0x78) (async, rerun: 32)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={<r3=>r1, 0x0, 0xff, 0x7})
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (rerun: 32)
r3 = fcntl$dupfd(r2, 0x0, r0)
sendmmsg(r3, &(0x7f0000000300)=[{{&(0x7f0000000240)=@qipcrtr={0x2a, 0xf, 0x1}, 0x80, &(0x7f0000000600)=[{&(0x7f00000002c0)="d5db27", 0x3}, {&(0x7f0000000380)="8ae2417a972dcfc1cd9ab8989bbad7e7a9c4dafd3f937aeb476970b3c729c888815bf4cd5b1d93632c476b65bb6b355a6de419714eeb45502d3d48bca02501a96ea046e84d69da0895804abb784f553c7d6c2eec679b347d6876712f87f503", 0x5f}, {&(0x7f0000000400)="ce293f0e78cd0661b12253c5b20d17e261f6db9a9c48bc3bab3ac23ec5f30487d79671359c4d2ad9b7a9519bcc74f4dbff295a2b15acafbf246532b04f4597888dbc", 0x42}, {&(0x7f0000000480)="3f5d0c60211975b65c23941462902ba7cfd8e523983ae98443951dd3b42fc5f840350c0744f0b556ac545a966483feec136b1ff8a8d4087a5940c5b22f76d0eb53b53bddc6d4872110070b8e66de5b1b125240f4e81a168d9aec12738627559afbaaebfd81d945d3d72db7413b66e84adc4fb35d01e8f3c88e5d83784bfa154edb348f2b425f38bf6f77ad444314850a0662b78216a8a96c9e5d66dd0897e3a3a1443f44b178ffde416f876e5d40014d01ddb40771bb089390e042359fc0fd4b81f42a82f75bba0236ca27c00637db5f507d8aa5cb86a0817be06f91416dfd459e615e5f824314fca32a", 0xea}, {&(0x7f0000000580)="ca8c70be6e10f9ddc75cae53e6a29b0e0ea4fa6f2ba2e913d0d191ed70ca05a125b2cd2dae2db782e2563e19b4a3efbcb324e48c0cb29a02594eb35ca13a02ec3d24854ea11a34f148e9167717b7dac842b49b86bb", 0x55}], 0x5, &(0x7f0000000680)=[{0xc8, 0x112, 0x0, "1364ebdfff5ae828416d0da1660e0da1a42ffc3133b53a656d591d8d727da8346f569452127c17a4e015dd168d758e11ae8b925d22d901a09d48b7d07253a97537049bf57060eed5e8a9e03f7191d77657b78495f216ea551288ed23021ae8c88c1ca41a1b6b8c2f5f6923b002058b10c31b9b954ca32b92f03d55ba3f75333be892eb65de492023428391bef41c23cb3e8c98e8f06137bbfaee60fae1e02db24d72dbaa1b00a745bd6a44711f4bbfa495063fb9cb712c1d"}], 0xc8}}], 0x1, 0x8040) (async)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
pipe2(&(0x7f00000001c0), 0x44800)
ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r4, 0xae80, 0x0)

16:20:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async, rerun: 64)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r0, {0x10001}}, './file0\x00'}) (rerun: 32)
ioctl$KVM_DEASSIGN_DEV_IRQ(r5, 0x4040ae75, &(0x7f0000000100)={0x9, 0x0, 0x51, 0x200})

16:20:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000280)="0fd1e0b9800000c00f3235002000000f3036400f07c421fa12cf3ef3440f38f6010f013966b8fc008ec8c4c11c59e3b805000000b9001000000f01c13626410fc5fca8"}], 0xb43, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x42)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f00000001c0))
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000340)={[{0x1f, 0x3ec5, 0x40, 0x40, 0xa9, 0x7f, 0x3f, 0xfc, 0x5, 0x7, 0x0, 0x9, 0xda}, {0x3, 0x2, 0x0, 0x1, 0x5, 0x4, 0x3, 0x0, 0x40, 0x1, 0x8, 0x3, 0x100}, {0xfffffeff, 0x335, 0x81, 0x80, 0x1, 0x0, 0xa0, 0x3, 0x7, 0x40, 0x7, 0x5, 0x6e}], 0x2})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, &(0x7f0000000300))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
pidfd_getfd(0xffffffffffffffff, r1, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000280)="0fd1e0b9800000c00f3235002000000f3036400f07c421fa12cf3ef3440f38f6010f013966b8fc008ec8c4c11c59e3b805000000b9001000000f01c13626410fc5fca8"}], 0xb43, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
creat(&(0x7f00000000c0)='./file0\x00', 0x42) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f00000001c0)) (async)
pipe(&(0x7f0000000000)) (async)
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000340)={[{0x1f, 0x3ec5, 0x40, 0x40, 0xa9, 0x7f, 0x3f, 0xfc, 0x5, 0x7, 0x0, 0x9, 0xda}, {0x3, 0x2, 0x0, 0x1, 0x5, 0x4, 0x3, 0x0, 0x40, 0x1, 0x8, 0x3, 0x100}, {0xfffffeff, 0x335, 0x81, 0x80, 0x1, 0x0, 0xa0, 0x3, 0x7, 0x40, 0x7, 0x5, 0x6e}], 0x2}) (async)
pipe(&(0x7f0000000080)) (async)
splice(r5, 0x0, r6, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, &(0x7f0000000300)) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)

16:20:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl(r2, 0xda3, &(0x7f0000000240)="b72d7554c7204ef6d83bed7e84e31400e90a6b5f53000e391416c32797a15c886ad4e18137e72ee847eb52bc9c42ea666160b3cb3246148f9330973844d054a9dc7d6144cf81e090e6b89ae3b3cf2a0eba57a96bd0df53215ca276c50cc1cc94c1f5c850c87241bba8a65edaee2b9054eb525791aaf268c8bc646dc44351aa00e0fe2718fde56a7f32") (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20067284efd9dd397f2000ccc5f5f926391caa46232859c4858d155e0b5217e134f358604a46dfd54b0118cf9f8565022203f639b4707c151fca6d9ebfa90377f142a142a075a5629c9602316d513470747b10747b2419aa8b06f6e27b6a00e82494c9ec3f79bb45e710e6efb46fa54fecf288a9f8787e0c2d77f0ff9b60a92a7083c33707a29cf4b15f06"], 0xd0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0xf014, 0x1}}, './file0\x00'})
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x2, 0x30, r4, 0x0)
fcntl$getown(r2, 0x9)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
r6 = eventfd2(0x3, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r7 = accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x110000, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r1, {0x2}}, './file0\x00'})
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100), 0x408080, 0x0)
syz_kvm_setup_cpu$x86(r6, r5, &(0x7f0000605000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="c7442400d6000000c7442402d2a60000ff1c24b9d60b0000b8c6100000ba000000000f300f0666ba4100ed0f00903900000066b83d000f00d83e660f5438b805000000b9e8c6dafe0f01d9450f32450f19b300000100", 0x56}], 0x1, 0x1, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20067284efd9dd397f2000ccc5f5f926391caa46232859c4858d155e0b5217e134f358604a46dfd54b0118cf9f8565022203f639b4707c151fca6d9ebfa90377f142a142a075a5629c9602316d513470747b10747b2419aa8b06f6e27b6a00e82494c9ec3f79bb45e710e6efb46fa54fecf288a9f8787e0c2d77f0ff9b60a92a7083c33707a29cf4b15f06"], 0xd0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0xf014, 0x1}}, './file0\x00'})
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x2, 0x30, r4, 0x0) (async)
fcntl$getown(r2, 0x9)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000280)="0fd1e0b9800000c00f3235002000000f3036400f07c421fa12cf3ef3440f38f6010f013966b8fc008ec8c4c11c59e3b805000000b9001000000f01c13626410fc5fca8"}], 0xb43, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x42)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f00000001c0))
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff})
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000340)={[{0x1f, 0x3ec5, 0x40, 0x40, 0xa9, 0x7f, 0x3f, 0xfc, 0x5, 0x7, 0x0, 0x9, 0xda}, {0x3, 0x2, 0x0, 0x1, 0x5, 0x4, 0x3, 0x0, 0x40, 0x1, 0x8, 0x3, 0x100}, {0xfffffeff, 0x335, 0x81, 0x80, 0x1, 0x0, 0xa0, 0x3, 0x7, 0x40, 0x7, 0x5, 0x6e}], 0x2})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0x9, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, &(0x7f0000000300))
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES16=r0], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
pidfd_getfd(0xffffffffffffffff, r1, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000280)="0fd1e0b9800000c00f3235002000000f3036400f07c421fa12cf3ef3440f38f6010f013966b8fc008ec8c4c11c59e3b805000000b9001000000f01c13626410fc5fca8"}], 0xb43, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
creat(&(0x7f00000000c0)='./file0\x00', 0x42) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f00000001c0)) (async)
pipe(&(0x7f0000000000)) (async)
ioctl$KVM_SET_PIT2(r3, 0x4070aea0, &(0x7f0000000340)={[{0x1f, 0x3ec5, 0x40, 0x40, 0xa9, 0x7f, 0x3f, 0xfc, 0x5, 0x7, 0x0, 0x9, 0xda}, {0x3, 0x2, 0x0, 0x1, 0x5, 0x4, 0x3, 0x0, 0x40, 0x1, 0x8, 0x3, 0x100}, {0xfffffeff, 0x335, 0x81, 0x80, 0x1, 0x0, 0xa0, 0x3, 0x7, 0x40, 0x7, 0x5, 0x6e}], 0x2}) (async)
pipe(&(0x7f0000000080)) (async)
splice(r5, 0x0, r6, 0x0, 0x9, 0x0) (async)
ioctl$KVM_GET_VCPU_EVENTS(r6, 0x8040ae9f, &(0x7f0000000300)) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async)

16:20:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="003263767b028d2abc9a66eaecdc0000000000ffffffff3f00000000000000d4b20ae5b6255872edab184951b8650000000000794be7889e6f19d51f00"/75], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = syz_io_uring_complete(0x0)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f0000000240))
preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000000100)=""/234, 0xea}, {&(0x7f0000000280)=""/78, 0x4e}, {&(0x7f0000000300)=""/204, 0xcc}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x4, 0x5, 0x3, 0x0)

16:20:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696c6530207d20067284efd9dd397f2000ccc5f5f926391caa46232859c4858d155e0b5217e134f358604a46dfd54b0118cf9f8565022203f639b4707c151fca6d9ebfa90377f142a142a075a5629c9602316d513470747b10747b2419aa8b06f6e27b6a00e82494c9ec3f79bb45e710e6efb46fa54fecf288a9f8787e0c2d77f0ff9b60a92a7083c33707a29cf4b15f06"], 0xd0) (async)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>0xffffffffffffffff, {0xf014, 0x1}}, './file0\x00'})
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x2, 0x30, r4, 0x0) (async)
fcntl$getown(r2, 0x9)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000054"], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x110000, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (rerun: 64)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r1, {0x2}}, './file0\x00'}) (async)
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100), 0x408080, 0x0)
syz_kvm_setup_cpu$x86(r6, r5, &(0x7f0000605000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="c7442400d6000000c7442402d2a60000ff1c24b9d60b0000b8c6100000ba000000000f300f0666ba4100ed0f00903900000066b83d000f00d83e660f5438b805000000b9e8c6dafe0f01d9450f32450f19b300000100", 0x56}], 0x1, 0x1, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
r6 = eventfd2(0x3, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r7 = accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f0000000100)=0x8)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000280)='cgroup.controllers\x00', 0x0, 0x0)
ioctl$KVM_REINJECT_CONTROL(r4, 0xae71, &(0x7f00000001c0)={0x7f})
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="003263767b028d2abc9a66eaecdc0000000000ffffffff3f00000000000000d4b20ae5b6255872edab184951b8650000000000794be7889e6f19d51f00"/75], 0x78)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
r3 = syz_io_uring_complete(0x0)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f0000000240))
preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000000100)=""/234, 0xea}, {&(0x7f0000000280)=""/78, 0x4e}, {&(0x7f0000000300)=""/204, 0xcc}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x4, 0x5, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="003263767b028d2abc9a66eaecdc0000000000ffffffff3f00000000000000d4b20ae5b6255872edab184951b8650000000000794be7889e6f19d51f00"/75], 0x78) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
syz_io_uring_complete(0x0) (async)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
pipe(&(0x7f0000000000)) (async)
pipe(&(0x7f0000000080)) (async)
splice(r4, 0x0, r5, 0x0, 0x9, 0x0) (async)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f0000000240)) (async)
preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000000100)=""/234, 0xea}, {&(0x7f0000000280)=""/78, 0x4e}, {&(0x7f0000000300)=""/204, 0xcc}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x4, 0x5, 0x3, 0x0) (async)

16:20:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x110000, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff}) (async)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r5=>r1, {0x2}}, './file0\x00'})
r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100), 0x408080, 0x0)
syz_kvm_setup_cpu$x86(r6, r5, &(0x7f0000605000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="c7442400d6000000c7442402d2a60000ff1c24b9d60b0000b8c6100000ba000000000f300f0666ba4100ed0f00903900000066b83d000f00d83e660f5438b805000000b9e8c6dafe0f01d9450f32450f19b300000100", 0x56}], 0x1, 0x1, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, r1, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000008c6d8a75db42a6bc6bfc00000000000000000000000000000000000000000004000000000000"], 0x78) (async)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000340)=ANY=[@ANYBLOB="2321202e2f66696c6530207d200afd832889688c9d208dccc5f5f926391caa462328"], 0xd0) (async)
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f0000000100)=0x8)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000280)='cgroup.controllers\x00', 0x0, 0x0)
ioctl$KVM_REINJECT_CONTROL(r4, 0xae71, &(0x7f00000001c0)={0x7f})
mmap$KVM_VCPU(&(0x7f000017b000/0x3000)=nil, 0x930, 0x0, 0x10, 0xffffffffffffffff, 0x0) (async, rerun: 64)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000040)) (rerun: 64)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

16:20:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="0000dc00000000000000dfffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000054"], 0x78) (async, rerun: 32)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 64)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000240)="0f0766b8db000f00d0241166ba6100b00eee0f35c4c295bcb937000000c4e201ad92bb00000066b81a008ec00f7f35f400000017", 0x34}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x9, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000001480)=ANY=[@ANYBLOB="003263767b028d2abc9a66eaecdc0000000000ffffffff3f00000000000000d4b20ae5b6255872edab184951b8650000000000794be7889e6f19d51f00"/75], 0x78) (async)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
r3 = syz_io_uring_complete(0x0)
ioctl$KVM_CHECK_EXTENSION(r3, 0xae03, 0x4)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) (async)
ioctl$KVM_RUN(r2, 0xae80, 0x0) (async)
pipe(&(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r4, 0x0, r5, 0x0, 0x9, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) (async)
ioctl$KVM_GET_VCPU_EVENTS(r4, 0x8040ae9f, &(0x7f0000000240))
preadv2(r2, &(0x7f0000000080)=[{&(0x7f0000000100)=""/234, 0xea}, {&(0x7f0000000280)=""/78, 0x4e}, {&(0x7f0000000300)=""/204, 0xcc}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x4, 0x5, 0x3, 0x0)

16:20:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text32={0x20, &(0x7f0000000100)="0f23250f01cf66b83d008ed064660f3a2066f500640f01c4660f6bea66b8ea008ee0b9800000c00f3235008000000f309adb9c52d181000f20d80f22d8", 0x3d}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000fea000/0x1000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x9, 0x0)
r6 = eventfd2(0x3, 0x801)
ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000180)={0x2, &(0x7f0000000140), 0x0, r6, 0x2})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000000)=0x2)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040))
r7 = accept(r3, &(0x7f0000000280)=@caif=@dbg, &(0x7f00000001c0)=0x80)
setsockopt$inet_MCAST_JOIN_GROUP(r7, 0x0, 0x2a, &(0x7f0000000300)={0x0, {{0x2, 0x4e21, @broadcast}}}, 0x88)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

16:20:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='\xd9\x9d\xfa5\xfc\x9c\xd5tpW\x04De\x00\x00Z6\x00', 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000040))
r2 = memfd_secret(0x80000)
ioctl$VIDIOC_G_EDID(r2, 0xc0285628, &(0x7f0000000140)={0x0, 0xb44, 0x7ff, '\x00', &(0x7f0000000100)=0x8})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x159344, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r2, 0xc0305615, &(0x7f00000001c0)={0x0, {0xfffffffd}})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0xa00401, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000740)={0x0, 0x0, @ioapic})
ioctl$PIO_FONTX(r6, 0x4b6c, &(0x7f0000000700)={0x69, 0x1f, &(0x7f0000000300)="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"})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

16:20:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='\xd9\x9d\xfa5\xfc\x9c\xd5tpW\x04De\x00\x00Z6\x00', 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000040))
r2 = memfd_secret(0x80000)
ioctl$VIDIOC_G_EDID(r2, 0xc0285628, &(0x7f0000000140)={0x0, 0xb44, 0x7ff, '\x00', &(0x7f0000000100)=0x8})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x159344, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r2, 0xc0305615, &(0x7f00000001c0)={0x0, {0xfffffffd}})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0xa00401, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000740)={0x0, 0x0, @ioapic})
ioctl$PIO_FONTX(r6, 0x4b6c, &(0x7f0000000700)={0x69, 0x1f, &(0x7f0000000300)="8e455764a3570a360083a68e726d1bc5170fbb39140f9dad85021744f9ed5005ca886ae9de0706ca1bee15d7f20ee77811dbeede77261e8c7540c9b167b813e211561abfbc68c05b887d3f94e83949a2f6e4200e9c917cb39239ab71df83b4a7d4aab08adb3d83ba30017593fef1ec4bab2d4bc26f9dfebfbdca50551c4c7a08ea0c30c236d226a82c3d2e4b8e505ff9a1392ad0fea0832d62acc48b6b786e73b1cb973c654bc9794bb92c08a0e37ffb5ff14f422eb8d07a3cb97bf030f9608a83e2d5be8d87b77d230cc0fa6dbe8255a1bed2e7cd5c10bc167854d431612eaf1381b884cf198ab23a9974c6c3c41c3dcdd3544268a42c80ab30667f0b6945ddd86d87d252d163de7f4d93a16658ee4a987fecf498d38f2bf25732ed0a49bb8e4d736f1165b3d8a648463ec72d7f4d4a1bdee55d5f0b669089f57ce21991ca52eb75726b5df0173a2a9d4e94a1788790714333f1e48c84b8f0f7a50d506d9e1b7f0b244f42d8cd66039543806b27b50ba8b6c2517b7af3760549d7bb74948368e8dbbd1773af50ce177859d6c4fd59cd14220fe0cf58db8f2735d0999acae70dd6507149034597eda576f3bbe9453aa072695be4e04ee6abf295a79403d1ff4755f22e4e9f1b2851253d6bfe29dfb24718e1f9643d699e969a8021bf41875e69a4cac7d7103526ff5379ef1fe51c1fcabbef385ce97ec8a143506481ab0d3839e54dad0f3d750ec082ed844a09927ce6502a2c631d8253e926e990dcc73ee7e1b4450bc82cebd49de17f6c7f2a26f853a6fc0b7bc774b204acf2dcec17326648a7a9b61a880e7dd00a25afeecc0f8a5c996ba4b87a8cc0a799d658c64988f615d6c9a8d749eec2843c9685187a6b33b52a3a45385edf8552681ada3d6dbc2c7f9312a0a05882440f651b21c9c95c0c9544d7ba343d923bc50ee029c18ed7e06a242ee2cb4990b4640c66cab8d2e36cddf1f75e0ddb80f82a2651e7d23e9ded0f4b22f43622640816ac6828a686f01caa74a0b59eeb9edbe61b7592874ba4e89d5449a32f366411cbd4c8cbb00fa08000a3cf9ac578936389ac17045a985490d096522b9da7b2f8145b6f5904642a08972a348fdcc70df04a7afedeb4446a1cffc825e8baead40076f6e6e3fd9b499489a0862dd9243ca7ea1535539ee158d60cd55e81db955226ed9d20b89fb03470341bfceb1fbfb58e290171a4ba5811ec63c9203ef789de6a40f42c78bf1f37d28e95c3bd40abd81ab5dc6e84906236f980299a4caaec3786cd98a7e107bcbb06485e797000acbe13ce04e1fd3b5a94aef80ab743182554cc66625c75cb39156851ad5820c657cd49a45bb2731a2670feece91546a1e5a8e6fcbf6ad153f9f4a895c60d7470b115db0e6083239d3a0958058631b7284d3b6df25e754c5785a472fcc06329738811f33800a461657bf7ad57"})
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000080))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) (async)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="00ffffffffffff3f00000000000000f8000000000000003673000000003800000000000000000002000000000000000000000000000000000000000002000000000000000000000060f798d4125d30ced23a1d000000000000000000000000000004"], 0x78) (async)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='\xd9\x9d\xfa5\xfc\x9c\xd5tpW\x04De\x00\x00Z6\x00', 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000040)) (async)
memfd_secret(0x80000) (async)
ioctl$VIDIOC_G_EDID(r2, 0xc0285628, &(0x7f0000000140)={0x0, 0xb44, 0x7ff, '\x00', &(0x7f0000000100)=0x8}) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f00005fd000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x159344, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2) (async)
ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r2, 0xc0305615, &(0x7f00000001c0)={0x0, {0xfffffffd}}) (async)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000000)=0x2) (async)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0xa00401, 0x0) (async)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000740)={0x0, 0x0, @ioapic}) (async)
ioctl$PIO_FONTX(r6, 0x4b6c, &(0x7f0000000700)={0x69, 0x1f, &(0x7f0000000300)="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"}) (async)
ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000080)) (async)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (async)
ioctl$KVM_RUN(r5, 0xae80, 0x0) (async)

[ 1498.010246][ T1195] =====================================================
[ 1498.017437][ T1195] BUG: KMSAN: uninit-value in pointer+0x16f8/0x2060
[ 1498.024168][ T1195]  pointer+0x16f8/0x2060
[ 1498.028466][ T1195]  vsnprintf+0x1a9b/0x3650
[ 1498.032918][ T1195]  vprintk_store+0x537/0x2150
[ 1498.037687][ T1195]  vprintk_emit+0x25c/0x950
[ 1498.042234][ T1195]  dev_vprintk_emit+0x5ef/0x6d0
[ 1498.047120][ T1195]  dev_printk_emit+0x1dd/0x21f
[ 1498.052096][ T1195]  __netdev_printk+0x7e9/0xae0
[ 1498.056955][ T1195]  netdev_warn+0x1ea/0x22f
[ 1498.061497][ T1195]  ieee802154_subif_start_xmit+0x1f4/0x250
[ 1498.067427][ T1195]  xmit_one+0x2f4/0x840
[ 1498.071624][ T1195]  dev_hard_start_xmit+0x186/0x440
[ 1498.076955][ T1195]  sch_direct_xmit+0x5f5/0x1400
[ 1498.086686][ T1195]  __dev_xmit_skb+0x18a4/0x2900
[ 1498.091591][ T1195]  __dev_queue_xmit+0x1578/0x3290
[ 1498.096661][ T1195]  dev_queue_xmit+0x4b/0x60
[ 1498.101209][ T1195]  tx+0xc6/0x320
[ 1498.104862][ T1195]  kthread+0x1d5/0x440
[ 1498.108970][ T1195]  kthread+0x721/0x850
[ 1498.113129][ T1195]  ret_from_fork+0x1f/0x30
[ 1498.117630][ T1195] 
[ 1498.119967][ T1195] Local variable stack created at:
[ 1498.125279][ T1195]  __bpf_prog_run32+0x6e/0x180
[ 1498.130135][ T1195]  packet_rcv+0x7fa/0x23a0
[ 1498.134646][ T1195] 
[ 1498.136976][ T1195] CPU: 0 PID: 1195 Comm: aoe_tx0 Not tainted 5.16.0-rc5-syzkaller #0
[ 1498.145547][ T1195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1498.155622][ T1195] =====================================================
[ 1498.162564][ T1195] Disabling lock debugging due to kernel taint
[ 1498.168729][ T1195] Kernel panic - not syncing: kmsan.panic set ...
[ 1498.175187][ T1195] CPU: 0 PID: 1195 Comm: aoe_tx0 Tainted: G    B             5.16.0-rc5-syzkaller #0
[ 1498.184684][ T1195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1498.194766][ T1195] Call Trace:
[ 1498.198068][ T1195]  <TASK>
[ 1498.201103][ T1195]  dump_stack_lvl+0x1ff/0x28e
[ 1498.205826][ T1195]  dump_stack+0x25/0x28
[ 1498.210106][ T1195]  panic+0x487/0xe1f
[ 1498.214151][ T1195]  ? add_taint+0x181/0x210
[ 1498.218606][ T1195]  ? _raw_spin_unlock_irqrestore+0x78/0xb0
[ 1498.224475][ T1195]  kmsan_report+0x2e6/0x2f0
[ 1498.229316][ T1195]  ? __msan_warning+0xb8/0x130
[ 1498.234140][ T1195]  ? pointer+0x16f8/0x2060
[ 1498.238687][ T1195]  ? vsnprintf+0x1a9b/0x3650
[ 1498.243321][ T1195]  ? vprintk_store+0x537/0x2150
[ 1498.248218][ T1195]  ? vprintk_emit+0x25c/0x950
[ 1498.252944][ T1195]  ? dev_vprintk_emit+0x5ef/0x6d0
[ 1498.258006][ T1195]  ? dev_printk_emit+0x1dd/0x21f
[ 1498.262981][ T1195]  ? __netdev_printk+0x7e9/0xae0
[ 1498.267986][ T1195]  ? netdev_warn+0x1ea/0x22f
[ 1498.272638][ T1195]  ? ieee802154_subif_start_xmit+0x1f4/0x250
[ 1498.278678][ T1195]  ? xmit_one+0x2f4/0x840
[ 1498.283064][ T1195]  ? dev_hard_start_xmit+0x186/0x440
[ 1498.288476][ T1195]  ? sch_direct_xmit+0x5f5/0x1400
[ 1498.293537][ T1195]  ? __dev_xmit_skb+0x18a4/0x2900
[ 1498.298609][ T1195]  ? __dev_queue_xmit+0x1578/0x3290
[ 1498.303858][ T1195]  ? dev_queue_xmit+0x4b/0x60
[ 1498.308576][ T1195]  ? tx+0xc6/0x320
[ 1498.312329][ T1195]  ? kthread+0x1d5/0x440
[ 1498.316607][ T1195]  ? kthread+0x721/0x850
[ 1498.320890][ T1195]  ? ret_from_fork+0x1f/0x30
[ 1498.325618][ T1195]  ? ret_from_fork+0x1f/0x30
[ 1498.330364][ T1195]  ? kmsan_get_metadata+0x33/0x220
[ 1498.335622][ T1195]  ? kmsan_metadata_is_contiguous+0x62/0x1e0
[ 1498.341669][ T1195]  ? kmsan_get_metadata+0x33/0x220
[ 1498.346834][ T1195]  ? kmsan_internal_set_shadow_origin+0x5e/0xc0
[ 1498.353131][ T1195]  __msan_warning+0xb8/0x130
[ 1498.357763][ T1195]  pointer+0x16f8/0x2060
[ 1498.362052][ T1195]  ? kmsan_get_metadata+0x33/0x220
[ 1498.367207][ T1195]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1498.373070][ T1195]  vsnprintf+0x1a9b/0x3650
[ 1498.377565][ T1195]  vprintk_store+0x537/0x2150
[ 1498.382377][ T1195]  ? vsnprintf+0x355b/0x3650
[ 1498.387024][ T1195]  ? snprintf+0x24a/0x290
[ 1498.391405][ T1195]  vprintk_emit+0x25c/0x950
[ 1498.395961][ T1195]  dev_vprintk_emit+0x5ef/0x6d0
[ 1498.400866][ T1195]  dev_printk_emit+0x1dd/0x21f
[ 1498.405775][ T1195]  ? dev_printk_emit+0x1/0x21f
[ 1498.411105][ T1195]  __netdev_printk+0x7e9/0xae0
[ 1498.415953][ T1195]  netdev_warn+0x1ea/0x22f
[ 1498.420426][ T1195]  ? ieee802154_subif_start_xmit+0xa9/0x250
[ 1498.427499][ T1195]  ? ieee802154_hdr_pull+0x1022/0x1490
[ 1498.433110][ T1195]  ieee802154_subif_start_xmit+0x1f4/0x250
[ 1498.438966][ T1195]  ? ieee802154_tx+0x830/0x830
[ 1498.443864][ T1195]  xmit_one+0x2f4/0x840
[ 1498.448067][ T1195]  dev_hard_start_xmit+0x186/0x440
[ 1498.453237][ T1195]  sch_direct_xmit+0x5f5/0x1400
[ 1498.458126][ T1195]  ? kmsan_save_stack_with_flags+0x10/0x60
[ 1498.463998][ T1195]  __dev_xmit_skb+0x18a4/0x2900
[ 1498.468899][ T1195]  ? kmsan_get_metadata+0x33/0x220
[ 1498.474076][ T1195]  __dev_queue_xmit+0x1578/0x3290
[ 1498.479151][ T1195]  ? kmsan_get_shadow_origin_ptr+0x9b/0xf0
[ 1498.485065][ T1195]  ? kmsan_get_metadata+0x33/0x220
[ 1498.490221][ T1195]  dev_queue_xmit+0x4b/0x60
[ 1498.494772][ T1195]  tx+0xc6/0x320
[ 1498.498360][ T1195]  ? aoenet_xmit+0x3a0/0x3a0
[ 1498.503007][ T1195]  kthread+0x1d5/0x440
[ 1498.507147][ T1195]  ? sched_dynamic_update+0x490/0x490
[ 1498.512584][ T1195]  kthread+0x721/0x850
[ 1498.516717][ T1195]  ? aoe_ktstart+0x2c0/0x2c0
[ 1498.521356][ T1195]  ? kthread_blkcg+0x120/0x120
[ 1498.526174][ T1195]  ret_from_fork+0x1f/0x30
[ 1498.530650][ T1195]  </TASK>
[ 1498.533976][ T1195] Kernel Offset: disabled
[ 1498.538392][ T1195] Rebooting in 86400 seconds..