CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 577.285620] CR3 = 0x0000000000004000 [ 577.291366] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 577.296355] EPT pointer = 0x00000000a4a0501e [ 577.314312] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 577.326978] FSBase=00007f77d71a9700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 577.331333] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 577.338798] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 577.350697] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 577.360859] CR0=0000000080050033 CR3=000000008b61b000 CR4=00000000001426e0 [ 577.363237] CR3 = 0x0000000000004000 [ 577.383469] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 577.393566] *** Guest State *** [ 577.397140] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 577.402164] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 577.413210] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 577.418759] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 577.419549] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:24 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r0 = syz_open_dev$media(&(0x7f00000001c0)='/dev/media#\x00', 0x9f, 0x20000) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/autofs\x00', 0x800, 0x0) ioctl$KVM_HYPERV_EVENTFD(r0, 0x4018aebd, &(0x7f00000002c0)={0x81, r1}) getpgid(0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={0x0, 0x0, 0x30, 0x20, 0x8}, &(0x7f0000000080)=0x18) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r5, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={r6, 0x58d2}, &(0x7f0000000100)=0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r7 = syz_open_dev$swradio(0x0, 0x1, 0x2) syz_open_dev$dmmidi(&(0x7f0000000180)='/dev/dmmidi#\x00', 0x400, 0x80) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r7, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 577.427782] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.438412] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 577.451404] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 577.457918] *** Control State *** [ 577.463219] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 577.473246] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 577.484559] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 577.487798] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 577.502680] EntryControls=0000d1ff ExitControls=002fefff [ 577.504452] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 577.515888] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 577.526247] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 577.534378] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.540731] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 577.543713] CR3 = 0x0000000000004000 [ 577.563721] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 577.570236] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 577.576573] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 577.587682] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 577.595571] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 577.606601] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.607010] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 577.614868] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 577.633628] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 577.644825] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.653187] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.654175] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.663317] *** Guest State *** [ 577.671479] reason=80000021 qualification=0000000000000002 [ 577.683349] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 577.685491] IDTVectoring: info=00000000 errcode=00000000 [ 577.689682] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.698770] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.703773] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 577.717175] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 577.721502] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 577.729502] TSC Offset = 0xfffffec9400f382d [ 577.742935] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.745357] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 577.752053] EPT pointer = 0x000000008d94201e [ 577.763799] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 577.768866] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.775124] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 577.779047] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 577.792148] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 577.812388] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 577.826046] CR3 = 0x0000000000004000 [ 577.830317] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.834829] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.841149] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 577.854307] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 577.856800] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 577.870632] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.874511] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 18:30:24 executing program 0: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(r1) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x4000, 0x0) ioctl$PPPOEIOCSFWD(r3, 0x4008b100, &(0x7f0000000180)={0x18, 0x0, {0x4, @remote, 'syz_tun\x00'}}) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, 0xffffffffffffffff, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) connect$l2tp(r4, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r4, 0x6429, 0x0, 0x3, 0x0, {0xa, 0x4e24, 0x9, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x100}}}, 0x3a) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0xfffffffffffffffe) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 577.879059] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 577.888950] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 577.901547] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 577.904889] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 577.910114] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.927135] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 577.932555] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 577.933399] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 577.947588] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 577.947815] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 577.957081] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 577.961807] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 577.975483] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 577.977402] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 577.986807] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 577.992876] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 578.007945] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 578.016112] Interruptibility = 00000000 ActivityState = 00000000 [ 578.017644] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 578.022512] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 578.035088] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 578.041289] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 578.053269] *** Host State *** [ 578.056592] RIP = 0xffffffff811fd350 RSP = 0xffff888096c273f0 [ 578.062678] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 578.062702] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 578.071447] FSBase=00007f7ccb318700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 578.082785] Interruptibility = 00000000 ActivityState = 00000000 [ 578.090956] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 578.099679] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 578.102905] *** Host State *** [ 578.107990] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 578.119278] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 578.133123] CR0=0000000080050033 CR3=0000000096926000 CR4=00000000001426f0 [ 578.134645] RIP = 0xffffffff811fd350 RSP = 0xffff8880a117f3f0 [ 578.140396] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 578.150761] Interruptibility = 00000000 ActivityState = 00000000 [ 578.154510] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 578.168875] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 578.175699] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 578.176763] *** Host State *** 18:30:24 executing program 0: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = syz_open_dev$amidi(&(0x7f00000002c0)='/dev/amidi#\x00', 0x8, 0x100) setsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, &(0x7f0000001400)={0x80, 0x8, 0x143a}, 0x6) r4 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000200)='/dev/full\x00', 0x191000, 0x0) perf_event_open(&(0x7f0000001380)={0x4, 0x70, 0x4bd8, 0x3, 0x3f, 0xfffffffffffffffc, 0x0, 0x5, 0x3, 0xa, 0x2, 0x1ff, 0xf860, 0x9e4b, 0x3f, 0x7, 0x8, 0x80, 0xfffffffffffffff8, 0x4, 0xe000000000000000, 0x5, 0x8, 0x7, 0x400, 0x1000, 0x401, 0x9, 0x8, 0xbd7, 0x40, 0x9, 0x80000001, 0x3, 0x200, 0x864, 0x9, 0x3800000, 0x0, 0x40, 0x4, @perf_bp={&(0x7f00000001c0)}, 0x1, 0x7, 0x5, 0x0, 0x80000000, 0x9cc, 0x58}, r1, 0x6, r5, 0x2) r6 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) ioctl$DRM_IOCTL_AGP_ALLOC(r6, 0xc0206434, &(0x7f0000000100)={0x1, 0x0, 0x10000, 0x1}) ioctl$DRM_IOCTL_SG_FREE(r6, 0x40106439, &(0x7f0000000180)={0x7fff, r7}) kcmp(r1, r2, 0x3, r4, r6) r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) shmat(r0, &(0x7f0000fed000/0x2000)=nil, 0x5000) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0) r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r9, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x10000) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r11 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r11, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r6, 0x6611) ioctl$SG_GET_ACCESS_COUNT(r11, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 578.193816] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 578.201217] RIP = 0xffffffff811fd350 RSP = 0xffff888091d373f0 [ 578.202124] *** Control State *** [ 578.211697] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 578.212374] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 578.219900] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 578.219909] EntryControls=0000d1ff ExitControls=002fefff [ 578.240663] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 578.253780] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 578.259497] FSBase=00007fa87d638700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 578.260473] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 578.276981] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 578.279494] FSBase=00007f71d86af700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 578.294538] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 578.308829] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 578.323192] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 578.329270] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 578.336163] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 578.350061] CR0=0000000080050033 CR3=00000000a3f5a000 CR4=00000000001426e0 [ 578.351286] CR0=0000000080050033 CR3=000000009e495000 CR4=00000000001426f0 [ 578.373554] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 578.380322] reason=80000021 qualification=0000000000000002 [ 578.386967] Interruptibility = 00000000 ActivityState = 00000000 [ 578.396902] IDTVectoring: info=00000000 errcode=00000000 [ 578.409021] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 578.409955] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 578.432082] *** Host State *** [ 578.443726] TSC Offset = 0xfffffec8e2e2f3ee 18:30:25 executing program 0: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) syz_open_procfs(r1, &(0x7f00000001c0)='net/raw\x00') r3 = openat$vhci(0xffffffffffffff9c, &(0x7f00000014c0)='/dev/vhci\x00', 0xc00, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000001500)='pids.max\x00', 0x2, 0x0) r5 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r4, r5) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) getsockname$unix(r5, &(0x7f0000001400), &(0x7f0000001480)=0x1f4) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r9 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r9, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r9, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 578.448002] RIP = 0xffffffff811fd350 RSP = 0xffff8880902773f0 [ 578.452595] EPT pointer = 0x000000009011201e [ 578.466920] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 578.476653] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 578.481299] *** Guest State *** [ 578.492005] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 18:30:25 executing program 2: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)='cgroup.clone_children\x00', 0x2, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x0, 0x0) getsockopt$inet6_udp_int(r4, 0x11, 0xb, &(0x7f0000000180), &(0x7f00000001c0)=0x4) r5 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r3, r5) r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r7, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r9 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r9, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r9, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 578.496820] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 578.498782] *** Control State *** [ 578.508621] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 578.516685] *** Control State *** [ 578.519067] FSBase=00007f7345501700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 578.524780] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 578.541412] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 578.551086] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 578.551600] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 578.568232] EntryControls=0000d1ff ExitControls=002fefff [ 578.574266] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 578.581287] EntryControls=0000d1ff ExitControls=002fefff [ 578.592972] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 578.595170] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 578.599164] CR0=0000000080050033 CR3=000000008bbab000 CR4=00000000001426f0 [ 578.610527] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 578.627470] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 578.634444] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 578.642493] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 578.649011] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 578.649603] reason=80000021 qualification=0000000000000002 [ 578.662760] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 578.669609] IDTVectoring: info=00000000 errcode=00000000 [ 578.673118] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 578.675388] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 578.688048] CR3 = 0x0000000000004000 [ 578.691856] TSC Offset = 0xfffffec8e27ded44 [ 578.696554] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 578.700518] *** Control State *** [ 578.703458] EPT pointer = 0x000000009a73001e [ 578.728811] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 578.733118] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 578.743574] Interruptibility = 00000000 ActivityState = 00000000 [ 578.748538] EntryControls=0000d1ff ExitControls=002fefff [ 578.749930] reason=80000021 qualification=0000000000000002 [ 578.760783] *** Guest State *** [ 578.762934] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 578.771762] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 578.775483] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 578.781667] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 578.791150] IDTVectoring: info=00000000 errcode=00000000 18:30:25 executing program 4: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, 0xffffffffffffffff, r3) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) syz_init_net_socket$rose(0xb, 0x5, 0x0) r7 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r7, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r7, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 578.799600] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 578.806452] *** Host State *** [ 578.813643] TSC Offset = 0xfffffec8f90bb85a [ 578.820252] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 578.821542] RIP = 0xffffffff811fd350 RSP = 0xffff8880983673f0 [ 578.833316] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 578.842475] reason=80000021 qualification=0000000000000002 [ 578.855258] CR3 = 0x0000000000004000 [ 578.859247] IDTVectoring: info=00000000 errcode=00000000 [ 578.861448] EPT pointer = 0x000000008f14101e [ 578.871730] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 578.889122] TSC Offset = 0xfffffec8c0aa33ee [ 578.893757] RFLAGS=0x00000006 DR7 = 0x0000000000000400 18:30:25 executing program 0: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6fff) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhci\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0x401, 0x9, [0x5, 0xff, 0x2499, 0x101, 0x1ff, 0x9, 0x60, 0x8, 0x6]}, &(0x7f0000000200)=0x1a) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f00000002c0)={r4, 0x6, 0x7, [0xdd, 0xc00, 0x10001, 0xd1, 0x44, 0xaf, 0x3]}, 0x16) r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r6 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r5, r6) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) fcntl$dupfd(r3, 0x406, r6) ioctl$TIOCNOTTY(r6, 0x5422) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) ioctl$VIDIOC_G_AUDIO(r3, 0x80345621, &(0x7f0000001380)) r10 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(r10, 0x0, 0xfffffffffffffed7) ioctl$SG_SET_COMMAND_Q(r10, 0x2271, &(0x7f0000000140)) open$dir(&(0x7f0000000100)='./file0\x00', 0x400201, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r10, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 578.899999] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 578.911222] EPT pointer = 0x00000000875c501e [ 578.925921] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 578.926729] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 578.945498] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 18:30:25 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x9, 0x0) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) ioctl$KVM_SET_BOOT_CPU_ID(r5, 0xae78, &(0x7f0000000180)=0x2) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) 18:30:25 executing program 5: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) ioctl$KVM_X86_SET_MCE(r7, 0x4040ae9e, &(0x7f0000000180)={0x8080000000000000, 0x3000, 0x400, 0x2, 0x13}) ioctl$EVIOCGBITSW(r4, 0x80404525, &(0x7f0000000100)=""/15) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 578.953456] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 578.959503] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 578.974124] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 578.997158] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 579.059513] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.078506] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 579.085400] *** Guest State *** [ 579.098120] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 579.110429] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 579.121133] CR0=0000000080050033 CR3=000000008c3da000 CR4=00000000001426f0 [ 579.137447] *** Guest State *** [ 579.143636] *** Guest State *** [ 579.156725] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 579.160946] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 579.167000] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.174039] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 579.190751] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 579.191844] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 579.209505] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.220211] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 579.224399] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 579.240902] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 579.247264] CR3 = 0x0000000000004000 [ 579.251325] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 579.259381] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.268293] CR3 = 0x0000000000004000 [ 579.272284] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 579.275994] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.287131] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 579.293901] CR3 = 0x0000000000004000 [ 579.297915] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 579.300062] *** Control State *** [ 579.304663] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 579.314707] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.318313] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 579.323073] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 579.352427] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.358132] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 579.373559] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 579.378357] EntryControls=0000d1ff ExitControls=002fefff [ 579.396495] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.403378] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 579.412451] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 579.420627] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 579.420681] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 579.426811] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 579.426824] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 18:30:26 executing program 5: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(r1) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r3, r4) ioctl$VIDIOC_QUERYCAP(r4, 0x80685600, &(0x7f0000000180)) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 579.426835] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 579.426857] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.441672] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 579.446236] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 579.446356] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 579.462304] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 579.476833] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 579.498297] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 579.499720] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 579.508586] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 579.520669] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 579.528984] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 579.531982] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 579.545288] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 579.560922] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 579.573095] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.581192] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 579.589653] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.597283] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.598729] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 579.608216] reason=80000021 qualification=0000000000000002 [ 579.612607] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.633796] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 579.637135] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 579.642080] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 579.663114] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 579.674841] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.678339] IDTVectoring: info=00000000 errcode=00000000 [ 579.693149] Interruptibility = 00000000 ActivityState = 00000000 [ 579.699544] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.708595] *** Host State *** [ 579.712578] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.721177] RIP = 0xffffffff811fd350 RSP = 0xffff8880876473f0 [ 579.731607] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 579.740899] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 579.743679] TSC Offset = 0xfffffec8981639df [ 579.747600] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.760919] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.761197] FSBase=00007f7ccb318700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 579.783915] *** Guest State *** [ 579.784234] EPT pointer = 0x00000000a0bee01e [ 579.793094] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 579.802125] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 579.810421] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 579.810705] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.818481] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 579.834530] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 579.841329] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 579.850649] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 579.870827] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 579.873689] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 579.887916] CR0=0000000080050033 CR3=0000000096926000 CR4=00000000001426f0 [ 579.895352] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 579.898822] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 579.904596] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 579.918313] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 579.928780] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 579.943080] CR3 = 0x0000000000004000 [ 579.946868] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 579.950573] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 579.953485] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 579.953495] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 579.953506] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 579.953515] Interruptibility = 00000000 ActivityState = 00000000 [ 579.953519] *** Host State *** [ 579.953530] RIP = 0xffffffff811fd350 RSP = 0xffff88809e3e73f0 [ 579.953549] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 579.970233] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 579.976028] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 580.002957] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 580.005468] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 580.005480] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 580.005490] Interruptibility = 00000000 ActivityState = 00000000 [ 580.005494] *** Host State *** [ 580.005506] RIP = 0xffffffff811fd350 RSP = 0xffff88809fbdf3f0 [ 580.005527] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 580.005536] FSBase=00007f77d71ca700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 580.005546] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 580.005558] CR0=0000000080050033 CR3=00000000a3876000 CR4=00000000001426f0 [ 580.005573] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 580.005583] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 580.019630] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 580.033199] *** Control State *** [ 580.046125] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 580.046133] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 580.049319] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 580.055418] FSBase=00007f71d868e700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 580.088091] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 580.089458] *** Control State *** [ 580.096521] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 580.101823] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 580.112074] Interruptibility = 00000000 ActivityState = 00000000 [ 580.123878] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 580.149516] *** Host State *** [ 580.155909] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 580.155919] Interruptibility = 00000000 ActivityState = 00000000 [ 580.155924] *** Host State *** [ 580.155936] RIP = 0xffffffff811fd350 RSP = 0xffff8880909173f0 [ 580.155955] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 580.168481] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 580.168984] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 580.178883] RIP = 0xffffffff811fd350 RSP = 0xffff888089edf3f0 [ 580.179535] EntryControls=0000d1ff ExitControls=002fefff [ 580.191402] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 580.194968] CR0=0000000080050033 CR3=000000009e97a000 CR4=00000000001426f0 [ 580.213058] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 580.215249] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 580.221229] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 580.226709] EntryControls=0000d1ff ExitControls=002fefff [ 580.257900] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 580.263905] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 580.269588] FSBase=00007fa87d638700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 580.277406] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 580.291156] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 580.292294] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 580.312882] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 580.318162] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 580.319072] *** Control State *** [ 580.330485] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 580.333135] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 580.337265] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 580.350115] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 580.356869] CR0=0000000080050033 CR3=000000008c3da000 CR4=00000000001426e0 [ 580.361062] CR0=0000000080050033 CR3=000000005df82000 CR4=00000000001426f0 [ 580.363928] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 580.363938] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 580.363947] reason=80000021 qualification=0000000000000002 [ 580.363955] IDTVectoring: info=00000000 errcode=00000000 [ 580.363962] TSC Offset = 0xfffffec807a46135 [ 580.363971] EPT pointer = 0x000000008b61b01e [ 580.378510] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 580.384349] EntryControls=0000d1ff ExitControls=002fefff [ 580.398628] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 580.400508] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 580.411427] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 580.411659] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 580.428127] *** Control State *** [ 580.431744] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 580.441457] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 580.444460] reason=80000021 qualification=0000000000000002 [ 580.444468] IDTVectoring: info=00000000 errcode=00000000 [ 580.444474] TSC Offset = 0xfffffec7d26abb2d [ 580.444483] EPT pointer = 0x00000000a5af601e [ 580.458804] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 580.462925] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 580.498260] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 580.499894] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 580.505034] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 580.519156] VMExit: intr_info=00000000 errcode=00000000 ilen=00000007 [ 580.531845] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 580.538557] reason=80000021 qualification=0000000000000002 [ 580.553619] *** Control State *** [ 580.557204] IDTVectoring: info=00000000 errcode=00000000 [ 580.565383] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 18:30:27 executing program 0: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6fff) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhci\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0x401, 0x9, [0x5, 0xff, 0x2499, 0x101, 0x1ff, 0x9, 0x60, 0x8, 0x6]}, &(0x7f0000000200)=0x1a) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f00000002c0)={r4, 0x6, 0x7, [0xdd, 0xc00, 0x10001, 0xd1, 0x44, 0xaf, 0x3]}, 0x16) r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r6 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r5, r6) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) fcntl$dupfd(r3, 0x406, r6) ioctl$TIOCNOTTY(r6, 0x5422) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) ioctl$VIDIOC_G_AUDIO(r3, 0x80345621, &(0x7f0000001380)) r10 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(r10, 0x0, 0xfffffffffffffed7) ioctl$SG_SET_COMMAND_Q(r10, 0x2271, &(0x7f0000000140)) open$dir(&(0x7f0000000100)='./file0\x00', 0x400201, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r10, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 580.576750] TSC Offset = 0xfffffec7cf9c217e [ 580.582146] EPT pointer = 0x000000004f86e01e [ 580.586739] EntryControls=0000d1ff ExitControls=002fefff [ 580.592943] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 580.600007] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 580.606826] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 580.608152] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 580.613634] EntryControls=0000d1ff ExitControls=002fefff 18:30:27 executing program 2: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = syz_open_procfs(r2, &(0x7f0000001480)='net/l2cap\x00') getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f00000014c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000001500)=0x14) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r4, 0x84, 0x6c, &(0x7f0000001540)={r5, 0x43, "4f0e9c17368995a4d593f1b96776e0f7fc6091d30073df85b9b1446e4c3b021a4a127e378c69ffd7424b4da909af922238b0293ca9b8fc9be5a28e1500c46369994316"}, &(0x7f00000015c0)=0x4b) r6 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r3, r6) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) r10 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a5, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r6, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r10, 0x40086200, &(0x7f0000000200)=0x2) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r11 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) fstat(r9, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SIOCAX25DELUID(r11, 0x89e2, &(0x7f0000000100)={0x3, @bcast, r12}) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r11, 0x84, 0x18, &(0x7f00000002c0)={0x0, 0xffff}, &(0x7f0000001380)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x1f, &(0x7f00000013c0)={r13, @in={{0x2, 0x4e23, @multicast1}}, 0x9, 0x6}, 0x90) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r11, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r11, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 580.626535] reason=80000021 qualification=0000000000000002 [ 580.632937] IDTVectoring: info=00000000 errcode=00000000 [ 580.638606] TSC Offset = 0xfffffec8249e8874 [ 580.643164] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 580.650217] EPT pointer = 0x000000009182b01e [ 580.657362] Interruptibility = 00000000 ActivityState = 00000000 [ 580.680097] *** Host State *** [ 580.683437] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 580.690103] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 580.713117] RIP = 0xffffffff811fd350 RSP = 0xffff888096c273f0 18:30:27 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x200000) write$UHID_CREATE(r3, &(0x7f0000002380)={0x0, 'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000001380)=""/4096, 0x1000, 0x511, 0xffff, 0x7, 0x4, 0x7f}, 0x120) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:27 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0x9, 0x0) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) ioctl$KVM_SET_BOOT_CPU_ID(r5, 0xae78, &(0x7f0000000180)=0x2) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 580.735556] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 580.735562] reason=80000021 qualification=0000000000000002 [ 580.735570] IDTVectoring: info=00000000 errcode=00000000 [ 580.752972] FSBase=00007f734549e700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 580.762351] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 580.793788] CR0=0000000080050033 CR3=000000009b1fe000 CR4=00000000001426f0 [ 580.806260] TSC Offset = 0xfffffec7db2838d2 [ 580.832434] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 580.845569] *** Guest State *** [ 580.852902] EPT pointer = 0x00000000937ed01e [ 580.864732] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 580.898016] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 580.917036] *** Guest State *** [ 580.923114] *** Control State *** [ 580.926657] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca 18:30:27 executing program 4: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, 0xffffffffffffffff, r3) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(r3, &(0x7f0000000080)={0x23, 0x3, 0x0, {0x1, 0x2, 0x0, '/}'}}, 0x23) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r7 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r7, 0x2271, &(0x7f0000000100)) write$sndseq(r3, &(0x7f0000001380)=[{0x9, 0x5e, 0xbeb, 0x4400, @tick=0x4, {0x7ff, 0x40000000000}, {0x2, 0x10001}, @result={0x7c0, 0x5d35}}, {0x100, 0x9, 0x7, 0x1db, @tick=0xc0c1, {0x6, 0x8}, {0xfff, 0x3}, @note={0xa743, 0x1, 0x2, 0x2, 0x1cd}}, {0x1, 0x5, 0x3ff, 0x400, @tick=0x3f, {0x6, 0x4}, {0x4, 0x8}, @control={0x8, 0x100, 0x1}}, {0x9, 0x72b2, 0x386f, 0x7, @tick=0xfff, {0x86c, 0x7ff00000}, {0xffffffff, 0x6}, @addr={0x5, 0x4}}, {0x3, 0x30, 0x8, 0xffffffff, @tick=0x3, {0x80000000, 0x1}, {0x80, 0x6}, @time=@time}, {0x0, 0x3, 0xedc, 0x400, @time, {0x7fff, 0x8}, {0x3ff, 0x426eeeee}, @ext={0xa2, &(0x7f0000000180)="2194b666e69ccd22e3a42f3916916f5dbb022badba33335a3ff2308768ebdf01fb1106bcbed7f7cd8e62b64550ed0289d717640cd98221039f6cccfa155a716664ae30584702d045ae076cb9605c9b4bfa32a1d1d75d79dc3961ef436752ab7ffe2ef75ee7966391f4c5223d11247895b914e29ac9c0cf328bc722f7a9a1b8b4514fc36241556b4cb3ade0d923c07ae198337039cc8b0f82309b964bc476ec0242ed"}}, {0x80, 0x1ff, 0x3, 0x8, @time, {0x9}, {0x7e57, 0x8}, @note={0x81, 0xfff, 0x7, 0x5, 0x101}}, {0x6, 0x51601c0b, 0x4, 0xffffffffffff0001, @time={0x77359400}, {0x5, 0x9}, {0x7ff}, @queue={0x1, {0xfffffffffffffffc, 0x2}}}], 0x180) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r7, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 580.943448] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 580.952951] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 580.961915] CR3 = 0x0000000000004000 [ 580.965922] EntryControls=0000d1ff ExitControls=002fefff [ 580.981145] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 580.993284] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 581.013001] CR3 = 0x0000000000004000 [ 581.019004] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 581.026058] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 581.036274] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 581.042964] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 581.043749] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 581.063522] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 581.073917] *** Guest State *** [ 581.077208] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 581.086356] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:30:27 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) write$P9_RWSTAT(r4, &(0x7f0000000100)={0x7, 0x7f, 0x2}, 0x7) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) [ 581.096869] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 581.103431] reason=80000021 qualification=0000000000000002 [ 581.109978] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 581.117558] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 581.123998] IDTVectoring: info=00000000 errcode=00000000 [ 581.129656] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 581.143159] TSC Offset = 0xfffffec76f9c6a81 [ 581.147643] EPT pointer = 0x000000008629101e [ 581.156463] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 581.163542] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 581.183572] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.196196] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 581.206593] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 581.222498] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 581.234418] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.253229] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.263174] CR3 = 0x0000000000004000 [ 581.266766] *** Guest State *** [ 581.267077] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 581.270479] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 581.285173] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 581.294688] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 18:30:27 executing program 5: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) mlockall(0x1) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) 18:30:27 executing program 4 (fault-call:8 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 581.303087] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.310442] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 581.318581] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 581.334283] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 581.343602] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.351731] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.361190] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 581.362335] CR3 = 0x0000000000004000 [ 581.386983] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 581.393781] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 581.398412] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 581.409991] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 581.416072] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 581.425216] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 581.435937] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 581.437727] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.452876] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 581.464215] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 581.477858] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.479744] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 581.492712] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 581.503219] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 581.513592] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 581.517190] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 581.523328] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 18:30:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 581.553226] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 581.561352] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 581.580926] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 581.582567] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.590530] Interruptibility = 00000000 ActivityState = 00000000 [ 581.611865] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.620462] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 581.635439] *** Host State *** [ 581.643363] RIP = 0xffffffff811fd350 RSP = 0xffff88809526f3f0 [ 581.656496] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 581.660490] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.671635] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 581.681965] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 581.706530] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.708914] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.714990] FSBase=00007f7ccb318700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 581.730607] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 581.742627] Interruptibility = 00000000 ActivityState = 00000000 [ 581.754696] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.756375] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 581.787168] *** Host State *** [ 581.787794] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 581.796377] RIP = 0xffffffff811fd350 RSP = 0xffff888091d373f0 [ 581.806598] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 581.811334] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 581.823680] CR0=0000000080050033 CR3=00000000a62ba000 CR4=00000000001426f0 [ 581.833162] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 581.840128] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 581.848602] GDTR: limit=0x000007ff, base=0x0000000000001000 18:30:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x4090ae82, 0x0) [ 581.856995] FSBase=00007f77d71a9700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 581.857221] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 581.873713] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 581.881694] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 581.881700] *** Control State *** [ 581.881711] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 581.902917] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 581.904929] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 581.933175] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 581.939582] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 581.947526] CR0=0000000080050033 CR3=0000000086c14000 CR4=00000000001426f0 [ 581.981498] EntryControls=0000d1ff ExitControls=002fefff [ 581.987037] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 581.995853] *** Guest State *** [ 581.999407] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 582.007029] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 582.012043] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 582.016440] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 582.030390] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 582.037353] Interruptibility = 00000000 ActivityState = 00000000 [ 582.037362] *** Control State *** [ 582.044122] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 582.056656] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 582.063547] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 582.071512] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 582.071524] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 582.071532] Interruptibility = 00000000 ActivityState = 00000000 [ 582.071538] *** Host State *** [ 582.083165] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 582.085761] *** Host State *** [ 582.091754] EntryControls=0000d1ff ExitControls=002fefff [ 582.095123] reason=80000021 qualification=0000000000000002 [ 582.113094] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 582.116914] CR3 = 0x0000000000004000 [ 582.127789] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 582.135021] RIP = 0xffffffff811fd350 RSP = 0xffff888089edf3f0 [ 582.138857] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 582.141019] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 582.141031] FSBase=00007f4e27aef700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 582.141043] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 582.141062] CR0=0000000080050033 CR3=000000008a7ae000 CR4=00000000001426f0 [ 582.141076] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 582.168182] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 582.184731] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 582.195239] IDTVectoring: info=00000000 errcode=00000000 [ 582.200756] TSC Offset = 0xfffffec6e0200e6b [ 582.209799] EPT pointer = 0x000000008cf4a01e [ 582.215882] RIP = 0xffffffff811fd350 RSP = 0xffff8880557b73f0 [ 582.221873] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 582.244602] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 582.247315] reason=80000021 qualification=0000000000000002 [ 582.257245] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 582.266820] *** Control State *** [ 582.273167] IDTVectoring: info=00000000 errcode=00000000 [ 582.277131] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 582.284392] RFLAGS=0x00000006 DR7 = 0x0000000000000400 18:30:28 executing program 2 (fault-call:4 fault-nth:0): r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 582.292725] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 582.300018] EntryControls=0000d1ff ExitControls=002fefff [ 582.300041] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 582.300051] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 582.300060] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 582.300069] reason=80000021 qualification=0000000000000002 [ 582.300076] IDTVectoring: info=00000000 errcode=00000000 [ 582.300083] TSC Offset = 0xfffffec6d7949693 [ 582.300092] EPT pointer = 0x000000008e7c301e [ 582.308005] FSBase=00007f71d86af700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 582.327672] TSC Offset = 0xfffffec6e8fe7868 [ 582.362023] EPT pointer = 0x000000009ff5101e [ 582.372492] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 582.381826] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 18:30:29 executing program 0: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6fff) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhci\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0x401, 0x9, [0x5, 0xff, 0x2499, 0x101, 0x1ff, 0x9, 0x60, 0x8, 0x6]}, &(0x7f0000000200)=0x1a) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f00000002c0)={r4, 0x6, 0x7, [0xdd, 0xc00, 0x10001, 0xd1, 0x44, 0xaf, 0x3]}, 0x16) r5 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r6 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r5, r6) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) fcntl$dupfd(r3, 0x406, r6) ioctl$TIOCNOTTY(r6, 0x5422) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) ioctl$VIDIOC_G_AUDIO(r3, 0x80345621, &(0x7f0000001380)) r10 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(r10, 0x0, 0xfffffffffffffed7) ioctl$SG_SET_COMMAND_Q(r10, 0x2271, &(0x7f0000000140)) open$dir(&(0x7f0000000100)='./file0\x00', 0x400201, 0x0) ioctl$KVM_RUN(r9, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r10, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) 18:30:29 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mkdir(&(0x7f0000001b40)='./file0\x00', 0x0) mount(&(0x7f00000005c0)=ANY=[], &(0x7f0000000040)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r2 = open(&(0x7f0000000180)='./file0\x00', 0x8000000000141042, 0x0) io_setup(0x4, &(0x7f0000000080)=0x0) io_submit(r3, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000200)}]) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r5 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 582.410878] CR0=0000000080050033 CR3=000000009e495000 CR4=00000000001426f0 [ 582.433327] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 582.446606] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 582.489465] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 582.498046] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 582.523565] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 582.531616] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 18:30:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xc018ae85, 0x0) [ 582.531707] *** Control State *** [ 582.546964] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 582.565881] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 582.593342] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 582.616507] EntryControls=0000d1ff ExitControls=002fefff 18:30:29 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 582.636764] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 582.650652] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 582.673143] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 582.677389] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 582.699299] *** Guest State *** [ 582.716706] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 582.727115] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 582.749494] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 582.758670] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 582.768972] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 582.783629] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 582.792071] *** Guest State *** [ 582.800635] reason=80000021 qualification=0000000000000002 [ 582.803191] CR3 = 0x0000000000004000 [ 582.808759] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 582.811272] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 582.827413] Interruptibility = 00000000 ActivityState = 00000000 [ 582.836537] IDTVectoring: info=00000000 errcode=00000000 [ 582.841324] *** Host State *** 18:30:29 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x6, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 582.842140] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 582.850487] RIP = 0xffffffff811fd350 RSP = 0xffff8880909173f0 [ 582.859366] TSC Offset = 0xfffffec6ad91a971 [ 582.862762] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 582.879416] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 582.885432] EPT pointer = 0x00000000937ce01e [ 582.894064] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:30:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x5452, 0x0) [ 582.909893] FSBase=00007f7345501700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 582.919757] CR3 = 0x0000000000004000 [ 582.922081] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 582.929614] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 582.929629] CR0=0000000080050033 CR3=0000000085954000 CR4=00000000001426f0 [ 582.953756] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 18:30:29 executing program 3: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x200000) write$UHID_CREATE(r3, &(0x7f0000002380)={0x0, 'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000001380)=""/4096, 0x1000, 0x511, 0xffff, 0x7, 0x4, 0x7f}, 0x120) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 582.981263] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 582.997239] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 583.017258] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 583.024881] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 583.042667] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 583.051978] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 583.067486] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 583.080275] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 583.090249] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.109629] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 583.118973] *** Control State *** [ 583.122497] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 583.129585] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 583.143268] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.152481] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.175014] EntryControls=0000d1ff ExitControls=002fefff [ 583.180488] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 583.180678] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 583.197133] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.213232] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 583.221132] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 583.228428] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.236881] reason=80000021 qualification=0000000000000002 [ 583.238024] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.243943] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.259808] IDTVectoring: info=00000000 errcode=00000000 [ 583.262146] *** Guest State *** [ 583.265566] TSC Offset = 0xfffffec643db383c [ 583.265576] EPT pointer = 0x000000009db7b01e [ 583.279966] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.288024] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 583.288153] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 583.310702] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 583.312462] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 583.322249] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 583.343767] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 583.359780] CR3 = 0x0000000000004000 [ 583.364526] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 583.379334] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 583.386465] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 583.398607] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 583.405423] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 583.411756] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 583.413108] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 583.423661] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 583.438522] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 583.443758] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 583.446533] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 583.463329] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 583.467206] Interruptibility = 00000000 ActivityState = 00000000 [ 583.479702] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.484104] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 583.492375] *** Host State *** 18:30:30 executing program 5: syz_mount_image$nfs(&(0x7f00000001c0)='nfs\x00', &(0x7f0000000200)='./file0\x00', 0x2, 0x4, &(0x7f0000001680)=[{&(0x7f0000001380)="3b979fa0c72b32b5b3865b27f21430909bc489b55af9b4e73a07489a81d29b67df7140472dc4b721c1c664a8f40be216304ce207b37fae32aafe54d41e48b3ea05a0e467086aee53112d6b765cfbf39bd2424a72c5207367636ce2e00641da6ed73960cec67734570520ec0b496202b4a7e9b2758f117eba06349799fe0405c4f5983b88a8d2bb1382", 0x89, 0x5}, {&(0x7f0000001440)="5b763a18db392fb9fe75140d51e9ac1b1d502f7f7b694bb54f32db3e2f5c25237d7d357feb1adf3ecb5054b8f96efde18533674cc6c42e5f43000dd967f19e9af1b3ef96fad4873462abb712273ea126aabde8c009989bcd469de3c1ba2ba36476465f833d568963f3000aad433a6c8a2d4dbe8233ed636caba4391d84626f21b9d60c40d801302750f64516c5f042dcc3f3875a72589af5cb0fd272e8", 0x9d, 0x8}, {&(0x7f0000001500)="51dfbc05aefaa96bb17f9a90182745233da3350a64ef71bcb4d868b56562161dcc3389f451ce3da3bbf04a3393eccb1bbbaa8edaa44b8a5fc2b4193cbda17802a01ff1b7124e75964d1647cf4c00a08be51fa6f164c3f5b8fb5ea545780bb428b853be15bc6264c25329eb155e9fc80868ec88e8a162154c3fff49bd3f8bcefd45a0e2cff2f25c0eb207bf7806f51c09541b2959bbabc603994bdbf2dc1eab0c97dd12bf85465969785dcae5d127b4cd5a15b1318c146a3ac1181c173463372692752512791da8b328469e58853d", 0xce, 0x7ff}, {&(0x7f0000001600)="d4d590cee68a03338ab4329f9078112da5026e0fb4c414cec67df9e6a552f91dad75a04d56bbd56afdbc9075fb30d4ce6330ab8da2860715b0be71bcb98bffdf6e1d89d699f026bc746e8759a816da1a8f370761a44d0502dd49fee83c7aadf52fb7ec80", 0x64, 0x7ff}], 0x1181853, &(0x7f00000002c0)='icmp6\x00') r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) getsockopt$ARPT_SO_GET_REVISION_TARGET(r4, 0x0, 0x63, &(0x7f0000000100)={'icmp6\x00'}, &(0x7f0000000180)=0x1e) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) 18:30:30 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x8, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x8138ae83, 0x0) [ 583.498841] RIP = 0xffffffff811fd350 RSP = 0xffff888098d873f0 [ 583.501454] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 583.516319] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 583.554046] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 583.560459] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 583.569274] Interruptibility = 00000000 ActivityState = 00000000 [ 583.576674] *** Host State *** [ 583.579054] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.602674] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.611281] RIP = 0xffffffff811fd350 RSP = 0xffff888091d373f0 [ 583.617650] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 583.624811] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 583.631553] CR0=0000000080050033 CR3=0000000086c14000 CR4=00000000001426f0 [ 583.637390] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 583.647847] FSBase=00007f77d71a9700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 583.655886] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 583.668146] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 583.694240] *** Control State *** 18:30:30 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x3, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 583.700452] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 583.708231] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 583.718533] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 583.753548] EntryControls=0000d1ff ExitControls=002fefff [ 583.759260] CR0=0000000080050033 CR3=000000008ed82000 CR4=00000000001426e0 [ 583.767142] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 583.778806] *** Guest State *** [ 583.785634] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 583.794603] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x81a0ae8c, 0x0) [ 583.794669] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 583.808228] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 583.819645] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 583.839920] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 583.843278] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 583.855141] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 583.862054] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 583.862428] *** Control State *** [ 583.876133] reason=80000021 qualification=0000000000000002 [ 583.882668] CR3 = 0x0000000000004000 [ 583.889637] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 583.899157] IDTVectoring: info=00000000 errcode=00000000 [ 583.904833] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 583.910688] TSC Offset = 0xfffffec5e9ce0a6e [ 583.911291] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 583.919386] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 583.950431] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 583.956804] EPT pointer = 0x000000009360101e [ 583.956960] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 583.973452] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 583.980868] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 583.995035] Interruptibility = 00000000 ActivityState = 00000000 [ 583.996867] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 584.010366] EntryControls=0000d1ff ExitControls=002fefff [ 584.022066] *** Host State *** [ 584.025818] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 584.032828] RIP = 0xffffffff811fd350 RSP = 0xffff888055b373f0 [ 584.036724] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.044570] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 584.050381] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 584.059503] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 584.061782] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.076907] FSBase=00007f71d86af700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 584.076919] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 584.076934] CR0=0000000080050033 CR3=000000008b282000 CR4=00000000001426e0 [ 584.076949] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 584.076961] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 584.076966] *** Control State *** [ 584.076975] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 584.076983] EntryControls=0000d1ff ExitControls=002fefff [ 584.076995] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 584.077003] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 584.077012] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 584.077020] reason=80000021 qualification=0000000000000002 [ 584.077026] IDTVectoring: info=00000000 errcode=00000000 [ 584.077037] TSC Offset = 0xfffffec59bfda21c [ 584.077045] EPT pointer = 0x0000000094fd601e [ 584.085144] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.106293] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.113055] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 584.123627] reason=80000021 qualification=0000000000000002 [ 584.138722] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 584.149236] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 584.173713] IDTVectoring: info=00000000 errcode=00000000 [ 584.210192] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 584.226756] TSC Offset = 0xfffffec5deec71b4 [ 584.231172] EPT pointer = 0x0000000098c6b01e [ 584.249611] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 18:30:30 executing program 0: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mkdir(&(0x7f0000001b40)='./file0\x00', 0x0) mount(&(0x7f00000005c0)=ANY=[], &(0x7f0000000040)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f0000000140)) chdir(&(0x7f0000000000)='./file0\x00') r2 = open(&(0x7f0000000180)='./file0\x00', 0x8000000000141042, 0x0) io_setup(0x4, &(0x7f0000000080)=0x0) io_submit(r3, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r2, &(0x7f0000000200)}]) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r5 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 18:30:30 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0xf, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x4138ae84, 0x0) 18:30:30 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:30 executing program 3: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x200000) write$UHID_CREATE(r3, &(0x7f0000002380)={0x0, 'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000001380)=""/4096, 0x1000, 0x511, 0xffff, 0x7, 0x4, 0x7f}, 0x120) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 584.280023] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 584.298653] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 584.308388] Interruptibility = 00000000 ActivityState = 00000000 [ 584.350821] *** Host State *** [ 584.383302] RIP = 0xffffffff811fd350 RSP = 0xffff88805db573f0 [ 584.390627] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 584.408300] *** Guest State *** [ 584.412587] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 584.425791] FSBase=00007f73454e0700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 18:30:31 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x5, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 584.456902] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 584.494692] *** Guest State *** 18:30:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x5451, 0x0) [ 584.513974] CR3 = 0x0000000000004000 [ 584.514401] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 584.519504] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 584.525699] *** Guest State *** [ 584.537372] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 584.543163] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 584.545558] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 584.583513] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 584.603690] CR0=0000000080050033 CR3=000000009f037000 CR4=00000000001426e0 [ 584.613358] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 584.618268] CR3 = 0x0000000000004000 [ 584.631755] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 584.649214] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 584.656358] CR3 = 0x0000000000004000 [ 584.661084] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 584.667085] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 584.679343] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 584.685819] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 584.685865] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 584.685906] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 584.685965] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 584.701524] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 584.719217] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 584.729058] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 584.736022] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 584.737547] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.748737] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 584.757627] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 584.757901] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 584.766424] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 584.780967] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 584.790438] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.798883] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 584.805364] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.812138] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.821963] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.831011] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.838287] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 584.839566] *** Control State *** [ 584.851646] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 584.868003] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 584.878519] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.894091] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 584.903601] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.918232] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.926742] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 584.934389] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.935682] EntryControls=0000d1ff ExitControls=002fefff [ 584.950895] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 584.953396] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.975778] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 584.982884] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 584.990721] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 584.996217] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 585.000332] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 585.007580] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 585.022769] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 585.026038] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 585.033584] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 585.044663] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 585.048631] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 585.057154] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 585.060384] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 585.068234] reason=80000021 qualification=0000000000000002 [ 585.080662] Interruptibility = 00000000 ActivityState = 00000000 [ 585.081990] IDTVectoring: info=00000000 errcode=00000000 [ 585.089367] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 585.094771] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 585.105716] *** Host State *** [ 585.108676] TSC Offset = 0xfffffec553c5fa24 [ 585.111976] RIP = 0xffffffff811fd350 RSP = 0xffff88809a98f3f0 [ 585.116301] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 585.127090] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 585.130454] EPT pointer = 0x00000000a813e01e [ 585.137070] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 585.152082] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 585.175698] FSBase=00007f71d868e700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 18:30:31 executing program 5: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r1 = getpgid(0x0) r2 = getpgrp(0xffffffffffffffff) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) r4 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffff9c) mlockall(0x1) kcmp(r1, r2, 0x3, r3, r4) r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) mincore(&(0x7f0000ffe000/0x1000)=nil, 0x1000, &(0x7f0000000040)=""/10) r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) alarm(0x6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, &(0x7f0000000380), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r8 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r8, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$SG_GET_ACCESS_COUNT(r8, 0x2289, &(0x7f00000000c0)) shmctl$IPC_RMID(r0, 0x0) 18:30:31 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0xb, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x4004ae8b, 0x0) [ 585.189101] Interruptibility = 00000000 ActivityState = 00000000 [ 585.195943] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 585.201285] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 585.213887] Interruptibility = 00000000 ActivityState = 00000000 [ 585.239552] CR0=0000000080050033 CR3=000000008d4f0000 CR4=00000000001426f0 [ 585.256303] *** Host State *** [ 585.259750] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 585.263305] *** Host State *** [ 585.269594] RIP = 0xffffffff811fd350 RSP = 0xffff88808f5673f0 [ 585.289735] RIP = 0xffffffff811fd350 RSP = 0xffff88808c6d73f0 [ 585.295900] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 585.298470] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 585.308574] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 585.316537] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 585.324542] FSBase=00007f77d71ca700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 585.329642] *** Control State *** [ 585.352712] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 585.359428] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 585.381086] EntryControls=0000d1ff ExitControls=002fefff [ 585.390337] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 18:30:32 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x10, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x8004ae98, 0x0) [ 585.396888] CR0=0000000080050033 CR3=000000009fc94000 CR4=00000000001426e0 [ 585.413091] CR0=0000000080050033 CR3=00000000910ed000 CR4=00000000001426f0 [ 585.426937] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 585.439226] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 585.446440] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 585.462017] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 585.469724] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 585.475895] *** Control State *** [ 585.477893] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 585.489616] *** Control State *** [ 585.497812] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 585.502135] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 585.523102] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 585.523917] reason=80000021 qualification=0000000000000002 [ 585.529910] EntryControls=0000d1ff ExitControls=002fefff [ 585.542029] EntryControls=0000d1ff ExitControls=002fefff [ 585.547607] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 585.554742] IDTVectoring: info=00000000 errcode=00000000 [ 585.571520] TSC Offset = 0xfffffec4f4f490ef [ 585.573111] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 585.581545] EPT pointer = 0x00000000962bd01e [ 585.593188] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 585.607041] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 585.617234] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 585.625304] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 585.631958] reason=80000021 qualification=0000000000000002 [ 585.639282] reason=80000021 qualification=0000000000000002 [ 585.645756] IDTVectoring: info=00000000 errcode=00000000 [ 585.651277] TSC Offset = 0xfffffec4f6ab8a7b [ 585.655825] IDTVectoring: info=00000000 errcode=00000000 [ 585.661383] TSC Offset = 0xfffffec4ee683cbd [ 585.665855] EPT pointer = 0x000000009206f01e [ 585.671279] EPT pointer = 0x000000008a54f01e 18:30:32 executing program 0 (fault-call:2 fault-nth:0): socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:32 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x12, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:32 executing program 3: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x200000) write$UHID_CREATE(r3, &(0x7f0000002380)={0x0, 'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000001380)=""/4096, 0x1000, 0x511, 0xffff, 0x7, 0x4, 0x7f}, 0x120) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:32 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) socket$netlink(0x10, 0x3, 0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x5450, 0x0) [ 585.811110] *** Guest State *** [ 585.815484] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 585.824873] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 585.878268] CR3 = 0x0000000000004000 [ 585.883619] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 585.923191] FAULT_INJECTION: forcing a failure. [ 585.923191] name failslab, interval 1, probability 0, space 0, times 0 [ 585.930302] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 585.958989] *** Guest State *** [ 585.963227] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 585.966387] *** Guest State *** 18:30:32 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x13, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 585.969976] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 585.981770] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 585.988303] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 585.997458] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 586.013159] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 586.016308] CR3 = 0x0000000000004000 [ 586.023057] CPU: 0 PID: 24829 Comm: syz-executor0 Not tainted 4.20.0+ #395 [ 586.028285] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 586.030657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 586.030663] Call Trace: [ 586.030705] dump_stack+0x1d3/0x2c6 [ 586.030737] ? dump_stack_print_info.cold.1+0x20/0x20 [ 586.030763] should_fail.cold.4+0xa/0x17 [ 586.061916] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 586.067003] ? lock_downgrade+0x900/0x900 [ 586.071149] ? check_preemption_disabled+0x48/0x280 [ 586.076150] ? kasan_check_read+0x11/0x20 [ 586.080277] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 586.085531] ? rcu_read_unlock_special+0x370/0x370 [ 586.090487] ? __netlink_insert+0xd2c/0x13b0 [ 586.094880] ? find_held_lock+0x36/0x1c0 [ 586.098931] ? ___might_sleep+0x1ed/0x300 [ 586.103057] ? arch_local_save_flags+0x40/0x40 [ 586.107629] __should_failslab+0x124/0x180 [ 586.111846] should_failslab+0x9/0x14 [ 586.115627] kmem_cache_alloc_node+0x273/0x730 [ 586.120190] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.125711] ? check_preemption_disabled+0x48/0x280 [ 586.130741] __alloc_skb+0x119/0x760 [ 586.134440] ? skb_scrub_packet+0x440/0x440 [ 586.138758] ? __release_sock+0x390/0x390 [ 586.142906] ? __local_bh_enable_ip+0x160/0x260 [ 586.147560] ? netlink_insert+0xfe/0x240 [ 586.151605] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.157120] ? netlink_autobind.isra.34+0x232/0x310 [ 586.162121] netlink_sendmsg+0xb29/0xfc0 [ 586.166166] ? netlink_unicast+0x750/0x750 [ 586.170393] ? aa_sock_msg_perm.isra.14+0xba/0x160 [ 586.175306] ? apparmor_socket_sendmsg+0x29/0x30 [ 586.180045] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 586.185561] ? security_socket_sendmsg+0x94/0xc0 [ 586.190297] ? netlink_unicast+0x750/0x750 [ 586.194518] sock_sendmsg+0xd5/0x120 [ 586.198218] ___sys_sendmsg+0x7fd/0x930 [ 586.202181] ? copy_msghdr_from_user+0x580/0x580 [ 586.206922] ? lock_downgrade+0x900/0x900 [ 586.211058] ? proc_fail_nth_write+0x9e/0x210 [ 586.215537] ? __fget_light+0x2e9/0x430 [ 586.219493] ? fget_raw+0x20/0x20 [ 586.222925] ? find_held_lock+0x36/0x1c0 [ 586.226970] ? kasan_check_write+0x14/0x20 [ 586.231187] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 586.236102] ? wait_for_completion+0x8a0/0x8a0 [ 586.240679] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 586.246203] ? sockfd_lookup_light+0xc5/0x160 [ 586.250680] __sys_sendmsg+0x11d/0x280 [ 586.254562] ? __ia32_sys_shutdown+0x80/0x80 [ 586.258957] ? __sb_end_write+0xd9/0x110 [ 586.263003] ? fput+0x130/0x1a0 [ 586.266263] ? do_syscall_64+0x9a/0x820 [ 586.270215] ? do_syscall_64+0x9a/0x820 [ 586.274178] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 586.279613] __x64_sys_sendmsg+0x78/0xb0 [ 586.283662] do_syscall_64+0x1b9/0x820 [ 586.287532] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 586.292892] ? syscall_return_slowpath+0x5e0/0x5e0 [ 586.297800] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 586.302624] ? trace_hardirqs_on_caller+0x310/0x310 [ 586.307631] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 586.312632] ? prepare_exit_to_usermode+0x291/0x3b0 [ 586.317632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 586.322457] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 586.327627] RIP: 0033:0x4579b9 [ 586.330800] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 586.349685] RSP: 002b:00007f77d71c9c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 586.357372] RAX: ffffffffffffffda RBX: 00007f77d71c9c90 RCX: 00000000004579b9 [ 586.364618] RDX: 0000000000000000 RSI: 0000000020d65000 RDI: 0000000000000004 [ 586.371867] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 586.379113] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f77d71ca6d4 [ 586.386362] R13: 00000000004c4d99 R14: 00000000004d8538 R15: 0000000000000005 [ 586.394232] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 586.402015] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 586.418259] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 586.423267] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 586.425093] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 586.440331] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 586.448614] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 586.448799] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.465902] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 586.468281] CR3 = 0x0000000000004000 [ 586.474218] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.486165] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.500831] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.506777] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.509162] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 18:30:33 executing program 0 (fault-call:2 fault-nth:1): socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 586.525225] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 586.535553] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 586.541406] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 586.551879] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 586.551928] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 586.559056] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.569384] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 586.583472] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 586.590177] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 586.593194] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 586.598044] Interruptibility = 00000000 ActivityState = 00000000 [ 586.610095] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.610113] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.610130] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 586.619007] *** Host State *** [ 586.626439] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 586.634956] RIP = 0xffffffff811fd350 RSP = 0xffff88804feaf3f0 [ 586.643399] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 586.644741] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 586.652645] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 586.674045] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 586.682245] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 586.682281] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 586.700462] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.703401] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 586.713976] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 586.722541] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 586.730967] CR0=0000000080050033 CR3=000000009fc94000 CR4=00000000001426e0 [ 586.735742] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 586.743294] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 586.749921] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.751333] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 586.759323] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 586.765771] *** Control State *** [ 586.776897] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 586.777730] Interruptibility = 00000000 ActivityState = 00000000 [ 586.783781] EntryControls=0000d1ff ExitControls=002fefff [ 586.793056] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.796115] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 586.808687] *** Host State *** [ 586.810583] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 586.813761] RIP = 0xffffffff811fd350 RSP = 0xffff888096b273f0 [ 586.820564] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 586.826659] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 586.838993] reason=80000021 qualification=0000000000000002 [ 586.841687] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 586.848102] IDTVectoring: info=00000000 errcode=00000000 [ 586.856098] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 586.866860] TSC Offset = 0xfffffec428933f97 [ 586.868081] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 586.872368] EPT pointer = 0x000000008500401e [ 586.880414] FSBase=00007f7345501700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 586.892771] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 586.898930] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 586.912579] CR0=0000000080050033 CR3=000000008ada3000 CR4=00000000001426e0 [ 586.919890] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 586.928121] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 586.944569] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 586.950774] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 586.961812] *** Control State *** [ 586.966596] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 586.976565] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 586.987314] Interruptibility = 00000000 ActivityState = 00000000 [ 586.994087] EntryControls=0000d1ff ExitControls=002fefff [ 587.002332] *** Host State *** [ 587.005862] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 587.012885] RIP = 0xffffffff811fd350 RSP = 0xffff8880950873f0 [ 587.019217] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 587.030548] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 587.036980] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 587.036989] reason=80000021 qualification=0000000000000002 [ 587.036996] IDTVectoring: info=00000000 errcode=00000000 [ 587.037003] TSC Offset = 0xfffffec437841a7d [ 587.037011] EPT pointer = 0x00000000a844b01e [ 587.061275] FSBase=00007f71d86af700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 587.077918] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 587.094795] CR0=0000000080050033 CR3=0000000085952000 CR4=00000000001426f0 [ 587.101894] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 587.109007] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 587.120919] *** Control State *** [ 587.125124] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 587.140290] EntryControls=0000d1ff ExitControls=002fefff [ 587.146066] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 587.158539] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 587.165655] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 587.172338] reason=80000021 qualification=0000000000000002 18:30:33 executing program 5 (fault-call:3 fault-nth:0): r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x40049409, 0x0) 18:30:33 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:33 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x2, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:33 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f0000000000)={[{0x3f, 0x1, 0x200, 0x7, 0x6, 0x0, 0x4, 0x4, 0x7, 0x80, 0x5, 0x27d3, 0x9}, {0x7fffffff, 0x3, 0x1, 0x5, 0x7, 0x0, 0x6, 0x5, 0x4f, 0x5, 0x9, 0x2000000000000000}, {0x1000, 0x3ff, 0x7fff, 0x1f, 0x4, 0x10001, 0xe2, 0x8000, 0x7fff, 0x3, 0x2, 0xb9f, 0xff}], 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 587.184153] IDTVectoring: info=00000000 errcode=00000000 [ 587.189783] TSC Offset = 0xfffffec427118df1 [ 587.197565] EPT pointer = 0x000000009f1eb01e 18:30:33 executing program 3 (fault-call:1 fault-nth:0): r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:33 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0xd, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 587.324252] *** Guest State *** [ 587.337776] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 587.357720] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 587.373492] CR3 = 0x0000000000004000 [ 587.377355] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 18:30:34 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:34 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xc00000000000000) [ 587.438860] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 18:30:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x8090ae81, 0x0) 18:30:34 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xe000000) 18:30:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0xa, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 587.534135] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 587.552258] RFLAGS=0x00000006 DR7 = 0x0000000000000400 18:30:34 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000280)={'syzkaller0\x00', 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x80000000000000, 0x0, [], r1}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) dup2(r2, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 587.578266] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 587.634681] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 587.653346] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 587.683379] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 587.728634] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 587.768350] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 18:30:34 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xffffff9e, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:34 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xf000000) [ 587.791319] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 587.802475] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 587.811850] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 587.833487] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 587.844824] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 587.861350] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 587.871383] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 587.880248] Interruptibility = 00000000 ActivityState = 00000000 [ 587.888879] *** Host State *** [ 587.892498] RIP = 0xffffffff811fd350 RSP = 0xffff888055c7f3f0 [ 587.899831] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 587.906753] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 587.915612] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 587.921607] CR0=0000000080050033 CR3=00000000864f1000 CR4=00000000001426e0 [ 587.929461] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 587.936444] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 587.942526] *** Control State *** [ 587.946149] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 587.952842] EntryControls=0000d1ff ExitControls=002fefff [ 587.958514] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 587.965584] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 587.972301] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 587.979142] reason=80000021 qualification=0000000000000002 [ 587.986072] IDTVectoring: info=00000000 errcode=00000000 [ 587.991554] TSC Offset = 0xfffffec36c9d933d [ 587.996416] EPT pointer = 0x000000008b62b01e 18:30:34 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r0 = fcntl$getown(0xffffffffffffff9c, 0x9) getpgid(r0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:30:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0xe, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:34 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000000000100000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) finit_module(r1, &(0x7f0000000100)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x3) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = syz_open_dev$dmmidi(&(0x7f0000000200)='/dev/dmmidi#\x00', 0xa3, 0x40040) recvfrom(r2, &(0x7f0000000300)=""/92, 0x5c, 0x0, &(0x7f0000000380)=@nfc_llcp={0x27, 0x1, 0x0, 0x4, 0x3, 0x2, "9496a0080067b3aac89a042d4951090c44ec16c6f714a4967495575ebb981396898ed30f03e9e58b520647d4afb995ad22a8891403e7aea8ef61d2f3044c50", 0x1f}, 0x80) ioctl$SG_GET_LOW_DMA(r2, 0x227a, &(0x7f0000000240)) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:34 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xb00) 18:30:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0) 18:30:34 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xa, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:34 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xd00) 18:30:34 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xa00000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:34 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x40001, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0x3, 0x440002) ioctl$ION_IOC_ALLOC(r2, 0xc0184900, &(0x7f0000000200)={0x6, 0x1, 0x1, r3}) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x11, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:34 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x3) [ 588.247566] *** Guest State *** [ 588.258987] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 588.272059] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 588.287628] CR3 = 0x0000000000004000 18:30:34 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x3070000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 588.313378] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 588.337126] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 588.350813] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 588.358651] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 588.374515] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 588.393577] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 588.401854] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 588.426487] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 588.453368] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 588.461469] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 588.474251] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 588.487304] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 588.497950] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 588.506962] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 588.515232] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 588.523895] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 588.530395] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 588.538368] Interruptibility = 00000000 ActivityState = 00000000 [ 588.544938] *** Host State *** [ 588.548207] RIP = 0xffffffff811fd350 RSP = 0xffff888085a373f0 [ 588.554436] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 588.560901] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 588.568870] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 588.575002] CR0=0000000080050033 CR3=00000000a5dd2000 CR4=00000000001426e0 [ 588.582050] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 588.588902] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 588.595195] *** Control State *** [ 588.598701] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 588.608608] EntryControls=0000d1ff ExitControls=002fefff [ 588.614180] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 588.621126] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 588.627952] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 588.635824] reason=80000021 qualification=0000000000000002 [ 588.642230] IDTVectoring: info=00000000 errcode=00000000 [ 588.647995] TSC Offset = 0xfffffec2ef4a1397 [ 588.652346] EPT pointer = 0x00000000a00fe01e 18:30:35 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000040)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), &(0x7f00000000c0)=0xc) getpgrp(0xffffffffffffffff) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000100)) fcntl$getown(0xffffffffffffff9c, 0x9) fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000180)) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) getpgid(r0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0xa041, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:30:35 executing program 5: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x2000, 0x0) r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, r0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) dup2(r2, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:35 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xf) 18:30:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xc020660b, 0x0) 18:30:35 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0xc, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:35 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x9effffff00000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:35 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xf00) 18:30:35 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="85000000073e00002500000000a00000950000000000005dc67010f1c4113d7a4d66fcdad973a81ec54e73c4fee6d861a21729eaef63f26185d9281b8104dd4c36ba5dbc44cd5d082d"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) 18:30:35 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xf0ffffffffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:35 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x15, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:35 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xb) [ 588.910040] *** Guest State *** [ 588.924009] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:35 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x300000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 588.976717] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 589.001643] CR3 = 0x0000000000004000 [ 589.010459] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 589.054898] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 589.068539] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 589.083114] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 589.089591] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 589.097810] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 589.107568] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 589.119911] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 589.140652] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 589.149638] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 589.158534] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 589.166743] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 589.174954] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 589.182961] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 589.191229] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 589.199391] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 589.206133] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 589.214621] Interruptibility = 00000000 ActivityState = 00000000 [ 589.220909] *** Host State *** [ 589.224421] RIP = 0xffffffff811fd350 RSP = 0xffff8880950873f0 [ 589.230574] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 589.237062] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 589.244900] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 589.250821] CR0=0000000080050033 CR3=0000000090022000 CR4=00000000001426f0 [ 589.258027] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 589.264863] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 589.270984] *** Control State *** [ 589.274655] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 589.281413] EntryControls=0000d1ff ExitControls=002fefff [ 589.287095] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 589.294314] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 589.301042] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 589.307691] reason=80000021 qualification=0000000000000002 [ 589.314235] IDTVectoring: info=00000000 errcode=00000000 [ 589.319808] TSC Offset = 0xfffffec2901021cd [ 589.324222] EPT pointer = 0x00000000a81d001e 18:30:36 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x89cc0283711dfe69, 0x10, 0x0, 0x2d6) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$EVIOCSMASK(r3, 0x40104593, &(0x7f00000000c0)={0x12, 0x9f, &(0x7f0000000000)="5d91060b1b1ef63ed58a61cd714a6ebb66810d63eb92cf35acf59e5833bc77b4ef0bb90d862155cf0f6919f80640497774ee2b3fe76ef49640931a09a414ee2baac589bd4f093fd8e7bc93c6cc10e80ed53ecdc62b3a744b06c234f8cfa93151beefdc913cfb52b679c9122543ba9c301898d446af2a89c5188892845c6716a0750a161000dc209006147f041780dc0cded1bc03fe2847ad7d4fc6fac19a6e"}) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x4020940d, 0x0) 18:30:36 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xffffffffffffffff) 18:30:36 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850100cc000000000095ed000000000000c51f7732506d395b6d51841a437c34a4f3aa9532a61790793e460a6c49228aaa413de8ee8c95ff31bfd6af6b5bd6c1cc51e8b59159f1ad534c0fb1b310030000005a16a694af838131ee73754b49d93cc98196e61ceb1563f419ae802cce177ae930a1376f574fe31c11b4f38c960eef6c58c9e450fc"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) 18:30:36 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x7, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:36 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xf000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:36 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x100000000000000) 18:30:36 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x6000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:36 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) getsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000100)=0x7, &(0x7f0000000140)=0x4) 18:30:36 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x9, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:36 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) times(&(0x7f0000000000)) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:36 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x3f000000) 18:30:36 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x10, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xc0045878, 0x0) 18:30:36 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850010000700000025000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:36 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x4, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:36 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x3f00) [ 589.822508] *** Guest State *** 18:30:36 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x100000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:36 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x2, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 589.850775] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:36 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x300) 18:30:36 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) preadv(r0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/171, 0xab}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000100)=""/18, 0x12}], 0x3, 0x0) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 589.942066] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:36 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x800000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 589.983283] CR3 = 0x0000000000004000 [ 589.987358] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 590.026031] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 590.036261] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 590.054190] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 590.064273] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 590.071349] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 590.092753] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.123602] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 590.131717] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.141287] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.150419] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.158816] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 590.167124] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 590.175543] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 590.183725] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 590.191818] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 590.198882] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 590.206738] Interruptibility = 00000000 ActivityState = 00000000 [ 590.213824] *** Host State *** [ 590.217088] RIP = 0xffffffff811fd350 RSP = 0xffff888085b673f0 [ 590.223219] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 590.229746] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 590.237669] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 590.243730] CR0=0000000080050033 CR3=0000000095254000 CR4=00000000001426e0 [ 590.250955] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 590.257720] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 590.264017] *** Control State *** [ 590.267467] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 590.274259] EntryControls=0000d1ff ExitControls=002fefff [ 590.279849] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 590.286951] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 590.293687] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 590.300284] reason=80000021 qualification=0000000000000002 [ 590.306747] IDTVectoring: info=00000000 errcode=00000000 [ 590.312253] TSC Offset = 0xfffffec20eeddfc8 [ 590.316779] EPT pointer = 0x00000000a369701e 18:30:37 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x40100, 0x0) ioctl$EVIOCSABS20(r0, 0x401845e0, &(0x7f0000000040)={0xff, 0x7fff, 0x2, 0x629, 0x9, 0x3}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:30:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x5460, 0x0) 18:30:37 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xb000000) 18:30:37 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x10000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:37 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x100000000000000, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:37 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x408080) connect$pppoe(r2, &(0x7f0000000200)={0x18, 0x0, {0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}, 'bridge0\x00'}}, 0x1e) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r3 = socket$inet6_sctp(0xa, 0x5, 0x84) ioctl$sock_ifreq(r3, 0x8979, &(0x7f0000000100)={'bpq0\x00', @ifru_addrs=@l2={0x1f, 0x4, {0x8, 0x4, 0x7, 0xfff, 0x9, 0x4}, 0x7fff, 0x3}}) r4 = dup2(r1, r0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000240)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r4, 0x0, 0x10, &(0x7f0000000280)='/dev/input/mice\x00'}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r5, r4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:37 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xe00) 18:30:37 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r0, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:37 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x307000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:37 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x200000000000000, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:37 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x200000000000000) [ 590.598402] *** Guest State *** [ 590.608945] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:37 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x3f000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 590.639839] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 590.649807] CR3 = 0x0000000000004000 [ 590.673360] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 590.681510] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 590.725658] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 590.747344] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 590.764525] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 590.771642] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 590.784675] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.792834] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 590.800956] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.809841] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.817973] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 590.826100] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 590.834950] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 590.843249] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 590.851536] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 590.860184] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 590.866805] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 590.874404] Interruptibility = 00000000 ActivityState = 00000000 [ 590.880648] *** Host State *** [ 590.883998] RIP = 0xffffffff811fd350 RSP = 0xffff888085a373f0 [ 590.890106] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 590.896680] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 590.904656] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 590.910595] CR0=0000000080050033 CR3=000000009f7d9000 CR4=00000000001426e0 [ 590.917767] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 590.924539] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 590.930592] *** Control State *** [ 590.934180] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 590.940991] EntryControls=0000d1ff ExitControls=002fefff [ 590.946542] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 590.953583] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 590.960312] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 590.967968] reason=80000021 qualification=0000000000000002 [ 590.974525] IDTVectoring: info=00000000 errcode=00000000 [ 590.979995] TSC Offset = 0xfffffec1af590433 [ 590.984442] EPT pointer = 0x00000000a0cf101e [ 591.044798] *** Guest State *** [ 591.048216] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 591.057297] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 591.067374] CR3 = 0x0000000000004000 [ 591.071199] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 591.078245] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 591.085494] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 591.091483] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 591.097522] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 591.104275] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 591.112223] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 591.120227] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 591.128210] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 591.136221] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 591.144201] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 591.152145] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 591.160195] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 591.168191] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 591.176175] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 591.184172] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 591.190560] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 591.198030] Interruptibility = 00000000 ActivityState = 00000000 [ 591.204311] *** Host State *** [ 591.207486] RIP = 0xffffffff811fd350 RSP = 0xffff88805d8973f0 [ 591.213506] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 591.219899] FSBase=00007f4e27aef700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 591.227717] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 591.233634] CR0=0000000080050033 CR3=000000009f7d9000 CR4=00000000001426f0 [ 591.240632] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 591.247335] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 591.253416] *** Control State *** [ 591.256848] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 591.263547] EntryControls=0000d1ff ExitControls=002fefff [ 591.268989] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 591.275979] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 591.282632] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 [ 591.289255] reason=80000021 qualification=0000000000000002 18:30:37 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000080)=""/29) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) fsetxattr$security_capability(r3, &(0x7f0000000000)='security.capability\x00', &(0x7f0000000040)=@v2={0x2000000, [{0x9, 0x1f}, {0x2, 0x6}]}, 0x14, 0x1) sendmsg$nl_route_sched(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1001000}, 0xc, &(0x7f0000000100)={&(0x7f0000001540)=ANY=[@ANYBLOB="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"], 0xe0}, 0x1, 0x0, 0x0, 0x80d0}, 0x800) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:37 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x4004ae99, 0x0) 18:30:37 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xf00000000000000) 18:30:37 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x1000000, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:37 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xffffffffa0010000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 591.295602] IDTVectoring: info=00000000 errcode=00000000 [ 591.301035] TSC Offset = 0xfffffec1af590433 [ 591.305391] EPT pointer = 0x00000000a0cf101e 18:30:38 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x6000000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:38 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xc00) 18:30:38 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000225000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x100000000, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x4a6df64e32aba233}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, r2, 0x0, 0x64, &(0x7f0000000480)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0xffffffffffffffff}, 0xfffffffffffffd0a) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000500)={0xffffffffffffffff, r0, 0x0, 0xd1, &(0x7f0000000540)='P\x7f\x00\x00\x00\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1e\xa1X]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd0\xdcL\x84\xa9\xc8\xff\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8t\a\x02\xccZE\xd4;\x1b\x90n\x80\x90x+\xc5\x91\xfb\x01r\x91\x94t\x85\x81\x82u!\xef\x1f\xb2\"\x1b\xea\x1dk\xbd\x89 \x1b\xe6p\nq\xe7\xe8\x84\xc1\x8e\xce[\x83s\x9e\xf4\xce\xa14\xf7A\xc4\x81\xa6\akv\xdf!\xb7\x9eH\xfdO\x84\xae\x1d\xa9\xfbS\x0f\xce!\x15o\x00\xa8\xecK;\xe9H\xadw\x10\xdf@\xf6\xac>\xed\xa3\xeaj\xa97\x13\x12\xc8a\x00\x00\x00\x00\x00\x00\x00\x00\x00', r3}, 0xffffffffffffff9c) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={r1, 0x50, &(0x7f0000000300)={0x0, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, r0, 0x0, 0x0, 0x0, r4}, 0xfffffffffffffe4c) ioctl$TIOCCBRK(r2, 0x5428) 18:30:38 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x2000000, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 591.476803] *** Guest State *** 18:30:38 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xd) 18:30:38 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xffffffff00000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 591.514773] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 591.583030] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 591.612288] CR3 = 0x0000000000004000 [ 591.639548] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 591.664937] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 591.671669] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 591.678022] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 591.695259] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 591.709712] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 591.719736] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 591.734953] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 591.746200] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 591.756807] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 591.765032] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 591.773694] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 591.781792] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 591.790422] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 591.798629] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 591.806833] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 591.813542] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 591.821058] Interruptibility = 00000000 ActivityState = 00000000 [ 591.827360] *** Host State *** [ 591.830578] RIP = 0xffffffff811fd350 RSP = 0xffff888055c7f3f0 [ 591.836859] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 591.843615] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 591.851510] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 591.857481] CR0=0000000080050033 CR3=000000004f8bd000 CR4=00000000001426e0 [ 591.864665] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 591.871369] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 591.877560] *** Control State *** [ 591.881062] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 591.889105] EntryControls=0000d1ff ExitControls=002fefff [ 591.894856] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 591.901833] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 591.910301] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 591.917164] reason=80000021 qualification=0000000000000002 [ 591.923850] IDTVectoring: info=00000000 errcode=00000000 [ 591.929413] TSC Offset = 0xfffffec1310139d1 [ 591.933878] EPT pointer = 0x0000000088eb701e 18:30:38 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$SCSI_IOCTL_DOORUNLOCK(r3, 0x5381) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:38 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xe00000000000000) 18:30:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xc0189436, 0x0) 18:30:38 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000100), 0x4) 18:30:38 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x9effffff, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:38 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0x19, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:38 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x2000000) 18:30:38 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='emp--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:38 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xe000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:38 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="8500ff000701d7532500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) pipe2(&(0x7f0000000100)={0xffffffffffffffff}, 0x4000) ioctl$VIDIOC_ENUM_FREQ_BANDS(r2, 0xc0405665, &(0x7f0000000140)={0x4, 0x5, 0x6, 0x20, 0xffff, 0x1}) socket$nl_route(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x5421, 0x0) [ 592.218412] *** Guest State *** [ 592.227384] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 592.255217] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:38 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x1000000) [ 592.272331] CR3 = 0x0000000000004000 [ 592.289914] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 592.303306] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 592.309988] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 592.347102] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 592.353864] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 592.374587] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 592.383542] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 592.391775] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 592.400966] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 592.423351] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 592.431417] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 592.458777] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 592.474973] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 592.492393] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 592.502079] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 592.511047] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 592.517998] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 592.525629] Interruptibility = 00000000 ActivityState = 00000000 [ 592.531954] *** Host State *** [ 592.535268] RIP = 0xffffffff811fd350 RSP = 0xffff888090d673f0 [ 592.541625] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 592.548267] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 592.556295] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 592.562306] CR0=0000000080050033 CR3=0000000095254000 CR4=00000000001426f0 [ 592.569510] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 592.576306] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 592.582364] *** Control State *** [ 592.585971] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 592.592940] EntryControls=0000d1ff ExitControls=002fefff [ 592.598578] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 592.605611] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 592.612278] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 592.618948] reason=80000021 qualification=0000000000000002 [ 592.625374] IDTVectoring: info=00000000 errcode=00000000 [ 592.630826] TSC Offset = 0xfffffec0d4705bd0 [ 592.635357] EPT pointer = 0x000000005b18f01e 18:30:39 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000feb000/0x1000)=nil, 0x1000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:39 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x1a0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:39 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x101900, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) ioctl$ASHMEM_GET_PIN_STATUS(r2, 0x7709, 0x0) 18:30:39 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xe) 18:30:39 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x02', 0xffffffffffffffff}, 0x30) 18:30:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x41a0ae8d, 0x0) 18:30:39 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x300000000000000) 18:30:39 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x3, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:39 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:39 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 592.831960] *** Guest State *** [ 592.835798] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 592.847819] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:39 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xb00000000000000) [ 592.886309] CR3 = 0x0000000000004000 [ 592.930248] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 592.939092] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 592.954148] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 592.977888] RFLAGS=0x00000006 DR7 = 0x0000000000000400 18:30:39 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xe00000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 593.003648] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 593.010542] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 593.033400] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 593.066906] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 593.080186] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 593.113449] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 593.124558] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 593.132854] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 593.141747] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 593.150855] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 593.159041] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 593.167187] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 593.173845] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 593.181352] Interruptibility = 00000000 ActivityState = 00000000 [ 593.187723] *** Host State *** [ 593.190992] RIP = 0xffffffff811fd350 RSP = 0xffff888058c3f3f0 [ 593.197201] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 593.203988] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 593.211932] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 593.218579] CR0=0000000080050033 CR3=000000009f9eb000 CR4=00000000001426e0 [ 593.225672] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 593.232427] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 593.238661] *** Control State *** [ 593.242137] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 593.248940] EntryControls=0000d1ff ExitControls=002fefff [ 593.254515] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 593.261467] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 593.268184] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 593.274961] reason=80000021 qualification=0000000000000002 [ 593.281346] IDTVectoring: info=00000000 errcode=00000000 [ 593.287097] TSC Offset = 0xfffffec07680a64f [ 593.291444] EPT pointer = 0x00000000a92a601e [ 593.356107] *** Guest State *** [ 593.359406] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 593.369009] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 593.377949] CR3 = 0x0000000000004000 [ 593.381659] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 593.388215] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 593.394806] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 593.400762] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 593.406776] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 593.413485] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 593.421444] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 593.429443] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 593.437430] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 593.446177] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 593.454229] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 593.462197] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 593.470281] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 593.478835] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 593.486867] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 593.494857] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 593.501251] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 593.508725] Interruptibility = 00000000 ActivityState = 00000000 [ 593.514971] *** Host State *** [ 593.518146] RIP = 0xffffffff811fd350 RSP = 0xffff8880923ff3f0 [ 593.524173] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 593.530563] FSBase=00007f4e27b10700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 593.538387] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 593.544319] CR0=0000000080050033 CR3=000000009f9eb000 CR4=00000000001426f0 [ 593.551323] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 593.558029] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 593.564112] *** Control State *** [ 593.567548] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 593.574282] EntryControls=0000d1ff ExitControls=002fefff [ 593.579724] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 593.586689] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 593.593391] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 593.599949] reason=80000021 qualification=0000000000000002 18:30:40 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$EVIOCSKEYCODE_V2(r3, 0x40284504, &(0x7f0000000000)={0xae57, 0x18, 0x3, 0x1ff, "ac273b2c4cb9591dc201f880feb324067ab071956782338e9181632e59c34323"}) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:40 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0x50, &(0x7f0000000280)}, 0x10) r2 = dup2(r1, r0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r2, 0x50, &(0x7f0000000100)={0x0, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, r2, 0x0, 0x0, 0x0, r3}, 0x30) 18:30:40 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xc000000) 18:30:40 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0x2, 0x0) 18:30:40 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x3f00, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 593.607103] IDTVectoring: info=00000000 errcode=00000000 [ 593.612539] TSC Offset = 0xfffffec07680a64f [ 593.616880] EPT pointer = 0x00000000a92a601e 18:30:40 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x2) 18:30:40 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x200000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:40 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:40 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xc) [ 593.854410] *** Guest State *** 18:30:40 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xffffff7f00000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:40 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="850000000095000000ff0950b4bbc5b24071c3de439acad655afae68ba"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 593.883291] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 593.931625] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 593.961571] CR3 = 0x0000000000004000 [ 593.976866] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 593.987791] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 594.009534] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 594.020363] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 594.026797] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 594.034578] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 594.042793] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.052265] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 594.063520] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.071987] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.080991] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.089858] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 594.100166] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 594.108984] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 594.117364] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 594.125454] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 594.131931] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 594.139513] Interruptibility = 00000000 ActivityState = 00000000 [ 594.145866] *** Host State *** [ 594.149130] RIP = 0xffffffff811fd350 RSP = 0xffff88805be5f3f0 [ 594.155282] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 594.161771] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 594.169671] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 594.175779] CR0=0000000080050033 CR3=0000000088eb7000 CR4=00000000001426f0 [ 594.183359] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 594.190091] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 594.196226] *** Control State *** [ 594.199704] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 594.206484] EntryControls=0000d1ff ExitControls=002fefff [ 594.212022] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 594.219064] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 594.225854] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 594.232462] reason=80000021 qualification=0000000000000002 [ 594.238895] IDTVectoring: info=00000000 errcode=00000000 [ 594.244734] TSC Offset = 0xfffffebfed15a7c8 [ 594.249131] EPT pointer = 0x000000005347701e 18:30:40 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000000)={'nat\x00'}, &(0x7f0000000080)=0x78) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xc0045878, 0x0) 18:30:40 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xd00000000000000) 18:30:40 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:40 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x60000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:40 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x7fffffff, 0x200) getsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000140)=0x7fff, &(0x7f0000000200)=0x4) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:41 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x3f00000000000000) 18:30:41 executing program 5: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vga_arbiter\x00', 0x200400, 0x0) write$P9_RMKDIR(r0, &(0x7f0000000140)={0x14, 0x49, 0x1, {0x8, 0x3, 0x6}}, 0x14) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="8500000007000000250000000000000095006823055b0000ff379bd5937fedbd0a36aa5639c878ee272a3569389fd475d56aa043e41a9791fd02e7df68a527b3ffd1092cc363ba48127583a4f3c821848defc7941bf9d0193471d694e79ba31a8816fdaef044dea3d7d6bd73f56096e69f4fd7e9a886695e9539fb1d4e4ae9b099943d6cf9"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) dup2(r2, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:41 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x2000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:41 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x1000000}, 0x30) 18:30:41 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x3000000) [ 594.517044] *** Guest State *** [ 594.524244] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 594.544999] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1100000000000000) [ 594.568159] CR3 = 0x0000000000004000 [ 594.580465] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 594.606831] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 594.629642] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 594.676922] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 594.693178] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 594.702011] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 594.713968] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.721943] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 594.738887] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.747224] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.760306] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 594.768491] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 594.781530] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 594.803171] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 594.811220] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 594.819477] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 594.825988] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 594.833733] Interruptibility = 00000000 ActivityState = 00000000 [ 594.839949] *** Host State *** [ 594.843236] RIP = 0xffffffff811fd350 RSP = 0xffff888091cf73f0 [ 594.849216] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 594.855691] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 594.863509] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 594.869368] CR0=0000000080050033 CR3=0000000098c78000 CR4=00000000001426e0 [ 594.876421] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 594.883120] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 594.889159] *** Control State *** [ 594.892590] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 594.899272] EntryControls=0000d1ff ExitControls=002fefff [ 594.904823] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 594.911726] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 594.918408] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 594.925010] reason=80000021 qualification=0000000000000002 [ 594.931298] IDTVectoring: info=00000000 errcode=00000000 [ 594.936782] TSC Offset = 0xfffffebf92dfbe55 [ 594.941092] EPT pointer = 0x000000009895a01e 18:30:41 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000000)=ANY=[@ANYRES32=0x0, @ANYBLOB="1b000020f5f6888fa65608cae1a71c3f14d52eaf9a9e0fcc8c32fcc904a5d3"], &(0x7f0000000040)=0x23) syncfs(r0) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000080)={r1}, 0x8) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r5 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 18:30:41 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x48100, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="85000000070000002500000000000b009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) fcntl$getownex(r2, 0x10, &(0x7f0000000140)) dup2(r2, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:41 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0xd000000) 18:30:41 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xf0ffff, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:41 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x2000000}, 0x30) 18:30:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1500000000000000) 18:30:41 executing program 3: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x8200, 0x0) write$UHID_SET_REPORT_REPLY(r0, &(0x7f0000000040)={0xe, 0x8, 0x305, 0xffff, 0x9d, "53a12dcbf419be531f4111b052afb4feabbd867ca2189c50265cd1d4f2aab974ce1bc96d57406cd67320edfaba84465561f1ab5978577a30846cb7d294ec1d17a652246453fad2e432ba32036fd79fbe92aad350c8580ea035a6666f16720dcbc65b7e5aef24ab88eae4d42e81f86330b33dd2a69f8a6209589e8572bbc349938f8253643e10b5a873fee9159dd52a98880a1791f7787df4d9bd1bff46"}, 0xa9) r1 = shmget(0x0, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r1, 0x0) openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video37\x00', 0x2, 0x0) 18:30:41 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xa00, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:41 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) socket(0x11, 0x800, 0x80000001) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 595.250978] *** Guest State *** 18:30:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xec0f00) [ 595.279621] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 595.308892] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:41 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:42 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x2}, 0x30) [ 595.343497] CR3 = 0x0000000000004000 [ 595.355555] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 595.391558] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 595.425233] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 595.454080] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 595.466783] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 595.475619] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 595.484238] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 595.492588] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 595.501980] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 595.511198] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 595.536290] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 595.546319] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 595.565474] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 595.575907] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 595.584632] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 595.594527] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 595.601229] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 595.609925] Interruptibility = 00000000 ActivityState = 00000000 [ 595.616650] *** Host State *** [ 595.620193] RIP = 0xffffffff811fd350 RSP = 0xffff8880851573f0 [ 595.628333] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 595.635451] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 595.643703] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 595.649956] CR0=0000000080050033 CR3=0000000094808000 CR4=00000000001426f0 [ 595.657478] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 595.664703] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 595.670930] *** Control State *** [ 595.674755] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 595.681540] EntryControls=0000d1ff ExitControls=002fefff [ 595.687085] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 595.694147] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 595.700890] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 595.707574] reason=80000021 qualification=0000000000000002 [ 595.714053] IDTVectoring: info=00000000 errcode=00000000 [ 595.719565] TSC Offset = 0xfffffebf2caf0079 [ 595.724194] EPT pointer = 0x000000008b9ae01e [ 595.785678] *** Guest State *** [ 595.788974] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 595.798600] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 595.807608] CR3 = 0x0000000000004000 [ 595.811397] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 595.819098] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 595.826274] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 595.832241] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 595.838345] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 595.845078] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 595.853087] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 595.861040] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 595.869059] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 595.877050] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 595.885059] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 595.893069] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 595.901029] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 595.909049] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 595.917040] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 595.925054] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 595.931443] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 595.938927] Interruptibility = 00000000 ActivityState = 00000000 [ 595.945164] *** Host State *** [ 595.948336] RIP = 0xffffffff811fd350 RSP = 0xffff88808cc473f0 [ 595.955268] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 595.961664] FSBase=00007f4e27b10700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 595.969484] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 595.975394] CR0=0000000080050033 CR3=0000000094808000 CR4=00000000001426f0 [ 595.982383] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 595.989071] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 595.995144] *** Control State *** [ 595.998574] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 596.005308] EntryControls=0000d1ff ExitControls=002fefff [ 596.010747] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 596.017710] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 596.024407] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 18:30:42 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0xfffffffffffffffc, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x101042, 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:42 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xfffffffffffff000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:42 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000025000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) mmap$xdp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000000, 0x1052, r2, 0x180000000) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:42 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x200, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000040)=[@in6={0xa, 0x4e20, 0x7, @dev={0xfe, 0x80, [], 0x16}, 0x7}, @in6={0xa, 0x4e21, 0x6, @remote}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x48) 18:30:42 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x200000000000000}, 0x30) 18:30:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfec00) [ 596.030971] reason=80000021 qualification=0000000000000002 [ 596.037323] IDTVectoring: info=00000000 errcode=00000000 [ 596.042762] TSC Offset = 0xfffffebf2caf0079 [ 596.047124] EPT pointer = 0x000000008b9ae01e 18:30:42 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x300, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:42 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:42 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0x0, r2, 0x0, 0x38e, 0x0, 0xffffffffffffffff}, 0x94) 18:30:42 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x100000000000000}, 0x30) 18:30:42 executing program 3: r0 = shmget(0x1, 0x2000, 0x200, &(0x7f0000ffe000/0x2000)=nil) ioctl$NBD_SET_FLAGS(0xffffffffffffff9c, 0xab0a, 0x81) shmctl$IPC_RMID(r0, 0x0) 18:30:42 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x1ff, 0x2080) ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000040)={0x8, 0x7, 0xffffffffffffff28, 0x958, 0x80000000, 0x3f, 0x81}) ioctl$VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f0000000080)={0x43, 0x0, 0x1}) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:43 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x703, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:43 executing program 3: shmctl$IPC_RMID(0x0, 0x0) exit(0x3) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x200000, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000040)={{{@in=@empty, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @initdev}}, 0x0, @in6=@remote}}, &(0x7f0000000140)=0xe8) ioctl$SIOCAX25DELUID(r0, 0x89e2, &(0x7f0000000180)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r1}) 18:30:43 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000025000000000000009500000000000100"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x0, 0x0) r3 = dup2(r2, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) getpeername$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14) ioctl$KVM_GET_MP_STATE(r3, 0x8004ae98, &(0x7f0000000140)) 18:30:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xffff8000) 18:30:43 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x30) [ 596.523232] *** Guest State *** [ 596.532803] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 596.574704] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 596.607750] CR3 = 0x0000000000004000 [ 596.612832] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 596.630278] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 596.647661] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:30:43 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="830000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 596.672386] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 596.692460] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 596.706192] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 18:30:43 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x100000000000000}, 0x30) [ 596.731749] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 18:30:43 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 596.779446] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 18:30:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x11) [ 596.855154] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 596.885377] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 18:30:43 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x200000000000000}, 0x30) [ 596.905612] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 596.942300] GDTR: limit=0x000007ff, base=0x0000000000001000 18:30:43 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$DRM_IOCTL_AGP_ENABLE(r2, 0x40086432, &(0x7f0000000100)=0x8000000000000000) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 596.982555] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 597.002077] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 597.027708] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 597.090806] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 597.112972] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 597.123375] Interruptibility = 00000000 ActivityState = 00000000 [ 597.166322] *** Host State *** [ 597.184818] RIP = 0xffffffff811fd350 RSP = 0xffff888057c9f3f0 [ 597.191059] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 597.203181] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 597.238566] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 597.252616] CR0=0000000080050033 CR3=00000000a8e18000 CR4=00000000001426e0 [ 597.282686] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 597.311097] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 597.323122] *** Control State *** [ 597.326581] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 597.333495] EntryControls=0000d1ff ExitControls=002fefff [ 597.339012] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 597.351114] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 597.358126] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 597.372118] reason=80000021 qualification=0000000000000002 18:30:44 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x14, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xc000000000000) 18:30:44 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x1000000}, 0x30) 18:30:44 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x8, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:44 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001800)=ANY=[@ANYBLOB="850000000702000025000000000000001f00000000000000adbdbe102bdb7d2b389974227ed37ebb5d42080cb6f17233c2bc4d95f8aedc60140c8aafb96c1b5c24f0029aa6139e99872e1aad6ab11f4e1b0deef84526d6047c1debbf49221be666c75b1dd4677e3ca15e3095e65cd420652da94d8258552cb9a8d7b8696a78512184297697e3a6aec0ebd20a8fa044722cba4f18cc78b48d9370d32ae1846e91b8550787b54ebd480268f23c9e68eff28e0a863ba925dea982e2072dbd32c1be01517d8c33464ec5724f3279d29929717650b8c868f35289e602dd64fbbacb6d174e83f71a505f78fef36a62e8b7f3f9a946af55948682e97d"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x2000, 0x0) ioctl$DRM_IOCTL_MAP_BUFS(r2, 0xc0186419, &(0x7f0000000280)={0x9, &(0x7f0000000300)=""/4096, &(0x7f0000001700)=[{0x7, 0x75, 0x7, &(0x7f0000000200)=""/117}, {0x7, 0x80, 0xfff, &(0x7f0000001300)=""/128}, {0x0, 0x6b, 0xfffffffffffff4ba, &(0x7f0000001380)=""/107}, {0x80, 0x7f, 0x2, &(0x7f0000001400)=""/127}, {0x7, 0x87, 0x9, &(0x7f0000001480)=""/135}, {0x8, 0x5c, 0x100000000, &(0x7f0000001540)=""/92}, {0x7fff, 0xaf, 0x616, &(0x7f00000015c0)=""/175}, {0x5, 0x4d, 0x4, &(0x7f0000001680)=""/77}, {0x1ff, 0x9, 0x81, &(0x7f0000000140)=""/9}]}) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:44 executing program 3: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x400, 0x82) ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, &(0x7f0000000040)={0x4, 0x62, {0x55, 0xff, 0x2a5, {0xff, 0x1ff}, {0x81, 0x2}, @rumble={0x2, 0x80}}, {0x0, 0x8001, 0x0, {0x9, 0xd30}, {0x7ff, 0x3}, @cond=[{0x800, 0x2, 0x10001, 0x8, 0xe495, 0xfffffffffffffffa}, {0x7, 0xffff, 0x14000, 0x20, 0x3f, 0x2d18}]}}) shmctl$IPC_RMID(0x0, 0x0) [ 597.378919] IDTVectoring: info=00000000 errcode=00000000 [ 597.389658] TSC Offset = 0xfffffebe8432aa4a [ 597.394224] EPT pointer = 0x000000008ea4201e 18:30:44 executing program 3: r0 = shmget(0x1, 0x4000, 0x1fc, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x20001, 0x0) ioctl$SIOCX25SSUBSCRIP(r1, 0x89e1, &(0x7f0000000040)={'caif0\x00', 0x2, 0x7}) openat$ppp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ppp\x00', 0x4000, 0x0) shmctl$IPC_RMID(r0, 0x0) 18:30:44 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x2000000}, 0x30) 18:30:44 executing program 5: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000140)=0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000200)='/dev/sequencer2\x00', 0x400, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x64, &(0x7f0000000300)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x0}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000003c0)={r0, r1, 0x0, 0x64, &(0x7f0000000240)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', r3}, 0x30) r4 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r4, 0x40042408, r5) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/loop-control\x00', 0x200000, 0x0) write$P9_RMKNOD(r1, &(0x7f0000000580)={0x14, 0x13, 0x1, {0xa3, 0x4}}, 0x14) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff}, 0x800) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000400)={{{@in=@broadcast, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@remote}}, &(0x7f0000000500)=0xe8) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000540)={0xfffffffffffffffb, 0x2, r2, 0x0, r7, 0x0, 0x4d, 0x5}) fcntl$addseals(r6, 0x409, 0x8) 18:30:44 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xa000000) 18:30:44 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x30) 18:30:44 executing program 1: r0 = shmget(0x1, 0x4000, 0x805, &(0x7f0000fef000/0x4000)=nil) shmat(r0, &(0x7f0000fe9000/0x3000)=nil, 0x7000) getpgid(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000000)=0x10) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:30:44 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = socket$vsock_dgram(0x28, 0x2, 0x0) fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000000)='trusted.overlay.upper\x00', &(0x7f0000000040)={0x0, 0xfb, 0x97, 0x1, 0x0, "84a1a4073d08b2e35dbef865bd958593", "41a44ddb030bce2df04ff70e8f560aa1defc699b9ab46eecb310a12c3d4b9d827ecf6432f963d258f148acc0ced7940589076ab7cac44a1af996bc3c1457eabc42cdbeff31447aed760bd37a306792eed8b9b840d8334daafd9eed876a6f33a2868b1809ecc618e6a2a51e61bc87f0a4db323cd8d7eaf0f57310e877298ac15cdfff"}, 0x97, 0x1) 18:30:44 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x4300, 0x0) ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000140)={'yam0\x00', 0x81}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) dup2(r2, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:44 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x0, 0x200000000000000}, 0x30) 18:30:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x400000000000000) 18:30:44 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x400000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:44 executing program 3: r0 = shmget(0x2, 0x3000, 0x219bfcc18c8b5890, &(0x7f0000ff9000/0x3000)=nil) r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000040)) shmctl$IPC_RMID(r0, 0x0) prctl$PR_CAPBSET_READ(0x17, 0xc) ioctl$PPPOEIOCDFWD(r1, 0xb101, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000080)={{{@in=@loopback}}, {{@in=@initdev}, 0x0, @in=@local}}, &(0x7f0000000180)=0xe8) 18:30:44 executing program 5: r0 = socket$rds(0x15, 0x5, 0x0) read(r0, &(0x7f0000000200)=""/162, 0xa2) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) dup2(r2, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:45 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x0, 0x100000000000000}, 0x30) [ 598.378463] *** Guest State *** [ 598.381944] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:45 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xa00000000000000) [ 598.433677] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 598.448230] CR3 = 0x0000000000004000 [ 598.460673] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 598.470450] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 598.502574] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 598.526433] RFLAGS=0x00000006 DR7 = 0x0000000000000400 18:30:45 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) io_setup(0x7f, &(0x7f0000000000)=0x0) r2 = socket$l2tp(0x18, 0x1, 0x1) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x100, 0x0) r4 = syz_open_dev$vivid(&(0x7f0000000100)='/dev/video#\x00', 0x3, 0x2) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000240)='/dev/zero\x00', 0x1, 0x0) ioctl$VIDIOC_EXPBUF(0xffffffffffffff9c, 0xc0405610, &(0x7f00000002c0)={0xf, 0xd5d7, 0x5, 0x84800, 0xffffffffffffff9c}) r7 = eventfd2(0x3ff, 0x800) r8 = syz_open_dev$sndpcmp(&(0x7f0000000380)='/dev/snd/pcmC#D#p\x00', 0x7fe00000000, 0x0) r9 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000013c0)='/dev/dlm_plock\x00', 0x0, 0x0) r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001440)='/proc/sys/net/ipv4/vs/snat_reroute\x00', 0x2, 0x0) r11 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001580)='net/igmp6\x00') io_submit(r1, 0x5, &(0x7f0000001600)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0xa, 0xff, r2, &(0x7f0000000040)="d527bacecc53b15e444b2ed203bf6a38c1ff799e72940d8ad9ce8a378552cda899f9d08b8af50af9", 0x28, 0xfff, 0x0, 0x1, r3}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x3, r4, &(0x7f0000000140)="c2d407545a0e9261bb38beb369ec6e6e755822fb49963963d6ebe94bb426eb97dfd0a612ebfcad0739ef7b41b6f352e52ad7531bcb68c84b50181b69dca3518bcec4ac7b2fec7edbfc3d957c9f5e66ae5d679605b732cebd084f29dce496ea3d79278447c740d31627f20b487b1fc647cfbc11de44ce73281fcda9442d439b090c8af9828294d73761385e98d5c09aca229c3dc2eddf2c4c76ffa20800be0ae26ff5993fd8b97a55bf9b368b410d0ad0b49d8275d81d753a752439c38996a782ddf4dd9b90e8b151d3239c3224d2d28fba40ce59b1628f", 0xd7, 0x3f, 0x0, 0x3, r5}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0xf, 0x1000, r6, &(0x7f0000000300)="3976b56985adc0", 0x7, 0x2, 0x0, 0x0, r7}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x6, 0xa2e, r8, &(0x7f00000003c0)="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", 0x1000, 0xfffffffffffffff8, 0x0, 0x2, r9}, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x7, 0x20, r10, &(0x7f0000001480)="3d74a8176bd8336994e14e231fb735971a2b1148a70c81d8f357e3fe546c7dbfe46e62c82882037f398312ca2ea9e9e52400182879d8eedc7290b84b8d910140c085d8984246265eb208f6b538e991f894c333c2217c3fc257e5eecb8e3e20fef6a163567eea4bfaf042c13f445fa385fcb149c6e22d2884b61ae3a57c9e814a8e8782bfb0ab4407433d0425f142d5421552471d0d4e2f802f18f686e92f4705f37f0a81d8a0886a05b5465c9fcc5a6a2b99db2695257b0f88cacf39315009ead5a51ab6b55392f1ddc465d84c828b34d74c30941215c963cd50f2ed2f237bd3f86c20154667c376c6db", 0xea, 0x7fff, 0x0, 0x0, r11}]) shmctl$IPC_RMID(r0, 0x0) [ 598.548280] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 598.595692] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 598.625666] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 598.649390] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 598.659639] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 598.668370] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 598.677207] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 598.685941] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 598.694526] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 598.702962] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 598.715547] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 598.724299] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 598.731076] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 598.739389] Interruptibility = 00000000 ActivityState = 00000000 [ 598.746131] *** Host State *** [ 598.749695] RIP = 0xffffffff811fd350 RSP = 0xffff888059c5f3f0 [ 598.767886] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 598.782289] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 598.806954] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 598.815519] CR0=0000000080050033 CR3=000000008d942000 CR4=00000000001426f0 [ 598.831011] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 598.840355] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 598.847549] *** Control State *** [ 598.851338] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 598.860907] EntryControls=0000d1ff ExitControls=002fefff [ 598.867075] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 598.875114] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 598.881943] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 598.889924] reason=80000021 qualification=0000000000000002 [ 598.896442] IDTVectoring: info=00000000 errcode=00000000 [ 598.901967] TSC Offset = 0xfffffebd8150e5dd [ 598.906365] EPT pointer = 0x000000009fef001e [ 598.967836] *** Guest State *** [ 598.971198] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 598.980311] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 598.989262] CR3 = 0x0000000000004000 [ 598.993111] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 598.999906] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 599.006681] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 599.012745] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 599.018847] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 599.026095] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 599.034304] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.042344] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 599.050408] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.058453] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.066491] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.074520] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 599.082478] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 599.090472] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 599.098469] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 599.106479] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 599.112878] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 599.120344] Interruptibility = 00000000 ActivityState = 00000000 [ 599.126635] *** Host State *** [ 599.129819] RIP = 0xffffffff811fd350 RSP = 0xffff88805c24f3f0 [ 599.135839] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 599.142271] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 599.150103] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 599.156001] CR0=0000000080050033 CR3=000000008d942000 CR4=00000000001426f0 [ 599.163045] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 599.169698] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 599.175766] *** Control State *** [ 599.179208] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 599.185915] EntryControls=0000d1ff ExitControls=002fefff [ 599.191384] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 599.198365] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 599.205131] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 599.211869] reason=80000021 qualification=0000000000000002 18:30:45 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = openat(r1, &(0x7f0000000000)='./file0\x00', 0x8000, 0x108) ioctl$ION_IOC_HEAP_QUERY(r3, 0xc0184908, &(0x7f0000000080)={0x34, 0x0, &(0x7f0000000040)}) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:45 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x0, 0x1000000}, 0x30) 18:30:45 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) munmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000) 18:30:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe803) 18:30:45 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xe, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 599.219722] IDTVectoring: info=00000000 errcode=00000000 [ 599.230645] TSC Offset = 0xfffffebd2a123851 [ 599.235284] EPT pointer = 0x0000000098f1b01e 18:30:45 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x400000) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r2, 0x40045532, &(0x7f0000000140)=0x20) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:46 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x0, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f00000000c0)={'lapb0\x00', 0xffffffffffffff01}) r1 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="0a5c1f023c126285719070") r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newlink={0x3c, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0xc, 0x2, [@IFLA_BOND_UPDELAY={0x8, 0x3}]}}}]}, 0x3c}}, 0x0) shmctl$IPC_RMID(r1, 0x0) 18:30:46 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff, 0x0, 0x0, 0x2000000}, 0x30) 18:30:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe8030000) [ 599.468255] *** Guest State *** [ 599.471563] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:46 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:46 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x70) [ 599.547047] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 599.573190] CR3 = 0x0000000000004000 [ 599.587511] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 599.635685] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 599.659556] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:30:46 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x9, 0x400) setsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f0000000040)=0x5, 0x4) [ 599.685353] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 599.698872] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 599.746269] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 599.799849] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.839167] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 599.859798] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.868071] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.876235] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 599.884393] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 599.892508] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 599.904864] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 599.912833] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 599.920829] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 599.927310] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 599.934793] Interruptibility = 00000000 ActivityState = 00000000 [ 599.941005] *** Host State *** [ 599.944244] RIP = 0xffffffff811fd350 RSP = 0xffff88805acef3f0 [ 599.950226] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 599.956648] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 599.964481] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 599.970361] CR0=0000000080050033 CR3=0000000089c05000 CR4=00000000001426e0 [ 599.977931] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 599.984666] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 599.990709] *** Control State *** [ 599.994578] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 600.001234] EntryControls=0000d1ff ExitControls=002fefff [ 600.006775] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 600.013740] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 600.020388] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 600.027001] reason=80000021 qualification=0000000000000002 [ 600.033341] IDTVectoring: info=00000000 errcode=00000000 [ 600.038771] TSC Offset = 0xfffffebceb5e2f05 [ 600.043122] EPT pointer = 0x0000000096abb01e [ 600.109904] *** Guest State *** [ 600.113238] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 600.122067] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 600.131686] CR3 = 0x0000000000004000 [ 600.135590] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 600.142075] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 600.148824] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 600.154834] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 600.160790] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 600.167521] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 600.175532] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 600.183562] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 600.191520] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 600.199528] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 600.207597] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 600.215607] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 600.223610] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 600.231564] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 600.240054] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 600.248036] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 600.254488] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 600.261926] Interruptibility = 00000000 ActivityState = 00000000 [ 600.268196] *** Host State *** [ 600.271380] RIP = 0xffffffff811fd350 RSP = 0xffff88805c24f3f0 [ 600.277385] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 600.283811] FSBase=00007f4e27aef700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 600.291589] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 600.297510] CR0=0000000080050033 CR3=0000000089c05000 CR4=00000000001426f0 [ 600.304558] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 600.311215] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 600.317299] *** Control State *** [ 600.320733] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 600.327408] EntryControls=0000d1ff ExitControls=002fefff [ 600.332849] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 600.339800] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 600.346471] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 600.353078] reason=80000021 qualification=0000000000000002 18:30:47 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200800}, 0xc, &(0x7f00000000c0)={&(0x7f0000001380)=ANY=[@ANYBLOB="64b483a744c1bd823ecbe980acfd2d58fb40b8f5092a16bdf30d006b3839381af10390612ff259ab1ed562f889598540f39e117b87a86ccbace1a8c32b1f8105112a7821a7e4676f25a0f541", @ANYRES16=r4, @ANYBLOB="01002abd7000ffdbdf2505000000080006000700000008000400ffffffff08000600060000005c00020008000b000a00000014000100fe8800000000000000000000000000010800090063000000080002004e21000008000800ff01000014000100ff010000000000000000000000000001080003000300000008000800ae000000"], 0x88}, 0x1, 0x0, 0x0, 0x805}, 0x4000000) ioctl$VIDIOC_G_INPUT(r3, 0x80045626, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:47 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x1}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:47 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x20000170) 18:30:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1000000) 18:30:47 executing program 3: r0 = shmget(0x2, 0x200000, 0x0, &(0x7f0000e00000/0x200000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:47 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x1000000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 600.359386] IDTVectoring: info=00000000 errcode=00000000 [ 600.365423] TSC Offset = 0xfffffebceb5e2f05 [ 600.369728] EPT pointer = 0x0000000096abb01e 18:30:47 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) removexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'osx.', 'eth0GPLnodev@\\(ppp0em0lo\x00'}) openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/current\x00', 0x2, 0x0) 18:30:47 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000000000080000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) [ 600.550675] *** Guest State *** 18:30:47 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = syz_open_dev$mice(&(0x7f0000000540)='/dev/input/mice\x00', 0x0, 0x400000) getresuid(&(0x7f0000000580), &(0x7f00000005c0), &(0x7f0000000600)=0x0) lstat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_DIRENTPLUS(r2, &(0x7f0000000700)={0xb8, 0x0, 0x5, [{{0x6, 0x3, 0x10001, 0x8, 0x5, 0x1, {0x0, 0x3ff, 0xfffffffffffffffa, 0x4, 0x8, 0x8000, 0xd8f3, 0x6, 0x2, 0xff, 0x6, r3, r4, 0x9, 0x101}}, {0x0, 0x2, 0xf, 0x7, '/dev/dlm_plock\x00'}}]}, 0xb8) r5 = syz_open_dev$amidi(&(0x7f00000004c0)='/dev/amidi#\x00', 0x5, 0x40100) setsockopt$llc_int(r5, 0x10c, 0x6, &(0x7f0000000500)=0x8, 0x4) r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x4000, 0x0) ioctl$FICLONE(r2, 0x40049409, r0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r6, 0x84, 0x1c, &(0x7f0000000240), &(0x7f0000000280)=0x4) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r7 = gettid() ioctl$SIOCGETNODEID(r5, 0x89e1, &(0x7f00000007c0)={0x2}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r7, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f0000000380)={{0x8, 0x5, 0x6, 0x67d, 'syz0\x00', 0x1}, 0x6, 0x60, 0x6530, r7, 0x4, 0x3, 'syz1\x00', &(0x7f00000002c0)=['/dev/dlm_plock\x00', ')%\x00', 'PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', '/dev/dlm_plock\x00'], 0x85, [], [0x1, 0x100000000, 0x0, 0x10000]}) [ 600.575069] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 600.633653] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 600.660202] CR3 = 0x0000000000004000 [ 600.675748] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 18:30:47 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:47 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci\x00', 0x0, 0x0) r3 = getpgid(0xffffffffffffffff) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000004c0)={{{@in=@multicast2, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f00000005c0)=0xe8) r5 = getgid() r6 = gettid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000600)={{{@in=@initdev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@multicast1}}, &(0x7f0000000700)=0xe8) stat(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000800)=0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000840)={{{@in=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@dev}}, &(0x7f0000000940)=0xe8) fstat(r0, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r12 = getpgrp(0xffffffffffffffff) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000cc0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) lstat(&(0x7f0000000a00)='./file0\x00', &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0xa, &(0x7f0000000ac0)=[0xee01, 0xee01, 0xee01, 0xee01, 0xffffffffffffffff, 0xee00, 0xee01, 0x0, 0xee01, 0xffffffffffffffff]) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000f40)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x5, &(0x7f0000000f00)='proc\x00'}, 0x30) r16 = getuid() getresgid(&(0x7f0000000f80)=0x0, &(0x7f0000000fc0), &(0x7f0000001000)) r18 = getpid() r19 = geteuid() r20 = getgid() sendmmsg$unix(r2, &(0x7f0000001a80)=[{&(0x7f0000000200)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000000280)=[{&(0x7f0000000140)="41f53fe900820004ca3d59f26f9979167bec534848027b7e4b1f71bc", 0x1c}, {&(0x7f0000000300)="9dcd43139e3c1c5c736e636aef875ffc75ff8647dcaaa68228b234aefd094d3ceef124804db3159e7d66574018430a6d54ffb150704f8e2920906d645065b12c15fe016edf6b2ca3d9ad0e2584424c7dbf90af8d3841aa40119dd6d7540eeff847d8808f15d9465bec6306410234aff5a2289b890f2c7b1a63df7be4d22115cfbddef39c8d130983fe95e10895e2455aa66470edaeb1fa820a4b5fec3571d7cea9304f00e45682223f228174145f8880ffbb581fff5c2f2c6b4b7ed55ef17d50a1b5455082837397", 0xc8}, {&(0x7f0000000400)="62a7e0d0bdfd3d7acbccc4c6e7d40baa0e38f5e35167410fe3c65c7bdf940ba7bea19470f4738d55b8b97a0a1efb801d893b2279b20f5bceb204c849a941f598061462236120d0daaff90499cd972ceaaa80b878599b9f8a73bc2d11b13c9928a25c9ba7d3d5ebd2184d5c45ac191a0b30e1e27d25459bbc49987fb27d24a14986750564e5e8f98290218bbf4deb36ae9d3f5ae24687e9819ae9984e770df740c2502a7ea47b69f69ebf58", 0xab}], 0x3, &(0x7f0000000b00)=[@cred={0x20, 0x1, 0x2, r3, r4, r5}, @rights={0x30, 0x1, 0x1, [r1, r0, r0, r1, r0, r0, r1]}, @rights={0x38, 0x1, 0x1, [r1, r1, r1, r0, r0, r0, r1, r0, r0, r1]}, @cred={0x20, 0x1, 0x2, r6, r7, r8}, @cred={0x20, 0x1, 0x2, r9, r10, r11}, @rights={0x28, 0x1, 0x1, [r1, r1, r0, r0, r1]}, @cred={0x20, 0x1, 0x2, r12, r13, r14}], 0x110, 0x1}, {&(0x7f0000000c40)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000e80)=[{&(0x7f0000000cc0)}, {&(0x7f0000000d00)="6d95a0ea4352d5f7fff3a440ea40d48587819e9b31813cf7f44ad4a956cfb047a56212afcbc0663483f1748e4f4ed417acd8265001c960aa65a47664edf416d64241cd6069c5ef333f57a1b9a1ae2ad9c6b0332ed2845901622f21e17235ccb71d76c48b9df491", 0x67}, {&(0x7f0000000d80)="e33677a78568f85fbc207f7fd91a7d450cd419386b4b6240120410011c9dc37160851a156f2894f43b51a25622", 0x2d}, {&(0x7f0000000dc0)="6b51a77b02f4e9d43f68e983e197389d41f4451dfcae5aa3c1233ab4476b49bba4120ec3ca69b1cc3fcb4e30ee3bee0290ed45a7a47e80516983e43623ee58ca95e0af1f192e6bef6ee4f3cdda443d26614a27695e8deed28d", 0x59}, {&(0x7f0000000e40)="660b7f5fa7f920559cf8f3f6d081ed8c5641581052e402d973713c5968b9379f9781101afed4", 0x26}], 0x5, &(0x7f0000001040)=[@rights={0x28, 0x1, 0x1, [r1, r0, r1, r0, r0, r1]}, @cred={0x20, 0x1, 0x2, r15, r16, r17}], 0x48, 0x40}, {&(0x7f00000010c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001600)=[{&(0x7f0000001140)="1368a7358be08dc530c85e6218c52e9dd555d4f8eebe1194cedfbb2844d6e9d4dfbb0adef3fbf833d3983394feace75410383b0fda00fe39f7c139b7922e8a5572c0a5f97e088fdb9ac5d8e41ff055f07999667f0635526f", 0x58}, {&(0x7f00000011c0)="748f02d2274118309f6ba58b7bda2db5f7ea64c9b43d19ff0747d4ee3cdd61b1f56477d17332dbd4131e645367372783576f52f39072dacfc49f7618c6c4d446407d5c899a1605833575e0389e2728da7ea4f349e74c2a87b465188ce53785078325d307fbe1f9688efb759d29529afc114379cead63825fa89a954b2935485aac066e0e3fb26f6e593d356d01", 0x8d}, {&(0x7f0000001280)="c7b905c9b68e01fa032204527ee050f2977abef5b8476f247f14de573f682e65aca3e618984c5d3c508b5a91d46b92da0e2ed82c6320c7c962473d922941a6060b2a0d37943983326ecbe811cf76146694fdc39c1a9468daf4b1892bd8ffa8f4688916888cb8a1e2876cb3d446f9108963821381455ba67c9cf7aebbbb6757b6adf30edceca4872505b9a411d7de1b40b907ec816778ae7a85225c4317d1d19c0298bb99eb1a8c4726bb9967", 0xac}, {&(0x7f0000001340)="66eb40f3338ac90f1bc409bd", 0xc}, {&(0x7f0000001380)="68956a7a32a4f4e3d1a9954438aaa24ff368a5ccd5e284d54ebb74fa0dbd0a6589", 0x21}, {&(0x7f00000013c0)="5cf7f554ac8e483e1b8ecb944209e105115413ea89e4aad003f4d81807d635b22cd419be1217677a93d265f57f322db5455c0a0e9f54df05fb78c3ba39b9accf1a5677c9616df9a1e29d51098b6c4de05519d2b4e2f1976fe78e26030a777cde8558e082d967db30", 0x68}, {&(0x7f0000001440)="c8d801c745c5260f4c97676b23e25bcc21224bd2b4be0b189ad39279776a6ad79f101a5945296e9cf45fd66e67f979050e5873a229b1b1569a2f9e6b5b0943899b2280fa84dde2bba8af661800b1d8e46f11af3e66ef4091a0b3bd548620953bd80a892e3122100cacc086c52e4a75010c29f086db96e3ad232f8e22f95c2c6bc0afdc246c4d59e60c1471153bcfb485cf05eb530a95891f9ed5560248e94a9a6c177f530239cf29d128bfacad91", 0xae}, {&(0x7f0000001500)="17997833f8a1c6eeb94e8320e8cab8ac5e4753923bc7eb1e42488c48b332f98ecffdd721fe2ca9359553b9f891e0af48c2bdde7fd616387031f0696e3e0befec069cb0c6af037d55148b8c2cbb10c36f5eb77debedc40b50f133a5109df3f61074a0bacd0f7bb511479a8a7075603c1d14b9c690a9775287bf52a758cfa9d30504bdbe3f5dc1bbfa30b062c8f8cde497e966a17a5514d11e6491e5a9ed328430a12eaa08bb711c3fda1e310112804ef8d5a5ad02020ad4f97ba76fdeb1f995e3cd731245b9aec8ae8f47f27903906f11968d73995ddc3e53a0cc86d0b41793c3765dd0334939fe6d31192aba4da692a10fbe", 0xf2}], 0x8, &(0x7f0000001680)=[@cred={0x20, 0x1, 0x2, r18, r19, r20}], 0x20, 0x20000001}, {&(0x7f00000016c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000001880)=[{&(0x7f0000001740)="c8c2863630abbdc8d88cc4f25582edf775c9ac038302f7f00a4ec7b59c4639384d253a76cc6ae4fe792f85fc099f32f5e7a1c21bc3ed0739be5b90209329ca4593", 0x41}, {&(0x7f00000017c0)="07821e6759ae39e203e87542a255ff291a89546526a085e8381b76d6c088e0e72040b4f5b8f389f520b35e72519d135930769decc7204a571fd1ef0f664526d33697ab863fc2d7179cfb5d316974702ecabeb3a74541145ddea27144a8596c0e1ba5a88cf41fda488998a6fd26b83cb356a32884fdafebf2089fc78438b6244ab4766df20c278f133db3b64370e1ad1505e1aed44a1adc923115a3514e25e37f1d9db58b6de19af4c7d926f5374a3a1fa8d2aa3cde7ec5bc15e5fcc2dfdf714f", 0xc0}], 0x2, &(0x7f00000018c0)=ANY=[@ANYBLOB="300f00000000002201f70000fd000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0], 0x30, 0x8000}, {&(0x7f0000001900)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001a40)=[{&(0x7f0000002000)="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", 0x1000}, {&(0x7f0000003000)="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", 0x1000}, {&(0x7f0000001980)="affe401d537824e1dc3d4cdc99ad0a0fd530a61027bb407b616d66fdbcb2c53f5b90a478f024988711a40bb3266cbc09e8bdb807b52450fc7af45807ffab3fa17b2097cae96b1659fc37285e37e0c74d721541142754681a3d1c431255a9a00082946b99d81e246b", 0x68}, {&(0x7f0000001a00)}], 0x4}], 0x5, 0x40010) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 600.701670] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 600.730794] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:30:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xb00000000000000) [ 600.746606] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 600.788804] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 600.833302] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 600.849378] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 600.882523] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 600.904315] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 600.925659] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 600.957535] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 600.978481] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 601.003484] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 601.042601] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 601.054929] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 601.064032] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 601.070506] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 601.078589] Interruptibility = 00000000 ActivityState = 00000000 [ 601.084897] *** Host State *** [ 601.088139] RIP = 0xffffffff811fd350 RSP = 0xffff88804fde73f0 [ 601.094765] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 601.101228] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 601.109084] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 601.115200] CR0=0000000080050033 CR3=000000008e33e000 CR4=00000000001426f0 [ 601.122289] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 601.129098] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 601.135516] *** Control State *** [ 601.139087] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 601.145822] EntryControls=0000d1ff ExitControls=002fefff [ 601.151347] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 601.158881] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 601.165754] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 601.172370] reason=80000021 qualification=0000000000000002 [ 601.178874] IDTVectoring: info=00000000 errcode=00000000 [ 601.184452] TSC Offset = 0xfffffebc53c53cc5 [ 601.188830] EPT pointer = 0x000000008d76301e 18:30:47 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$VIDIOC_G_FMT(r3, 0xc0d05604, &(0x7f0000001380)={0xb, @win={{0xfffffffffffffffc, 0xfffffffffffffff8, 0x13db, 0x4}, 0x5, 0x7fffffff, &(0x7f0000000080)={{0x4, 0x7, 0x9, 0xb0a}, &(0x7f0000000040)={{0x1, 0x80, 0x8, 0x80000000}, &(0x7f0000000000)={{0xdac, 0x3d900000000, 0xffffffff, 0x9}}}}, 0x9, &(0x7f0000000180)="54a15c3ec5f0cb086b07584f2b0e6630ada874fc59d3de061f35565635844d19167c1cd7c647c44907f4352461dd9144c313f1a81579cc6f8ea60a98951754567f075ba4a2ead67804ed589a0224b718dc73f42eda3a77d2ad4f58489a8cd3f3f873f35c7ee101750d6c920b960e67f5eff224372834bc2346529d301214d1ef2206eefddcc1f619621de17be3efaa774a27c7e4533a0e397fe19dc5f80d102a1091cb3af5260696f10b38d51b343ac09fcb4ec05f", 0x1}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:47 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000200)='/dev/input/mouse#\x00', 0x1, 0x30000) bind$rose(r1, &(0x7f0000000240)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, 0x1, @bcast}, 0x1c) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="85000400077500000000000000000000000000000000000000000000a26a4c5f8f23e577ade30faf65c8c8c4c35210f12bc11fbf93d2361b6c8343a8e6af7324c1d7a9175e5c596fe19d7f068e395402bbf94f6520"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) fstat(r0, &(0x7f0000000280)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vbi(&(0x7f0000001280)='/dev/vbi#\x00', 0x3, 0x2) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f0000000080), 0x0) r4 = memfd_create(&(0x7f0000000000)='\xac\x00\x00', 0x4) ftruncate(r4, 0x1000000) sendfile(r3, r4, &(0x7f00000000c0)=0xf10001, 0xeffffdef) close(r3) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)={0x0, 0x0, 0x18}, 0x10) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r5 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r5, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:47 executing program 3: shmctl$IPC_RMID(0x0, 0x0) 18:30:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf00000000000000) 18:30:47 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000880)={{{@in6=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@ipv4={[], [], @multicast2}}}, &(0x7f0000000800)=0xe8) r2 = syz_open_dev$vbi(&(0x7f0000000700)='/dev/vbi#\x00', 0x0, 0x2) sendmsg$nfc_llcp(r2, &(0x7f0000001a80)={&(0x7f0000000740)={0x27, 0x1, 0x0, 0x6, 0x4, 0x8, "d08145d07d0984c6329f08e47ee8dd2c87ed5cf08f740ba37e668c5aced1cd0a318cf1e8471ab379c8bc068e6e935a8d5b76bf4d1ad9c3afc9ba653686ad1d"}, 0x60, &(0x7f0000001a40)=[{&(0x7f0000000980)="084b998b47c8581befa93213864bce1edbf5c7cdc49eea0e3a242f745137e82ecdd0b719a126ae118f2f66f5b481fea7860c3a32c8cdfaac76de38a527ce37dcdd9550ef8d420883df81787d09a1450c5bd3ead82e8ef3d0b75f9d0952eb6c15acd22573638e233f519fa07b99982c652a357af4cce848506c63cc544f7df3920707a3aa15f87fba0a7ce569548f69224b5ff1983f72bd09ff0b1f", 0x9b}, {&(0x7f00000007c0)="ea12391804d764c9f1c8cd670a14a1574edc14e0", 0x14}, {&(0x7f0000000a40)="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", 0x1000}], 0x3, 0x0, 0x0, 0x91}, 0x4080) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000840)={r1, @remote, @local}, 0xc) r3 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3ea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x379d, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xa, 0xa1, &(0x7f0000001fd8)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x41f00}, 0x27) r5 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0xfffffffffffff801, 0x20000) ioctl$KVM_SET_XSAVE(r5, 0x5000aea5, &(0x7f0000000300)={"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"}) setxattr$security_capability(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='security.capability\x00', &(0x7f0000000280)=@v2={0x2000000, [{0x9, 0xd58}, {0x7, 0x1}]}, 0x14, 0x1) set_mempolicy(0x1, &(0x7f0000000100)=0x1, 0x6) ioctl$PERF_EVENT_IOC_SET_BPF(r5, 0x40042408, r4) dup2(r4, r3) fcntl$F_SET_FILE_RW_HINT(r5, 0x40e, &(0x7f0000000140)=0x5) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffef8, 0x0, 0xffffffffffffffff}, 0x30) 18:30:47 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x1a0ffffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:47 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0xbf49, 0x400100) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f00000001c0)) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2000, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x140, 0x0) sendto$inet6(r2, &(0x7f0000000040)="f42b56f14a1cea6e56b8f6d34a7e4bf2306d43fbdca718e6096e78054ea53e3023e0817304b2241a247acce1adb16c086e85a62c2196bf3d6fe504888e9462786fb8b4797f5471754403798f7f0d7d5a67d5efbd9b6d828643", 0x59, 0x8800, &(0x7f00000000c0)={0xa, 0x4e24, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xffffffffffffff7f}, 0x1c) ioctl$SIOCRSSL2CALL(r2, 0x89e2, &(0x7f0000000140)=@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}) 18:30:48 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="00000000000000950000310000000000000000002200ea13"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 601.430309] *** Guest State *** [ 601.442202] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 601.467523] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:48 executing program 3: r0 = shmget(0x1, 0x2000, 0x4, &(0x7f0000ffe000/0x2000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x300000002000000) [ 601.497169] CR3 = 0x0000000000004000 [ 601.512058] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 601.528531] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 18:30:48 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r0, r0) ioctl$sock_bt_hci(r2, 0x400448e2, &(0x7f0000000300)="4dfbad1f54a3901b71b87ce16c90c62274b47aca264b78d57be297272532ea060cb77cff461e9a7d0544ac023fa08226c32e4d0d07b4c2d34bfcf98540f4400cec527ec27fd08d609e1dcc9d0e969dcb59f666f49a14c5cea89f5a87afaa83dc98daba2d6c3414f441543e66f1fd69fba5d1ee72debced02694238af08b0db5904bdc7d454eb06493cc5de28e6cb9d17788c128f5c87793bd08ed0870ea7ff5a0d26ba324001973f6a76edc370953b8ec7c2f537da5b366aad9e8291960dec3786e967f7036eb40c0d2a110a0c") dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:48 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0xfffffffffffffff7, 0x400) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000080}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r2, 0x200, 0x70bd2b, 0x25dfdbfd, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x6, 0x41, 0x8, 0x1122}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x881) [ 601.603291] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 601.610801] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 601.634678] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 601.647188] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 601.669502] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 601.688164] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 601.702605] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 601.717697] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 601.733561] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 601.748422] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 601.763511] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 601.787684] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 601.802848] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 601.823306] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 601.846320] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 601.862598] Interruptibility = 00000000 ActivityState = 00000000 [ 601.869511] *** Host State *** [ 601.883282] RIP = 0xffffffff811fd350 RSP = 0xffff88804fde73f0 [ 601.889648] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 601.899875] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 601.908048] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 601.914260] CR0=0000000080050033 CR3=00000000955e3000 CR4=00000000001426f0 [ 601.921418] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 601.928423] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 601.934733] *** Control State *** [ 601.938235] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 601.945206] EntryControls=0000d1ff ExitControls=002fefff [ 601.950745] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 601.957857] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 601.964720] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 601.971364] reason=80000021 qualification=0000000000000002 [ 601.977804] IDTVectoring: info=00000000 errcode=00000000 [ 601.983591] TSC Offset = 0xfffffebbdd55cc6a [ 601.988401] EPT pointer = 0x000000009f33d01e 18:30:48 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r0 = getpgid(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x40, 0x0) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000180)={0x0, 0x80, "54624b161d0e621482ecc7e521600975371e3ecb3a85d196d41e10a7a4c4ff62f2d9271dc4a5c1669027510951455d798bacda2bc57c3d17301850381c717ff928d9e5770147833bc8d5505891e71b1709906d2f80c49653e57978f18e905fe94d2b71f0fa3f90f1fa3f0abac4289d3355c8929d33e5815b9976449b9f36ccc6"}, &(0x7f0000000100)=0x88) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffff9c, 0x84, 0x72, &(0x7f0000003840)={0x0, 0x5, 0x20}, &(0x7f0000003880)=0xc) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f00000038c0)={0xf6, 0xcf60000000, 0x200, 0x9, 0x0, 0x40, 0x1, 0x6, 0x0}, &(0x7f0000003900)=0x20) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000003940)={0x0, 0x5f, 0x8}, &(0x7f0000003980)=0x8) sched_getparam(r0, &(0x7f00000039c0)) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000003a00)={0x0, @in6={{0xa, 0x4e20, 0x4, @mcast2}}, 0x100000001, 0x1000, 0x7fff, 0x40, 0x2}, &(0x7f0000003ac0)=0x98) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000007e40)={0x0, 0x9b, "2a8e184352ed2c253ff770d1719f5c8291d25f1ea183111b24f40ab34cb69a80f5fb438c0585afaab98730fc779f27a98e7317644dc76742a65cc8ee72758f23f6dcb9ca62bd34fb531dd32d6f9a5f289cc0fcf82e465f82f17dc590ed0449c784d187a93210cadac5d458b00e613942610d919709b719ae0aa1483c2d1417576d763e5d4b105f13d5ef9ee915e194af10ed046e6c5571b3c6d986"}, &(0x7f0000007f00)=0xa3) sendmmsg$inet_sctp(r3, &(0x7f0000008000)=[{&(0x7f0000000040)=@in6={0xa, 0x4e21, 0x6, @ipv4={[], [], @multicast1}, 0x4}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000001380)="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", 0x1000}, {&(0x7f0000000080)="2a48d28c2e90", 0x6}], 0x2, &(0x7f0000002380)=[@prinfo={0x18, 0x84, 0x5, {0x30, 0x6}}, @sndrcv={0x30, 0x84, 0x1, {0x3cf, 0x2, 0x3, 0x100000001, 0xe0, 0x4, 0x1, 0x1000000000, r4}}, @dstaddrv4={0x18, 0x84, 0x7, @rand_addr=0x6}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x101}}], 0x78, 0x4000001}, {&(0x7f00000002c0)=@in={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f00000037c0)=[{&(0x7f0000002400)="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", 0x1000}, {&(0x7f0000003400)="631a53a3a160e761f30119964c2f592df976391e24e58b96210f85f5dfb2ec045f2c1233a43110d467b06ffa9149d7a6c68694ef09561961a179e2638ec0a5f2a19e8183a6d4ec0767c87be9a523c531b8ace7f67d27b1d2f48e193f", 0x5c}, {&(0x7f0000003480)="6b5dfe05b9970b1fa22618299116a239b53ca32abaf0d397c4f4a81cf652ae7c507999dede67fd756339f892a5b93b7604919adea6145679978a92cf2a4ae24d26d6e5962752f2b2f503fe490f0b8ff3d24b53ada6cdc7f9ef6afeb8965626385e68cb59a2c37b0b9314415646c9a85cd562de92056c05a95d131679449a4048bf1b9c58b3111ecb4d6b65ff3af416ec1e371df6fa4cc9272c2a222ad1921b6b4d8456add4c82b19b61b204945ea3fff979c311c86dea88f183777e0393e700d241e3bfb01cb", 0xc6}, {&(0x7f0000003580)="ee078bfded6b8ca69ba01bcbbd6bb5109e45b6a3b70ffe13a611", 0x1a}, {&(0x7f00000035c0)="297d2fc73735c238c3b56b9a2c4a994a0172cf41d715d255ad65c2f177a83bd3887cc19953f613e0bf868aa62695670f73a1644e36a38c3f1428eaf815adffe004ce51079d897b054ec5f8a7a7d251c30195db7b70f7a6d10f9d28967ef0150c3353d2dd00f014f6f8b1c925b7cd5b647be06f4e9f57257979db430aed4043e6ce3f1b93f85379c69eb49b38d91ad764f0d4dc", 0x93}, {&(0x7f0000003680)="45f70ca5a72f86309ae94b1eb06e9902115d4ec1637613c23b3a1ea1fc0bc2d8df8d05deda1a82e74a86b5180c09a1182139c1f6975d10af34a533f240162e97a1af13b1bc0f6cc33235ec9123f41ae789076eaa0a0a9c7df376aa1ba61bad8e0423acad8a6c8f47ede662a0570e90962f70c08c89083304bb3d580278c40d034217281f1885edd0ecf9316265d15b6e6101aeda5e382a95cd215e1e9ed01f48d6c6ccc3e5b7b959399820480814be3035d616bbee", 0xb5}, {&(0x7f0000003740)="b756fa6670", 0x5}, {&(0x7f0000003780)="18", 0x1}], 0x8, &(0x7f0000003b00)=[@sndinfo={0x20, 0x84, 0x2, {0xbc, 0x8200, 0x2, 0x401, r5}}, @dstaddrv6={0x20, 0x84, 0x8, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, @authinfo={0x18, 0x84, 0x6, {0x6}}, @authinfo={0x18, 0x84, 0x6, {0x3ff}}, @dstaddrv4={0x18, 0x84, 0x7, @multicast2}, @sndinfo={0x20, 0x84, 0x2, {0x20, 0x8008, 0x0, 0x7, r6}}, @sndinfo={0x20, 0x84, 0x2, {0x3, 0x8000, 0x6, 0x20, r7}}, @sndinfo={0x20, 0x84, 0x2, {0xde9, 0x8, 0xfff, 0x2, r8}}, @dstaddrv6={0x20, 0x84, 0x8, @dev={0xfe, 0x80, [], 0x10}}, @dstaddrv6={0x20, 0x84, 0x8, @mcast1}], 0x128, 0x20000850}, {&(0x7f0000003c40)=@in6={0xa, 0x4e23, 0x1000, @local, 0x7fffffff}, 0x1c, &(0x7f00000041c0)=[{&(0x7f0000003c80)="bb45a5749a4e16689f910e5c6144527a4b5c4bc3e2176d0b0e83519c387b5e3cfe0dfb0d57387d8d1863858db05037b26c6eefb4189acb3c5b7b5790b83f3b7fbcd08bb3a4d9699e8aadb33e0449e4fa7489", 0x52}, {&(0x7f0000003d00)="668fad1049cf19986b925a9bea41736a218feaadffd997254d30ae020133d3cf290ed5a99a26ac3fb4c53c9c1b7c1add951727a30b8f4595ba34603fe3eedde0eecec06b7945a53f77e4fbd1a8d05e329503dcd4f0e34cee3bab44c362fa0a9cc963cebda7dcfd51a6431acc5d258d915d624bdaa616574fbde42ecfed31a6ffc28f962ba02111fd2a6d61db873dde0eb4334a8b839b559b84d266679f3555d3c000808e2b8c6659c7d969ed56bf746b2529a15ff77f8c97b6e9e28c78a9b53cc6bf7ccf23ae15e4d974c042fe8b63a918bf9d218c168460e86a056442fc29426ff0ff62f3", 0xe5}, {&(0x7f0000003e00)="2d3ea633da7f26f625c7112dbe5fffd3f6038873684522fcb2147fcc76c05839591cc86af4612317ac8f43bf90ef53245ba301a10d0aa0d620d4019a5dc5e11992c292f70eea466e719b3e0e88e4cbe5ad134706ec4942c040e5a639e5041752b0a1", 0x62}, {&(0x7f0000003e80)="aed2854478627779080f1f78d90d46adb6e13ee89dcfc32bff01e5fb8d99c6d922b7543e3d116346f176db033befeddb2f1e26c689c3bf792023fdaada1b702261912cd147a63c78d1075fc88b55a5", 0x4f}, {&(0x7f0000003f00)="dd2f4bcc2b5fadc8fd9c300c4159b610e8b58376fa26aad83b129288b41caef241e8de719918761e29efc00a504dc0b3eb99584055d80b1a520fdde542329cb2923d4d47d2065cb056ae145efa527e93fe49d76c82cba987122f51fd24527126dc2948018a71f41fa90749bfce19dcdf71131ab310dad3229d8cd46825b5b7443a85b79ec7102d27cf8297a20e9c1a62d954aeed651fea763151442e00e7", 0x9e}, {&(0x7f0000003fc0)="3aaef7ba65189c0a212dcf1792a0ee1b2adf7053ec23086136ab1641743a933914f188ac4692a17bb2d274f787212103cdd24acf9cc3244e15a9909bf9acf2e16314e6ac89f2302ba03fd70b69f50cb43eed2dcf4fbeb6de320a1afe5eff417ffb92b320821e107e44c45dfd760ee334e10b1fbc0eab9b04a8e0f36e3c6452d94c84401dd624fc7e7e2d5ee5daaa404fa434b918af70c6dc0e1e90f881f3c0757a3083e077ea0844bf71b86c8010aa66c687d8ca6d5cf73528147cfe2fa75153ffc965970f32024feb993f54e4c7dc4c06cba8f90afe8bd693ead53877ce19a531", 0xe1}, {&(0x7f00000040c0)="beefb7fb114c1767b018615cf923d92add958e103988fbe40ac65dd1c95310e01cb34ca46ff778097f0db828a84bdbb61965ec930eaaa0375cb59da02fa9abe714455d627dfe150ba3975240c958b0199b99b7fc1eb373820228f742d8cf6da8957eddb611a7a19e85401a647ca1226f9055d8de3ee846c454abb64d9ae42712d466116680ea856aad318585f85d092c29923d8858510a0bb4584dcbd2b0ce4bbb0f90969241a7cc91f3b991165de7870e4d0000b96d1a3a15f8d006d967f33238d36e70b6298eb25a132092bd216cfcb27f4ad1d014", 0xd6}], 0x7, &(0x7f0000004240)=[@dstaddrv4={0x18, 0x84, 0x7, @local}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x8001}}, @dstaddrv4={0x18, 0x84, 0x7, @empty}], 0x48, 0xc8c1}, {&(0x7f00000042c0)=@in={0x2, 0x4e21, @broadcast}, 0x10, &(0x7f00000044c0)=[{&(0x7f0000004300)}, {&(0x7f0000004340)="d941c7d8f78f490363ab9ea941f5e0878eeb3d2498824e639dc5a6a835d5dc89a4c67cf56d1ccb7aa6e9e271aad64daa380ef4dccd79b9143c26b1bbe2ba86ba36e2e936e624cac2e8d1d7f7671fc147c3683a94c1c1109d64014bf0c5348c920caf2efa3fa8886188215512745c87882c5ffa0b0effd86442c6e12c0a381436ddc84712962cf9a4406b9977810a50becb0def5acd49912cd55b1a9d1c806b0fdf5ea64022dca17983d41ca6fd09717a3f78a0409179842f22ad0ff4063742f1efb1a07bd028ecb29b921b247042ef1bc2fe8e952e128d770053cfe4d14ec1e313", 0xe1}, {&(0x7f0000004440)="59a3923a0819dc8a18929ab03e66eb423f5927064327acf9e4901331360436992697bc16b9a034e282525dadea1d013891630f5aadca7126820b633c7ec41452a197b1f6b4f1c4700ecde50f8bf3b11534c1019257f3efad19a4e04c360fa2deb205f0882ee25841a5b979757131f4364e4dd4e324", 0x75}], 0x3, &(0x7f0000004500)=[@authinfo={0x18, 0x84, 0x6, {0x7a1fb8c8}}, @authinfo={0x18, 0x84, 0x6, {0xffff}}, @init={0x18, 0x84, 0x0, {0x6, 0x6, 0xffffffffffff8304}}], 0x48, 0x4000}, {&(0x7f0000004580)=@in={0x2, 0x4e24, @empty}, 0x10, &(0x7f0000006ac0)=[{&(0x7f00000045c0)="f68034f2289ba6ea76c82ca3ce4f4bb9241734e90ac515e9ec966f4ee2c062e294e851bec86d99c6531db7898655cd2fe66f48f41c190ca90255318b003bd51e37218b792e9c6c81594a56df9f39c6e6c4cb2580b31d0ad174aacd431c253585f39a303a729fa1e8b03e20595d796e20d74a0014ed17c9e69fa7bb5f27d9f1cf364b5e564f7f04dcf7bbee154ffa802e", 0x90}, {&(0x7f0000004680)="03d9ba839a95132949a8774cf286bbc839349a0fcd7ca1d5256390c4d89a1d1e6711da140973b1a54019d5fe1b41e0e1c928699b52b7380aebc59850388ec2ee0cf0b1188c4212f83a44de09699ca1de0174dd2ef5065ca68d423ec4cf80fc2375773cd4aefc699c3b1e655a98b5b29ed9455eac843c7d762b6af264b862ce789b11e9e26953b05ced65deecafbb7007f91e975821981b91aff66a22eb04e9fbc51a50f5c6264d29c5885fb910f6c79c522c304fe9714a68c8b8fadf158ad1990c847e5b388e49a5232931669c42df6942001e2cea2f1bebef20be9fb95a0f402e43e31ae060517eb1d2e1a990cde63f074c2f09b89840228c88148b8d625270ce983e9ac6da86511c28dd728182176c4e519a9e97d5978882ed3ab1550c6345e1cbcf4b4d3368e4147f8a9608ff471603f7250c4b0da94bccd8d6ebb8bc75c3631c85178570b8719c4fd5f2fd03ffe9711854ee9750566499d2f6d4bd5b6012edce5aedb9e9b871da4f43d01bc270a93c1958880bbd9e474e400fed887b0df44492bed41eb631b4c4783fd588fd2dc9492d0f40b73df572ec9331b5e7e5860f099e6fd738d2b84004f81e013c9dce8ae9f08f3e6a8694f2d50be4edbbf3ed5274457a8ae329b7918f6a888bd696bec3c2a72a69d100baec737274eb8bb376c87407160719809f69cdb083a033a1accd099cddaa6dfe18da0507a011900015da5b2158d80c0ec9cc23c75d33c3afedcb9f6b05bff3113166f056efc4364da8981f6b5c6b1341a2dba5a822c0a5ef3c9db8816db7fc8c53c2418eedab6d53005c041ac10babf3c90972a5c9a521041acc13e320620e415ecec096cf033b857f03c22c9bef83aa799f0c101fe85b7823994688dd276a5abeddd46b141b6b38e0d8bb172e61fcbd63df61233f2b2f695cd71cad2d118b57c01c795cc978644beb3abafb469b82ca3530b7cb9c9b5188c38784e7cc64de9478458243bced8138c0440126c53e3ad323cf113a667da36e92c698d2f1fec6609fe3fc81cf41eda50e5ad5ab8a93bc825da851525f24a6fcbb6fe70b6038a034114e6038d26ea41c9c72e85a91a4d0bb27dd6364c0b107579d68078c70414a577692851ea773bd9448fa4f1dc73d4e3db6548f22bd8b0615b6ea983d98469b2f2c92fb6347db1ab5306be19b9b4d184d0a059523377e79539208a8332479a4ec165591873056087374e964527ee73d95927bf69e08518653f1ce555dca32c51b32fc8c47c274f4bfbe046515d32a5ad23ed25d5f011c1ab24fe3cfe0237a6fa6082fb7370ef7e7a52dc0f3a2c4b38144c85d6b4e4fc77b64345d520fe9deebd82ece03ada05af6b29ab156dfd4864d96055294c614d8b0f2e2fd5e5aaed0fbd81b72102028eff8b062d75957a70fb5f714645c3c57583e1b6f5887e4ec41d0b2f44a3c8208460a2d0bc40e56e3980a597516477f390e0c73a786627798fc2b64adfce847527ca5f5aa11ae8116536b01e906fc0ea97d0a7b570aa27a87993e09292ac7040d483e7dde2bf2ae45b1c63a99f9427f037b7cc7833907bf46084c30280f0c3634c77f8f2eee29010c30876eb93a1cefbaf305f63f1355691272f86ffb83d1e6623f9e2eeb103ab1c9de7468f6d8a5af076764315c7685d2cdcfb6ae9580604a0a6f6f1b0e53fe91eccf6d38af7bd480dd30fb027140a31305d3f4e01288f33b528a4cfb67f789edfe6d8865783bdf2296fcd21a4be03933063ee10b74dabea8e17f1190ca9d148cbbaa8d5fb87d954f4b575855877f858668326776148ec125b5bba32a552953ce7f6e0b06e3ab15d81d5aceceb590abdabac12c829ef85a046dbb47ccb8a8ac27b5d2d04f33bf374ec5f5ea37bb43e49f80ddb40ae4e588cb4f972319d52cb62c0e431b9bb17a7d2728b344faedc53752e6e6e6d889f93115eda89719396b93996416c3740d8b74cde73c1f1cf8357a9a435788fe003f58c36377884ef08e311ca760afafc38aa58f7168555519834ed2f7640da0faf23bec8b211d949d3e122120e51dc1b32aa398c983c30223b787220a90bc848e410305d7e5a470ebd59222fb4368865c0927fc8dd8dd3dc9bc545420c388bb610482a2978bbb911fb1f60c5e611120ded139bfc5fc3260749a7d38062b50968e6fb4a44633fc86157b214a39ea772fd380dd11ec3020d887a7383dac6a473ad5e659b633140c697f0b6f8061085832d533be6edc1dad29ca16035af8b1abebc143df5f3dbda64d0f149a8baf35d4c96f4022df238eb392715d10a26ddff610e6edfd866e32e050bffb1c1aeaf03f5befd0796b23fa1c3f9f9ce32c96907b7170f6d3c7498c31ca2ea6b790edae587104fd4d02416df3df589209b8b6e569d8da8b8eb2d7b0e634800b329384bd9fa69a3d713f6707e9a0cda5fe58296d1645d1c060d8604913f1f14cb8935392fe75beaa31bdf9dcdbe384403fa594f3b2630a2eef893c2b07c84d036d1d32942c7f9406b48909fbbd1807a584c4dc150fa6a13f1c442f351741b3732b6a077464001263f092d542356dc6b98f271d2eca8ab8c6bc309b382c87cf109537aa35cfbf75b409f0b2052e584ab83e76be4214cc0c93dc9fededae78c6dfa2bf058610636857932bb696122ecc949b03be16abe9583166d79bc7b808bbc52c901179e5d9bcfcc61be03d0095e16ad5d6dc1673de5449d5e6266bc7d4e84bc499fe66dfae30a74598bd34c4ed0e1245376da2b93d568cc99d9a6486c90c0fbe17fcd1811b5357b2b7651caad3fab85e197a6a9628a0cb525fe8ff20230b613e626eede124d1458d471580650b276be7fbeadb90ffb5176e9435812acc72b65de70543a376eeafbd61f29181204c9cd6658140352672cff33fab278f5a5619c6a5aaf9d7c3d045d8e6c8f2383af83a9536fac3f9f2411568c7777ab3214359db8a6a86b42693dfc349097976f5442365b6fb33f131c4f856a07b6d974d0a41c49dd7cf63f29e4653a29b204e23124417a9ea551c9fd31dfcda5eb21c28a9eeded5ed35467e6935425207bb9f40b0f402d9fb58b4bac015b2f92feda67fa051eb37de3548481212b7b104d49491eaeba5bc4aaa51a0f2100783566381d302a99df56d426c287e796ced2b4ef7f8271db12cf6f2e1670951dd20e9466c6ace16d2480abac685f91937765a043ebfbfee8dd5f2e95f511ba40cd7d4464b93b1defcd4aa434c94fc021ab0022960835e7b6e13cc6f1c7d017c619411d8c6022b7e305a2321e7cf63e40f5b4794c75cff5472f012c03fa883311d382fdbe42987b1cee9c8f939b79d73d261a4535d376183fe6f7d1ceabf548368ff751042c4f9b240974a27b385387881609b38859ef28e05a1b3e6760431ba8a82d7b36101963eaf1e1e4e562e02c3afd11c9420e3e13815fc03b8bffe452665dd8b33436f50462bad0ecb172a6fc90564ff5d46f038dfc7a979f30255dbeeb2a59fb24d5b708caaaa425b0dbaf7853bbd1969914d679dac5c0c192cc45ae45007b4e457b3be53adc3a6dbcc9e64cf6cbe5deadc4dd4a4edaf5f7d981acece005de121d8260b83878b3bd19890f9603dc90b983459a6f7166a776381a321c5a0b51589f26d921d936be54e8a6fd5b433c7b0bcabc0ba8998aac5b949879bb644f75b67b7d2bd3eb7e1ddf3e510ed107932b995e60b946eacb9c458f8efcf0c0808e2cf20d0edbf6a04b32192d96e11e55a91f6308e60cf17c2d8804d26552cb72d872a93dcb8b834af9a8aaa46490aa1527510ee593c2b74a9e2174197436a8b274bcfb5633dbcc27f83b8df53dd096f6e5701298892b5fc26e000fcdb22c66a81d296aa5031fd7d9e79dde5a09b2f914ec5edd55fa0883695005ffbe1d7f45f9a7036913b3b45729a91529896f99c3758c3542407a7c02ca81b5a958db316c99cac046a7d9ec0dbcce5a8c6ab2c8680043276b3c312b040d2368c728ba000e3942d8c6b360344ec83ade38cff1c8db2cc030c82198a444a895ec7b693c0b2d41d0e1d2679d68dd2a2648b3e43a1d22d9efc9a2777c14b13a9cb3c4500b5fae74d79052997e9914356fd11edf4f1e9bc0b3143537f4c5cd23674cf9e9456d0a6f73257f85c0d90293ae4bf4fb10a6487fec24f8792312ba84670da322d786743d02d5a39750a0b153ca31ccfdf0b16cc307ba90717e63c2c409c6e7734d74609e47f99c5223ad34d474d93853554a42705b958359cdf379e3085f0e1175b26b1680126ef6b9e4fa754e3568efda487c57c2e90197373504275525150debc5f7ac38c07c3754ed36d3b7333840557b97bc9f9f2f4a25c666a55bfe7fda29adf2b1fb77fd12350bc5b832e43476a10dcbefdfdbfdad3d3afa0f89dd9a7e6e46d9567b05abf406d3807f0642b651a632d713208ea6bfb1dc33d3120fda50d11a2300fbfd5c132fb49d74e7b64cd3f61f3c4f3e5ae5ecf8efffbbaba7eb50fba929fd19424b0e59cdfc7b785fe3e7348899757b3dd18b3e6a53aeef32d47eb684e5ce366792245d1e80c863956eb203df19afc651465cee4b7c5d9959b0b9eeb131fae009b7af4d65040df612f47e546bca09bdbaf2825f2519625c79bb9da610bd1af304c35ee5513e739ba2f372b21fc782778ef802c9713f9896c25eed16830ae114be4f4573036d0c52d32a42ee72cced1c5b58f562b4afa4e3c700fa7cbc13a4d5fa44326a0da04e432a48798d12b2df00d8ddf72ab86515be229241e5e70772e338efa15194649324b356fa1831cc559bbd46267019ae1234bfab818312dc91d36726709bcf98f22d9e6a8d29391a662857298d3e33b1c0ddbeeef6d404487f17f51e461137b83a89e467ed29c6c5ea2de163e3a2ae668257e3b92ff261ca7a574da57ef40b8489f7a3270e9bd95ed597d8ef1e490e592d7c37f56a01a253e14018eab4f5f280ec2eb8390fd88a71e50f1531ac650a987b4ae00c39db5ecb3d3f3d40c35b61b8c7ae5164dc43fe90993feb7df6619fd5a5713ed5daf9264cca681b2658b38ac4f9ca63b04f9e8346129ba52fbdb935c776d33a4667c74f1114d6b8bd8ca2a789148e2c1a6634bf2c7f4a69540235d3e0a8ad413bce2be82942f17fdf97dc152db35b27126c9a624eca5bf4d026e665bbb9c839b132c01fddf52607f4ab03a6ed65457d0ff10d2acf6c3102b15c46f264e4f09d78843b1beb15ee15796e88f3fbf4a502358004afe4184b15a25b811b4742082462d623f32d40ffc9e57ab7332d7cd50e455f62d974fb090dfd675b37dea689d2040828beda4ad2e3ec1ec2d67340e3b90beb793de1824c2605e3a4e5ae3c941a0924b902779b375a239b7a618600db3ed740b274d4467b10b87f2dbf10a80a82c01b5139ccc700d20fcb04f268394aefe0d9ba02c6132bae6804943fd86e538b2daef0d07e261c43447d12cd43cd99c7b8aac38158cecfc93b1ca1bc19e58e39b9c076f1da2f741db8395374478c5ba0b3edddf37aa0d1e972a9090badc475ba0428efa54353889b4a432a53721e9ce28cafb58cfcfa507f0d575fa35bd12c56777cbd10cfa55675351b69e740a80f3906f596edfafbfebc0c9426fe19ba2737541b670c12d7513ab703efe5be6bf56f1e8b07f048b8fe35f065846545622c709fc8723f6b58522f7e9926e439fc44e46f2d31432502a1fc611a42849750ffc2bfdfefc1ad09876a7c272b5d202810fbf722fb8eec958cab3dd639d0e3edf4846ed9b28cef3b94209fbc8ab239085b21915bf4b00f549feff048d95e2fd4613049f27c0df4062c16635df7251", 0x1000}, {&(0x7f0000005680)="c9af62972c58d4b4dffb987ab389ebd95f184099ece97fc109c967e6a83c836f3160dcf079b1a0af20429d93919c8cb217bad142abde2bbf8422623de05783835f9a2bc25b7eef8b858f388f1ca4548e35a43fec691c3a30e0ba00ee8c7d9fd46bcbc3be9901a1eb", 0x68}, {&(0x7f0000005700)="f4a9ffde94af732edc020ec6bde43e8b954a164d139a3fe8da5d67edc3151ad69ab9f8695b691de9ad5f57ec0e2e0f41c71ca9adf2c719ce3419b9c5b038bb59b8bc92a99bd689a492c6903181b6afa1e4e794c632542b48fc3e9f81f39b5fd3262af284c73c22b1618cfdc6f6215f509575dc8fc39e3d1a33777e8399187eae46968b2ea5f39ca0adf0ad2387bfeb32f5c9f039d6d1bc3306d90403c31fa08439551b0212fb14408a11dfcd76ee96", 0xaf}, {&(0x7f00000057c0)="c03cd84e6b3f8dde539b8b49fba458f128e4b071e77378bde9bfc1acd191c316254a8bbfb25bfda4de98123fce6660c4c690355e4fa833a5bd4323d256bb0ccbf540cf18e2dc55795519cee1abd5c28de5613b70733ae06091427c6f3eaef36c6eb9e9d28d5266860f2d5ee775cf45729271ee5629393c1095f1a16747bf0ebba3c791256576b87d045edce4a30a76842f6e146a93ebdb2e6f211902ee5acec33c863a0b2ff78442857bf24bf91e827f89083b740b9b092ab4b22d63da5d2f0ce94876afeca2b6ed1be126fc79a5a4ec98a499c0256011e8fda17b", 0xdb}, {&(0x7f00000058c0)="f2e65ad97498c6b0d3fd1acdea9964137c6ad9ed64d4d0b94ed6727aaa859256573cd62ac2852acc2e5369a980535134b0efbb0983c6e9930e819795a48611a7c8e976dbfec53032746d06e7bec63a6774c15d394f2ae7733a3e079fff481f40b821362f59e5c0e6d48b7971221f6bd16f96b6cfa0e8597cc83ef817229749927efe1154929b4d64b392014062be0cd14090f921d1a4a3d0fe44b2ceb1814ab3b09df516d18981ec95baff217630a0d6dcb21031fc356552dfd5b7353f96e59197f32303dae02d5184dccf5bc990b1e303cda1d136ad3a0cf99309436031d68e6999cd9da37a5ce6f8701777", 0xec}, {&(0x7f00000059c0)="7417277645b294999a010dd92a0f363d40c24d998a6bb28f597acbaeaeda37dc64a9848ff6b0fe3d5976632e9c84993a48fb10300c418f1ccd", 0x39}, {&(0x7f0000005a00)="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", 0x1000}, {&(0x7f0000006a00)="de20521bb13c0c527ae523695d98addb37238bb6f1a242331c0bbb28f203360e645486737eba994dbe4a43df4638c00800e5c9ff056aac00412bdb5df7e67ffcc0202a992395091a21e37aada0da3cc089dde7269847a6510ff4d71a8cc183ff7b3a5cb05aed940dcc22e38e7a419f9f09fca0bd2b024a7bf5ad5e7d695f7645656fed27891795af52f1dd46bbc47c5f5d423a0f9cd857f7e2f3aaa904fa42477ce20bc19edf09623ee3a4153b411c6857be5a9ba3cbad961511", 0xba}], 0x9, &(0x7f0000006b80)=[@authinfo={0x18, 0x84, 0x6, {0xfffffffffffffffa}}, @authinfo={0x18, 0x84, 0x6, {0x1}}, @dstaddrv4={0x18, 0x84, 0x7, @rand_addr=0xa4bc}, @dstaddrv6={0x20, 0x84, 0x8, @mcast1}, @prinfo={0x18, 0x84, 0x5, {0x10, 0xec}}], 0x80, 0x4000010}, {&(0x7f0000006c00)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000007d80)=[{&(0x7f0000006c40)="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", 0x1000}, {&(0x7f0000007c40)="ef27fbc5946d68cd82f1427eb06565bc763fb861065224a2643a53959e7ee5316c49b612005d87ff871eb70a13986c50f3a95aef4eedbee4c9bb15771d69b3880b0a4a1871aea24988f2981767da2101ff649a3ea84093b1ae52536cdfe95e4030dd9c5dc96c3750a266bc0bc26fb02d59dc3bb3f191750fd241a8ad1dbc351610ea63303be47eec", 0x88}, {&(0x7f0000007d00)="976d0ad83878f3584dc66f01b194dae5f442ec3fde91f0d836272bd756913c949864e6bcbf1b4e4c92bdc95047da525dec7091c9c7c1b58041246775e32d9ea190d8c13d7caf359b655852e849", 0x4d}], 0x3, &(0x7f0000007f40)=ANY=[@ANYBLOB="1800000000000000840000000000000002005dd7ff0fc40020000000000000008400000008000000fe8000000000000000000000000000bb18000000000000008400000000000000a58a0008ffff0700300000000000000084000000010000000000030004000000e60b000081000000040000000900000009000000", @ANYRES32=r9, @ANYBLOB="18000000000000000025000000000000001800000000000000840000000500000820000000ff03000000000000000000"], 0xb0, 0x8880}], 0x6, 0x20004000) r10 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r11 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r11, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r10, 0xae80, 0x0) 18:30:48 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000002c0)={0x0}, &(0x7f0000000300)=0xc) perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x5, 0xfffffffffffffffa, 0x3, 0x40, 0x0, 0x0, 0x54000, 0xf, 0x7f, 0x1f, 0x0, 0x7, 0x800, 0xffffffffffff0b68, 0x0, 0x7fffffff, 0x200, 0x7ff, 0x1000, 0xd1, 0x6, 0x80000000, 0x1, 0x1f, 0xe9, 0x9, 0x1, 0x1000, 0xffff, 0x60000000, 0x80, 0x8, 0x2, 0x9, 0x2b0, 0x10001, 0x0, 0x6, 0x2, @perf_bp={&(0x7f0000000200), 0xf}, 0x4000, 0x9b6, 0x3, 0xf, 0x0, 0x0, 0x7}, r2, 0xd, r0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000340)='/dev/usbmon#\x00', 0xfffffffffffffffc, 0x200102) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000380)={0xffffffffffffffff}, 0x13f, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r3, &(0x7f0000000400)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x9, @empty, 0x1000}, {0xa, 0x4e22, 0x7, @mcast1, 0x3f}, r4, 0x5}}, 0x48) r5 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r5, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:48 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000ffa000/0x3000)=nil) setsockopt$XDP_TX_RING(r2, 0x11b, 0x3, &(0x7f0000000100)=0x1202000, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:48 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xfffff000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:48 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x5, 0x2) ioctl$GIO_FONT(r1, 0x4b60, &(0x7f0000000200)=""/78) ioctl$VIDIOC_STREAMON(r1, 0x40045612, &(0x7f00000000c0)=0x5) 18:30:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xc0000) 18:30:48 executing program 3: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000100)={0x10004, 0x2, 0x15000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) r1 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGBITSW(r2, 0x80404525, &(0x7f0000000040)=""/108) shmctl$IPC_RMID(r1, 0x0) 18:30:48 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r2, 0x50, &(0x7f0000000100)={0x0, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, r0, 0x0, 0x0, 0x0, r3}, 0x30) [ 602.246191] *** Guest State *** 18:30:48 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = accept4$nfc_llcp(0xffffffffffffff9c, 0x0, &(0x7f0000000200), 0x80000) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000240)=0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in=@empty, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}}}, &(0x7f0000000380)=0xe8) getgroups(0x2, &(0x7f00000003c0)=[0xee00, 0xffffffffffffffff]) setsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000400)={r3, r4, r5}, 0xc) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r6 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r6, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:49 executing program 3: shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) [ 602.322362] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1500) 18:30:49 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r2, 0x84, 0x16, &(0x7f0000000100)={0x4, [0xa40000, 0x4, 0x5, 0x10000000]}, &(0x7f0000000140)=0xc) [ 602.419846] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 602.491372] CR3 = 0x0000000000004000 [ 602.502793] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 602.518659] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 602.558601] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 602.565975] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 602.572116] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 602.585180] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 602.596747] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 602.607961] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 602.632834] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 602.647992] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 602.672353] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 602.681649] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 602.707389] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 602.718479] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 602.729576] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 602.738344] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 602.745460] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 602.753066] Interruptibility = 00000000 ActivityState = 00000000 [ 602.759362] *** Host State *** [ 602.762592] RIP = 0xffffffff811fd350 RSP = 0xffff88805acef3f0 [ 602.768781] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 602.775368] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 602.783335] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 602.789323] CR0=0000000080050033 CR3=000000008d89c000 CR4=00000000001426f0 [ 602.796496] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 602.803290] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 602.809401] *** Control State *** [ 602.812868] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 602.819633] EntryControls=0000d1ff ExitControls=002fefff [ 602.825267] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 602.832423] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 602.839176] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 602.845863] reason=80000021 qualification=0000000000000002 [ 602.852184] IDTVectoring: info=00000000 errcode=00000000 [ 602.857694] TSC Offset = 0xfffffebb76eadb3a [ 602.862033] EPT pointer = 0x0000000096df101e [ 602.939242] *** Guest State *** [ 602.942525] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 602.993651] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 603.002479] CR3 = 0x0000000000004000 [ 603.009485] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 603.016214] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 603.022758] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 603.033705] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 603.039732] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 603.051906] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 603.060882] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.072802] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 603.081793] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.094954] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.105613] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.116093] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 603.126727] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 603.137282] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 603.147741] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 603.158251] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 603.167279] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 603.177260] Interruptibility = 00000000 ActivityState = 00000000 [ 603.186326] *** Host State *** [ 603.189591] RIP = 0xffffffff811fd350 RSP = 0xffff88805cf473f0 [ 603.198181] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 603.207223] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 603.215342] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 603.221300] CR0=0000000080050033 CR3=000000008d89c000 CR4=00000000001426f0 [ 603.228672] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 603.235539] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 603.241637] *** Control State *** [ 603.245342] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 603.252068] EntryControls=0000d1ff ExitControls=002fefff [ 603.257760] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 603.264882] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 603.271599] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 603.278426] reason=80000021 qualification=0000000000000002 [ 603.285033] IDTVectoring: info=00000000 errcode=00000000 [ 603.290531] TSC Offset = 0xfffffebb0bba6345 18:30:49 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x496}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000013000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000200)='/dev/autofs\x00', 0x20000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000880)={{{@in6=@loopback, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@local}}, &(0x7f0000000980)=0xe8) sendmsg$xdp(r2, &(0x7f0000001e80)={&(0x7f00000009c0)={0x2c, 0x1, r3, 0x31}, 0x10, &(0x7f0000001e00)=[{&(0x7f0000000a00)="980f8f438660060aded9ac94de64b2cda112cb34753e5e2ef98578561596a8db3e333bc1c673abf20744fe6cbb9ffb38891969c4f649a21fb70fb72a84bcf0924a3f4b5e4b00ca2179fcf8e64477bbb1d2636b9a5cbcaa93377a96fbdbd8c164bbc6d8dee34f66a4815f13256bb61683171d92e639e07c56d4bef6744a7c00803f2b4b722feecdd2af3bfba597b8a0a4997e7370d07a56bc0d146fc790290e0cf0657b72918a421a9f66c98ffe06c481b141e7078e868e067010c481e8e0298d9f5c4e0cffda0fa916c3dc9afdb3c73a1b15d402ed2c2a98fc26655b77fd6e2a9d200d2085962e14607518bb8bcbdaba5361ef12ad64c63ec44d7187c64d64c21754243b349f6442db9c052ba2e5f6383ffa4a5dd5457b5534707a33fcb1cddd17a09f5c6e8e24dcf96d1f28087b7d9ad8a4fc41c1d8a278d310fe6ee31e0ccdcc4f5d59b07bbb454cc97ff109b51649f717132e97061e5495360683c6f8fcd718f19d05859556002b8ffd2ecb3ebaad4f6f5b4f64ea2141e6141339742db42c1c6d02a8da237a55fc0fde7c1eddf51cf84e8375828c150521936d9831f48f13605f55b2f5c13bc572fd77b5a66bddffe6a2996e72b0e74480e732fe6d3baa7546fd997b60767a235a66118c5049e21cc3779d6bf6d6b5fece90b1d7758bdcc82e6b930c786bf0a512b8355b6e80ea7da603eb068ad8fc5b540118e598804e4ddeeeeb6ccaae8703cc0577b90b7ea5a3d8b12a076a61a103ec5fcfe203898f9b4fc831435a523021073ed0b653cba9cdd2a79bc9123a93ddd74c292966484ab4698cc11f69f16153da2b22af8ddf00ab46f756918afc0341e7a73bdca3ab4bae58875a998f9e11fd2d42cbe4e879c69de9e3261244e3c35085a3e612c4741af8e18b3122c210dd2886e480cfd86f663e458631f9f27d423164b33962390e703f5c44acce764dad8f01197ab110eda66277cbfab16fa054723f08f9538e68cf99c5be807cbdd85568a3940c9db584bfc192d9e3d35bdccd4fe251db5b0851c922470ee9cc5ac3a96439c9364890152f7546a2dc6487cf28fdba8280c5857c8cdbe322757d91cdf29cc21d9017eb5c01008fc5f579f358b4f81391866099340c45ff27be29e1790ab7c7c9facc95cbc4abb124ca1f7084eb2c486c9a48b4c1f647eedfc82060404ef353ef08b4f540039e16589e6e842f2f25a04cb2e9fdf2a117ff6b338a30ee3fdfddedd3ddc299e48ba9a3e430df0bf3456da775c896b556de3d894095a068c0bdbea5cbee8d420ff29ddeccf3fa6588b139855263eee43d328da2dfe275adc28ffbe3a542184f5768576f7244d594a143c6089d40aa0cc4be5314d18047c6a07f013c37c49248151f08210de567de1a3b7db7cd80cb6ab0dc2f9581bef6d631c95fc1cdfa39fe6dc270cb836c5970c9cbf8a762673c202990d59c55d225c2949bfb31382730637c737d7c90e72d78117283f41cfe5295d247fd284055ef6e7c0f5f241ed7aa7c51cfbc9d92b4009678d84778a06f587294f2164431438b602afee57dc709c89e3f9c4ad9e552f85d9ca2f56bd4a034438de28c01c5691d0c33fc2a1805bd67a2957ac929729eebd1f22c3fadcfd66751343353dae73e830f2cfa843e5ec8933f832885d95352cf34469709e7cf3236d8f6787f5ffd35e45cb863dc5b34e042ee90842ae4336adf79efaa3636c049ee64feb0efb20801e2e791cf8691ed85b971a9aea17a2615640a162623e74efc39ac41f7aa3a43d0f54507a120fd86a6f031a9f662608f743b3907967d98240609a93dca071d9af9b906ffcbe572597255e282a05bd04ec4727934d4a4f485c78f00fc4231fef94dc083e1b5079092d28212576421e0fc9c32bdbd5f603a802628749e98dda56aed78aafab2a27ec0318587e8db95f2a8b812b35ee48065424d85557a22bebf56761febf95ec08683c0fd35431da7827ab8c1d104478eb1799ff273e794a187535417f588b9f5397a65a22bfce5571efa57c36e3c75661f86128a8a8671084dfab3931e279a86119bc4723a760dd01dce8165148159af8f4531d3e4068fef5d6e64591e58cd97091482e2d2efa754d4e3e80dd52dff76fc5a833b0f4fe738e20fc77e24c8d5ccefd5dc3e489fdfd5772d3e357ef640267361748b2e64379841420422fdc9037922db3c55601295397961708e5b4ac6d382b2037f1aa0d6b52c50958b13f93611dcb9170fa52005633fe3602cdabe5e6cd5115d3c32ee86faa39ef27264871c202e35ba2496370f646112c35e4175f25905e5fd51ae17be77eac4ce7aa74e5915b88d73b002c8f79e4fa784ef305d7d52dd84d655cf7d4045e8d86a263ee1646bac88231b4342a332343c54eb90ced03196a9d2d7361e132a896185b7ed6c22f22e284eb1ca27d14beea0f2112fc11d065bb2d007001c030f9686eb8d9910ac72b54cacd4685fd0b962fb59354b4b977a67e07bd3170643813b1366f739d0b13dd5c5edc3be38d5c18c34defbc4bcd1bc9b210cb535c11e3ed2ad119aeee1d29c5b53a4631bb28f1bccac217d11a8ff3a396bcaa154110148427b4457202ad057c1086b7529c94250db42b5a0a13a1c1e60d8f2c3519ccb3fa70fd9a5337bde5cf37b028fe52850e68917d92c7afa04b544343e6462603e2dfe5bccc95d0c5b64b2773bdfd34f738ec5af3747af7cf34d9a7f1c74ad44faf6989c6707d1e6650ee4af06e8ad339e2141850a27e49d419eecd2b197badc20499c22b4fee542704ef2c72e59bf11b306d341743915d1ed88357baea32bece590a265bfdd0a8e81a3891baf054b1dc3858a4e48bc92e09f5eeb553f1fbbfd01580db7134fbe0540d1f4cc83a7d0fd5e617b92d6d434af36d1c4e74f784a304122bb40c8fd235f43e3585f93462b43913b0c5413251c479162e18d26896aaaa1ec89300540d6de3f094ebb4e9d91fb66d52b2a881a8420a1ccb244447bc411022460a3c0da6876060bf43c173b623071426ce645579c74a151bd680630f31cc192298d39d7f57e732791818a9f76f899b78f6eea271424e0de17b6f75680aa04a0df5b3a4a41e68dcf06b28fc194b2a839d9f8c941c630523a1f42ec39d6332e41bf34f86eae01be6fd3a7f747ceca40815b5f80f574d89c7534ef19dd717e899ecaa1bc1b876ee7a515a92cb06c238b34372755f03b88e05e275f717e838c62ac5ef475879df64c4be60f7083625f2f369461a2a41d8f36d77ac6a4b9c5e427e7c3014ac34156a265f91299199f1b7c2fc3ae51f7be41659e96286793622f5228c2f7e2ac36c9b946af8e618fe83a6404e8e366518c6e59a7e9ca8f66a4d47da2e89122c2ea365e76919f0803b399d28e593f9f85963a33a12d00f14dfc806f44f07e8033386e11fca561cb21e282378e3e4b0b4a80f4b8ad935b22deb07840dc32d3c60a51e47ba1e6822b201fc3fbe0e295fbdc845e04eda8f975e15d5ff15049b29efdbda58c45b622d1d162261ab75999607269b3b603a4120b5aa70df73fdd2729de02cf3d4eed70cfed2ce50d4f4e02e96c977bbb8225311ed9f5661923d19f2f26d6a196c50e2e471eb221ada432691c5a25df95391e97a62b5f82a8cb58485f88e68edd289fa92064cb79eafa28373a5f942eded8e0a7b6c40685ac1e94838c5b853fe4eeba462eb2b026b5dc760bb4758cd527a59beeae1d8cea9271bbfc332457cc3f4d736c7160630236f935bf6656712007225ee1185233f4bc8dce213cc3e4da1e8b01c0471d908ebc7c9803a39c7bcad1f389ccea35cc846fc1bf448ce129bffe0669e2f9b3d9174e6c07bbed4a2bf3b12de62bfdef3121e75b84a26f64538b6af829bf34d811cfa25e368e0a3a715ff649aebc52c5ee24b84445927155f0ddda48842eb1815341c486aec74f3d02e2ad5405e4c64f973185ecaa884c2a52254ac234b5f3b28c9d9ff31c9be1f55629dbb608fa671e52e1636dd92ad8cb5be34f69e016df75f5a004042bd93dd46083031218b88692e25517b59ce553c2ce7bd4f3810d5823e892bae445e974c8e4669e0c4e2bc4b13f13d313d0ec92526cd9210db40c71107cbc2126d25da050b38da4ba14182636448beaf9fa7f82a8ac13860135f7fbb76eaf247f3c1f19fa044979b4b36854a94ce2b67f747bb0da6635108081eb5bd370318858a5259618508367e7d1f9489d8856b937fe297dd781896a42cdee2eb18903af419a2328069e862c97f91b0d3059811392dcb6c242a9835c9cab79de344826b2f78f51ddf14aa98a6ea3a70d61fa941df75a74d2a0217e8394d73005e51292116882a665d1885712f2bbaa9650127eeee9a6bb989e9ae26f91d8d9ccca456c98bd07399c417e12e6f47beb718682ece0e12c54b73fa39ed1f182e7a6b277efa466b78551eb3d8afef9249fe64d8902b68b8374104b697a2bad3a964977d3ecb8057ced46b73201123fa55b37d19325887a6f32e587de91b64363357cf2b02f86133034df17d68aeb67a9ebbc013c1bceb802c87b9e3ae83833fae21b05d001bf2d8a28f03db08ddaac6e2f08e8bd02a24454d849ede590d1db544259aca0be4feff6647feef889abc824e64162a545917e62d6e70ce0bc122e5840389ebe16fdac9680533d0c7a76e66895afabb9b8e7713b1c3207b148b0f4509d5ae679480025b247bffd94d2ac69bfd4203607faee950bf10ab85cf2503bb2ef82a820b4dc2478b0f60afd912c1d4e2a9fbaeefeb0de4f788f8d1e595a6b222c6dc4c847738ea87b91ba2251f2d6d548373de3fddc4eee04afa410874c32af175272eb29f5d227646a6674453134a7a2b49c58375a912f54b8a29a826bf25584d12d729729b353ac06460ae2a3cffceac85f47c8e422f884f6ad93aa7d6d74010fa594f6ff14a276906005d9f5865ebf935b19a3148f1a1c7b5c16d19a8fb9e04084a5de2975a1f528fd7b894ae6f37b799e378bb84a6e780d2b027f8ae0c01f9db012c9c5cd9e7cd1eb565971c697acea858075957227465bb9721dfbf7d1c4681fdc41108c97d234838a183081ed983be33d337ffe4e301f4186fe157a58ed86a93ab73c88b933f8a93e898a4957bf20dc293347b9db3af39f8d5a2dd7972d5fe8e0a1f5402f2d6ada36a9c8fe122f8e6758e63fcd037a1bb338a5e5c907da2e4ad0f5665ef453d538fb227908dc456864f1d9129c8dbf030549e4d7090d736cf908f1f461cbcc9637b48176e7ddc60b541a537955070becaae4dcd326b6a29c404eeb2e9ca74a6f333791a4a20d5b4f98a74a828388b2c1f9da31862f1ca8376647d1a9917d60d3ad5e281140eaf0b2d3aa2d5998a8877c078e31cdae1b706e29cdbe9ee97e4e90e3b6eee634cc7d21dacbe082c7961a1a0bd48e8d6ba8b2b2ba863fa21f9b18830b474dca6a27daac26227f856564e1bf19135bf385c34745dba18d227663cd1f18ca32c73a60994f2beecc359f5fa040d96550b7e28a905ddff227e0dd392f78001a0340966c46d918a0c813315c62341c23e69d189b6d1608af590bf215c377b086e50fa59e27113545bf8a7150ff0b322b4b5e2bf75fed8919cdfd8a4d83c9019775022534ad2e5bf7b9cf43da5b59b4900eed99144b8bd39b8de221d199c50efbd7b3a96eeee0803d2b3a1da057ee7fbb84c354ba5fcd3ac19d1caae7f319363e0b652ed1d1448f9da263d8e635026e30ca1a66c4bb1e256bd4e0ac45aece87ea3201ca98e4cfb5f2b2e0976d75fb238e345b5a36dc22b5d1caf4253e267a20e4c915eb2b3b0dcb5e9bcf", 0x1000}, {&(0x7f0000002000)="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", 0x1000}, {&(0x7f0000001a00)="9d396907a13efac3aed36a7273691b3ab27e3dafd268ddbcd220a35abdf79bfc39511d0c8178982da07dce621bb70d06c1ae1e02242add35f99993cb4de8b4f88b443501eea6492c66c2beff4ff81a7e103459e13386bd7e77f351fc529dffe10eeb781296a685226be14ba9bb9df9c94cbc94a9f60f58d7ef9154887e51a9242429a290386b73a8a9fea3d3e95bc510a0b8ddfd70be1bed50c06971e0e0f5ba2e1f35d06e669ca29aa8e19fee2fdf", 0xaf}, {&(0x7f0000001ac0)="f16d2e0bdff0fdf503144c06a358e5ee3a4446ebead27a8e6ed76f83bcf2a72dae0e70f7a7639d9eb202d0dfd64275d1b0437062f28571df32345061ec56cf0fbda0f72e3d2bd32aaeeeac914b0c35ac90ba2853c93a9ea16b1ac02f34bd8a5ec2dab138c8b2a98522fc7e651fd5d558221ee58f", 0x74}, {&(0x7f0000001b40)="14b2ad7acff1ea04c7c671e5a51621b3ad850dafedc62273c1b1468473", 0x1d}, {&(0x7f0000001b80)="71a8bd707f683c0bfc3d027c1c5ed05f8663b291984615271bd4d41ea4711a1f1d4f7f48d6fcf20974a800980a45e1c337f8950fd33d904286baba75651ee01c7d217ae1942640b5bff327b23b5b549e7dc051c078a26312d1ae4e115bc0ec5801ed9c64407c9bbe7d0caf9d04fc8cce813e33e80979bd520bcc17cc7d1c0d7a94d98e612ca3c6b32c1c57fab7f492a5ae9b848f424cc13fa56faecb4dcd901e98f06885d61a6bbbb133c0fd2f5fdbc1cb4e0809acb57d7ae3cb75fb5300a3debc86c2b80dd212a8e133ac75ed3a9abb365419207cbbbe26176c2db7035466a8bf94f3b3939cc9c7", 0xe8}, {&(0x7f0000001c80)="97fbee62c781db99991ca91ef9d0e5c0051ed94e87a41534a4ad264d06fb8d33033a505b2e01478dd49a2f06767503de4176df0ca3c9f8d61cacd2f89465caa63cfb61443bc2780c76e3d33643268129793138e55e929a144d1cdaff3e6189dfe5539a1879b0496f62968db285eb", 0x6e}, {&(0x7f0000001d00)="fc67c1175c7d104adaf7b2986cb2e1d4ceda38e0aafe403a63228a863790a2562327686d192bf9d0e1d2c579e7b4c32724550c9fce1c57df0a51c8f055bd54c26e609e90488284df5553ed7a1ca2df6ce63a1d508709d1487a91498bf181a2269ad1f983a36b3c37e92f18f16b51f981da44fd99e1d0d3c85c66b800e225799860c0b5292a0ec49ddd6e63ebd526dd255e67f2055ac265d389d5129b787fbad189805f41fab62bfa8672782eb671ddee4249ad783593c2c5efb95bf997b5b587cc75eefc9a1c08bd0857b96438", 0xcd}], 0x8, 0x0, 0x0, 0x20000000}, 0x40050) r4 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r4, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:49 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:49 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3) 18:30:49 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x122c2, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x8000, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000080)="b9800000c00f3235000800000f300f01c8dbe00f20e7b8010000000f01d9c4e1fd7f1a66ba4000ec0f0f9700c0ffff960f3066ba610066b8599766ef", 0x3c}], 0x1, 0x4, &(0x7f0000000100)=[@cstype0={0x4, 0x3}], 0x1) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r5 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 18:30:49 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x3000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 603.295092] EPT pointer = 0x000000009fc5e01e 18:30:50 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x307, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:50 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x4, 0x70, 0x1, 0x6, 0x5, 0x0, 0x0, 0x80, 0x1000, 0x8, 0x8676, 0x0, 0x8, 0xffffffff00000001, 0xffffffffffffffc0, 0x83f3, 0x9, 0xa0, 0x19d, 0x8, 0xfffffffffffffff7, 0x0, 0x0, 0xb4a, 0x1, 0x2, 0x9, 0x8, 0x8000, 0x6c2, 0x1f, 0x1000, 0xd8a, 0xd2, 0x6, 0x9, 0x2, 0x1f, 0x0, 0x9, 0x2, @perf_bp={&(0x7f0000000040), 0x8}, 0x8002, 0x4c3, 0x7, 0x9, 0x2, 0x10000, 0x4}, 0xffffffffffffffff, 0x1, 0xffffffffffffff9c, 0x8) fsetxattr$security_smack_transmute(r0, &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000140)='TRUE', 0x4, 0x2) r1 = fcntl$dupfd(r0, 0x406, r0) ioctl$KVM_SET_NESTED_STATE(r1, 0x4080aebf, &(0x7f0000002480)={0x800000001, 0x0, 0xe7, {0x3000, 0x3004}, [], "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", "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"}) mbind(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x4000, &(0x7f0000000000)=0x5, 0x2, 0x6) r2 = syz_open_dev$sndpcmp(&(0x7f0000000180)='/dev/snd/pcmC#D#p\x00', 0x99, 0x402083) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200)='TIPCv2\x00') sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x5}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)={0x110, r3, 0x125, 0x70bd2a, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x18, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8001}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfffffffffffffffd}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_BEARER={0xe4, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x20}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x67, @empty}}, {0x14, 0x2, @in={0x2, 0x4e24, @loopback}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x9}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @multicast1}}, {0x14, 0x2, @in={0x2, 0x4e20, @loopback}}}}, @TIPC_NLA_BEARER_NAME={0x14, 0x1, @l2={'eth', 0x3a, 'ip6erspan0\x00'}}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4840}, 0x1) r4 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r4, 0x0) 18:30:50 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="85000000078d6c3d6b4acbf9e6f40000002500000000391b"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:50 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) setsockopt$netlink_NETLINK_NO_ENOBUFS(r1, 0x10e, 0x5, &(0x7f0000000200), 0x4) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:50 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) getresgid(&(0x7f0000000180), &(0x7f0000000040), &(0x7f00000001c0)) 18:30:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x15) 18:30:50 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x10000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 603.555792] *** Guest State *** [ 603.567745] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 603.593664] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:50 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0xffffffffffffff1d) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r0, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x270) ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000100)) 18:30:50 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) timer_create(0x7, &(0x7f0000000000)={0x0, 0x37, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000040)) timer_create(0x7, &(0x7f0000000080)={0x0, 0x20, 0x4, @tid=0xffffffffffffffff}, &(0x7f00000000c0)) r1 = syz_open_dev$vcsa(&(0x7f0000000200)='/dev/vcsa#\x00', 0x800, 0x0) ioctl$RTC_AIE_ON(r1, 0x7001) timer_create(0x2a727434121566e9, &(0x7f0000000100)={0x0, 0x4, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000140)) timer_create(0x1, &(0x7f0000000180)={0x0, 0x19, 0x4}, &(0x7f00000001c0)=0x0) timer_getoverrun(r2) [ 603.653924] CR3 = 0x0000000000004000 [ 603.664755] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 603.688864] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 18:30:50 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000025000000000000009500d522e7700000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rtc0\x00', 0x404200, 0x0) ioctl$TIOCEXCL(r2, 0x540c) r3 = gettid() r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x100, 0x0) ioctl$VIDIOC_DECODER_CMD(r4, 0xc0485660, &(0x7f0000000280)={0x2, 0x2, @raw_data=[0x1, 0xfff, 0x0, 0x6, 0x0, 0x3, 0xff, 0xffffffff, 0x101, 0xfffffffffffff000, 0x7019, 0x401, 0x1, 0x9, 0x8, 0x7ff]}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) ioctl$EXT4_IOC_RESIZE_FS(r1, 0x40086610, &(0x7f0000000200)=0x6b44) [ 603.733242] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 603.762100] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 603.781692] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 603.802714] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 603.817013] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.826854] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 603.841249] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.869249] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.882531] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 603.893795] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 603.901996] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 603.912416] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 603.932362] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 603.942005] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 603.954680] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 603.962402] Interruptibility = 00000000 ActivityState = 00000000 [ 603.969006] *** Host State *** [ 603.972237] RIP = 0xffffffff811fd350 RSP = 0xffff88805d9f73f0 [ 603.978621] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 603.985605] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 603.993864] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 604.000554] CR0=0000000080050033 CR3=0000000090846000 CR4=00000000001426e0 [ 604.007755] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 604.014563] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 604.020646] *** Control State *** [ 604.024225] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 604.031040] EntryControls=0000d1ff ExitControls=002fefff [ 604.036586] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 604.043626] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 604.050333] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 604.056985] reason=80000021 qualification=0000000000000002 [ 604.063420] IDTVectoring: info=00000000 errcode=00000000 [ 604.068866] TSC Offset = 0xfffffebac03ed2e0 [ 604.073363] EPT pointer = 0x000000005b18f01e [ 604.173759] *** Guest State *** [ 604.181599] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 604.207896] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 604.218171] CR3 = 0x0000000000004000 [ 604.221944] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 604.233952] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 604.240496] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 604.250650] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 604.257660] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 604.268672] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 604.277579] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 604.290180] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 604.299186] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 604.311638] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 604.320614] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 604.332838] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 604.341822] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 604.354890] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 604.362912] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 604.376235] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 604.382698] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 604.391914] Interruptibility = 00000000 ActivityState = 00000000 [ 604.401421] *** Host State *** [ 604.406369] RIP = 0xffffffff811fd350 RSP = 0xffff888058b873f0 [ 604.412398] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 604.422178] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 604.431628] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 604.440931] CR0=0000000080050033 CR3=0000000090846000 CR4=00000000001426f0 [ 604.449616] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 604.459621] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 604.467341] *** Control State *** [ 604.470841] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 604.480957] EntryControls=0000d1ff ExitControls=002fefff [ 604.489381] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 604.499621] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 604.507999] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 604.517714] reason=80000021 qualification=0000000000000002 18:30:51 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x46201, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r0, 0x4040aea0, &(0x7f0000000080)={0x80, 0x7, 0x8, 0x0, 0x1, 0x0, 0xffffffffffffff81, 0x8, 0x8, 0x7fffffff, 0x3, 0x9, 0x0, 0x1ff, 0x1, 0x400, 0x81, 0x101, 0x2}) getpgid(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f00000014c0)=""/214, &(0x7f00000000c0)=0xd6) getsockopt$bt_hci(r0, 0x0, 0x2, &(0x7f0000000200)=""/33, &(0x7f00000002c0)=0x21) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) bind$bt_sco(r4, &(0x7f0000000000)={0x1f, {0x3, 0x8, 0x2, 0x9, 0x0, 0x9}}, 0x8) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f00000019c0)={{0x6, 0x3, 0x1ff, 0x9, 'syz1\x00', 0x100}, 0x0, [0x4c5, 0x2, 0xd, 0x0, 0x80000000, 0xffff, 0x4, 0x5, 0x80, 0x3, 0x7, 0x4, 0xe3d, 0x9, 0xbb, 0xffffffffffffff01, 0x8, 0x800, 0x0, 0x1a3, 0x7, 0x9, 0x4, 0x2, 0x8000, 0x0, 0x7, 0x7ff, 0xff, 0x86c, 0x5, 0x7fffffff, 0x2, 0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xb1c0, 0x3f, 0x800, 0x0, 0x8, 0xdc, 0xff, 0x54e, 0x1, 0xfffffffffffffffb, 0x2, 0x10000, 0x3, 0x0, 0x40, 0x2, 0x4b, 0x2, 0x3773f551, 0x1, 0xffffffff, 0x0, 0x6, 0x1, 0x9b, 0x3, 0x9, 0x9, 0x100000000, 0x2, 0x7ff, 0x80000001, 0x81, 0x2, 0x8000, 0x9, 0x3ff, 0x7, 0x48, 0x9, 0x10000, 0xe66, 0x3, 0xae4, 0x7fff, 0x8, 0x2, 0x7, 0x5, 0x5, 0x8001, 0x8, 0x2000000000, 0x8, 0xea, 0x200, 0xb45, 0x9, 0x41b, 0x1037, 0x1c0000000000, 0x800, 0x3, 0x8, 0x10000, 0x3, 0x8, 0x3, 0x2, 0x1, 0x0, 0x8, 0x6, 0x7a, 0x4, 0x6aa, 0x5f, 0xc568, 0x1f, 0x30b1, 0x3, 0x5, 0x6, 0x5, 0x1, 0x5, 0xffffffffffffffb0, 0x4, 0xd8a, 0x9], {0x0, 0x989680}}) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000015c0)=ANY=[@ANYBLOB="04000000000000000a004e2120000000fe8800000000000000000000000001110000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e8f214f5aaf100e70000000000000000000000000000000000000800000000000000000000000000000000000000000000010000000a004e23b7a0000000000000000000000000ffffac1414bb0000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x110) write$eventfd(r3, &(0x7f0000001ec0)=0x4, 0x8) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000100)={0x0, 0x9}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000001c0)={r5, 0x3f, 0xe5a7, 0x4cfa4261, 0xfff}, 0x31d) fchdir(r2) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000002300)={"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"}) 18:30:51 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x240000, 0x0) r3 = inotify_add_watch(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x24000081) inotify_rm_watch(r2, r3) syz_open_dev$radio(&(0x7f0000000280)='/dev/radio#\x00', 0x2, 0x2) r4 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r4, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:51 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x1000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:51 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/qat_adf_ctl\x00', 0x80000, 0x0) setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000200)={0x4, 0x7fff, 0x0, 0xffffffff}, 0x8) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xff, 0x2200) ioctl$SG_SCSI_RESET(r3, 0x2284, 0x0) dup2(r2, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xc00) 18:30:51 executing program 3: getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000002fc0)={{{@in6=@loopback, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@mcast1}}, &(0x7f00000030c0)=0xe8) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x4) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000080)="66b8005000000f23c80f21f866350c0030000f23f836660f380aaf23f50f01bc00200fe922baf80c66b8191f2f8d66efbafc0cecb8eb000f00d00f35ba4000ecf2a7660f381e7411", 0x48}], 0x1, 0x4, &(0x7f0000000140)=[@efer={0x2, 0x1}], 0x1) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000003100)={@empty, 0x6e, r0}) getgroups(0x3, &(0x7f0000000180)=[0xee01, 0x0, 0xffffffffffffffff]) ioctl$TUNSETGROUP(r2, 0x400454ce, r3) r4 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r4, 0x0) [ 604.525641] IDTVectoring: info=00000000 errcode=00000000 [ 604.531142] TSC Offset = 0xfffffeba64078b54 [ 604.538732] EPT pointer = 0x00000000a8a3101e 18:30:51 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x240000, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x80000, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x6, &(0x7f0000000200)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}, @map={0x18, 0x5, 0x1, 0x0, r1}, @map={0x18, 0xe, 0x1, 0x0, r2}], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x41000}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3) dup2(r3, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) openat$uinput(0xffffffffffffff9c, &(0x7f0000000240)='/dev/uinput\x00', 0x802, 0x0) 18:30:51 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000300)={0x8, 0x2, 0x8000, 0x0, 0x2, 0x1}) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="8500000007000000250000000000009701623c2d442ba3c1c67ed0d16607b86b70d24827b9790ad80649e49b241bab19caab3af0d865103f0d932406c4ff3387090f8586c6a8e2ca9d85a9ddd991a91844f6276046484d24ab48a3612d85d0af42531ed1490eb2a02eb3de38709141502cba7b89848498137dcbe68a24bcce3ca129ea6c9a518058b159e680637d397afc58a70db076d613877dc35e7e22d330ab9479b8d0f247c64a6cf8e0d95b9960e51cf53451d2700a3f831565b33d1d7d5ed1344f9c87573af741cd8b94b9a6bba73418762069d881ab41ccaa878dadca4f3c5134126fa171fd8e912b83aee549"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x6, 0x80) 18:30:51 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x101440, 0x0) ioctl$KDENABIO(r1, 0x4b36) shmctl$IPC_RMID(r0, 0x0) 18:30:51 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xa000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x4000000) [ 604.798153] *** Guest State *** 18:30:51 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = fcntl$getown(r0, 0x9) capset(&(0x7f00000009c0)={0x200f1526, r2}, &(0x7f0000000a00)={0x3, 0x9, 0x2, 0x4, 0x8, 0x1}) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={r3, r0, 0x0, 0x64, &(0x7f0000000200)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x0}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', r4}, 0xfffffffffffffcd3) syz_mount_image$ntfs(&(0x7f00000002c0)='ntfs\x00', &(0x7f0000000300)='./file0\x00', 0x7, 0x7, &(0x7f0000000880)=[{&(0x7f0000000340)="c26aa5e9e72840abd213481d827b0f98f5cda11ee4668c7b46e7a0918c207767126693e084c57538bf29536ba809760c1402be12418f856d0ebbe367639495285f4fcbbf7fe89246b82bfa68e188b5a62dc3540b02aaf1453e3447d6abb6558759bcf6ec11011b509048d448274610abc095413560751dacf82f7d3101d9d0d81efe18246417833d5aa5a9bbe912eb4f8aedb3dcca6a4a2f347df2786cd22dcb4f341e8083d8697ecada540ad11d3bb9a1e50dd8e8d97f55a5e76bf052c97bf871af6ffbe13f260a6dafd7c1753732936e5aafa887f0a8c6f5c15607713b763513c0872229a76cdfeeb7af7cdf5de5122aa907e8652122", 0xf7, 0x8}, {&(0x7f0000000440)="646f8608775f24f36e288d65169a34cf9f8fbe6b4c70876cd11e8564bc606279a370de3e1bc5c92c0aeea9cbb74fd4e03e48b02119330e38a3aea8506ba39863850091999ad2900c760f92ca8920088d7f01c3b1cf2470d9ce12a9366475643a30c257a3996893806d4fc36007788240300e574c04bd367df9fb2aebe2352d443b45fd92054b75e48a8260354cfa90d30d2075a656531ba6e40fd1134c65631e2b616ff4c635870b36f4b6c12bbdc8a82462debfd58f7d116a950278c09d99c47712d2", 0xc3, 0x4}, {&(0x7f0000000540)="95b27b33fb1597b279f5f4e05bf9fa50f25345a3fb1e3ffb88c707a355ce669446fefc28c81971c63759222efeb40be36f4aebc5cdfa51c1c47fa0b575cc417f1edcba807dd5a34f10496ccd55ca1ff26f4c1b751cc4519d453b860c29673a28759589283e962a26cabc3c1e7041ea9d4c716d90bb208c177e337f81ea47150b79dfa8242f01a0a8dbcba2e21cb2d5", 0x8f, 0x9}, {&(0x7f0000000600)="85416c689ab74cb185a126f154e7f074d2", 0x11, 0xffff}, {&(0x7f0000000640)="3764f29398f9a84375eb2c8882acb6b9257d568a3fa4515047bca547dbfa52983d439caf8f25fc6c6f4165d53badec9d3acc7c2eee18c45825c4ffc8e078517429fe98d6741e307d1fd5ace7909962faddd7c1e8e4aa7037a714a1f1bce66c37be12e47d0cccedb5b1911959f7de3754f59c0f2fb6e66dc9e83ca4d10da0fe9a11397768fbf6e4c0fa55d9a6076833d6bec454bde208b3f2a6d157888ef521e6678acc0d49f8cd15ff7f444e0c7bd58da1470d91", 0xb4, 0x9}, {&(0x7f0000000700)="0dfdd22e30e9cb9dfa63b5cc3ee652de65c6dd20d955fbed4deda132b7c0861ce4a30df0c4bb6ccf7ae8947026b1522bc7d68adb6241083e2b19d8a143adb8d922231ecf0b05e252b66193e4b063acbd8baada0ea57feeb3c674d74258648e1e3bc1265a5f0a9021eeedc4a4e2eae18e3653520ae463c763a53c0e27bf1d3f66d6af0ac096d39f41e1681fdb1cfcbe2c93484ec815d530771a17a42c88ca2392e2648a958ce5bf0cef2d20ef6ecaad5f16d64669cd6c0a0d745119ed635b07e535ffdcee08684102724de148ddbdae722bdd4495b45c3cf63f111f58c280d0e457b771fe", 0xe4, 0x2}, {&(0x7f0000000800)="1b865f37192049cd84b699e3bdc822e0ab470af4609f4707cbc7e0e7ea08afec49df88fe973adc6466742fe6f46613d57b03980981dd1ad1c18f2340c1ba473e62f736603b91b0e48d0ea175ec4c4f8be380701e1f8092f57c4b", 0x5a, 0x1ff}], 0x2000085, &(0x7f0000000940)={[{@show_sys_files_no='show_sys_files=no'}, {@nls={'nls', 0x3d, 'cp874'}}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@pcr={'pcr', 0x3d, 0x38}}]}) [ 604.833363] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 604.858174] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 604.926863] CR3 = 0x0000000000004000 [ 604.940308] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 604.957148] ntfs: (device loop2): parse_options(): Unrecognized mount option rootcontext. [ 604.971261] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 604.994733] ntfs: (device loop2): parse_options(): Unrecognized mount option pcr. [ 605.000028] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 605.020975] ntfs: (device loop2): parse_options(): Unrecognized mount option . [ 605.029268] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 605.036843] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 605.044413] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 605.052616] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.083484] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 605.108373] ntfs: (device loop2): parse_options(): Unrecognized mount option rootcontext. [ 605.118584] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.128255] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.136624] ntfs: (device loop2): parse_options(): Unrecognized mount option pcr. [ 605.168017] ntfs: (device loop2): parse_options(): Unrecognized mount option . [ 605.184642] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.195629] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 605.209869] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 605.219470] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 605.230956] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 605.239516] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 605.246559] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 605.257730] Interruptibility = 00000000 ActivityState = 00000000 [ 605.268416] *** Host State *** [ 605.271723] RIP = 0xffffffff811fd350 RSP = 0xffff88809e5473f0 [ 605.278274] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 605.285272] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 605.294331] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 605.300371] CR0=0000000080050033 CR3=000000008cc3f000 CR4=00000000001426f0 [ 605.315607] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 605.322369] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 605.329887] *** Control State *** [ 605.333856] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 605.340595] EntryControls=0000d1ff ExitControls=002fefff [ 605.346823] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 605.357221] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 605.365099] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 605.371915] reason=80000021 qualification=0000000000000002 [ 605.378708] IDTVectoring: info=00000000 errcode=00000000 [ 605.384539] TSC Offset = 0xfffffeba146a3160 [ 605.389105] EPT pointer = 0x000000005d81301e 18:30:52 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-monitor\x00', 0x101000, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000040)={0xfffffffffffffffa, 0xfff, 0x5, 0x98}, 0x10) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f0000001380)={@remote={[], 0x1}, 0x6, 'bridge_slave_1\x00'}) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:30:52 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000240)=r1) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000100)={0x8, 0x2, 0x5}) getsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000140), &(0x7f0000000200)=0x4) ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000280)=0x0) sched_setscheduler(r3, 0x5, &(0x7f0000000300)=0x7) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:52 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:52 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0) bind$bt_rfcomm(r1, &(0x7f0000000040)={0x1f, {0x7, 0x1f, 0xa28, 0x0, 0x1, 0x1}, 0x81}, 0xa) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000080)={{{@in6=@mcast2, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@local}}, &(0x7f0000000180)=0xe8) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_ENTRY(r1, &(0x7f0000000280)={0x90, 0x0, 0x2, {0x2, 0x3, 0x58f5, 0x3, 0x3f, 0x2, {0x1, 0x7ff, 0x1c64915f, 0x4, 0x8001, 0x1, 0xefe6, 0x100, 0x6, 0x8, 0x3, r2, r3, 0x100000000, 0x401}}}, 0x90) 18:30:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x300) 18:30:52 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000300)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x3}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) socket$kcm(0x29, 0x5, 0x0) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:52 executing program 3: r0 = shmget(0x3, 0x4000, 0x1fd, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x2000, 0x0) write$P9_RXATTRCREATE(r1, &(0x7f00000000c0)={0x7, 0x21, 0x2}, 0x7) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x40, 0x0) getpeername$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000140)=0x1c) write$P9_RRENAME(r2, &(0x7f0000000040)={0x7, 0x15, 0x2}, 0x7) shmctl$IPC_RMID(r0, 0x0) 18:30:52 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xfffffff0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:52 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) openat(r2, &(0x7f0000000300)='./file0\x00', 0x28a041, 0x41) ioctl$sock_netdev_private(r2, 0x89fd, &(0x7f0000000340)="c9919e3c7aedb4c74edce12c2bd200f2184f36e2cb7b6936f92cafbc6f645dcc0825bc0f1339329f0406972da00d5657f844276b37593fe24bd392d1c39c3397dc61fe9b44fc7e3af564553ceff2a1a5a602f38b3e90af87c0e917a1248b8c416017fe682874c20e30b0531ca4f2b47af5f4c4230b2c2404ffec622808e4d4d6b6d7112e4129f0f011ce6174cfdeb7329150182a8cc46c5ef18047ea8881a562cd7b586bfef983b4dbdee49edfc25ad798e573b92b0caa58d992d7c94ebf5439d77e7db73cdd69a9ed7b2b2e488bf4428f7a804f4f82d7cc182e140e270ad61f634983f20c65a16ec85e91") r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80c00000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r3, 0x201, 0x70bd2c, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:52 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="8500000007000000250000000000000095000000000000002ca2824dc816c5d810672f362bce51c0a06d448fee2a0f2b0f8ac9679b2a0f1cff85a7519b19ff936787625c70f917001c7083714ed6f2b2e38373f165be594c346d87c4036762648236fa74e18e58acea6f8f5bb4a3e6600eb5bb16463dc967f94483f6fdb66681fedf819041e2ae32980b8964d95636a516f064acd76054b534c62f62057cc49e18f327b46b739e1d273b2cbe1704a59d44c11c62aa83292062cc7c910d17be82ab7210ef0f83"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = dup2(r0, r0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000340)={r2, &(0x7f0000000200)="eb7928d5e46ff18b12396da1bd7752a42eb9beb3f4136b5e419d77972cb775f01a6bdb0c10664698f392c29a0029d507b60443c97e61c99510955dd8244d577e7e5cc164ef17a0ee1db6321c2ccfa5dadbfe77ada64eef5cf896755871af88464da77f5478fea4c3fb3109c88ee9ca87d2cbf5996e8235451da1e300b46d2cfb67821e92bbee2ca9472c6cdb6441c3d5b78f31103f896f4619caa0024c05900bec6dcc56033a6c1019b8ae47a8c8b317729bec400d2c9ce45fb41ed3d9549a35c48c7005c7862a755705fd4b02db1ad15740b2c9dadee8c53aeba818d249e6d6c2ea", &(0x7f0000000300)=""/45}, 0x18) bind$netlink(r2, &(0x7f0000000400)={0x10, 0x0, 0x25dfdbfb, 0x800000}, 0xc) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000380), &(0x7f00000003c0)=0xc) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) syz_open_dev$cec(&(0x7f0000000540)='/dev/cec#\x00', 0x0, 0x2) [ 605.638435] *** Guest State *** 18:30:52 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) [ 605.665266] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 605.675390] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 605.691880] CR3 = 0x0000000000004000 [ 605.699522] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 605.706456] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 18:30:52 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x3f00000000000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 605.722251] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 605.739137] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 605.759577] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 605.775840] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 605.815962] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.835396] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 605.855779] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.876255] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.891182] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 605.900706] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 605.914753] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 605.922862] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 605.931092] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 605.940593] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 605.947109] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 605.955511] Interruptibility = 00000000 ActivityState = 00000000 [ 605.961804] *** Host State *** [ 605.965396] RIP = 0xffffffff811fd350 RSP = 0xffff88804fde73f0 [ 605.971491] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 605.981031] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 605.989150] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 605.995277] CR0=0000000080050033 CR3=000000008cc3f000 CR4=00000000001426e0 [ 606.002409] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 606.009194] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 606.015481] *** Control State *** [ 606.018991] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 606.025733] EntryControls=0000d1ff ExitControls=002fefff [ 606.031572] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 18:30:52 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_G_AUDIO(r3, 0x80345621, &(0x7f0000000040)) r4 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x0, 0x80) getsockopt$IPT_SO_GET_REVISION_TARGET(r4, 0x0, 0x43, &(0x7f00000000c0)={'ah\x00'}, &(0x7f0000000100)=0x1e) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r5 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf00) 18:30:52 executing program 3: r0 = shmget(0x2, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) mq_timedsend(r1, &(0x7f00000000c0)="4a39ce5da44d2325f294f3b73d8df8b4ae4c3548398a75d29c5e", 0x1a, 0xbc24, &(0x7f0000000100)={0x0, 0x989680}) getsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000040), &(0x7f0000000080)=0x4) shmctl$IPC_RMID(r0, 0x0) 18:30:52 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="850000000700000025000000000000009500000000000000379b244eb093919e"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x101400, 0x0) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:52 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xffffff7f, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:52 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="85000000070000000000000000000000a000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='autogroup\x00') ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) ioctl$RTC_PIE_ON(r2, 0x7005) r3 = gettid() ioctl$TIOCEXCL(r1, 0x540c) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r1, 0x247, &(0x7f0000000340)={0x0, 0x0}}, 0xd7) setsockopt$inet6_MRT6_ADD_MFC(r2, 0x29, 0xcc, &(0x7f0000000200)={{0xa, 0x4e21, 0x10000, @local, 0x4}, {0xa, 0x4e21, 0x2, @loopback, 0x2}, 0x7, [0x0, 0x80e, 0x7fffffff, 0x7, 0x800, 0x7fffffff, 0x2, 0x36]}, 0x5c) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f00000002c0)='em0--eth1\x00', r4}, 0x30) dup3(r0, r2, 0x80000) ioctl$TIOCEXCL(r2, 0x540c) [ 606.038552] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 606.045314] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 606.051940] reason=80000021 qualification=0000000000000002 [ 606.058500] IDTVectoring: info=00000000 errcode=00000000 [ 606.064022] TSC Offset = 0xfffffeb99e3391e2 [ 606.068388] EPT pointer = 0x00000000a4b5101e 18:30:52 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x8000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:52 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="850000000773000025000000000000800000000000b3960416dccd720ae11669af0f2f9cae6f6ebac654ed373f7d8c16e6a75b950579c817275abf2c177abad0bc93592c584ce0aba1433d063bd7e68853554d1561778f3d87a3d45e212b308f42d4b160a987a7c364cfa2024f1ce149ad606385"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:52 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x0, 0x40) write$P9_RATTACH(r1, &(0x7f0000000040)={0x14, 0x69, 0x1, {0x20, 0x0, 0x6}}, 0x14) 18:30:52 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x805, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x7, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:53 executing program 3: r0 = syz_open_dev$usbmon(&(0x7f0000000140)='/dev/usbmon#\x00', 0xfffffffffffffff9, 0x20000) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000180)={0x0, 0x2, 0x101}, &(0x7f00000001c0)=0x8) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000200)=r1, 0x4) r2 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r2, 0x0) set_robust_list(&(0x7f0000000100)={&(0x7f0000000040)={&(0x7f0000000000)}, 0x80000000, &(0x7f00000000c0)={&(0x7f0000000080)}}, 0x18) [ 606.356255] *** Guest State *** [ 606.371151] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x100000000000000) [ 606.406938] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 606.427232] CR3 = 0x0000000000004000 [ 606.436765] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 606.463663] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 606.511108] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 606.522341] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 606.559557] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 606.566709] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 606.576090] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 606.584634] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 606.592711] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 606.602582] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 606.611162] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 606.619588] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 606.628113] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 606.636553] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 606.646120] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 606.654577] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 606.661456] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 606.669283] Interruptibility = 00000000 ActivityState = 00000000 [ 606.676009] *** Host State *** [ 606.679275] RIP = 0xffffffff811fd350 RSP = 0xffff8880951173f0 [ 606.685699] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 606.692196] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 606.701648] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 606.711990] CR0=0000000080050033 CR3=00000000961fe000 CR4=00000000001426e0 [ 606.719316] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 606.726177] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 606.732298] *** Control State *** [ 606.735930] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 606.742703] EntryControls=0000d1ff ExitControls=002fefff [ 606.748233] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 606.755280] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 606.762005] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 606.768706] reason=80000021 qualification=0000000000000002 [ 606.775136] IDTVectoring: info=00000000 errcode=00000000 [ 606.780634] TSC Offset = 0xfffffeb93f6c0059 [ 606.785038] EPT pointer = 0x000000008b12701e [ 606.843232] *** Guest State *** [ 606.850807] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 606.859711] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 606.868691] CR3 = 0x0000000000004000 [ 606.872403] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 606.878954] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 606.885592] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 606.891553] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 606.897578] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 606.904257] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 606.912204] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 606.920208] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 606.928188] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 606.936194] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 606.944294] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 606.952248] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 606.960253] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 606.968245] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 606.976255] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 606.984251] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 606.990647] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 606.998242] Interruptibility = 00000000 ActivityState = 00000000 [ 607.004593] *** Host State *** [ 607.007781] RIP = 0xffffffff811fd350 RSP = 0xffff88809f88f3f0 [ 607.013799] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 607.020191] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 607.028010] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 607.033930] CR0=0000000080050033 CR3=00000000961fe000 CR4=00000000001426e0 [ 607.040920] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 607.047634] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 607.053716] *** Control State *** [ 607.057161] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 607.063883] EntryControls=0000d1ff ExitControls=002fefff [ 607.069321] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 607.076273] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 607.082942] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 18:30:53 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r2, 0x0, 0x60, &(0x7f0000000040)={'filter\x00'}, &(0x7f00000000c0)=0x44) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) socket$bt_rfcomm(0x1f, 0x1, 0x3) ioctl$VIDIOC_SUBDEV_G_SELECTION(r3, 0xc040563d, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x1, {0x7, 0x5, 0x3fbd, 0x8}}) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:53 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x60, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:53 executing program 2: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dsp\x00', 0x200080, 0x0) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r0, 0x84, 0x12, &(0x7f0000000300), &(0x7f0000000340)=0x4) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850008000700000025000200000000000000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r3 = syz_open_dev$sndpcmp(&(0x7f0000000380)='/dev/snd/pcmC#D#p\x00', 0x6, 0x840) bind(r3, &(0x7f0000000240)=@nl=@kern={0x10, 0x0, 0x0, 0x8200800}, 0x80) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) r4 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r4, r1, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) getsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000200), &(0x7f00000003c0)=0x6) 18:30:53 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) write$P9_RLOPEN(r2, &(0x7f0000000100)={0x18, 0xd, 0x2, {{0x4, 0x0, 0x4}, 0x5}}, 0x18) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:53 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000040)={0x0, 0x0}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r1, 0xffffffffffffff9c, 0x0, 0x9, &(0x7f0000000000)='ppp0*em0\x00'}, 0x30) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000100)={0x0, 0x3, 0x8, 0x27098e87}) sched_getparam(r1, &(0x7f0000000080)) shmctl$IPC_RMID(r0, 0x0) 18:30:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3000000) [ 607.089539] reason=80000021 qualification=0000000000000002 [ 607.095890] IDTVectoring: info=00000000 errcode=00000000 [ 607.101323] TSC Offset = 0xfffffeb93f6c0059 [ 607.105660] EPT pointer = 0x000000008b12701e 18:30:53 executing program 3: shmget$private(0x0, 0x3000, 0x100, &(0x7f0000ffc000/0x3000)=nil) r0 = shmget$private(0x0, 0x2000, 0x400, &(0x7f0000ffd000/0x2000)=nil) r1 = accept4$alg(0xffffffffffffff9c, 0x0, 0x0, 0x800) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x2, 0x4ec, 0x4, 0x9692}, {0xff, 0x84e2, 0xffffffffffffff37, 0x6}, {0x2, 0x4e, 0x6a8, 0x2}]}) ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f0000000000)={'vlan0\x00', {0x2, 0x4e22, @multicast2}}) r2 = open(&(0x7f0000000040)='./file0\x00', 0x200280, 0x100) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r2, 0x28, 0x1, &(0x7f0000000080)=0x9, 0x8) shmctl$IPC_RMID(r0, 0x0) 18:30:53 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x4, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:53 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x81, 0x400, 0x6, 0x7, 0x0, 0x200, 0x40080, 0x7, 0x7fffffff, 0x8000, 0x5, 0x9, 0x2, 0x9, 0x800, 0xedd1, 0x800, 0x6, 0x0, 0x6d4, 0x0, 0x0, 0x3, 0x5, 0x1, 0x7fff, 0xbbf, 0x9, 0x7, 0x4, 0x1e, 0x200, 0x8, 0x1, 0x6, 0x581b9039, 0x0, 0x4, 0x0, @perf_config_ext={0xb6, 0x9}, 0x12000, 0x10000, 0x7, 0x8, 0x5, 0x4, 0x6bd4b7db}, r2, 0x7, r0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000400)={0x1, 0x70, 0x5, 0x7, 0x4, 0x40, 0x0, 0x1, 0x0, 0x8, 0x7429, 0x401, 0x4, 0x7, 0xfe, 0x9, 0x30d6, 0x4, 0x5, 0x570, 0x1000, 0x6, 0x38f1, 0x84e9, 0x80, 0x80000000, 0xebe, 0x7fffffff, 0x6, 0x5, 0x1, 0x6, 0xb, 0xfc, 0x9a51, 0x2, 0x8, 0x1ff, 0x0, 0x3ff, 0x0, @perf_config_ext={0x4, 0x4}, 0x8000, 0x1, 0x400, 0xf, 0xff80000000000000, 0x20, 0x7}) ppoll(&(0x7f0000000280)=[{r0, 0x4288}, {r0, 0x20}], 0x2, &(0x7f00000003c0)={r3, r4+10000000}, &(0x7f0000000340)={0x200800}, 0x8) 18:30:53 executing program 3: shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffb000/0x1000)=nil) openat$mixer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mixer\x00', 0x305002, 0x0) r0 = shmget(0x3, 0x4000, 0x1fc, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r1, &(0x7f0000000080)={0xd}) bind$x25(r1, &(0x7f0000000040)={0x9, @null=' \x00'}, 0x12) shmctl$IPC_RMID(r0, 0x0) 18:30:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xb000000) [ 607.322621] *** Guest State *** [ 607.356832] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:54 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) pipe(&(0x7f0000000100)) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 607.404459] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 607.441809] CR3 = 0x0000000000004000 [ 607.449341] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 607.466604] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 607.478825] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 607.513588] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 607.520633] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 607.532496] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 607.560964] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 607.569394] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 607.597585] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 607.610248] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 607.620568] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 607.631884] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 607.641814] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 607.651160] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 607.659441] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 607.667635] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 607.674149] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 607.681647] Interruptibility = 00000000 ActivityState = 00000000 [ 607.688656] *** Host State *** [ 607.691885] RIP = 0xffffffff811fd350 RSP = 0xffff88805be1f3f0 [ 607.698155] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 607.704873] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 607.712705] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 607.718689] CR0=0000000080050033 CR3=00000000584ca000 CR4=00000000001426f0 [ 607.726020] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 607.732777] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 607.738975] *** Control State *** [ 607.742470] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 607.749385] EntryControls=0000d1ff ExitControls=002fefff [ 607.755000] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 18:30:54 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgrp(0xffffffffffffffff) getpgrp(0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)) getpgid(0xffffffffffffffff) fcntl$getown(0xffffffffffffff9c, 0x9) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) getpgid(r0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:30:54 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x2, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:54 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) socket$vsock_dgram(0x28, 0x2, 0x0) pipe2(&(0x7f0000000140)={0xffffffffffffffff}, 0x800) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000180)={{{@in=@remote, @in6=@mcast1}}, {{@in6=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000000280)=0xe8) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x80, 0x0) inotify_add_watch(r2, &(0x7f0000000100)='./file0\x00', 0x40000b80) shmctl$IPC_RMID(r0, 0x0) r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x9, 0x2802) ioctl$TUNSETFILTEREBPF(r3, 0x800454e1, &(0x7f0000000000)=r3) prctl$PR_SET_PDEATHSIG(0x1, 0xd) ioctl$TCSETA(r3, 0x5406, &(0x7f0000000080)={0x100000000, 0x3, 0x1d1, 0x80, 0x9, 0xe18, 0x10000ffff, 0x9b49, 0x7, 0x200}) socket$pptp(0x18, 0x1, 0x2) 18:30:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r2, 0x10e, 0x1, &(0x7f0000000200)=0x1f, 0x4) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:54 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000100)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$VIDIOC_ENUM_FRAMESIZES(r0, 0xc02c564a, &(0x7f0000000000)={0x6, 0x3831354f, 0x2, @discrete={0x3ff, 0x1cc}}) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f0000000300)="981ada9c8ba013d0a542d1cb85e71fe0afb270c47844ad7f2211408a8173849d14725fe289b8fc055c5209935347fa9d5cc8888e396f1f471b0e9f12bd72595f48ede549c46251becd94710bc67d998a5c88b61a91a091ed1617e77f4155fd8f6f1b09c080c22369e8e3deb504f64e9d24df752ecdcb7e9d5131ffcc8306ab8747d15161171f0da54cf04555aabcf581cfb2d15a8e37fac5dc8460576e4fa41eec4a78f5eb3af7a168f47831b62843488646cbf0c6e32318fa7242cc1aedfa90546a482aa2f7c9759960fc5fdb7aa5f8b2acdbbe08f773bafe") bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xb00) [ 607.762007] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 607.768871] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 607.775569] reason=80000021 qualification=0000000000000002 [ 607.781927] IDTVectoring: info=00000000 errcode=00000000 [ 607.787694] TSC Offset = 0xfffffeb8b8987572 [ 607.792046] EPT pointer = 0x00000000a4f7001e 18:30:54 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x0, 0x0) accept4$nfc_llcp(r2, &(0x7f0000000200), &(0x7f0000000140)=0x60, 0x80000) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:54 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xf0ffffff00000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x80080, 0x0) ioctl$KVM_S390_UCAS_MAP(r2, 0x4018ae50, &(0x7f0000000240)={0x40, 0x7e, 0x80}) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:54 executing program 3: sysfs$3(0x3) r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x81, 0x10000) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x3) ioctl$SNDRV_TIMER_IOCTL_INFO(r1, 0x80e85411, &(0x7f0000000080)=""/180) ioctl$VIDIOC_G_OUTPUT(r1, 0x8004562e, &(0x7f0000000140)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2000, 0x0) shmctl$IPC_RMID(r0, 0x0) [ 607.986641] *** Guest State *** [ 608.021172] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 608.057318] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:54 executing program 3: shmctl$IPC_RMID(0x0, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) fsetxattr(r0, &(0x7f0000000080)=@known='security.apparmor\x00', &(0x7f0000000100)='(\x00', 0x2, 0x1) r1 = open(&(0x7f00000000c0)='./file0\x00', 0x200, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r1, 0xc040564a, &(0x7f0000000040)={0x4, 0x0, 0x2005, 0x1, 0x5, 0x8, 0x3ff, 0x1}) 18:30:54 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xa0010000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 608.074614] CR3 = 0x0000000000004000 [ 608.078429] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 608.090017] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 608.109893] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 608.120574] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 608.160600] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 608.173870] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 608.196348] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.230486] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 608.239072] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.253192] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.264187] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.272231] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 608.280303] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 608.288628] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 608.296648] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 608.304625] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 608.311012] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 608.318498] Interruptibility = 00000000 ActivityState = 00000000 [ 608.324739] *** Host State *** [ 608.327917] RIP = 0xffffffff811fd350 RSP = 0xffff88805b1c73f0 [ 608.333937] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 608.340329] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 608.348775] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 608.354726] CR0=0000000080050033 CR3=0000000087f08000 CR4=00000000001426e0 [ 608.361736] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 608.368644] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 608.374767] *** Control State *** [ 608.378213] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 608.384895] EntryControls=0000d1ff ExitControls=002fefff [ 608.390363] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 608.397337] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 608.404078] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 608.410658] reason=80000021 qualification=0000000000000002 [ 608.417060] IDTVectoring: info=00000000 errcode=00000000 [ 608.422499] TSC Offset = 0xfffffeb85b5d2510 [ 608.426861] EPT pointer = 0x00000000a7c0601e [ 608.509157] *** Guest State *** [ 608.512533] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 608.536521] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 608.546573] CR3 = 0x0000000000004000 [ 608.550364] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 608.557691] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 608.564522] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 608.570560] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 608.576855] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 608.583905] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 608.591948] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.600212] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 608.608417] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.616699] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.624911] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 608.632943] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 608.641207] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 608.649523] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 608.657744] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 608.666326] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 608.672793] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 608.680479] Interruptibility = 00000000 ActivityState = 00000000 [ 608.686990] *** Host State *** [ 608.690248] RIP = 0xffffffff811fd350 RSP = 0xffff88805b1c73f0 [ 608.696531] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 608.703188] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 608.711047] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 608.717167] CR0=0000000080050033 CR3=0000000087f08000 CR4=00000000001426e0 [ 608.724442] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 608.731153] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 608.737447] *** Control State *** [ 608.740963] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 608.747870] EntryControls=0000d1ff ExitControls=002fefff [ 608.757208] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 608.765250] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 608.771970] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 608.782921] reason=80000021 qualification=0000000000000002 [ 608.790436] IDTVectoring: info=00000000 errcode=00000000 [ 608.800204] TSC Offset = 0xfffffeb80f7b2f09 18:30:55 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x2, 0x2000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r3, 0xc0405519, &(0x7f0000000100)={0x7, 0x7, 0x200401, 0x6, 'syz0\x00', 0xffffdffe}) 18:30:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfffffdfd) 18:30:55 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = syz_open_dev$sndpcmc(&(0x7f0000000200)='/dev/snd/pcmC#D#c\x00', 0x9, 0x0) write$P9_RCREATE(r2, &(0x7f0000000240)={0x18, 0x73, 0x1, {{0x40, 0x4, 0x5}, 0xffffffff}}, 0x18) r3 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000100)={0x79, 0x0, [0x8, 0x1, 0x80, 0x8000]}) 18:30:55 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xf0ffffff, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:55 executing program 3: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x40, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f00000000c0)=0x1) write$FUSE_STATFS(r0, &(0x7f0000000040)={0x60, 0x0, 0x4, {{0x3, 0x4, 0x10000, 0xffff, 0x8, 0x1ff, 0xffffffff, 0x9}}}, 0x60) r1 = shmget(0x1, 0x1000, 0x200, &(0x7f0000ffc000/0x1000)=nil) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000100)=@req3={0x6, 0x6bc, 0x2, 0xf, 0x2, 0x9, 0x5}, 0x1c) shmctl$IPC_RMID(r1, 0x0) setsockopt$inet_sctp_SCTP_NODELAY(r0, 0x84, 0x3, &(0x7f0000000140)=0x81, 0x4) 18:30:55 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000200)='/dev/null\x00', 0x40000, 0x0) ioctl$DRM_IOCTL_MAP_BUFS(r3, 0xc0186419, &(0x7f0000001440)={0x3, &(0x7f0000000240)=""/4096, &(0x7f00000013c0)=[{0x9, 0x2, 0x5, &(0x7f0000001240)=""/2}, {0x3, 0x3, 0x81, &(0x7f0000001280)=""/3}, {0x2, 0xfa, 0xfffffffffffffffb, &(0x7f00000012c0)=""/250}]}) [ 608.806401] EPT pointer = 0x00000000a93e801e 18:30:55 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x400, 0x14) ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0x8) dup3(r1, r1, 0x80000) 18:30:55 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x4000000, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:55 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000100)=0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r3, r0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:55 executing program 2: openat$cgroup_int(0xffffffffffffff9c, &(0x7f0000000200)='cpuset.memory_migrate\x00', 0x2, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:55 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) lsetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'user.', '\x00'}, &(0x7f0000000080)='wlan0](bdev)selinuxlovmnet0procnodevnodev:wlan1\x00', 0x30, 0x2) shmctl$IPC_RMID(r0, 0x0) 18:30:55 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0xe00, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 609.046197] *** Guest State *** [ 609.063731] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 609.124486] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 609.150491] CR3 = 0x0000000000004000 [ 609.160964] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 609.181013] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 609.189122] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 609.206508] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 609.212842] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 609.220964] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 609.233299] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 609.247711] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 609.257437] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 609.265858] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 609.275350] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 609.283776] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 609.291835] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 609.300125] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 609.308444] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 609.316582] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 609.323134] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 609.330704] Interruptibility = 00000000 ActivityState = 00000000 [ 609.337009] *** Host State *** [ 609.340220] RIP = 0xffffffff811fd350 RSP = 0xffff88805b1c73f0 [ 609.346398] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 609.352860] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 609.360855] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 609.366853] CR0=0000000080050033 CR3=000000008c3da000 CR4=00000000001426f0 [ 609.374145] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 609.380960] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 609.387092] *** Control State *** [ 609.390571] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 609.397451] EntryControls=0000d1ff ExitControls=002fefff [ 609.402931] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 609.410497] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 609.417392] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 609.424236] reason=80000021 qualification=0000000000000002 [ 609.430578] IDTVectoring: info=00000000 errcode=00000000 [ 609.436239] TSC Offset = 0xfffffeb7cebc3b1e [ 609.440616] EPT pointer = 0x000000008d63e01e [ 609.483602] *** Guest State *** [ 609.487199] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 609.496584] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 609.505840] CR3 = 0x0000000000004000 [ 609.509647] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 609.516175] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 609.516185] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 609.516195] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 609.516209] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 609.516222] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 609.528781] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 609.557295] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 609.565309] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 609.573306] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 609.581254] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 609.589252] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 609.597280] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 609.605402] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 609.613437] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 609.621389] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 609.627831] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 609.635290] Interruptibility = 00000000 ActivityState = 00000000 [ 609.641497] *** Host State *** [ 609.644753] RIP = 0xffffffff811fd350 RSP = 0xffff88808ef8f3f0 [ 609.650731] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 609.657150] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 609.664950] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 609.670813] CR0=0000000080050033 CR3=000000008c3da000 CR4=00000000001426e0 [ 609.677863] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 609.684690] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 609.690732] *** Control State *** [ 609.694239] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 609.700888] EntryControls=0000d1ff ExitControls=002fefff [ 609.706372] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 609.713309] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 609.719955] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 [ 609.726581] reason=80000021 qualification=0000000000000002 18:30:56 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x3, 0x2) ioctl$SIOCAX25DELFWD(r3, 0x89eb, &(0x7f00000000c0)={@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$bt_l2cap_L2CAP_CONNINFO(r4, 0x6, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x6) 18:30:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf) 18:30:56 executing program 3: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x4a80, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x2, 0x1, 0x5, 0x3, 0x0, 0x3, 0x4000, 0x1, 0x0, 0x2, 0x7, 0x9, 0x100000000, 0x8, 0x0, 0x6, 0x8fc9, 0x7, 0x8, 0x5, 0x1, 0x80000001, 0xfff, 0x2, 0x7, 0x80, 0x4398, 0x100000000, 0x8, 0x2, 0x7ff, 0x0, 0xe3d, 0x3, 0x45, 0x8000, 0x0, 0xdb64, 0x2, @perf_config_ext={0x0, 0x3}, 0x1000, 0x6, 0x0, 0x0, 0x0, 0x8, 0xfffffffffffffffe}, 0xffffffffffffffff, 0xf, r0, 0x0) r1 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r1, 0x0) 18:30:56 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:56 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:56 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net/tcp6\x00') ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f0000000440)={0x1}) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) r3 = gettid() r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x4000, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000240)={0x0, 0xbe, "9489cff7e348be22bd6c189513cfa579e9038ccd572c45897693ebca23435ed65041e9be440558caac2908e14af7a8791f8a3494f284985b76bf6702e0b301c2597f34bedd75e60f1847623239a9af27363df18d797a251747801b60eee388042caa138611d7c2811768372f5f1e6d37e51f544caec9a85000de73612c06f75668f287a3f06c2ae9c74eeb1d5d60c54da9c3d080a86dcb992fb86512c6576c2c2b7a4b0176a977d759ff56e55c5824b4f264d48a48b6b5a3f825221a1897"}, &(0x7f0000000340)=0xc6) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000000380)={r5, 0x7}, &(0x7f00000003c0)=0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r1, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 609.732883] IDTVectoring: info=00000000 errcode=00000000 [ 609.738346] TSC Offset = 0xfffffeb7cebc3b1e [ 609.742659] EPT pointer = 0x000000008d63e01e 18:30:56 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:56 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmget(0x3, 0x3000, 0x100, &(0x7f0000ffc000/0x3000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:30:56 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x350, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f0000000200)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:56 executing program 3: r0 = shmget(0x3, 0x2000, 0x200, &(0x7f0000ffd000/0x2000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x5670c1) openat$ion(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ion\x00', 0x301000, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000040)='cgroup.subtree_control\x00', 0x2, 0x0) [ 609.954533] *** Guest State *** [ 609.969913] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x8000000000) 18:30:56 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 610.017452] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 610.111464] CR3 = 0x0000000000004000 [ 610.117399] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 610.124512] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 610.132022] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 610.177392] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 610.185469] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 610.192492] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 610.212495] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 610.220771] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 610.233439] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 610.241540] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 610.251475] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 610.260420] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 610.268661] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 610.276902] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 610.285187] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 610.293509] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 610.300039] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 610.307880] Interruptibility = 00000000 ActivityState = 00000000 [ 610.314266] *** Host State *** [ 610.317541] RIP = 0xffffffff811fd350 RSP = 0xffff8880560b73f0 [ 610.325646] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 610.332101] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 610.340090] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 610.346090] CR0=0000000080050033 CR3=0000000089e2b000 CR4=00000000001426e0 [ 610.353201] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 610.360004] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 610.366186] *** Control State *** [ 610.369678] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 610.376544] EntryControls=0000d1ff ExitControls=002fefff [ 610.382027] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 610.389063] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 610.395842] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 610.402497] reason=80000021 qualification=0000000000000002 [ 610.408930] IDTVectoring: info=00000000 errcode=00000000 [ 610.414527] TSC Offset = 0xfffffeb74e7130bd [ 610.418907] EPT pointer = 0x00000000a441801e [ 610.463219] *** Guest State *** [ 610.466611] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 610.481067] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 610.498898] CR3 = 0x0000000000004000 [ 610.502696] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 610.509243] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 610.517117] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 610.523521] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 610.529476] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 610.536170] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 610.544187] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 610.552143] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 610.560147] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 610.568128] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 610.576142] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 610.584126] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 610.592095] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 610.600095] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 610.608103] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 610.616126] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 610.622514] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 610.629974] Interruptibility = 00000000 ActivityState = 00000000 [ 610.636214] *** Host State *** [ 610.639382] RIP = 0xffffffff811fd350 RSP = 0xffff88808ef8f3f0 [ 610.645396] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 610.651790] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 610.659610] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 610.665506] CR0=0000000080050033 CR3=0000000089e2b000 CR4=00000000001426e0 [ 610.672502] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 610.679190] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 610.685256] *** Control State *** [ 610.688697] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 610.695413] EntryControls=0000d1ff ExitControls=002fefff [ 610.700854] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 610.707803] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 18:30:57 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(r3, 0x0, 0xfffffffffffffcf2) pread64(r0, &(0x7f0000000040)=""/159, 0x9f, 0x5c) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mincore(&(0x7f0000ffa000/0x1000)=nil, 0x1000, &(0x7f0000000180)=""/162) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000000)={0x4, 0x10001}) 18:30:57 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) r1 = dup2(0xffffffffffffffff, r0) r2 = getpid() ioctl$UI_SET_SWBIT(r1, 0x4004556d, 0x6) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={0xffffffffffffffff, 0x50, &(0x7f0000000100)={0x0, 0x0}}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r2, r1, 0x0, 0x0, 0x0, r3}, 0xffffffffffffff80) 18:30:57 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x6001, 0x0) ioctl$VIDIOC_S_FBUF(r1, 0x4030560b, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000040)="0149691fb32d1f6e638732695219d6", {0xfff, 0xa1b, 0x38774f76, 0x5, 0x80000001, 0x3, 0x8, 0x2}}) 18:30:57 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xfffffffffffffd70, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:57 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf000000) [ 610.714516] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 [ 610.721080] reason=80000021 qualification=0000000000000002 [ 610.727513] IDTVectoring: info=00000000 errcode=00000000 [ 610.732948] TSC Offset = 0xfffffeb74e7130bd [ 610.737293] EPT pointer = 0x00000000a441801e 18:30:57 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c) ioctl$DRM_IOCTL_AGP_ENABLE(r1, 0x40086432, &(0x7f0000000000)=0x200) getsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x8) 18:30:57 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="8500000007000080250000000000000095000000000000007c0411b8acaf0ed1fc13efeef053fa92322f6fbbf94e1a1ed685c02c7eb61db6f272843684e0a346"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:57 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:57 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() pwrite64(r0, &(0x7f0000000200)="0af973e4f89e", 0x6, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:57 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000280)='/dev/hwrng\x00', 0x40200, 0x0) getsockopt$nfc_llcp(r1, 0x118, 0x0, &(0x7f00000002c0)=""/39, 0x27) shmctl$IPC_RMID(r0, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x20000, 0x0) write$UHID_CREATE(r2, &(0x7f0000000140)={0x0, 'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000040)=""/253, 0xfd, 0x40, 0xfffffffffffffffb, 0x8, 0x800, 0x5}, 0x120) [ 610.973900] *** Guest State *** [ 610.982735] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 611.012781] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:30:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x2) [ 611.042156] CR3 = 0x0000000000004000 [ 611.055632] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 611.073832] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 611.097838] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 611.122772] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 611.141896] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 611.149384] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 611.167854] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.178107] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 611.191504] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.200775] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.215002] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.226989] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 611.236210] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 611.244567] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 611.252531] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 611.262017] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 611.274875] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 611.282442] Interruptibility = 00000000 ActivityState = 00000000 [ 611.292594] *** Host State *** [ 611.298008] RIP = 0xffffffff811fd350 RSP = 0xffff888056c5f3f0 [ 611.308082] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 611.316747] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 611.327248] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 611.333412] CR0=0000000080050033 CR3=00000000a0131000 CR4=00000000001426f0 [ 611.340433] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 611.347719] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 611.353823] *** Control State *** [ 611.357276] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 611.364082] EntryControls=0000d1ff ExitControls=002fefff [ 611.369522] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 611.376503] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 611.383193] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 611.389757] reason=80000021 qualification=0000000000000002 [ 611.396093] IDTVectoring: info=00000000 errcode=00000000 [ 611.401533] TSC Offset = 0xfffffeb6c4cc7028 [ 611.405875] EPT pointer = 0x0000000094f8501e 18:30:58 executing program 1: r0 = shmget(0x0, 0x4000, 0x400, &(0x7f0000ffb000/0x4000)=nil) shmat(r0, &(0x7f0000ff0000/0x2000)=nil, 0x7002) getpgid(0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x420040, 0x0) ioctl$EVIOCSREP(r1, 0x40084503, &(0x7f0000000040)=[0xfffffffffffffffb, 0x200]) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r5 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_TEST_UNIT_READY(r5, 0x2) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r6 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r6, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 18:30:58 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = syz_open_dev$radio(&(0x7f0000000100)='/dev/radio#\x00', 0x3, 0x2) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200)='TIPCv2\x00') sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000021}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)={0x94, r3, 0x201, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x54, 0x9, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xb0a}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfffffffffffffffd}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xc0}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5391}]}, @TIPC_NLA_SOCK={0x2c, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3b}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xe99d}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x93}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x40}, 0x20004040) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:58 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:58 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = getpgid(0x0) ptrace$setregs(0xf, r1, 0x1, &(0x7f0000000080)="710ffa10bb661fabc21fc3edb5a9cc0fc38833f8f011d3278fb26937316ea065600681b2096dcdc0cd0df97e6c0897903b079931bcbaafff10a5aa962dec933eae8c87bf70ba87b12a43d5899670ec7db7eec57be831f1febaa6049573b75ae6102008c2f1") pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x23, &(0x7f0000000100)={@rand_addr, @dev, 0x0}, &(0x7f0000000140)=0xc) ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f00000001c0)={r3, 0x4, 0xfff, 0xe, 0x9, 0x0, 0xe2}) msgctl$IPC_RMID(0x0, 0x0) shmctl$IPC_RMID(r0, 0x0) accept$packet(r2, &(0x7f0000000200), &(0x7f0000000240)=0x14) r4 = syz_open_dev$vcsa(&(0x7f0000000180)='/dev/vcsa#\x00', 0x0, 0xfffe) setsockopt$inet6_dccp_int(r4, 0x21, 0x11, &(0x7f0000000040)=0x4, 0x4) 18:30:58 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200)='/dev/zero\x00', 0x8000, 0x0) ioctl$SIOCX25CALLACCPTAPPRV(r2, 0x89e8) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000240)=0x0) r4 = getpgid(0x0) kcmp(r3, r4, 0x7, r1, r2) r5 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r5, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:30:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xec0f0000000000) 18:30:58 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x4) 18:30:58 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:58 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000040)='security.selinux\x00', &(0x7f0000000280)='system_u:object_r:newrole_exec_t:s0\x00', 0x24, 0x2) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x2, &(0x7f0000001fd8)=@raw=[@exit, @call={0x85, 0x0, 0x0, 0x53}], &(0x7f0000000200)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r1, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 611.672421] *** Guest State *** 18:30:58 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850500000700060000000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x200, 0x0) ioctl$RNDZAPENTCNT(r2, 0x5204, &(0x7f0000000140)=0x3) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x80ffff) 18:30:58 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f0000000000)={0x0, 0x7fff}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000080)={r2, 0x6}, 0x8) [ 611.703552] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 611.725413] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 611.789316] CR3 = 0x0000000000004000 [ 611.816339] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 611.839406] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 611.866546] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 611.874082] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 611.880403] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 611.888978] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 611.916775] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.928430] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 611.942081] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.957891] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.967521] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 611.986603] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 611.995221] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 612.009714] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 612.018283] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 612.026657] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 612.036768] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 612.044748] Interruptibility = 00000000 ActivityState = 00000000 [ 612.051073] *** Host State *** [ 612.054342] RIP = 0xffffffff811fd350 RSP = 0xffff88805ad973f0 [ 612.060448] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 612.067442] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 612.076521] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 612.082518] CR0=0000000080050033 CR3=000000008b282000 CR4=00000000001426e0 [ 612.089774] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 612.096608] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 612.102691] *** Control State *** [ 612.106404] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 612.113239] EntryControls=0000d1ff ExitControls=002fefff [ 612.118797] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 612.125800] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 612.132507] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 612.139290] reason=80000021 qualification=0000000000000002 [ 612.145790] IDTVectoring: info=00000000 errcode=00000000 [ 612.151335] TSC Offset = 0xfffffeb65dfd24be [ 612.155829] EPT pointer = 0x000000008a69f01e [ 612.231334] *** Guest State *** [ 612.239916] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 612.249143] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 612.263516] CR3 = 0x0000000000004000 [ 612.283990] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 612.308940] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 612.316926] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 612.322958] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 612.333839] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 612.340567] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 612.352637] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 612.362421] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 612.375320] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 612.385872] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 612.396285] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 612.410563] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 612.421193] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 612.431647] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 612.442000] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 612.452419] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 612.461268] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 612.471221] Interruptibility = 00000000 ActivityState = 00000000 [ 612.480674] *** Host State *** [ 612.488423] RIP = 0xffffffff811fd350 RSP = 0xffff88808ed173f0 [ 612.497134] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 612.506166] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 612.516486] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 612.522441] CR0=0000000080050033 CR3=000000008b282000 CR4=00000000001426e0 [ 612.532139] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 612.541403] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 612.550055] *** Control State *** [ 612.556198] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 612.562915] EntryControls=0000d1ff ExitControls=002fefff [ 612.571073] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 612.580891] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 18:30:59 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x8400000002000, 0x0) ioctl$VIDIOC_G_JPEGCOMP(r3, 0x808c563d, &(0x7f0000000080)) ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f0000001380)={0x0, 0x0, 0x2080}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:59 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x2, 0x10000, 0x5, 0x7, 0x0, 0x2, 0x10040, 0xf, 0x8, 0x845, 0x3, 0x1, 0x0, 0x2, 0x6, 0x0, 0x9, 0x5, 0x7ff, 0xdc, 0xa48, 0xf3, 0x2, 0x2, 0x400, 0x8, 0x6, 0x0, 0x40, 0x4, 0x3ff, 0x10001, 0x1000, 0x4bc, 0x7, 0x7, 0x0, 0xb6c7, 0x5, @perf_config_ext={0x9, 0x2}, 0x20000, 0x9, 0x16, 0x0, 0x80, 0xfffffffffffffffb, 0x3ff}, r3, 0x2, r4, 0x9) 18:30:59 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) dup2(0xffffffffffffffff, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:59 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:59 executing program 3: r0 = shmget(0x1, 0x1000, 0x200, &(0x7f0000fff000/0x1000)=nil) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x8040) ioctl$DRM_IOCTL_ADD_MAP(r1, 0xc0286415, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, 0x8, 0x1, 0xc3, &(0x7f0000ffc000/0x2000)=nil}) shmctl$IPC_RMID(r0, 0x0) 18:30:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x2000000) [ 612.590302] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 612.600570] reason=80000021 qualification=0000000000000002 [ 612.611301] IDTVectoring: info=00000000 errcode=00000000 [ 612.619338] TSC Offset = 0xfffffeb612110767 [ 612.626235] EPT pointer = 0x0000000097be901e 18:30:59 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:59 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="04000000000000001c33198809a9aeb57bfe30c5a35cc9937e88db5c79b632e19c85ec7ea7e4f595e5ed84480d3323514294535eb3b98ebd6d044333440be4b761786c6f53c6afa4508a43534bda"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:59 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) open(&(0x7f00000003c0)='./file0\x00', 0x200, 0x10) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/rfkill\x00', 0x40, 0x0) ioctl$sock_inet6_tcp_SIOCINQ(r2, 0x541b, &(0x7f0000000300)) r3 = gettid() ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vhci\x00', 0x86002, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000240), 0x113, 0x3}}, 0x20) ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000340)={{0x2, 0x4e21, @remote}, {}, 0x4, {0x2, 0x4e22, @remote}, 'vcan0\x00'}) [ 612.819127] *** Guest State *** 18:30:59 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = accept4$rose(0xffffffffffffffff, &(0x7f0000000000)=@short={0xb, @dev, @netrom, 0x1, @bcast}, &(0x7f0000000040)=0x1c, 0x80000) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x2010, r1, 0x0) shmctl$IPC_RMID(r0, 0x0) [ 612.852167] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:30:59 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x15000000) [ 612.907932] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 612.943124] CR3 = 0x0000000000004000 [ 612.979610] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 613.026232] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 613.045768] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 613.052919] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 613.059280] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 613.066604] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 613.074719] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.082782] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 613.090990] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.099612] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.107802] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.120280] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 613.129368] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 613.137797] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 613.147024] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 613.155208] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 613.164403] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 613.172011] Interruptibility = 00000000 ActivityState = 00000000 [ 613.178465] *** Host State *** [ 613.181783] RIP = 0xffffffff811fd350 RSP = 0xffff8880599273f0 [ 613.187965] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 613.194591] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 613.202520] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 613.208767] CR0=0000000080050033 CR3=000000008c19e000 CR4=00000000001426e0 [ 613.215981] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 613.222779] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 613.229026] *** Control State *** [ 613.232628] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 613.239536] EntryControls=0000d1ff ExitControls=002fefff [ 613.245208] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 613.252247] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 613.263042] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 613.269620] reason=80000021 qualification=0000000000000002 [ 613.276003] IDTVectoring: info=00000000 errcode=00000000 [ 613.281450] TSC Offset = 0xfffffeb5c53e9868 [ 613.285821] EPT pointer = 0x00000000a76d601e 18:30:59 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) syz_mount_image$reiserfs(&(0x7f0000000000)='reiserfs\x00', &(0x7f0000000040)='./file0\x00', 0x1ff, 0xa, &(0x7f0000003780)=[{&(0x7f0000001380)="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", 0x1000, 0x9}, {&(0x7f0000000080)="43bb9e", 0x3, 0x8}, {&(0x7f0000000180)="40b6283df4b33207cd995d6714b72bcd7e90c7bbd6e2bfdf8a4fc44640181b77de8aed93439a5703d2819b87723885a64529fe51f067202a5137753e19e7d2b9658edad020683d7d50b7c5eee4b9e6885f0330008f079ad8e2ebc6f51a14aba324252504e082554746bc8d921ead1ab13aafa3c5088a06d4e027323125df58085baf21df476ce1801f8f1b41adf8067cdab1841177772e0cf3fc2fb4e94e60a14c1c67c6", 0xa4}, {&(0x7f0000002380)="2efd991d88096bd59b9f0a5d4586a5d723c04fb17ee12bea891b4ed3d11e9163dbbeebd8683aa40b7e5dd61263377a7c0d7a5c209d371ef7084942c25f837b13fcfa8f14578a0eaac5d46c6749b588a2275a2b6664299116df237009567c3658ac7234debec79bfb0cf213c99cd8b3b6e304a1bd04fb74555f733b328ff1a274443bbb77bd665746a9ce4f54240c70f8fa9c9750c7f020f1bf9a2e8fbed978a23f7720bcd667a75dfb2113674caf6d3c39c71d4c433c4670ab6a7a300d67f0f14ccd6b22fd8778feb38e8e6e20aa0684336613b5de96e35b50390d43bba3b44eb1876979d58524a792842c34ec122ce51a", 0xf1, 0x7fff}, {&(0x7f0000002480)="a89e1d338fedee7c7556486425b76b1a8bd96e5884d7fc9ab4cc462f63bbeba062befabc85ffa4b263e4b2b7da4ee3a8c4bc1a01e0d8739a18feebf6b5a00b88acf2e72affca0d67ab1019f4a37972070bb7ab7df36b17e12c0fd6af351cea93435d41ee4e9be2619b21f72199d2cb96919855671bc395526c7a15149979ab618ed51ee03e0b0de9a32c4992b48e07109a956573366d482158a5713c72ddfe66ae7105c1ccba57a780d636dda9", 0xad, 0x6}, {&(0x7f0000002540)="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", 0x1000, 0x2b92de5c}, {&(0x7f00000000c0)="c0ca328cce402fa3c9b62d", 0xb, 0x4}, {&(0x7f0000003540)="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", 0xfd, 0x4}, {&(0x7f0000003640)="c3dbc19d76b1c2d55493f0dadb7d40045465364d95466833230e02f9d22a3a9987760f0988721ed7a9d5aeb569fda0f23323f452f0f91ed744aee2e7cdc3121b07ececa6cc7df35743d6dab39bac22b6acd504cef01bb53c9ac90e7976cc6a176a5c", 0x62, 0x7}, {&(0x7f00000036c0)="3eb9e15681dd1bd2e191863617e4f873fc902a4052e01a8c65697937bff8a81e8b5c415bf4b4cd6c5cac231a709d6420f6b5b53e12848bab7e6e1f897c27e04dfdf4d0c29b4d130c36cfe0b4a161731d30ffe0d7f834927f70fe6f1f5282b2db76d868986e1f902cfa7a8b6cfcfe05eda579d955fb3fce3cde18d51e4b6047f187a87cd2e2c6e8a4ea69f8fb5e5ad5b5ece2a89944a707cb", 0x98, 0xfd}], 0x0, &(0x7f0000003880)={[{@noquota='noquota'}, {@jqfmt_vfsv0='jqfmt=vfsv0'}, {@noquota='noquota'}, {@noacl='noacl'}, {@hash_rupasov='hash=rupasov'}, {@errors_ro_remount='errors=ro-remount'}], [{@subj_type={'subj_type', 0x3d, 'md5sumppp1mime_type'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'wlan1{-'}}]}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:30:59 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1ff, 0x7f}, 0x0, 0xffffffff, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x2000000000000000) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:30:59 executing program 3: r0 = shmget(0x3, 0x1000, 0x1, &(0x7f0000fff000/0x1000)=nil) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x1, 0x0) ioctl$LOOP_SET_CAPACITY(r1, 0x4c07) shmctl$IPC_RMID(r0, 0x0) 18:30:59 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x101000, 0x0) ioctl$sock_FIOSETOWN(r4, 0x8901, &(0x7f0000000240)=r3) 18:30:59 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:30:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfdfdffff00000000) 18:31:00 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, r0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vsock\x00', 0x400083, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000140)={@reserved}) dup2(r0, 0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:00 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$sndtimer(&(0x7f0000000000)='/dev/snd/timer\x00', 0x0, 0x20000) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000040)) shmctl$IPC_RMID(r0, 0x0) 18:31:00 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:00 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000b8034bfdffffffffffffff00000000009a92fc2d22"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 613.486753] REISERFS warning (device loop1): super-6502 reiserfs_getopt: unknown mount option "hash=rupasov" 18:31:00 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x456800, 0x0) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r1, 0xc0305302, &(0x7f0000000040)={0x4, 0x81, 0x7, 0xffffffff, 0x0, 0x1}) shmctl$IPC_RMID(r0, 0x0) 18:31:00 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 613.712246] REISERFS warning (device loop1): super-6502 reiserfs_getopt: unknown mount option "hash=rupasov" [ 613.896450] *** Guest State *** [ 613.899840] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 613.911336] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 613.920782] CR3 = 0x0000000000004000 [ 613.924765] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 613.931248] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 613.937792] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 613.943772] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 613.949721] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 613.956430] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 613.964414] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.972365] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 613.980369] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.988381] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 613.996391] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 614.004392] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 614.012355] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 614.020349] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 614.028337] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 614.036343] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 614.042733] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 614.050220] Interruptibility = 00000000 ActivityState = 00000000 [ 614.056494] *** Host State *** [ 614.059676] RIP = 0xffffffff811fd350 RSP = 0xffff88808e6973f0 [ 614.065705] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 614.072102] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 614.079915] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 614.085839] CR0=0000000080050033 CR3=0000000098487000 CR4=00000000001426e0 [ 614.092841] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 614.099522] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 614.105610] *** Control State *** [ 614.109054] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 614.115766] EntryControls=0000d1ff ExitControls=002fefff [ 614.121211] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 614.128154] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 614.134851] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 614.141417] reason=80000021 qualification=0000000000000002 18:31:00 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) prctl$PR_GET_SECCOMP(0x15) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:00 executing program 5: r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vhci\x00', 0x80000, 0x0) getsockname$netrom(r0, &(0x7f0000000300)={{}, [@rose, @rose, @rose, @default, @remote, @null, @remote, @rose]}, &(0x7f0000000280)=0x48) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000100)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x7, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0xfffffffffffffffc}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) dup2(r2, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:00 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000025000000000000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:00 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3f00000000000000) 18:31:00 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) clock_getres(0x2, &(0x7f0000000000)) [ 614.147754] IDTVectoring: info=00000000 errcode=00000000 [ 614.153233] TSC Offset = 0xfffffeb52f6c037a [ 614.157546] EPT pointer = 0x000000008c5b501e 18:31:00 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:00 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r2, r0, 0x0, 0x64, &(0x7f0000000240)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x0}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={r2, r0, 0x0, 0xf, &(0x7f0000000200)='@wlan0em1bdev@\x00', r3}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:00 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000000040)={0x4, 0x0, [{}, {}, {}, {}]}) 18:31:01 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$UI_BEGIN_FF_UPLOAD(r2, 0xc06855c8, &(0x7f0000000100)={0x4, 0x0, {0x52, 0x48, 0x836e, {0x401, 0x1}, {0x7, 0x7}, @rumble={0x3}}, {0x55, 0x0, 0x5, {0x23, 0xfffffffffffffffb}, {0x6b3, 0x4}, @cond=[{0x101, 0x7, 0x0, 0x80000000, 0x2}, {0x7, 0x1, 0x20, 0x7fff, 0x6, 0x7}]}}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x80ffff00000000) 18:31:01 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) times(&(0x7f0000000200)) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:01 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r2, 0x0, 0x63, &(0x7f0000000000)={'NETMAP\x00'}, &(0x7f0000000040)=0x1e) 18:31:01 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:01 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x1, 0x2) setsockopt$packet_int(r1, 0x107, 0xe, &(0x7f0000000040)=0x40, 0x4) shmctl$IPC_RMID(r0, 0x0) eventfd2(0x4a, 0x800) 18:31:01 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) r2 = getpgrp(0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x100, 0x3f, 0x2, 0x3, 0x0, 0x4, 0x80080, 0x1, 0x72ba, 0x7, 0x80000000, 0x9, 0x5404, 0x7fffffff, 0xcc0f, 0x80, 0x0, 0xffffffff, 0x1, 0x100000001, 0x1000, 0x2, 0x1f, 0x0, 0x2, 0x2, 0x3, 0xfffffffffffffffe, 0x8, 0x9, 0x7a77, 0x7, 0x6927, 0x9d, 0x400, 0x3ff, 0x0, 0x5, 0x5, @perf_bp={&(0x7f0000000100), 0xd}, 0x80e8, 0x8001, 0x7, 0x7, 0x4, 0x6, 0x4}, r2, 0xc, r0, 0x1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x4) 18:31:01 executing program 3: r0 = shmget$private(0x0, 0x4000, 0x140, &(0x7f0000ffc000/0x4000)=nil) shmctl$SHM_STAT(r0, 0xd, &(0x7f0000000000)=""/4096) r1 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r1, 0x0) 18:31:01 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:01 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0xb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x7, &(0x7f0000000280)=@raw=[@jmp={0x5, 0x100, 0xf, 0xb, 0x6, 0xffffffffffffffe0, 0x4}, @alu={0x7, 0xb4, 0xb, 0xb, 0x5, 0xffffffffffffffe4, 0xfffffffffffffffc}, @generic={0x8001, 0x0, 0x5, 0x6, 0x8001}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1ff}, @generic={0xed, 0xa7, 0x9, 0x2cc400}, @call={0x85, 0x0, 0x0, 0x4a}], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f00000003c0)=""/195}, 0x48) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000240)=0x1) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f0000000200)) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:01 executing program 3: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xc0000, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000040)={{0x45, 0x7}, 'port0\x00', 0x60, 0x0, 0x2, 0x6, 0x1c00, 0x6, 0x7, 0x0, 0x4, 0x2a32}) r1 = shmget(0x0, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r1, 0x0) 18:31:01 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:01 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000100)=0x5) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 614.960574] *** Guest State *** 18:31:01 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x6, 0x1, 0x8001, 0x401, 0x0, 0x3, 0x80000, 0x0, 0x401, 0x5, 0x3, 0x6, 0xc14a, 0x7ff, 0x2, 0x0, 0x80000001, 0x800, 0x9, 0x200, 0x5, 0x2, 0x4, 0x5, 0x1, 0x5, 0x4, 0x2, 0x0, 0xfff, 0x89a6, 0x10001, 0x80, 0x7, 0x7, 0xc58, 0x0, 0x84, 0x0, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x1, 0xfffffffffffffffb, 0x9, 0x7, 0x9, 0x12, 0x8}, r3, 0x1, r4, 0x2) [ 614.998336] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 615.030661] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 615.056555] CR3 = 0x0000000000004000 [ 615.066655] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 615.081262] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 615.109788] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 615.116587] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 615.122836] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 615.130438] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 615.138993] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 615.150674] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 615.159780] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 615.168543] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 615.178679] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 615.187313] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 615.196261] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 615.204614] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 615.212673] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 615.221590] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 615.229902] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 615.237641] Interruptibility = 00000000 ActivityState = 00000000 [ 615.244136] *** Host State *** [ 615.247460] RIP = 0xffffffff811fd350 RSP = 0xffff88809e1273f0 [ 615.255131] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 615.261716] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 615.269651] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 615.275965] CR0=0000000080050033 CR3=000000008d5c8000 CR4=00000000001426f0 [ 615.283163] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 615.289924] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 615.296185] *** Control State *** [ 615.299675] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 615.307645] EntryControls=0000d1ff ExitControls=002fefff [ 615.314477] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 615.321607] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 615.328487] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 615.335313] reason=80000021 qualification=0000000000000002 [ 615.341700] IDTVectoring: info=00000000 errcode=00000000 [ 615.347757] TSC Offset = 0xfffffeb4aa98f027 [ 615.352135] EPT pointer = 0x000000009547501e [ 615.403264] *** Guest State *** [ 615.406579] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 615.415905] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 615.427499] CR3 = 0x0000000000004000 [ 615.431496] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 615.438040] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 615.445465] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 615.451447] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 615.458341] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 615.465065] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 615.473108] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 615.481077] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 615.489685] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 615.497703] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 615.505727] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 615.513737] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 615.521696] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 615.529735] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 615.537762] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 615.545786] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 615.552182] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 615.559665] Interruptibility = 00000000 ActivityState = 00000000 [ 615.565899] *** Host State *** [ 615.569067] RIP = 0xffffffff811fd350 RSP = 0xffff88808d95f3f0 [ 615.575093] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 615.581494] FSBase=00007f4e27b10700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 615.589322] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 615.595232] CR0=0000000080050033 CR3=000000008d5c8000 CR4=00000000001426f0 [ 615.602250] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 615.609336] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 615.615895] *** Control State *** [ 615.619330] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 615.626028] EntryControls=0000d1ff ExitControls=002fefff [ 615.631472] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 615.638437] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 615.645147] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 18:31:02 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) r0 = getpgid(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_SIOCSPGRP(r4, 0x8902, &(0x7f0000000000)=r0) r5 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r5, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3f000000) 18:31:02 executing program 3: r0 = shmget(0x1, 0x3000, 0x200, &(0x7f0000ffb000/0x3000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) accept4$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000080)=0x14, 0x80800) bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x6, r2, 0x2, r1}, 0x10) ioctl$EVIOCRMFF(r1, 0x40044581, &(0x7f0000000040)=0x5) 18:31:02 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:02 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 615.651712] reason=80000021 qualification=0000000000000002 [ 615.658061] IDTVectoring: info=00000000 errcode=00000000 [ 615.663538] TSC Offset = 0xfffffeb4aa98f027 [ 615.667842] EPT pointer = 0x000000009547501e 18:31:02 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:02 executing program 3: r0 = semget$private(0x0, 0x7, 0x1) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r1, 0xae44, 0xe8) shmget(0x0, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil) write$FUSE_LSEEK(r1, &(0x7f0000000040)={0x18, 0xfffffffffffffff5, 0x4}, 0x18) semctl$IPC_RMID(r0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x80002, &(0x7f0000000140)={'trans=unix,', {[{@debug={'debug', 0x3d, 0x8}}, {@mmap='mmap'}]}}) sendmsg$kcm(r1, &(0x7f0000000840)={&(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x3, 0x3, 0x0, 0x1}}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000200)="84f3959acf3472ea043bea2608d21fe0caaae5a8d9484a2bdfdb03652354440cd51f34def9eb7395b5fb23e26e66769139929e6b133e51e051ea76b6cfee44ec8438c802590eef69dc860f7591d87455cab8c9d5b43a77e974cbd888acb33a21d5cba52a10c40dc3267d32fc1ee120f5583a3fbf9ba86927f6691037eac4c1e252f1dbda4a2e655cde65fc2a5fbcc8dad17ae6afaa5dd3c6183f4d023681b72cd37ca8a7ed8f5d48da1d5afa5b385a9c9d86434dae75bdb6130cd9a87d6b73c284ebfb1b3fe2f9f00a7406af157cf704f0bc3ffc284a1922649a330516b0537d23cdac716ae6d91ae177fb34fd2b6fb0160a677f5363", 0xf6}], 0x1, &(0x7f0000000340)=[{0x28, 0x11, 0x5, "9d6c773c7b8f5b88091cbca27691144ec803052e6fa6de7b"}, {0xf0, 0x88, 0x3, "4367a42b489118d64b3bcd2640c3203702e90ab9f11e554f20a6fb96b8738bee0c36a90c40fe600dad27c8e04d623ded057afd72360726913c69c4c0d9218b5375bdf274db5deae17df84db839bffb3e80180fd23c2b2b81e713bbcf1d9d7ec2bb695a2932543ea281bcc841f936857f9802459a66621a6f8c0d66debec073045f61a59828e4a605a1ec7fa96f7a64942ffdc22c060ecfb03d315f4d25125f737da9d1e7c2b3c13a7288b54cdeaacab23ff4cd964ef278e217d74d7aaf2d31a69381bf0fab6fd6e2cd0fb7fd75d493a16c3fa8d5deede42a354558c406"}, {0xd8, 0x107, 0x5, "5bec8a14c4718f1c0ef06e95b8887e73e764fcd8f964d04daf2b21f6b6bb7806e0bffe2e7da5d459cc95c146e9ddefc9596ee1b0b8968fc26cbfba983ef985a3395779f063ed4b9a06abf9cdd6a4fa4e79bcdebe6440f8d8bd39ede77772f24d990e89a48a8306332cbe071e53b6604f05d23d598e59f4da376c8ca588384f0def4d894c09b03ce9d6fabb3b7b1ccaf5726f00b5c532fe87d8a7f2ae76ed7290006582bca8768a49b999d98e0cf4bc2eb15527a17f3b208ea4f40a85528441ccce1e52"}, {0x108, 0x111, 0x80, "253749989ed086a4fd6d592a74b4efa341d4a0284b2913e150f1548528ebbdd8194ec6e3d0f17c3b8ffc9df0b0fb48df866d9ff4618cdddc87f79f4eb5c2e0e141c7604c98af6dab5bf0e95e9f2c8e2d89645c01c8b6a4cc76fa45445b50ee7e1c91137b514b5146c4b36edb2860d823c785de92c7c3fe0e15cf0798fa9cef534df82a34777c8ab811432788295fae170a1c3270d3b208fbddeba894c6f3a8679f43ee40374260499bd0e950b06b8cac8ad3f97d1dae90f6c341267ec3de886fb4eae442bf959e49207f06fc39db2a781c3a4f4d18021f0302d61a28b69d7eaefac5255bdd34c9ff06ac0db4ebf7d53a27fe0d60617b79a0"}, {0x108, 0x117, 0x6, "24220e87694f454d1bce45b4ee7843ce244f1fa64207c08c8f237cb0a8b25fe8bf2e7243f5897d6acef05fc599f8365e3585ac385128a4ff80ac8511e6bbc407c0005b8559de620176fd5269f6133ef76262ac9f29873850180fa605d6de0b2ef95c384e3509f1b33133bc8dd38e884fe5edbe866d884cc90d8b0e692049e42c569c80f1ac71bd9f335f4b40d70ceea6079899a87fd9df11a7d2967c07f42cd4a300b827ffe15e4f3ff988269e726ce50c9b2ddf5c17d22ea035e61a6c84b114ad71fdb67dda65774981c1c72ddb482f0b2fa5f4194ddda03429a334fbf9b48d10dadc3defbd929ba8ea18bd836aafdfe467f6"}, {0xc0, 0x11e, 0x3c1, "0c33594f80008bf57669d6f81f300ef80842a4ca62181140b4b4a43e75cdab28c699f17eadfe2024e132645bd57208e70c1c84967226fda2b4ec3b77717ec32aa043d77b29404c7ba4633b61245adf0f819952bb8ec56e2389b38fb20f7e075f1af953fcec3fbb507ba6fe2a3542dbac29a3bb32dc710a4d0a54b75f7acc207cba235d394811ec117c0815aa710a32247791fa27807f15a112a024a49e14b2f48992dd790ca0d45cfad808bce2797076"}, {0x30, 0x84, 0x200, "c4b737525fe04e38403307c3fd6bf8fe4b7413bc86cdbd16d501"}], 0x4f0}, 0x40) r2 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r2, 0x0) 18:31:02 executing program 5: r0 = syz_open_dev$midi(&(0x7f0000000500)='/dev/midi#\x00', 0x560c, 0x100) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000540)={{{@in=@remote, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f0000000640)=0xe8) r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000016c0)={r0, &(0x7f0000000680)="ac92b2af0e191e3f3e091f5919baf10fcb5123782248e8f64e615a416f4948d6", &(0x7f00000006c0)=""/4096}, 0x18) ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r3) r4 = syz_open_dev$mouse(&(0x7f0000001700)='/dev/input/mouse#\x00', 0x5, 0x10000) ioctl$sock_inet6_SIOCDELRT(r4, 0x890c, &(0x7f0000001740)={@ipv4={[], [], @remote}, @ipv4={[], [], @remote}, @mcast2, 0xff, 0x131, 0x5, 0x100, 0x1, 0x80, r1}) r5 = dup2(r0, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000380)={{{@in=@empty, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000280)=0x1ee) bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x6, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="e1fb1000ffffffff5000fcff"], &(0x7f0000000240)='syzkaller\x00', 0x100000001, 0x5e, &(0x7f0000000300)=""/94, 0x41100, 0x1, [], r6}, 0x48) getsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000200), &(0x7f0000000140)=0x4) 18:31:02 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-monitor\x00', 0x4000, 0x0) ioctl$VHOST_RESET_OWNER(r3, 0xaf02, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 615.930974] *** Guest State *** [ 615.943975] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:31:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xc) [ 615.983480] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 616.015498] CR3 = 0x0000000000004000 [ 616.029356] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 616.053347] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 616.068274] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 616.079233] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 616.087278] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 616.126172] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 616.160743] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 616.169050] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 616.177643] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 616.185899] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 616.195363] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 616.204540] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 616.212701] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 616.220958] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 616.229143] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 616.237257] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 616.243828] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 616.251390] Interruptibility = 00000000 ActivityState = 00000000 [ 616.258155] *** Host State *** [ 616.261458] RIP = 0xffffffff811fd350 RSP = 0xffff888054ea73f0 [ 616.268547] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 616.275250] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 616.283226] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 616.289258] CR0=0000000080050033 CR3=0000000086ca1000 CR4=00000000001426f0 [ 616.297540] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 616.304466] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 616.310618] *** Control State *** [ 616.314486] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 616.321214] EntryControls=0000d1ff ExitControls=002fefff [ 616.326840] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 616.333856] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 616.340524] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 616.347187] reason=80000021 qualification=0000000000000002 [ 616.353554] IDTVectoring: info=00000000 errcode=00000000 [ 616.359054] TSC Offset = 0xfffffeb4218855e7 [ 616.363470] EPT pointer = 0x00000000905e401e [ 616.428214] *** Guest State *** [ 616.431580] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 616.440548] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 616.449736] CR3 = 0x0000000000004000 [ 616.453536] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 616.460097] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 616.467806] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 616.473867] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 616.479829] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 616.486727] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 616.494792] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 616.502756] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 616.510753] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 616.518759] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 616.527494] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 616.536688] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 616.544724] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 616.552699] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 616.560719] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 616.568696] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 616.575138] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 616.582571] Interruptibility = 00000000 ActivityState = 00000000 [ 616.588830] *** Host State *** [ 616.592014] RIP = 0xffffffff811fd350 RSP = 0xffff88809f6273f0 [ 616.598050] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 616.604476] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 616.612250] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 616.618170] CR0=0000000080050033 CR3=0000000086ca1000 CR4=00000000001426e0 [ 616.625196] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 616.631840] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 616.637925] *** Control State *** [ 616.641365] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 616.648066] EntryControls=0000d1ff ExitControls=002fefff [ 616.654391] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 616.661404] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 616.668090] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 18:31:03 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000000)={0x80000000000000, 0x5000, 0x4, 0x8, 0x11}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:03 executing program 3: shmctl$IPC_RMID(0x0, 0x0) 18:31:03 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:03 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000000700000025000000000000009500000000000000ea90b5d4885d5a0f2e7453486d6a890338a492f4e913e6b92965c4e8dfee800cbf025d476d6eaa14450d1f83978c16a594058fcd2af7137ca8a202b96019aaa04f4365c06af5e758277721"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) fsetxattr$security_capability(r0, &(0x7f0000000100)='security.capability\x00', &(0x7f0000000140)=@v2={0x2000000, [{0x7, 0x400}, {0x8001, 0xb1}]}, 0x14, 0x2) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:03 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000000700000024ffffffe7000000950000000000000001c84b2b4d4ee90ac02099198918b932095ad1223b074e8741898440b0b15094b77a75f021d5168eca1609066339d1d6fa7bd5e878f1f4ef761deb6ce8f8c2a1439d4687b4444ab72b82a5d313bd8529c41c3eead821258ed3b7e685f074f2942d2a28c172bd6b4b717fd67cc2fc1b139aac53fddddec802dd7dd9f67171291509079007f92a28cb28d65e65e901236fd19cd6cb5102b8dd"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) fcntl$getownex(r0, 0x10, &(0x7f00000002c0)={0x0, 0x0}) ptrace$setsig(0x4203, r2, 0x9977, &(0x7f0000000300)={0x12, 0xffffffffffffffbd, 0x8}) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x200000003) [ 616.674708] reason=80000021 qualification=0000000000000002 [ 616.681013] IDTVectoring: info=00000000 errcode=00000000 [ 616.686487] TSC Offset = 0xfffffeb4218855e7 [ 616.690799] EPT pointer = 0x00000000905e401e 18:31:03 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x2c040, 0x0) fcntl$getownex(r1, 0x10, &(0x7f0000000040)={0x0, 0x0}) ptrace$getsig(0x4202, r2, 0x8, &(0x7f0000000080)) setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r1, 0xc0405519, &(0x7f0000000100)={0x3, 0x3, 0x6, 0xfffffffffffffffe, 'syz0\x00', 0x7ef2}) 18:31:03 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:03 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000440)='/dev/midi#\x00', 0x1f, 0x2) recvmmsg(0xffffffffffffff9c, &(0x7f0000000b00)=[{{&(0x7f00000004c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/105, 0x69}, {&(0x7f00000005c0)=""/246, 0xf6}], 0x2, &(0x7f0000000700)=""/206, 0xce}, 0x8}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000800)=""/247, 0xf7}, {&(0x7f0000000900)=""/23, 0x17}, {&(0x7f0000000940)=""/168, 0xa8}], 0x3, &(0x7f0000000a40)=""/148, 0x94}, 0x100000000}], 0x2, 0x40, &(0x7f0000000b80)) sendmsg$nl_route_sched(r1, &(0x7f0000000c40)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)=@deltclass={0x38, 0x29, 0x10, 0x70bd2d, 0x25dfdbff, {0x0, r2, {0x9, 0xfff2}, {0xe, 0xf}, {0x8, 0x8}}, [@tclass_kind_options=@c_drr={{0x8, 0x1, 'drr\x00'}, {0xc, 0x2, @TCA_DRR_QUANTUM={0x8}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x11}, 0x20000000) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x40003, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000300)={{{@in6=@ipv4, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@loopback}}, &(0x7f0000000200)=0xe8) sendmsg$nl_route_sched(r3, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=@newtclass={0x3c, 0x28, 0x404, 0x70bd27, 0x25dfdbfb, {0x0, r4, {0x7, 0x11}, {0xf, 0x9}, {0xf, 0xffe0}}, [@TCA_RATE={0x8, 0x5, {0x8, 0x6}}, @TCA_RATE={0x8, 0x5, {0x200, 0xfffe0000000000}}, @TCA_RATE={0x8, 0x5, {0x1386, 0x5}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000090}, 0x10) connect$unix(r1, &(0x7f0000000c80)=@abs={0x0, 0x0, 0x4e23}, 0x6e) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="85000000070000f724000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r5) dup2(r5, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:03 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) syz_genetlink_get_family_id$tipc2(&(0x7f0000000200)='TIPCv2\x00') 18:31:03 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 616.956585] *** Guest State *** [ 616.960184] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 616.993707] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:31:03 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) [ 617.006421] CR3 = 0x0000000000004000 [ 617.018278] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 617.030737] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 617.069637] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 617.084216] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 617.103509] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 617.110302] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 617.140754] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.155522] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 617.164496] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.172691] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.181927] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.190055] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 617.198744] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 617.207487] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 617.215591] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 617.223693] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 617.230146] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 617.237837] Interruptibility = 00000000 ActivityState = 00000000 [ 617.244191] *** Host State *** [ 617.247442] RIP = 0xffffffff811fd350 RSP = 0xffff88809f7d73f0 [ 617.253700] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 617.260192] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 617.268083] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 617.274185] CR0=0000000080050033 CR3=000000008bce8000 CR4=00000000001426e0 [ 617.281254] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 617.288096] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 617.294442] *** Control State *** [ 617.297934] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 617.304685] EntryControls=0000d1ff ExitControls=002fefff [ 617.310401] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 617.317466] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 617.325124] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 617.331922] reason=80000021 qualification=0000000000000002 [ 617.338500] IDTVectoring: info=00000000 errcode=00000000 [ 617.344471] TSC Offset = 0xfffffeb38e4daf0d [ 617.348867] EPT pointer = 0x00000000a871701e 18:31:04 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$sock_TIOCOUTQ(r3, 0x5411, &(0x7f0000000000)) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe803000000000000) 18:31:04 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x10400) ioctl$EVIOCGKEYCODE_V2(r2, 0x80284504, &(0x7f0000000200)=""/76) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:04 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:04 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="8500000007000000250093a2000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:04 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$usb(&(0x7f00000004c0)='/dev/bus/usb/00#/00#\x00', 0x203, 0x800000000009) ioctl$FS_IOC_FSGETXATTR(r1, 0x40085511, &(0x7f0000000000)) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0x101000, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000100), 0x13f, 0xf}}, 0x20) mq_unlink(&(0x7f0000000000)='\x00') r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4e23, 0x5, @loopback, 0x4}, 0x1c) getsockopt(r3, 0x9, 0x8, &(0x7f0000000040)=""/27, &(0x7f0000000080)=0x1b) shmctl$IPC_RMID(r0, 0x0) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f00000001c0)={0x0, 0x10000}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000240)={r4, 0x2}, &(0x7f0000000280)=0x8) 18:31:04 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="374d0b28b50f23791b82df"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:04 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:04 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x0, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) accept(r1, &(0x7f0000000280)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000300)=0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x4, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x100000001}, [@call={0x85, 0x0, 0x0, 0x20}]}, &(0x7f0000000240)='syzkaller\x00', 0x58000000, 0x0, 0x0, 0x41000, 0x1, [], r2, 0x9}, 0x48) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:04 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) rt_sigreturn() shmctl$IPC_RMID(r0, 0x0) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x8, 0x101000) ioctl$PPPIOCGL2TPSTATS(r1, 0x80487436, &(0x7f0000001c40)="c6732068392cd62aa7c22f572bf737041eb19c36d9bed64c045e38868aae872636435cb4f00f53bb44bdbbc83c1ff50f26b7c53e9e5a9968c8b0e63cd5a3561883f3bf94dc06dd14a86355fff26e737c8e57035612731345860a7296b88bd3bd651cbcff29f065d369f5d473fc3a8199c535bd24c8e347d3304cda73eca8be22d365a06d6ce1ca8a92ea29e396444fcde2ede26fa8bcea02b09bae9003553ef40914312850a2b0f35ac919c26b3e935a7302a6b60de2e81562ef08f9f9bbaa2b2a39906a7bf39eadc18f7d83bfc33b4d2f6e1fef04") r2 = getuid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000080)={{{@in=@loopback, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@empty}}, &(0x7f0000001c00)=0x57) getresgid(&(0x7f00000001c0)=0x0, &(0x7f0000000200), &(0x7f0000000240)) getgroups(0x4, &(0x7f0000000280)=[0xffffffffffffffff, 0xee00, 0x0, 0xffffffffffffffff]) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000001b00)=@broute={'broute\x00', 0x20, 0x5, 0x1820, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200002c0], 0x0, &(0x7f0000000040), &(0x7f0000001d40)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="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"]}, 0x18a2) [ 617.628961] *** Guest State *** [ 617.642006] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:31:04 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000300)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@loopback}}, &(0x7f0000000140)=0xe8) quotactl(0xfffffffffffffffb, &(0x7f0000000100)='./file0\x00', r1, &(0x7f0000000200)="9e23461d0615704973e4cefa1ccadba9f194e779f80cf0fd774f62b023d36e3656e9a9405a55d9b134b7ffc010f3506676af6e2f26fc108ae73a68df107c2f4e51c82ea0b0b481872eb7f162512ae14c0cc7eb3d0a63ccda338a8e0e0f6ebebbdc2dcc4b9fdf2d") r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) dup2(r2, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:04 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 617.674832] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 617.693859] CR3 = 0x0000000000004000 [ 617.697884] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 617.720880] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 617.746209] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 617.766871] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 617.793702] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 617.800591] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 617.810360] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.819700] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 617.843388] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.851642] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.860809] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 617.875680] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 617.884864] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 617.892947] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 617.901198] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 617.909374] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 617.916265] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 617.923864] Interruptibility = 00000000 ActivityState = 00000000 [ 617.930192] *** Host State *** [ 617.933458] RIP = 0xffffffff811fd350 RSP = 0xffff88805cc673f0 [ 617.939554] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 617.946081] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 617.954057] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 617.960023] CR0=0000000080050033 CR3=00000000a1161000 CR4=00000000001426e0 [ 617.967187] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 617.973991] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 617.980046] *** Control State *** [ 617.983634] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 617.990361] EntryControls=0000d1ff ExitControls=002fefff [ 617.996169] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 618.003394] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 618.010114] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 618.016838] reason=80000021 qualification=0000000000000002 [ 618.023315] IDTVectoring: info=00000000 errcode=00000000 [ 618.028861] TSC Offset = 0xfffffeb33267edbe [ 618.033304] EPT pointer = 0x000000008b18001e [ 618.093346] *** Guest State *** [ 618.096752] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 618.105876] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 618.115885] CR3 = 0x0000000000004000 [ 618.119606] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 618.127091] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 618.134439] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 618.140409] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 618.146577] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 618.153469] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 618.161596] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 618.169646] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 618.177670] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 618.185677] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 618.193688] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 618.201660] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 618.209700] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 618.217703] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 618.225731] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 618.233717] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 618.240111] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 618.248111] Interruptibility = 00000000 ActivityState = 00000000 [ 618.254396] *** Host State *** [ 618.257583] RIP = 0xffffffff811fd350 RSP = 0xffff888094a573f0 [ 618.263607] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 618.270006] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 618.277829] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 618.283744] CR0=0000000080050033 CR3=00000000a1161000 CR4=00000000001426e0 [ 618.290747] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 618.297460] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 618.303549] *** Control State *** [ 618.306988] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 618.313697] EntryControls=0000d1ff ExitControls=002fefff [ 618.319130] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 618.326072] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 618.332731] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 18:31:05 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:05 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/loop-control\x00', 0x2600, 0x0) syz_mount_image$nfs(&(0x7f0000000140)='nfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x4, &(0x7f0000001340)=[{&(0x7f00000001c0)="df078340d72086c5f3e349bf47a3658861bf64eb1bb695e3949879c55de29acda5a0ecc079480ac0ff67c70daf16d9b6b2986bab92b26dd132967d7daf798cb75d27dd3834abb87813b76a279934afbe3bf19c83290050b2ad3753a78fd2cbc76b07a72a3cf47859", 0x68, 0x3}, {&(0x7f0000000240)="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", 0x1000, 0x8}, {&(0x7f0000001240)="69f6f1eb3372", 0x6, 0x4}, {&(0x7f0000001280)="0f940a52880cd22450b21d474455ac7df7a8ecfc6ff2a64f4a1b2d19ba2022620374342a673e0fdd87809a8eed84cb5263becf804e41ff3e54061c06df5e3596fd3096747625066218b43bdbdde9346b9119166853b74bfc80516f647bb6080cad004c9bd2e2325e86c3c1e2410820f37deff94d4b6881430d5907f196f85c2dfea9553b133bd720540ade0947fa6c84e4494559c9c21add4b50ca24cfc2f5041d7598ddd7991d1d", 0xa8, 0x6}], 0x20, &(0x7f00000013c0)='/dev/loop-control\x00') r1 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x7, 0x2) getsockname$unix(r1, &(0x7f0000000080), &(0x7f0000000100)=0x6e) shmctl$IPC_RMID(r0, 0x0) 18:31:05 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$sock_FIOGETOWN(0xffffffffffffff9c, 0x8903, &(0x7f0000000240)=0x0) r3 = syz_open_dev$mice(&(0x7f0000001380)='/dev/input/mice\x00', 0x0, 0x2000) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000013c0)={0x0, @in6={{0xa, 0x4e23, 0x3f, @ipv4={[], [], @remote}, 0x6}}, 0x82, 0x40, 0x8000, 0x7, 0x50}, &(0x7f0000001480)=0x98) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f00000014c0)={r4, @in={{0x2, 0x4e23, @broadcast}}, 0x2, 0x4, 0xffffffff, 0x2, 0x30}, &(0x7f0000001580)=0x98) perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x8dd, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00'}, 0x48) r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000580)='/jstat\x00\xc6S\x81\xb4z\xae\xdf*\xf5\xc8\xaf4#\xfcA\x89\x1b\xd2\xa3\xc5m\x8c\x88\xe2\x9b\xadC\xf1\xda\x90n\x85_\xf1\x82\xde\x04\"~\xdc\xbb\xc2\xb1\xdf\x8f\x18\x0e\x15\x8e\x8a\xbdD,\xc0I\xcf\xfd\xa00\xff\'xu\xee\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xf52\x14M\x16q\xa6\xcd\xf5\x06\x9e[\xdd\xcf%\xcd\x7f#\x95kJ\x82\xdf\x90\x0f^\xb5v;O\xe8\xccqr\x96-%\x90\xb2\xdc\xa2\xa10\x8c8%A\xb0S\x19M\x90\'\xd8>\xe7\xba.2\x80\x85\x7f\x8f\x9fc\xfc\x90\xba\xe9Y\xc6\xe6px\xbf\x97\xe6\x15\xbf\xd9@\x99\x14\x95\x8a\xad\xcf\xb3ysT<`\xd85&\xe5\xc2g\xf7\xdf\xa5K\xd5$\xcc\x96q\xde\xddfQ\x992+\xda\xde\xe1%\xa3[@\xb7\xbe\f\a0\x1fC\x9a~\xdf\xa2o\xa9\x82w\xc8\a\x8b\x02\xe2\ab\x91\xc37\x87\xc5\x8b\x0e\xab\xbc9(\x8f\xc1\x05\t@\x9d\xe1\b\xf5\xca&\xa8\xc8\xe1\xaf\xb7\v*\x95i\xcf\x8fL\xdbmN\x97\xeb\x7f\xdf$\x1d\xee\x16\x0e`qa\x833\xcc\v\x0e\x8b\xc6\xa1z\v}`EP\xfd\x14\x9a\xd0x\xff\xe5Lc\x92\xfb\xa2\x90\x15\xa3\xaeswL\xd1,\x9c\x0e\xd2Q\xa7\xcf\x84=q-', 0x2761, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x4030582a, &(0x7f0000000000)) ptrace$getregset(0x4204, r2, 0x7, &(0x7f0000001280)={&(0x7f0000000280)=""/4096, 0x1000}) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r6 = gettid() r7 = syz_open_dev$cec(&(0x7f0000001340)='/dev/cec#\x00', 0x1, 0x2) ioctl$LOOP_SET_CAPACITY(r7, 0x4c07) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000200)={0xffffffff7fffffff, 0x77, 0x200, 0x6, 0x3}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r6, r3, 0x0, 0xa, &(0x7f0000000100)='\xff\x9d=+\xb7rV\xcd\xf3\xb3', 0xffffffffffffffff}, 0x30) r8 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000012c0)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_STATUS(r8, 0xc0385720, &(0x7f0000001300)={0x0, {0x77359400}, 0x8, 0x7}) 18:31:05 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x11000000) 18:31:05 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000140)='./file0\x00', 0x1c) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000000200)={0x0, 0x1, 0x0, 0x40, 0x1f}, &(0x7f0000000240)=0x18) setsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000300)={r2, 0x3}, 0x8) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="8400b979c86200c8810fda66ae6300250000000000000095923ad6014bb22d2fb3cb77b7792f83d73f8458ccfacb75ae05471cd5c37dbac8aef5778dc4bda459145b786b912f9e20f0ada65f48d442248f0eabacc846c689ea183d7daeea7259ebcee254c457b213af6e37a9c34de73eca8d977df32b3ca990c70cb011588deac39e3f8db21f05d9fd2b20e6c141a553ec78555b3a5aed3382583eced8ebbf1e40fcf543a3ad"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3) r4 = dup2(r3, r0) getsockopt$inet_sctp6_SCTP_INITMSG(r4, 0x84, 0x2, &(0x7f0000000100), &(0x7f0000000280)=0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 618.339345] reason=80000021 qualification=0000000000000002 [ 618.345691] IDTVectoring: info=00000000 errcode=00000000 [ 618.351136] TSC Offset = 0xfffffeb33267edbe [ 618.355493] EPT pointer = 0x000000008b18001e 18:31:05 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:05 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$KVM_GET_PIT2(r2, 0x8070ae9f, &(0x7f0000000100)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 618.567152] *** Guest State *** [ 618.578343] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:31:05 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) geteuid() 18:31:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1100) [ 618.637450] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:31:05 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 618.704378] CR3 = 0x0000000000004000 [ 618.722297] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 618.732201] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 618.746216] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:31:05 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = getuid() mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='bpf\x00', 0x2000, &(0x7f0000000080)={[{@mode={'mode', 0x3d, 0x8}}, {@mode={'mode', 0x3d, 0x9}}, {@mode={'mode', 0x3d, 0x9}}], [{@uid_lt={'uid<', r1}}, {@hash='hash'}, {@obj_role={'obj_role', 0x3d, '\\bdev}wlan1Dtrustedmd5sum^-*+'}}, {@permit_directio='permit_directio'}, {@dont_hash='dont_hash'}, {@seclabel='seclabel'}]}) [ 618.752762] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 618.781970] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 618.827179] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 618.849138] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 618.861348] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 618.876633] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 618.887244] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 618.900451] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 618.935566] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 618.950085] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 618.959700] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 618.986284] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 618.996497] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 619.004839] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 619.013523] Interruptibility = 00000000 ActivityState = 00000000 [ 619.019915] *** Host State *** [ 619.024384] RIP = 0xffffffff811fd350 RSP = 0xffff88809e3e73f0 [ 619.030586] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 619.037769] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 619.046197] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 619.053318] CR0=0000000080050033 CR3=000000009e495000 CR4=00000000001426f0 [ 619.060518] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 619.067678] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 619.074322] *** Control State *** [ 619.078008] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 619.085217] EntryControls=0000d1ff ExitControls=002fefff [ 619.090965] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 619.098310] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 619.105473] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 619.112264] reason=80000021 qualification=0000000000000002 [ 619.118952] IDTVectoring: info=00000000 errcode=00000000 [ 619.124778] TSC Offset = 0xfffffeb2bb3e6228 [ 619.129301] EPT pointer = 0x0000000087ec401e 18:31:05 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:05 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r1, 0x50, &(0x7f0000000100)}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30) lsetxattr$trusted_overlay_origin(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='trusted.overlay.origin\x00', &(0x7f0000000300)='y\x00', 0x2, 0x1) 18:31:05 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:05 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = fcntl$dupfd(0xffffffffffffff9c, 0x406, 0xffffffffffffffff) ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f00000000c0)={0x6, &(0x7f0000000080)=[{0x70, 0x200}, {0x4, 0xfe}, {0xa282, 0x4}, {0x9, 0x87}, {0x4, 0x956}, {0xc95, 0x908}]}) ioctl$GIO_CMAP(r1, 0x4b70, &(0x7f0000000040)) shmctl$IPC_RMID(r0, 0x0) syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) 18:31:05 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00'}, 0x30) 18:31:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3f00) 18:31:05 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000000)=0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=0x0) r3 = openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/attr/exec\x00', 0x2, 0x0) r4 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x0, 0x0) syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0x7, 0x201) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f0000000200)={r4, r4, 0xf8}) 18:31:06 executing program 5: r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ion\x00', 0x40000, 0x0) lseek(r0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x6, &(0x7f0000000100)=@raw=[@generic={0x6, 0x2, 0x5, 0x80, 0x8}, @jmp={0x5, 0x3, 0xb, 0x2, 0x1, 0x0, 0xffffffffffffffff}, @generic={0x0, 0x2, 0xff, 0x7f, 0x7fffffff}, @exit, @generic={0xa6a4, 0x5, 0x1, 0x5, 0x5}, @exit], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) dup2(r2, r1) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:06 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 619.380206] *** Guest State *** 18:31:06 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000000700000025000000000000009500000000000000ca6a68c6550a2d0fdecea9d33b718b09cd35ca8f4e1c61ccf3503ff4dd721db69022f44e1645402f0d665cbb64dee567b4d0ee705b7c04fffe2f3ec084ec0cb8b6180f03000000e531fa0ebcc6fca44169978530a1c76475b94cee2130dd4e"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:06 executing program 3: r0 = shmget(0x1, 0x4000, 0x10, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) syz_init_net_socket$x25(0x9, 0x5, 0x0) [ 619.413629] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 619.450422] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 619.489376] CR3 = 0x0000000000004000 [ 619.504425] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 619.522356] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 18:31:06 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCX25SCAUSEDIAG(r1, 0x89ec, &(0x7f0000000140)={0xd, 0x99}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) clock_nanosleep(0x2, 0x1, &(0x7f0000000200), &(0x7f0000000240)) dup2(r2, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 619.546602] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 619.562373] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 619.586767] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 619.611133] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 619.654610] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 619.675326] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 619.689279] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 619.704818] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 619.713292] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 619.721472] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 619.736855] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 619.747584] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 619.758304] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 619.770466] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 619.779765] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 619.791499] Interruptibility = 00000000 ActivityState = 00000000 [ 619.800721] *** Host State *** [ 619.811231] RIP = 0xffffffff811fd350 RSP = 0xffff8880a4edf3f0 [ 619.821274] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 619.830583] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 619.841078] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 619.849728] CR0=0000000080050033 CR3=0000000096180000 CR4=00000000001426e0 [ 619.860563] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 619.870017] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 619.878541] *** Control State *** [ 619.882194] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 619.891704] EntryControls=0000d1ff ExitControls=002fefff [ 619.899941] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 619.909709] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 619.919189] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 619.928467] reason=80000021 qualification=0000000000000002 [ 619.937590] IDTVectoring: info=00000000 errcode=00000000 [ 619.945651] TSC Offset = 0xfffffeb23fb3c6bf [ 619.950188] EPT pointer = 0x00000000a493601e 18:31:06 executing program 1: r0 = shmget$private(0x0, 0x3000, 0x54, &(0x7f0000ff9000/0x3000)=nil) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0xad3fd39b0a2ca37c) getpgid(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = getgid() getgroups(0x1, &(0x7f0000000000)=[0xee01]) r4 = getgid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0xc) getgroups(0x4, &(0x7f00000000c0)=[0xee01, 0xffffffffffffffff, 0x0, 0xffffffffffffffff]) getresgid(&(0x7f0000000100)=0x0, &(0x7f0000000180), &(0x7f00000001c0)) getgroups(0x6, &(0x7f0000000200)=[r2, r3, r4, r5, r6, r7]) r8 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r9, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r10 = syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$KVM_CREATE_VM(r10, 0xae01, 0x0) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r10, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r9, 0xae80, 0x0) 18:31:06 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xb) 18:31:06 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x4, 0x400800) connect$vsock_dgram(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @host}, 0x10) shmctl$IPC_RMID(r0, 0x0) 18:31:06 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dsp\x00', 0x2000, 0x0) r4 = geteuid() stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@initdev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@dev}}, &(0x7f0000000400)=0xe8) write$P9_RSTATu(r3, &(0x7f0000000440)={0x8b, 0x7d, 0x1, {{0x0, 0x4a, 0x77, 0x9, {0x0, 0x1, 0x7}, 0x44000000, 0x2, 0x9, 0x0, 0x8, 'security', 0x0, '', 0x9, '%trusted-', 0x6, 'wlan0!'}, 0x2c, '[mime_type\'[posix_acl_accessvmnet0.user*user', r4, r5, r6}}, 0x8b) 18:31:06 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x487b, 0x0) ioctl$SIOCAX25GETINFOOLD(r2, 0x89e9, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:06 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="8500000007000000250000b166b9d70c2000000000003498"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) getresuid(&(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) ioctl$KVM_GET_DEBUGREGS(r2, 0x8080aea1, &(0x7f0000000100)) 18:31:06 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) getgroups(0x5, &(0x7f0000000000)=[0xee00, 0xee01, 0xee01, 0xee01, 0xee01]) r2 = getgid() r3 = getgid() stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgroups(0x4, &(0x7f0000000100)=[r1, r2, r3, r4]) 18:31:06 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r2 = getpgid(0xffffffffffffffff) wait4(r2, &(0x7f0000000200), 0x2, &(0x7f0000000240)) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0x3, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:06 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x300000000000000) [ 620.266114] *** Guest State *** [ 620.280173] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 620.299380] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 620.311452] CR3 = 0x0000000000004000 18:31:06 executing program 3: r0 = shmget(0x1, 0x4000, 0x54001002, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) [ 620.339704] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 620.364095] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 620.400031] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 620.424655] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 620.446904] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 620.466608] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 620.485079] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 620.494579] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 620.502835] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 620.517000] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 620.527200] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 620.538870] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 620.547143] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 620.555521] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 620.563641] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 620.571694] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 620.578372] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 620.585999] Interruptibility = 00000000 ActivityState = 00000000 [ 620.592286] *** Host State *** [ 620.595652] RIP = 0xffffffff811fd350 RSP = 0xffff88805d1ef3f0 [ 620.601790] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 620.608313] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 620.616352] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 620.622268] CR0=0000000080050033 CR3=00000000a0783000 CR4=00000000001426f0 [ 620.629957] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 620.636722] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 620.642873] *** Control State *** [ 620.646454] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 620.653380] EntryControls=0000d1ff ExitControls=002fefff [ 620.658910] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 620.666024] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 620.672730] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 620.679535] reason=80000021 qualification=0000000000000002 [ 620.686063] IDTVectoring: info=00000000 errcode=00000000 [ 620.691578] TSC Offset = 0xfffffeb1cb8c1407 [ 620.696107] EPT pointer = 0x0000000097a9201e 18:31:07 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="8500000000000000ec7769a292dd574840601b769dd474cba3b6a664130512d608546d89f6177956baf9ff333264b263944c07cc9563e5c00c050bccd756a9a4f2bb5eeabd72481a0b903cdd2ae77e98edf7bef4d4856bf3bc5385ff74f5e06f5d1e37cf50c4661fb408000000c559c6afe1a36b53769f4dd7608bc05c8d3dbd6497bc80c50c758ff50355225d1fc00bfc27b55900002a4176918dbb85f7aa23e56930a1847b4f50348bc07fe94c1f9e25"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x42) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0xa00, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000500)='TIPCv2\x00') sendmsg$TIPC_NL_SOCK_GET(r2, &(0x7f0000000640)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0xb4, r3, 0x21, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x3c, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xcb09}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x62}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x215c045e}]}, @TIPC_NLA_LINK={0x64, 0x4, [@TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) syz_open_dev$rtc(&(0x7f0000000440)='/dev/rtc#\x00', 0x5, 0x10201) r4 = syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0xffffffffffffffe0, 0x2) getsockname$unix(r4, &(0x7f0000000240)=@abs, &(0x7f0000000380)=0x6e) openat$ion(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/ion\x00', 0x80, 0x0) r5 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r5, r0, 0x0, 0xa, &(0x7f00000004c0)='em0--eth1\x00', 0xffffffffffffffff}, 0x2ed) setsockopt$RDS_CANCEL_SENT_TO(r4, 0x114, 0x1, &(0x7f0000000400)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) 18:31:07 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000140)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0x0, 0x800) fchdir(r1) 18:31:07 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:07 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$sndtimer(&(0x7f0000000040)='/dev/snd/timer\x00', 0x0, 0x80) r2 = syz_open_dev$media(&(0x7f0000000080)='/dev/media#\x00', 0x1ff, 0x210882) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) r4 = dup(r3) ioctl$VIDIOC_S_SELECTION(r2, 0xc040565f, &(0x7f0000000140)={0x5, 0x3, 0x2, {0x2, 0x4, 0x3, 0x2}}) ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x3}) open_by_handle_at(r1, &(0x7f0000000180)={0xeb, 0x32ff, "0d4af547d1c2082c2e64cb47b6772bbaa9c7d8bb470d2f9d30b34d74b92bfc54f6f4ad832ad3899e337b426384db721d018443c7573399dfaaf8efd4752fdb5394783dd7967df07f46d35fe2593943f87a646be6f743ca577f07f72e5a3b4fcdb59e6862161594ea07afa4c708ad62227c352484521ccba4a009db921e6baaa707989827fa05f83fe561290b2580ecaf2b69e4864809fce68c932e0d919b25080ba0a1ef76ef6ff884d719324c1fb864116bb5420edf75c52d9e5a04f4325e4d0b4508dd42c0e642f92307d71578e157b3b4aea9046ec92d81efad26ac7f1186ab1e12"}, 0x80) shmctl$IPC_RMID(r0, 0x0) 18:31:07 executing program 1: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x10000, 0x0) bind$llc(r0, &(0x7f0000000040)={0x1a, 0x33f, 0x41, 0x0, 0xffffffff, 0x1}, 0x10) shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xa00) 18:31:07 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) arch_prctl$ARCH_GET_CPUID(0x1011) openat$ion(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ion\x00', 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:07 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:07 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x200000, 0x0) r1 = getuid() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f00000000c0)={{{@in=@dev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast1}}, 0x0, @in=@multicast2}}, &(0x7f00000001c0)=0xe8) write$P9_RSTATu(r0, &(0x7f0000000200)={0x82, 0x7d, 0x1, {{0x0, 0x68, 0xf9, 0x9, {0x10, 0x1, 0x5}, 0x4200000, 0x10, 0xffffffff, 0x20, 0x1f, '=md5sumvboxnet1cpuset(-/vmnet1\xb1', 0x13, 'eth0$(keyringcpuset', 0x0, '', 0x3, 'GPL'}, 0x5, 'nodev', r1, r2, r3}}, 0x82) r4 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r4, 0x0) 18:31:07 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-control\x00', 0x20000, 0x0) write$P9_RWRITE(r1, &(0x7f0000000240)={0xb, 0x77, 0x1, 0x6}, 0xb) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xa) [ 620.960435] *** Guest State *** [ 620.979259] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 18:31:07 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x16100, 0x0) r2 = accept4$rose(0xffffffffffffffff, &(0x7f0000000180)=@full={0xb, @dev, @rose, 0x0, [@netrom, @netrom, @remote, @remote, @netrom, @rose]}, &(0x7f00000001c0)=0x40, 0x80000) ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f0000000200)={r2}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r3, 0x40045730, &(0x7f0000000000)=0x9) ioctl$UI_SET_ABSBIT(r3, 0x40045567, 0x1) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f00000000c0)={0xc555, 0x1a7f, 0x5}) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x20200, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x13, r4, 0x0) connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x8, {0x8, 0x0, 0x114c, 0x1000, 0x7, 0x2}, 0x8, 0x5}, 0xe) shmctl$IPC_RMID(r0, 0x0) 18:31:07 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 621.026278] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 621.062514] CR3 = 0x0000000000004000 18:31:07 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="85000000070000002500000000000000950000000000000064e9d5611ec4cfe2793a7531317092836e7f9d199fbbdbaf0312f6ca093877adb4c267ab"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) r3 = socket(0x11, 0xa, 0x0) getpeername$tipc(r3, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000140), &(0x7f0000000200)=0x4) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000640)='/dev/mixer\x00', 0xc101, 0x0) bind$bt_rfcomm(r4, &(0x7f0000000680)={0x1f, {0x8, 0x3fff800000000, 0x5, 0x0, 0xdb79, 0x1}, 0xffff}, 0xa) 18:31:07 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x5) [ 621.082084] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 621.136611] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 621.146411] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:31:07 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 621.183304] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 621.209390] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 621.222500] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 621.261647] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 621.293683] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 621.302408] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 621.323362] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 621.335235] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 621.344060] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 621.352491] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 621.375868] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 621.398251] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 621.421253] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 621.436306] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 621.449154] Interruptibility = 00000000 ActivityState = 00000000 [ 621.459064] *** Host State *** [ 621.462442] RIP = 0xffffffff811fd350 RSP = 0xffff88808ce9f3f0 [ 621.472176] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 621.481338] FSBase=00007f4e27b31700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 621.492025] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 621.500872] CR0=0000000080050033 CR3=000000009f9eb000 CR4=00000000001426f0 [ 621.510924] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 621.520658] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 621.529745] *** Control State *** [ 621.536064] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 621.542924] EntryControls=0000d1ff ExitControls=002fefff [ 621.551836] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 621.562008] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 621.571554] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 621.581076] reason=80000021 qualification=0000000000000002 [ 621.590336] IDTVectoring: info=00000000 errcode=00000000 [ 621.599351] TSC Offset = 0xfffffeb169b83141 [ 621.606765] EPT pointer = 0x00000000a4d8301e [ 621.673282] *** Guest State *** [ 621.678972] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 621.689694] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 621.698570] CR3 = 0x0000000000004000 [ 621.702271] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 621.709306] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 621.715818] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 621.721775] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 621.727802] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 621.734473] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 621.742424] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 621.750441] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 621.758416] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 621.766593] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 621.774649] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 621.782609] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 621.790776] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 621.798822] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 621.806818] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 621.814821] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 621.821214] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 621.828678] Interruptibility = 00000000 ActivityState = 00000000 [ 621.834913] *** Host State *** [ 621.838084] RIP = 0xffffffff811fd350 RSP = 0xffff88805bd6f3f0 [ 621.844099] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 621.850487] FSBase=00007f4e27aef700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 621.858311] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 621.864232] CR0=0000000080050033 CR3=000000009f9eb000 CR4=00000000001426f0 [ 621.871225] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 621.877947] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 621.884047] *** Control State *** [ 621.887481] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 621.894183] EntryControls=0000d1ff ExitControls=002fefff [ 621.899622] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 621.906567] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 621.913267] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 18:31:08 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) ioctl$KVM_SET_NR_MMU_PAGES(r3, 0xae44, 0x6) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:08 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x4100, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, [0x1, 0xfff, 0x7fff, 0x10000]}) 18:31:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3e8) 18:31:08 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup3(r0, r0, 0x80000) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000240)='team\x00') getsockname$packet(0xffffffffffffff9c, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000002c0)=0x14) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x0, &(0x7f0000000300)={@mcast1, 0x0}, &(0x7f0000000340)=0x14) accept4$packet(0xffffffffffffff9c, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000005c0)=0x14, 0x80000) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x27, &(0x7f0000000600)={@empty, @empty, 0x0}, &(0x7f0000000640)=0xc) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000680)={{{@in6=@mcast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @multicast2}}}}, &(0x7f0000000780)=0xe8) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000007c0)={'bond_slave_1\x00', 0x0}) getpeername$packet(0xffffffffffffffff, &(0x7f0000000800)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000840)=0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffff9c, 0x8933, &(0x7f0000000880)={'ipddp0\x00', 0x0}) sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f0000000c80)={&(0x7f0000000200), 0xc, &(0x7f0000000c40)={&(0x7f00000008c0)={0x350, r2, 0x200, 0x70bd26, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x118, 0x2, [{0x5c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x2c, 0x4, [{0xffff, 0x1ff, 0x81, 0x5}, {0x1, 0x0, 0xffff, 0xfffffffffffffff7}, {0x4, 0x6, 0xffffffffffffffe1, 0xda}, {0x10000, 0x0, 0x170, 0x8}, {0x3, 0x400, 0xffffffffffff8000, 0xc524}]}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x40}}, {0x8, 0x6, r5}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r6}}}]}}, {{0x8, 0x1, r7}, {0x214, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8}, {0x8, 0x4, 0x9}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r10}}}, {0x64, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x34, 0x4, [{0x4a, 0x2, 0x8, 0x1}, {0x20, 0x5, 0x3, 0x7}, {0x7, 0x5, 0x4, 0xfffffffffffffffe}, {0x8, 0x1}, {0x8000, 0x8, 0xffffffffffff045e, 0x725}, {0x6, 0xe8, 0x1ff, 0x5e9}]}}}]}}]}, 0x350}, 0x1, 0x0, 0x0, 0x80}, 0x8000) r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000025000000000000000000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r11) r12 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r12, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:08 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:08 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x2, &(0x7f0000001fd8)=ANY=[@ANYRESDEC=r0], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0xf}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x2, 0x0) accept4$packet(r2, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000340)=0x14, 0x80000) bind$xdp(r2, &(0x7f0000000380)={0x2c, 0x6, r3, 0x26, r2}, 0x10) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000200)={&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)="981affce1c7232b96a4eaab86d3087873e5234e8961194e0bb708dca4565e93ae258083ce89dde2f18ae5e57d5e2055fa9f62ab864becdb5c455b8ecde2524f5e81af8190b87", 0x46, r1}, 0x68) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000003c0)=r2, 0x4) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000400), &(0x7f0000000440)=0x4) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 621.919832] reason=80000021 qualification=0000000000000002 [ 621.926187] IDTVectoring: info=00000000 errcode=00000000 [ 621.931623] TSC Offset = 0xfffffeb169b83141 [ 621.935965] EPT pointer = 0x00000000a4d8301e 18:31:08 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="85000000f7ff00002500f1ff000000000000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000240)=0x8000) r2 = dup2(r1, r0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000200)={r0, r2, 0x0, 0x3}, 0x10) getsockopt$netrom_NETROM_T2(r2, 0x103, 0x2, &(0x7f0000000280)=0xfffffffffffffffe, &(0x7f0000000300)=0x4) getsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f0000000100), &(0x7f0000000140)=0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:08 executing program 3: r0 = shmget(0x1, 0x3000, 0x200, &(0x7f0000ffd000/0x3000)=nil) shmctl$IPC_RMID(r0, 0x0) 18:31:08 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:08 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xd, 0x3, &(0x7f0000000200)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x1000000000}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 622.196031] *** Guest State *** [ 622.204565] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 622.230032] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:31:08 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = accept(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, &(0x7f0000000080)=0x80) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000100)='fou\x00') sendmsg$FOU_CMD_GET(r1, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x3c, r2, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e23}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_AF={0x8, 0x2, 0xa}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x840) 18:31:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x200000000000000) [ 622.246612] CR3 = 0x0000000000004000 [ 622.265611] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 622.278103] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 622.300107] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 622.322098] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 622.338950] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 622.387674] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 622.403495] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 622.417224] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 622.425889] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 622.434457] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 622.442818] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 622.452949] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 622.462597] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 622.473892] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 622.482325] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 622.490911] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 622.497784] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 622.509320] Interruptibility = 00000000 ActivityState = 00000000 [ 622.516181] *** Host State *** [ 622.519827] RIP = 0xffffffff811fd350 RSP = 0xffff888058cdf3f0 [ 622.526483] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 622.533875] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 622.541849] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 622.547953] CR0=0000000080050033 CR3=0000000091955000 CR4=00000000001426f0 [ 622.555211] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 622.562057] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 622.568298] *** Control State *** [ 622.571839] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 622.578650] EntryControls=0000d1ff ExitControls=002fefff [ 622.584263] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 622.591219] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 622.598000] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 622.604730] reason=80000021 qualification=0000000000000002 [ 622.611085] IDTVectoring: info=00000000 errcode=00000000 [ 622.616653] TSC Offset = 0xfffffeb0c57e88b1 [ 622.620998] EPT pointer = 0x000000009568401e 18:31:09 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x0, 0x0) bind$pptp(r3, &(0x7f0000000080)={0x18, 0x2, {0x2, @remote}}, 0x1e) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) fcntl$getownex(r4, 0x10, &(0x7f0000000000)={0x0, 0x0}) tkill(r5, 0x13) 18:31:09 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="85000000070000002d000000000000009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:09 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:09 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) fstat(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000140)={{{@in=@remote, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@dev}}, &(0x7f0000000240)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@local, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@remote}}, &(0x7f0000000380)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f00000003c0)={{{@in=@initdev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@empty}}, &(0x7f00000004c0)=0xe8) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='9p\x00', 0x8000, &(0x7f0000000500)={'trans=unix,', {[{@version_L='version=9p2000.L'}, {@access_user='access=user'}, {@access_uid={'access', 0x3d, r1}}], [{@fowner_eq={'fowner', 0x3d, r2}}, {@uid_eq={'uid', 0x3d, r3}}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@obj_role={'obj_role', 0x3d, '(\xd4keyring,trustedtrustedppp1ppp1'}}, {@smackfsroot={'smackfsroot', 0x3d, 'keyringselinux'}}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@uid_eq={'uid', 0x3d, r4}}, {@subj_user={'subj_user', 0x3d, '*(vmnet0system'}}]}}) shmctl$IPC_RMID(r0, 0x0) 18:31:09 executing program 2: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x50000, 0x0) setsockopt$TIPC_IMPORTANCE(r0, 0x10f, 0x7f, &(0x7f0000000240)=0x7, 0x4) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000e80700000025000000000000009500000000000800"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r1, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfdfdffff) 18:31:09 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x840, 0x0) pwrite64(r1, &(0x7f0000000040)="8c0030b2d45f12d177fa07cc02f5a6fa8dfcde4bddc38c22de2d76bd22009b14ef20451545", 0x25, 0x0) ioctl$UI_SET_LEDBIT(r1, 0x40045569, 0xf) 18:31:09 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="8533cdf499f237f8210000cfb7c99700720b7bb584787ce6efaf25000000000000009500000000080000316d8749a3f79f09fa329627d5d69fe2fe957b7960af46221aae2a1a0ba3664b3cf80fd9d46a372801007615e21718846c95aa092518f2bb5b4cd8a6187188d8ac07670bb6455eddb77eb2d1cb66cb76dd01290ce856af4c8cd767afc3e615ce51091d109640a40d9d71a7fb64df51f10fa39f00000000000000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) socket$nl_crypto(0x10, 0x3, 0x15) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) setxattr$trusted_overlay_origin(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='trusted.overlay.origin\x00', &(0x7f0000000240)='y\x00', 0x2, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) ioctl$BLKRAGET(r2, 0x1263, &(0x7f0000000200)) 18:31:09 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:09 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r1) r2 = gettid() r3 = request_key(&(0x7f0000000200)='logon\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0xfffffffffffffffd) r4 = add_key(&(0x7f0000000380)='encrypted\x00', &(0x7f00000003c0)={'syz', 0x2}, &(0x7f0000000400)="21b22b9d6ac917", 0x7, 0xfffffffffffffffa) keyctl$search(0xa, r3, &(0x7f0000000300)='rxrpc_s\x00', &(0x7f0000000340)={'syz', 0x3}, r4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 622.930749] *** Guest State *** [ 622.956657] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 622.990890] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:31:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x30000, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:09 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000140)=[@in6={0xa, 0x4e22, 0x7fff, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x9}, @in={0x2, 0x4e24, @rand_addr=0x42}, @in6={0xa, 0x4e20, 0x5, @loopback, 0x3}], 0x48) openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uinput\x00', 0x802, 0x0) ioctl$VHOST_SET_VRING_CALL(r1, 0x4008af21, &(0x7f0000000080)={0x0, r1}) pipe2(&(0x7f0000000100), 0x4800) shmctl$IPC_RMID(r0, 0x0) [ 623.010377] CR3 = 0x0000000000004000 [ 623.045821] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 623.078879] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 623.115922] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 623.136283] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 623.150913] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 623.190595] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 623.209673] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 623.218665] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 623.228417] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 623.237045] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 623.246164] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 623.254347] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 623.262463] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 623.270663] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 623.278913] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 623.287097] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 623.293682] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 623.301218] Interruptibility = 00000000 ActivityState = 00000000 [ 623.310748] *** Host State *** [ 623.314900] RIP = 0xffffffff811fd350 RSP = 0xffff888058eef3f0 [ 623.321232] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 623.336424] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 623.348533] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 623.355408] CR0=0000000080050033 CR3=00000000989e3000 CR4=00000000001426e0 [ 623.362597] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 623.369725] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 623.376292] *** Control State *** [ 623.379853] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 623.387387] EntryControls=0000d1ff ExitControls=002fefff [ 623.393123] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 623.400139] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 623.407065] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 623.413787] reason=80000021 qualification=0000000000000002 [ 623.420121] IDTVectoring: info=00000000 errcode=00000000 [ 623.425772] TSC Offset = 0xfffffeb05f14ab61 [ 623.430159] EPT pointer = 0x000000008ec1701e [ 623.513859] *** Guest State *** [ 623.517183] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 623.526845] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 623.535837] CR3 = 0x0000000000004000 [ 623.539555] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 623.546180] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 623.552668] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 623.559312] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 623.565416] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 623.572096] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 623.580227] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 623.588328] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 623.596348] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 623.604371] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 623.612362] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 623.620394] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 623.628429] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 623.636488] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 623.645027] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 623.653066] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 623.659475] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 623.666984] Interruptibility = 00000000 ActivityState = 00000000 [ 623.673249] *** Host State *** [ 623.676436] RIP = 0xffffffff811fd350 RSP = 0xffff8880a86af3f0 [ 623.682404] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 623.688934] FSBase=00007f4e27aef700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 623.696793] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 623.702668] CR0=0000000080050033 CR3=00000000989e3000 CR4=00000000001426f0 [ 623.709746] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 623.716461] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 623.722499] *** Control State *** [ 623.726007] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 623.732668] EntryControls=0000d1ff ExitControls=002fefff [ 623.738181] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 623.745151] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 623.751813] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 [ 623.758485] reason=80000021 qualification=0000000000000002 18:31:10 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7, 0x80) bind$x25(r0, &(0x7f0000000040)={0x9, @remote={[], 0x0}}, 0x12) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 18:31:10 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) fcntl$getownex(r1, 0x10, &(0x7f0000000100)={0x0, 0x0}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r3, r2, 0x0, 0x1, &(0x7f0000000200)='\x00', 0xffffffffffffffff}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xc7, 0x0, r4}, 0x1cc) 18:31:10 executing program 3: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) ioctl$SIOCRSSL2CALL(r0, 0x89e2, &(0x7f0000000040)=@bcast) r1 = shmget(0x1, 0x4000, 0x140, &(0x7f0000ffb000/0x4000)=nil) shmctl$IPC_RMID(r1, 0x0) getsockopt$bt_hci(r0, 0x0, 0x3, &(0x7f0000000080)=""/232, &(0x7f0000000180)=0xe8) ioctl$TUNSETLINK(r0, 0x400454cd, 0x307) 18:31:10 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() r3 = socket$nl_xfrm(0x10, 0x3, 0x6) getpeername(r3, &(0x7f0000000240)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @loopback}}}}, &(0x7f00000002c0)=0x80) getsockname$packet(0xffffffffffffffff, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14) sendmsg$xdp(r4, &(0x7f0000000940)={&(0x7f0000000380)={0x2c, 0x2, r5, 0x1f}, 0x10, &(0x7f00000008c0)=[{&(0x7f00000003c0)="449b832a153e734e21411d4100a373e1ab89a4039b151fbc4624ed9f50f5b9b4fa977ebd46dd2be01ab40a3aa7712b78507cbb55635d0ecd6abaa4d41bf21147f1d7663029c73dc515e248869025f6c17a989c5f935f29c2010973f099982e93f306e1cffc5f4afa918d4c7d475d8d491f8498030080aed85dde672883b345de680306dd8058ef7431b00e87709a1df143bd7b95a1d484e916", 0x99}, {&(0x7f0000000480)="c7408500422116de92127b6217d62b50d60110d69888005679ba8a499d7902ffb661f6d324d354b1430c8fa0242013082f602fe9f7f5089dfbf2a35b514372b54d5930576e94cdee3e3e69f877598acbccc9d04612e19860d313dadb95edbb59638d4bf08f4b1cc9f3f5", 0x6a}, {&(0x7f0000000500)="fbdbde405911f315734e077daff01e12aa90b62a2b9cbdc21a9bfb09af6374f8882d1e90abffa13c64c758a230d16c744c2511e62d968852473d21c550437361f85c51dafd4939be65d32b816b775ef8ed0b5fda3843793cb1c753e35981571a811f468325085641c84d1e393ca3aca0c1be4def9f11985ab9cc6463f8949d805ffc66167f068cb0390f5ce3b9193bf58acbbba2fdaa718af7f3d54222381ee22990ed4a3f28710b3c5013ae31c5533848c7061535da76797b5b85683f73514c3e55d21d21b8018415814f96bfd38ff27800013af87e6dc527", 0xd9}, {&(0x7f0000000600)="79c0abd3a9624d9fcc5a1cc882635e8360b0b8a25c61ac7df7673b0f2908f4ad3de9c782b1c7344643f94c1d6c184286d01c0b48fdf00a41d52fca584d8c63e8d6f77cd50a9a5f301d69801b5fa93011948b41a6a08d5cd6ec534bcab2cd86648b884a5ce5554da77b7a7a5c8cffa6e5b220f4d72e51604289978dd54190e969f4b998a0162f0c024e19ee03e1b462680215c87b08216f3b3dda03edbf8693fc641cbe61aafc65bf1a176114160f30c272c5fe572434175828c7f764176a3823207f2e1e3d105b", 0xc7}, {&(0x7f0000000700)="2509265787356ce439275619298579d31c78ec0b4d72f82b57e085c50f63a27efafa117f5b051617d030b466d985630020048af201a78633043f0100709b58eac22a41bcd5f54b63d68b3b13298e24cc9c3ddf60f570ffc2c88eceac37ad8eceffc30f7f82ae3786864184b07d963d161d20721e5b4e1670402c5c06206a71bf26bf60ea88568b3148c047c0e8b86075d814e94de76e7a8c039b316c5a26a732652c6212a09a3e661d37183fb9dbf26b09c67955f39b1781f9efb30d92b953", 0xbf}, {&(0x7f00000007c0)='#', 0x1}, {&(0x7f0000000800)="5912cc4230cc59389e0bdc099edcbe11cc770e50a926b11b3bdf1667b51729c4cdd1910a87bce39355a369a95238d48105e526f7b3760e15a161855d3742eba39b7f771c2a9ceb942313fcd6d07a3ae0b6c3febb469c9c4f8dcf14e4c50b448916a5cc189fd2b4af753bd9b3c775e2539ab398302c1a7d588befb05a14e7d5bbc1c1298f0abca26e46c974ba1e16fef72e6a46ff1c285d69", 0x98}], 0x7, 0x0, 0x0, 0x800}, 0x4) ioctl$sock_inet_SIOCSIFBRDADDR(r3, 0x891a, &(0x7f0000000200)={'gretap0\x00', {0x2, 0x4e24, @multicast2}}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:10 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, 0x0) ioctl(r1, 0x4, &(0x7f0000000280)="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") ioctl$KVM_RUN(r3, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x802, 0x0) ioctl$KVM_INTERRUPT(r3, 0x4004ae86, &(0x7f0000000000)=0x6) [ 623.764849] IDTVectoring: info=00000000 errcode=00000000 [ 623.770303] TSC Offset = 0xfffffeb05f14ab61 [ 623.775573] EPT pointer = 0x000000008ec1701e 18:31:10 executing program 3: r0 = shmget(0x2, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x101000, 0x0) setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000500)=ANY=[], 0x0) 18:31:10 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="85000000009500000000000000e20eb61dda1f6846957f05d0976ab35db123c065d9b056d26ac640ebaa7dbbe4e5b35b78ec0d"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4108000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r3, 0x820, 0x70bd26, 0x25dfdbfc, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0xbdc36b317d9773e8) 18:31:10 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:10 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) gettid() 18:31:10 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) shmctl$SHM_UNLOCK(r0, 0xc) r1 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x8000, 0x2002) ioctl$sock_inet6_tcp_SIOCATMARK(r1, 0x8905, &(0x7f0000000040)) 18:31:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) readv(r3, &(0x7f0000000100)=[{}, {&(0x7f0000000280)=""/164, 0xa4}, {&(0x7f0000000340)=""/158, 0x9e}, {&(0x7f0000000400)=""/197, 0xc5}, {&(0x7f0000000080)=""/49, 0x31}], 0x5) 18:31:10 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x1, 0x0) ioctl$KVM_S390_UCAS_UNMAP(r2, 0x4018ae51, &(0x7f0000000040)={0x0, 0x81, 0x239}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:10 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:10 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:11 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = msgget$private(0x0, 0x180) r3 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x1, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0)={0xffffffffffffffff}, 0x111, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_ACCEPT(r3, &(0x7f0000000200)={0x8, 0x120, 0xfa00, {0x0, {0x4, 0x3f, "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", 0xfd, 0x9, 0x0, 0x5, 0x9, 0x5, 0x1}, r4}}, 0x128) msgsnd(r2, &(0x7f0000000140)={0x3, "1c82981803a57e4865e004e1b41cca92389f6e5681a5453ca3f4fb55b3e82e5154338a3cd1b13b21af4869423227dc27bd301fef043b96ea41b37fb6ba83331533dfda89e5fd2eec73547f9b79af23cd90d15dc3e35b3363a71b9c1e497c3075317d54cc154c6e1a359b67b56368b4"}, 0x77, 0x800) r5 = socket$caif_stream(0x25, 0x1, 0x2) dup2(r1, r5) futex(&(0x7f0000000000), 0x89, 0x0, &(0x7f0000000100)={0x0, 0x989680}, &(0x7f0000000080)=0x1, 0x1) shmctl$IPC_RMID(r0, 0x0) 18:31:11 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() process_vm_readv(r2, &(0x7f00000006c0)=[{&(0x7f0000000200)=""/62, 0x3e}, {&(0x7f0000000240)=""/161, 0xa1}, {&(0x7f0000000300)=""/27, 0x1b}, {&(0x7f0000000340)=""/99, 0x63}, {&(0x7f00000003c0)=""/94, 0x5e}, {&(0x7f0000000440)=""/233, 0xe9}, {&(0x7f0000000540)=""/77, 0x4d}, {&(0x7f00000005c0)=""/178, 0xb2}, {&(0x7f0000000680)=""/55, 0x37}], 0x9, &(0x7f0000000880)=[{&(0x7f0000000780)=""/95, 0x5f}, {&(0x7f0000000800)=""/124, 0x7c}], 0x2, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:11 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:11 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000000009500000001000000000000000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = dup2(r1, r0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu/syz1\x00', 0x1ff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, r2, 0x0, 0xf, &(0x7f0000000200)='selinuxvmnet0/\x00', 0x0}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={0x0, 0xffffffffffffffff, 0x0, 0x3cb, 0x0, r3}, 0x30) [ 624.516630] *** Guest State *** [ 624.520380] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 624.553184] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 18:31:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_REGS(r3, 0x8090ae81, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vcs\x00', 0x4000, 0x0) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000480)={0x0, 0x100}, &(0x7f00000004c0)=0x8) prctl$PR_SET_TIMERSLACK(0x1d, 0x7) remap_file_pages(&(0x7f0000014000/0x3000)=nil, 0x3000, 0x300000c, 0x9, 0x140) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x1f, &(0x7f0000000500)={r5, @in={{0x2, 0x4e23, @multicast1}}, 0x101, 0x7}, 0x90) r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x141000, 0x0) sendmsg$nl_crypto(r6, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x440}, 0xc, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9cf808100000001439b44a78bdbf268410d9ca8202000000b220a273436438fb07a65b8f1aa18bfb99688bb2ff22125789c9e41420be718716692473163776008aa32b0675dd26e7062c7810e93664109e1255469352db"], 0x10}, 0x1, 0x0, 0x0, 0x884}, 0x80) recvfrom$inet(r6, &(0x7f0000000340)=""/219, 0xdb, 0x40000122, &(0x7f0000000080)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10) [ 624.564828] CR3 = 0x0000000000004000 [ 624.568967] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 624.577279] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 624.586623] RSP = 0x0000000000000f6e RIP = 0x000000000000912c 18:31:11 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="85000000070000002500000000000000541899871664e573a5208353c8c44d0af63af0df66a0669c3c2d6bd29b11a54b6adc68919c1945aed70ae7c2fd0d348b78203dd20ec5e4db6507528d338001663864eb81ff59fb7b9bfed9f3b9882b70dc329f6f432525a2693b4027e4e4b99dfa9903ab09"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000200)=0x4) r2 = gettid() r3 = syz_open_dev$media(&(0x7f0000000240)='/dev/media#\x00', 0x3ff, 0x4400) mincore(&(0x7f0000ffa000/0x4000)=nil, 0x4000, &(0x7f0000000300)=""/110) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r3, 0x84, 0x70, &(0x7f00000004c0)={0x0, @in={{0x2, 0x4e24, @empty}}, [0x7f, 0x6, 0x8, 0x101, 0xffffffff, 0x2, 0xfffffffffffffff7, 0x7ff, 0x4, 0x8, 0xfffffffffffffeff, 0x9, 0x2, 0x1, 0x20]}, &(0x7f0000000440)=0x100) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r3, 0x84, 0x23, &(0x7f00000005c0)={r4, 0x6}, 0x8) ioctl$SG_EMULATED_HOST(r3, 0x2203, &(0x7f0000000480)) ioctl$VIDIOC_QUERYSTD(r3, 0x8008563f, &(0x7f0000000600)) openat$uhid(0xffffffffffffff9c, &(0x7f0000000400)='/dev/uhid\x00', 0x802, 0x0) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x61, &(0x7f0000000280)={'filter\x00', 0x4}, 0x68) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 624.630727] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 624.643268] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 624.668042] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 18:31:11 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:11 executing program 3: r0 = shmget(0x3, 0x600000, 0x5, &(0x7f00009fe000/0x600000)=nil) shmctl$IPC_RMID(r0, 0x0) [ 624.697056] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 624.738435] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 18:31:11 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x40000, 0x0) getsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000280)={@multicast1, @initdev, 0x0}, &(0x7f0000000140)=0x1) bind$packet(r2, &(0x7f0000000340)={0x11, 0xff, r3, 0x1, 0x2009b3e7, 0x6, @local}, 0x14) dup2(r1, r0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 624.785155] mmap: syz-executor4 (27119) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 624.802099] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 624.833740] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 624.867349] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 624.910855] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 624.928569] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 624.950842] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 624.980203] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 624.995783] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 625.002644] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 625.013932] Interruptibility = 00000000 ActivityState = 00000000 [ 625.037183] *** Host State *** [ 625.040747] RIP = 0xffffffff811fd350 RSP = 0xffff8880550973f0 [ 625.047236] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 625.063505] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 625.071669] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 625.078017] CR0=0000000080050033 CR3=000000008b61b000 CR4=00000000001426f0 [ 625.085293] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 625.092186] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 625.098776] *** Control State *** [ 625.102544] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 625.111775] EntryControls=0000d1ff ExitControls=002fefff [ 625.117726] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 625.125346] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 625.132103] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 625.138920] reason=80000021 qualification=0000000000000002 [ 625.145451] IDTVectoring: info=00000000 errcode=00000000 [ 625.150956] TSC Offset = 0xfffffeaf8469a927 [ 625.155746] EPT pointer = 0x000000009482301e [ 625.203262] *** Guest State *** [ 625.206732] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 625.216091] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 625.225298] CR3 = 0x0000000000004000 [ 625.229015] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 625.236698] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 625.243294] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 625.249411] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 625.257255] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 625.264057] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 625.272023] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 625.280036] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 625.288024] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 625.296066] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 625.304068] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 625.312022] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 625.320111] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 625.328151] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 625.336292] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 625.344308] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 625.350712] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 625.358221] Interruptibility = 00000000 ActivityState = 00000000 [ 625.365036] *** Host State *** [ 625.368226] RIP = 0xffffffff811fd350 RSP = 0xffff88805cd5f3f0 [ 625.374294] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 625.380697] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 625.388546] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 625.394485] CR0=0000000080050033 CR3=000000008b61b000 CR4=00000000001426e0 [ 625.401489] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 625.408205] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 625.414322] *** Control State *** [ 625.417791] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 625.424508] EntryControls=0000d1ff ExitControls=002fefff [ 625.429957] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 625.436940] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 625.444772] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 18:31:12 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ffa000/0x3000)=nil, 0x3000, &(0x7f0000006380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0xffffffffffffffc6) ioctl$KVM_ASSIGN_SET_INTX_MASK(r3, 0x4040aea4, &(0x7f0000000000)={0x2, 0x0, 0xf4, 0x1, 0x2}) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:12 executing program 3: gettid() r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) r1 = accept4$llc(0xffffffffffffff9c, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000080)=0x10, 0x80800) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f00000000c0)=0x6) shmctl$IPC_RMID(r0, 0x0) 18:31:12 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:12 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000200)='./file0\x00', 0x20) ioctl$RTC_IRQP_READ(r1, 0x8008700b, &(0x7f0000000280)) socketpair$unix(0x1, 0xfffffffffffffffe, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r4, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r5, 0x400, 0x70bd2d, 0x25dfdbfe, {{}, 0x0, 0xb, 0x0, {0xc, 0x14, 'syz1\x00'}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x4010) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 18:31:12 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x45e, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) socket$inet6_dccp(0xa, 0x6, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) [ 625.451352] reason=80000021 qualification=0000000000000002 [ 625.457807] IDTVectoring: info=00000000 errcode=00000000 [ 625.463291] TSC Offset = 0xfffffeaf8469a927 [ 625.467595] EPT pointer = 0x000000009482301e 18:31:12 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x7f, 0x8801) accept4$ax25(r1, &(0x7f0000000040)={{0x3, @default}, [@bcast, @remote, @netrom, @bcast, @netrom, @bcast, @null]}, &(0x7f00000000c0)=0x48, 0x80800) 18:31:12 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:12 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) dup2(r1, r0) syz_open_dev$vivid(&(0x7f0000000100)='/dev/video#\x00', 0x0, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x30) 18:31:12 executing program 2: r0 = syz_open_dev$amidi(&(0x7f0000000240)='/dev/amidi#\x00', 0x9, 0x29e400) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000280)={0x9c9, 0x3}) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0xd) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) eventfd(0x101) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) r3 = gettid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x9) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r1, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r0, 0x0, 0xd9, 0xbc, &(0x7f00000002c0)="1a5a884810cb94ee2406f818d1cfa1127d6808c5e7f578287f38d0dfc44f1b3101ad2501bd4a552c9897b37c853d18129fad5ed0b79817f2f31acabac5f67b5ad92ad7ac585ce25d9c0d01a52c058ab9861362e8649ab45ac103394e943b168596548d753328604d56d290c92db144b728ea56bee040e148dcdb0153df571c125d6dc7ce83a89be1bed2b3aded292d409a62092dae674969eea8af3e649857a5b77126299b451f1937f795d9d2eb0c07443d6cceabb6904ed994405840a3c5a8d26607cdd5f9897b806be2008e1190becc6425232cd9d10c4f", &(0x7f00000003c0)=""/188, 0x3}, 0x28) [ 625.765587] *** Guest State *** [ 625.775887] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 625.798377] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 625.810332] CR3 = 0x0000000000004000 [ 625.818988] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 625.833661] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 625.840931] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 625.850092] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 625.861686] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 18:31:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = geteuid() stat(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_virtio(&(0x7f0000000000)='/dev/kvm\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x20000, &(0x7f0000000300)={'trans=virtio,', {[{@cache_fscache='cache=fscache'}, {@mmap='mmap'}, {@fscache='fscache'}, {@cache_none='cache=none'}, {@privport='privport'}], [{@audit='audit'}, {@dont_hash='dont_hash'}, {@subj_type={'subj_type', 0x3d, '!eth0'}}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/kvm\x00'}}, {@fowner_gt={'fowner>', r1}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@fowner_gt={'fowner>', r3}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'bdevtrustedeth0eth0'}}]}}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 18:31:12 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) [ 625.906050] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 625.926729] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 625.964352] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 625.992513] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.004583] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.023704] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.032139] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 626.043529] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 626.051815] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 626.071804] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 626.084227] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 626.091107] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 626.107091] Interruptibility = 00000000 ActivityState = 00000000 [ 626.114813] *** Host State *** [ 626.118519] RIP = 0xffffffff811fd350 RSP = 0xffff8880550973f0 [ 626.126589] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 626.133198] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000033000 [ 626.133218] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 626.147733] CR0=0000000080050033 CR3=00000000a83cb000 CR4=00000000001426f0 [ 626.155086] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 626.161942] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 626.168489] *** Control State *** [ 626.172014] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 626.178944] EntryControls=0000d1ff ExitControls=002fefff [ 626.185739] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 626.192786] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 626.199561] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 626.206306] reason=80000021 qualification=0000000000000002 [ 626.212786] IDTVectoring: info=00000000 errcode=00000000 [ 626.218454] TSC Offset = 0xfffffeaedcc74522 [ 626.222857] EPT pointer = 0x00000000a442601e 18:31:12 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x307, @local}, 0x2, {0x2, 0x4e23, @empty}, 'dummy0\x00'}) getsockopt$bt_l2cap_L2CAP_CONNINFO(r3, 0x6, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x6) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_GET_VERSION_NUM(r0, 0x2282, &(0x7f0000000180)) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) finit_module(r1, &(0x7f0000000000)='/dev/kvm\x00', 0x3) write$P9_RMKNOD(r3, &(0x7f00000001c0)={0x14, 0x13, 0x2, {0x88, 0x3, 0x1}}, 0x14) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:12 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = dup(r0) timerfd_settime(r1, 0x1, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0) 18:31:12 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000200)='/dev/audio\x00', 0x40100, 0x0) ioctl$sock_inet6_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000240)) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:12 executing program 3: r0 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r0, 0x0) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x1, 0x0) ioctl$VIDIOC_G_CTRL(r1, 0xc008561b, &(0x7f0000000040)={0x100, 0x7}) 18:31:12 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) r4 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1371, 0x501000) r5 = syz_open_procfs(0x0, &(0x7f0000000080)='net/stat\x00') ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f0000000100)={r4, 0x22e3, 0x8, r5}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 626.363353] Unknown ioctl -1073195493 18:31:13 executing program 3: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x400000, 0x0) shutdown(r0, 0x1) r1 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) shmctl$IPC_RMID(r1, 0x0) 18:31:13 executing program 5: 18:31:13 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='em0--eth1\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:13 executing program 5: 18:31:13 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:13 executing program 3: [ 626.694092] *** Guest State *** [ 626.703471] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 626.727977] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 626.756245] CR3 = 0x0000000000004000 [ 626.760472] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 626.767913] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 626.780032] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 626.786541] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 626.792601] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 626.801010] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 626.809634] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.817808] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 626.826007] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.834787] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.843185] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 626.851324] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 626.859423] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 626.867674] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 626.875866] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 626.884194] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 626.890643] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 626.898466] Interruptibility = 00000000 ActivityState = 00000000 [ 626.905093] *** Host State *** [ 626.908391] RIP = 0xffffffff811fd350 RSP = 0xffff88804fbe73f0 [ 626.914623] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 626.921223] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 626.929998] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 626.936223] CR0=0000000080050033 CR3=00000000a85c7000 CR4=00000000001426e0 [ 626.943716] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 626.950539] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 626.956737] *** Control State *** [ 626.960339] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 626.967322] EntryControls=0000d1ff ExitControls=002fefff [ 626.972878] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 626.979992] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 626.986867] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 626.993631] reason=80000021 qualification=0000000000000002 [ 627.000069] IDTVectoring: info=00000000 errcode=00000000 [ 627.005892] TSC Offset = 0xfffffeae671a2cfb [ 627.010257] EPT pointer = 0x000000008d41401e 18:31:13 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(r0, &(0x7f0000000000)='cgroup.events\x00', 0x0, 0x0) connect$bt_l2cap(r2, &(0x7f0000000100)={0x1f, 0x3, {0x80, 0x7, 0x4, 0x8, 0x10000, 0x8}, 0x6, 0x2}, 0xe) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000040)={0x0, 0x80000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r4, 0xc00c642d, &(0x7f0000000080)={r3, 0x3126e44a3b9902f3, r2}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r6 = syz_open_dev$swradio(0x0, 0x1, 0x2) ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f00000000c0)={0x2, 0x6, 0x4, 0x5c35, 0x7ff}) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r6, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) 18:31:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x2800, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) r5 = geteuid() ioctl$KVM_RUN(r4, 0xae80, 0x0) ioprio_set$uid(0x3, r5, 0xb82) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:13 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000816c1a7fd6e814ccca0399deca7d2428ff85e6c90c7c3600000095000000fd00000008e87afd0a9448931a102ded445e0b0ed9b77dab462c6671a06a9119650a70b9cb77fe2977f65022af3d1a9546a5f98dc956726cc706203cd5bcfcf720730b981927b4088d917e5169c1127a826721cfe519cdfe"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:13 executing program 5: 18:31:13 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:13 executing program 3: 18:31:13 executing program 3: 18:31:13 executing program 5: 18:31:13 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:13 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="85000000070000002500b060a56d0000950000000080200c671034fd4039"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x7, 0x46, 0xffffffff, 0x1, 0x0, 0xfffffffffffffff7, 0xc2088, 0xf, 0x6, 0x6, 0x3791, 0xfffffffffffffffe, 0x7, 0x81, 0xda, 0x0, 0xf6, 0x6, 0xc4c2, 0x4, 0x3, 0x40, 0x1ff, 0x10001, 0x3, 0x101, 0x800, 0x8, 0x8, 0x976, 0x1, 0x40, 0x3, 0x7, 0x6, 0x1, 0x0, 0x200, 0x1, @perf_config_ext={0xf60c, 0x1}, 0x0, 0x1, 0x6, 0x7, 0x5, 0x345, 0x101}, r2, 0xd, r0, 0xb) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:13 executing program 5: 18:31:14 executing program 3: [ 627.341132] *** Guest State *** [ 627.349615] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 627.406311] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 627.436200] CR3 = 0x0000000000004000 [ 627.449917] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 627.489252] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 627.518136] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 627.526129] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 627.532479] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 627.539955] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 627.548581] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 627.557630] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 627.565942] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 627.574299] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 627.582385] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 627.591023] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 627.599847] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 627.608523] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 627.616626] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 627.624668] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 627.631125] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 627.638746] Interruptibility = 00000000 ActivityState = 00000000 [ 627.645095] *** Host State *** [ 627.648335] RIP = 0xffffffff811fd350 RSP = 0xffff88809022f3f0 [ 627.654537] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 627.661048] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 627.669256] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 627.675278] CR0=0000000080050033 CR3=000000008a2e3000 CR4=00000000001426e0 [ 627.682389] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 627.689214] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 627.695409] *** Control State *** [ 627.698917] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 627.705739] EntryControls=0000d1ff ExitControls=002fefff [ 627.711288] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 627.718331] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 627.725266] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 627.731865] reason=80000021 qualification=0000000000000002 [ 627.738339] IDTVectoring: info=00000000 errcode=00000000 [ 627.743969] TSC Offset = 0xfffffeae019ab2bb [ 627.748346] EPT pointer = 0x0000000090f7401e 18:31:14 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) ioctl$VIDIOC_G_CTRL(r2, 0xc008561b, &(0x7f0000000000)={0x0, 0x401}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r0, 0x4010aeab, &(0x7f0000000040)={0xfffffffffffffffc, 0x5000}) 18:31:14 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 18:31:14 executing program 5: 18:31:14 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x41000}, 0x48) fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000200)='trusted.overlay.upper\x00', &(0x7f0000000240)={0x0, 0xfb, 0xc3, 0x1, 0x8, "9aacd9cfe596fb8b7f2685a8f8504f6a", "224cceab0c59305f924c781f466c8729ca679540369ddf03c1b3713bc307c3039714f78762f3c84779f402f31923f942f6389a6b5ffb61c0da635f6d6fa89b9d78e3f5e0f770d2bbdb6fb46ebd77ff00cf33977baa7b0cf7e611085f78d55332d15b6aaf4a12323ad48aa24a44a9e99b34f2a9bd2f28663cfea2fe27b98d8d70066a6a8fa76dbb36b808918c227cf858e8db39630d9391e606521b198078e7d63d11d144edd8c758fb9f98127bc6"}, 0xc3, 0x2) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:14 executing program 3: 18:31:14 executing program 5: 18:31:14 executing program 3: 18:31:14 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:14 executing program 5: 18:31:14 executing program 3: 18:31:14 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usb(&(0x7f00000002c0)='/dev/bus/usb/00#/00#\x00', 0x5, 0x8000) getsockopt$netrom_NETROM_N2(r1, 0x103, 0x3, &(0x7f0000000300)=0x3f, &(0x7f0000000340)=0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 628.147705] *** Guest State *** [ 628.180172] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 628.211411] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 628.248227] CR3 = 0x0000000000004000 [ 628.252374] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 628.261395] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 628.275804] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 628.282348] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 628.289683] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 628.297551] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 628.305745] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 628.314175] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 628.322294] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 628.330747] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 628.338944] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 628.347225] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 628.355526] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 628.363836] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 628.372033] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 628.380240] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 628.386862] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 628.394542] Interruptibility = 00000000 ActivityState = 00000000 [ 628.400808] *** Host State *** [ 628.404692] RIP = 0xffffffff811fd350 RSP = 0xffff88808549f3f0 [ 628.410791] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 628.417511] FSBase=00007f4e27b52700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 628.425711] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 628.431769] CR0=0000000080050033 CR3=00000000932c3000 CR4=00000000001426e0 [ 628.438990] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 628.445922] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 628.452105] *** Control State *** [ 628.455793] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 628.462528] EntryControls=0000d1ff ExitControls=002fefff [ 628.468142] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 628.475207] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 628.481916] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 628.488915] reason=80000021 qualification=0000000000000002 18:31:15 executing program 5: 18:31:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) r1 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x5, 0x200500) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$dri(&(0x7f0000000240)='/dev/dri/card#\x00', 0x0, 0x0) r3 = syz_open_dev$dri(0x0, 0x0, 0x0) close(r2) ioctl$DRM_IOCTL_SET_MASTER(r3, 0x641e) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 18:31:15 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:15 executing program 3: [ 628.495447] IDTVectoring: info=00000000 errcode=00000000 [ 628.500993] TSC Offset = 0xfffffead9c95f19a [ 628.505874] EPT pointer = 0x000000009310e01e 18:31:15 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(0xffffffffffffffff, 0x2271, &(0x7f0000000140)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f0000000000)={0x3a78, 0x7, 0x4, 'queue0\x00', 0x7e}) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x80000000) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:15 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm_plock\x00', 0x252000, 0x0) ioctl$RNDADDENTROPY(r3, 0x40085203, &(0x7f0000002000)=ANY=[@ANYBLOB="0004000000100000e42b77661095525fe5df277dd667b42b3f6b2cd3c7cc894ffb5f68c0beb89577e51c7e407379b3da6f796894738e807e3f55e3543bdc811ee5dd56c5cba44a91bf1a4638d8b39fe59345dd440f584cc25b48d15ef0a3836c10c8f18e762e51fbd2b9679489c0b49e9ed556668c9de55a29bd66354189002ef06876d853dc2daeb5e1882f9d8575c6c89a453062bfdc934b8addfec9d968925c3e31f0f67a9de91ffed55808e72d2ea085706f61d04d2f6972c64eefd122237bd70dd040a59e6faf73d4d977c568e7bd98739d95552d8143fc05c9f6e4a8b6b8393ba1516c3456b40fcff9737e2cb600db80d8532c5acc2a44ed6baee87ece956969fb3357d7a61d95454119db6bd34a87615fe8436537a418a23312bd2db1d988a3199898a62d26fc0a9786c1339983f9a0a17c5e78407fd7a1f7422717a9cedb21cba18a13beb26d8305058d58e6db1e2aa4ce5513de8c59c61f07be499a71136b63ed07a99c2c18f6f4aabf4e8fc6412784daee4e98685ae331fc1f01eb3c7ed8181afdd8a961ecc1fe4939106322b8b0efcc55d046d1af237e6837f1d4c1295a2093c22c4b3be62756e1bfb95f022ffa0c60abe95a601effa58b9f63d7a9ad7c5681692fc505bca597a95a816c36ad11e15ae3efe319980f08cb2033270da893fb896182971023d4713f947ce70ed06c0b33607350247470f4a9e2f957d2ad67b7d5ade13a4a92c2862a6e45db44121a2b7d802c6ca75cc1659acb69536c8908a0f6d49fe1c71c3a4d7c50618b649921d7ebb78a381bec458dc0bae8772572236a14b43e02cb86dcf9a83611865b6bcdaa92a9aff48e28a0de1dd05de5e55860e19fdd92f5b2910c17e9f942f80904bfd7b45a1d2f7a989141caa233e80759ebbec0340e4aef2e01e63c6f6633b4e79b57abb0f97064a5124ca69a7c17ff4541fcdbcb57f641787e7b9417e68f6018e7fb32071c84199f6e6a78df8487930c4518f9652cca28f4be703ab2a7bb14c8b38866403d02ac001309f367c459836bf2e721aa8971d5ac8565be8791a5c4a1c8ac8d41e74a32565336311b27c871ecce36e59bf3d08e5664666f46cc1855a805709f02db82bfbb012357779dae4d0a610afd9fa3a843b42c020a393a19c6406280655ebc5d793ab9d0a3aad1a488696218bb946d4271578d96faf5119c87f56c96e9406b3ede4c5f302603023cca49d77c921178445df824d335f4767a7b2b9979bd0bb1dc7c13f1f55b4f30e710ab37d294e10bf6b81db229da71d05ae511f0727ff4ce91448fd07d45b5b0e50a55dedd7ec359c84c8670b3d6b9582e84824a468933b133156c1c4cd0a8f573e92737efb97ca28e9785035b71217cb1a08a01f0d748f5f20c5078985e884a0f16f7faafa7682b7a8085182d07de102546446a3c20320eab2a859c52ba8fce6354e72031e47e16a8748c76e6f85d6763ae9942aff59ffbf5ff8862c41258a12c37544e900f02da852f3c12838c873da26bf3a20b647e0cd955559587e5fa1c53b2d6492ea1e8f6cc804eacf9651f91df74f57596782fe492b6e24b3779f44ce44aefac4143cb7ab6d0a0d3899e6bde474ee57554fcbf7d1fa01f5dbe9e9f47e30484cb8f4d5dec78f9b7616d45bcdb9480328222891e1927e3feab72e4c2e9f5cd087c0426bef79a18208979b4573b0c51d8ff71872db7e7f0ec658e83349f3e86e564e9241c2963c42284064512a0fe77a9feeb4ad7ac1c2629c6cefda50a840a8b48c124e592e4210e36b508c5bbfef6b14ea55fa4d9901f92d1bfc783e30f6a8740450778294f23a800306aa11e2e7b3ce2533801033048e2f6efc67de5fb6ff4b23b15216a23eabdf89d77b914b5f4eaddb4d14d058785424505ea50e1c00e5ddac3b5edefe185dbba540f779fe0f57b82d66f88332823d485dd158ce703cb432b5b316bff72e81b48ba7e450ca28d4f5f4c441f4d3a71d2c32a013c1a2c52afef72f4a067c1d3cd2168f8d9b80e24660431ee0abb65b3b3870417166063fee34b3eb6f7618b7e7195a668f55f70eb399f654592fdd5e67751af7cb793065529559282ff7215e015bf9b82faaf1b69205e22f4d5f9a677b618df5676f9b1aaaf7b92cd56cd653ad852a13fcdffef95fafdc8b6f277d673f18c7b6ab9aac654d58fcd69b96825179046a8791fb16892b4cdca78b9ab3ebc40f5d1d85f150755b32c9ccfdb8f9bb54b3e6811432f858570e489840a13767363565726c1c82aadee9a851cfcc7860c9e704dd1fb7627047899faf5c4991967212e75e3dddaf3c716ac66558630a7b49abb7e3b7cef969d0ef320fb2d61fefb4bdf5b121f7244f7dbdf6e4f1ea47d77835550b23edf851ff4ba54f00179bc1769540762142c6ae56d94a519e4d63bb460aced24a9f6d5587479c36d9a8a176dcaa80e9ab4d9a960987be330bf49cd76b901ef1a5bfee1ebca7d5151001e13343dd45e3acaddb39f35b0ac80e14ef25dd8235d9b310b7ae42dd105b1e77eb163e54b366329c3ccf812ff2487ad8d90f7fd6b40d3a6c5fb9f544617fb21a159127d1ec9dd185e384df79ef2e6a21d706040473be4795e8db1549e76737bf8b5c47c193c0d1bc73a10ce32096f16ee3485aa185f1ce2c0bfdcfb94fa26f68de718de5e37d0b50ae1ae45bda1721f14bdc268529817020c5630aa69e56858b6798aab8982fb20775f8b4f4a084265504cbcf4e9571427d4672ed48fb0bc54a629c0bd8940a193ffeee3fab77042e0e2ff98d1bd637e01f522e56844042d4d0dfa10393dc1790cadc21883d0ab2f6c0d7332b6842754a75766f89fe4c0027efabaa039e4022c35885091db3c72f1b9c1f2e056a6cc37f3d9021aa4669eb63b4701a5e5dd3b74fc940a5d2f6c88fd1272fc22f88bb32cc29aaf06987844b78483730748ace8f766ac1b24f4e6c9166d36816fd118a1c48c34c758ac1a93c7df489426781f9db1de2a093c2ce66ccc41e0328e161d590a0d0a5d340e96e8fbe7ed622611268319c7a815946bc9feb38f1ba4775f87d757821d9d957c10365a1e5dd0fdb8392bf82d0a62095c4738c0f7f46cc4c8139ac52aa5fcd06fd9ce1256dcc4af134b0f18dd518256c859acad83dab3c8300a5b3b18ba04007df4ad34dbf94a21c647a14058f5bd3891cf998a5ef4c194cbb7783d69a34bd00ca4cbd8916b08be12119746c7eb4e42d82e33dfa6fb713ef58a97410cbaa8444b302d736b76d85b345d08e1645dbe6faf4980838d77fb6152d202e56bd2ec7ed7f3d923872ae0c7cb072668056cfa47827ba8040052f92d0838c743f54897e6a24638c935806bbe4330536ba140d3fd08589a7415d2a66d4ad6bbcebc590f370e3298534af34417d94d8182ced9036f34331d968977e55f9151f92adfc24769db82c42054e82d21962864f0b5ba6a95346ef7d8788ebe1044f31ea456bbbbb6a8d2bbb4b8acb9e9dd0421b68c64b6ca037848e5018b616fc87268f1d99c2e7debc37fa23a6bf3912668da1046f9694a241e67cc4999bcb2745e5fa44daf2568a27737f241d77f6d1e4db299b4c92e9a1a14e73029dd28fda86926bf1b2e1a22d289ea8885d0bb2fc8362c2a40fa9ea2fcbc720d566b0eaa1998db0ad7864326b3b377cd908887349f134c0e922dea704e82234631fa5d974cf25ccdbf6c64b92c427e27ffbbf232120b65fccc45d973231537f18b2760c2640f674645a35a7764a70fd6bc17778c4b854bb763c6b63ea3972fabc647153ca38d79441c7de09be778eba119fc7f2e0c794860d6fae73c50a4993156d557ff3a37edf1247d1316afc735d6210cb5372fe2a4fccf60f8e89d149ffc95ea3bd007360f2ec1e999c561ec7430d364b172954c8b2f9aee319947e9760ebedee25218fec05c2ee38ee55a5b79852a199674eb9f568daeafb881afda372ee7ae9b4881b913dd3eb19a9d74e9273d0ded8d3b48b78203109d84e37c7e366e633899eb39247144e545601b96aaf14e07a08dd4f2bbd9340094bfd5f54d3ed5c2521c53eb1851b6b1defef715195ab4b13ab970a9e43923b90eae3de86021242270fae8bda94c71b7748a25a35088a3676383951f6df1cba3041309c1e52b9c4eb779c95e4d6bb68950458e327dbab7d5a70fe144c9f67fb016c46216907debf3122a8867d3bd3ea86ee18a82886ecfb2c2949b2f8da38f31f87a1c6f4a3c4ba9c87aff0eeab055de97061a3668eaefd902151d88b9dd08c458cef87f82fda7b8c343c48f766af2e2570d1c0b09cbf7ec00797b7cee76179878c3535134f114e829db670943ad48696660546a8ff0dba097794ca26f9f42f57c9e16bcce29c86e5d55adb0a95ba03e1b6fa6fc2171d956cac0531435b73d4e8f853afe763ae7c3520133525f26e425fc614c2c3f80ad42c03ba19eb10680df79180cfc4a8492d93761dacfa35452d33080c6d2e8a7f5dda0c31ee9d48c6b551686e1165edf0f750e9c2dfb78c852e72bc7bd38b3bc25d5eb19ddab5bfee474c0941055c3ecb1333e5bd4a097b5ec15d0f1a594b77ca7e6453c93cdcf898482e104a0ba7af9f61284f9aa97d3e9328c6fdfc37e20f8632154c58559a213280c1d3b9e4ae12e320516a6a396ccd55ae85f4046e3219cfa26e7cfbd19ef4c65da1ea8b2b53c60a14feb3ab0696e13f32aaf278a892855fec92059ac12bd0c06130e41510475f36725db16709eb05cd13189dcbadd8a8beca18d7ae1f2a239e04449d2d862591c0be050bca9e2be1471639acc34e9e0b383a1537e383ea08adf0dd69ca7ab3c845b262e498a41f4b47bf0b81a7ded013339577220157f195cd2b3f1d6b6adfffd404bdf8ec9dae78f2eb9d1cc71ad31d365657f9c4a00570730785c11bc2114fc0e750e4129d7312f620ddce26cd5ae6b0a75266ba4e73f0dc451c39a52b951c6b9d9eda1ce03e5df3f87fe0fa78555285ee25d79a8a4679c6277ed469631c4ef1b6eb0ddeab312f1102c646d9a4fb85901b7d541e75b7099167cec1f4b76d0c4cf14af24ae4fa37b4c97ba4664a0312084ef2335ea1bc754f89f0b6e461e72c7d5d11d78c92e446e6e5cf1a5486c3addde56fede2c8d276939d9f5e2aab25d0d88945a51bda68218a4d226a1dff46d62e802cc5035255fad8a88fb1390883b14a5988a7d5aa048e43828773dfdfc16cb7536c7c6c3d7e36453bee534b894aad05c02c6cf76c330c2b872f20d465ca9216e19a2a94e1dee1c476c086152ababa80d4d29d29e7e53b62d149e5972084e547cbcb8cf7dca75e235e2ed55fb78d2f8ef9d4e5dcc7eb6e2621624f41b198b396dafb78d65edecb96babdd1495899bb3086d586b16d69fdf64b55e180d536977ab40449bf6c85e6eeff5a12401aba57b45b3ea149cbbfc084f0291bd10f00b874077fbf561411c7205d01a9c4b045bab1a7b02a72f95b29b3d2b2b7b4d0a9d92c039f2723d4f88e78296680fe1e6b61b0c105c1584cf24f33f93c15522f1967eaa83bb42207bb471640aac454992aaaac38952b88be68ecdc07db3ab3b1a126369a362aad617ad4ef84669c84173ef7df0504d37647333b596dd9b9f12431f9772ea7ca8c218fc11060244cb6f9f79b501bfd64c8c0d315f80e2393d4a325e2f4961cb61103f0933c404b14505ae8da97bab054210717ff1d2edfc6b42fdab0b5061bd64dde5db899653eddaa21b16cc854d3d80674c7c1b733d774ec2c75d00188709a26c6dddd057c1c61a39224f78edba826d7227f7c07ccbd70dfab016aff06b1e8efbdcc8c059139de47661b6c5612d19c9f846215bfa03dfc121702cb20cccf3b5669359a86991c4f600091f5011e67ab22f99e6be3dd3533a866dcbecf9caade2e735871b2cd81b851babeaecb1357b50ced4ef2e79c48cdd6c8e8bbf45526f50a82bcd3b394f4430a1e32da324c0dd0261b8cd0f0b72ebbabbe87bf5c9c5864603c7d3de25025923415b3b41af421c7a02df4271c819f4d6d3af"]) 18:31:15 executing program 5: 18:31:15 executing program 3: 18:31:15 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setxattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@random={'user.', '#eth0vboxnet0vmnet0eth1systemmime_typekeyring[^:%\x00'}, &(0x7f0000000280)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x64, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=ANY=[@ANYBLOB="850000000700000025000000000200009500000000000000"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffff9c, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000380)={0x101ff, 0x2, 0x1000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vga_arbiter\x00', 0x428002, 0x0) ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000000340)={0x1f, 0x2, 0x7}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:15 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xf, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:15 executing program 5: 18:31:15 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xec0, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:15 executing program 3: 18:31:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000000)={0x0, r0, 0xffffffffffffff01, 0x2, 0x6, 0x2}) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 628.831294] *** Guest State *** [ 628.848049] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 628.869884] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 628.919685] CR3 = 0x0000000000004000 18:31:15 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x20000154, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:15 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/qat_adf_ctl\x00', 0x20000, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x6c, r2, 0xa00, 0x70bd2b, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x18, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, [], 0x2b}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x87}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x6}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x8001}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}]}, 0x6c}}, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r1) r3 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 628.988725] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 629.010357] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 629.061609] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 629.099999] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 629.122513] QAT: Invalid ioctl [ 629.130129] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 629.168453] QAT: Invalid ioctl [ 629.170011] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 629.198339] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 629.222011] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 629.235895] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 629.248637] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 629.260373] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 629.272255] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 629.295746] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 629.309982] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 629.318326] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 629.333259] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 629.339998] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 629.352247] Interruptibility = 00000000 ActivityState = 00000000 [ 629.359743] *** Host State *** [ 629.367724] RIP = 0xffffffff811fd350 RSP = 0xffff8880561ff3f0 [ 629.375262] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 629.381899] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 629.395698] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 629.401850] CR0=0000000080050033 CR3=000000009fc5e000 CR4=00000000001426e0 [ 629.412150] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 629.422860] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 629.432080] *** Control State *** [ 629.438726] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 629.450595] EntryControls=0000d1ff ExitControls=002fefff [ 629.459407] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 629.469478] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 629.479675] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 629.489451] reason=80000021 qualification=0000000000000002 [ 629.499170] IDTVectoring: info=00000000 errcode=00000000 [ 629.510994] TSC Offset = 0xfffffead3268ad20 [ 629.519714] EPT pointer = 0x000000009f12701e [ 629.545136] *** Guest State *** [ 629.548488] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 629.559085] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 629.568188] CR3 = 0x0000000000004000 [ 629.571973] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 629.578712] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 629.585312] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 629.591361] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 629.597566] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 629.604671] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 629.612915] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 629.621894] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 629.630570] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 629.639119] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 629.647181] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 629.655219] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 629.663245] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 629.671364] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 629.679422] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 629.687972] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 629.694438] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 629.701972] Interruptibility = 00000000 ActivityState = 00000000 [ 629.708244] *** Host State *** [ 629.711438] RIP = 0xffffffff811fd350 RSP = 0xffff8880561ff3f0 [ 629.717493] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 629.723937] FSBase=00007f4e27b31700 GSBase=ffff8880ae700000 TRBase=fffffe0000003000 [ 629.731767] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 629.737715] CR0=0000000080050033 CR3=000000009fc5e000 CR4=00000000001426e0 [ 629.744759] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 629.751433] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 629.757547] *** Control State *** [ 629.760997] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 629.767773] EntryControls=0000d1ff ExitControls=002fefff [ 629.773278] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 629.780200] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 629.786913] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 18:31:16 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x200037e, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r3 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:16 executing program 3: 18:31:16 executing program 5: 18:31:16 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x33fe0, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$cgroup_ro(r2, &(0x7f0000000100)='memory.swap.current\x00', 0x0, 0x0) ioctl$KVM_GET_NESTED_STATE(r3, 0xc080aebe, &(0x7f0000000280)={0x0, 0x0, 0x2080}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000000)={0x1000, 0xf000, 0x3, 0x6, 0x8}) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$VIDIOC_STREAMON(r4, 0x40045612, &(0x7f0000000080)=0x8) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 18:31:16 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) syz_open_dev$media(&(0x7f0000000340)='/dev/media#\x00', 0x20, 0x200000) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() wait4(r2, &(0x7f0000000200), 0x0, &(0x7f0000000240)) r3 = syz_open_dev$adsp(&(0x7f0000000300)='/dev/adsp#\x00', 0xffffffff80000000, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffff9c, 0x84, 0x14, &(0x7f00000003c0)=@assoc_value={0x0}, &(0x7f0000000400)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r3, 0x84, 0x72, &(0x7f0000000440)={r4, 0x9, 0x30}, 0xc) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) [ 629.793535] reason=80000021 qualification=0000000000000002 [ 629.799848] IDTVectoring: info=00000000 errcode=00000000 [ 629.805348] TSC Offset = 0xfffffead3268ad20 [ 629.809671] EPT pointer = 0x000000009f12701e 18:31:16 executing program 5: 18:31:16 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x7ffff000, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:16 executing program 3: 18:31:16 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="8500000095000000000000005867699921abaa4859ee2c8726462595f1dec6bf1f38c25656dac3cb5305737739fe73006e5b81a63e6219b93701000000000000000000000000000000dc396414add512b90c54c7e66f538a9e659c897f70425f658baa3fa6c40b6b4e2450457d3c61b21033e902008d488a88953d55d3509f395ed3e9dcf10a62a937dedff88ff6119ab547693e377835f788ef69481e48ab130baf18d8aa10"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:16 executing program 3: [ 630.162838] *** Guest State *** 18:31:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x86100, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 630.184161] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 630.220029] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 630.238140] CR3 = 0x0000000000004000 [ 630.265711] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 630.299053] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 630.307919] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 630.335664] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 630.342090] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 630.351266] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 630.359578] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 630.367916] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 630.376540] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 630.384771] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 630.393257] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 630.401550] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 630.409950] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 630.418326] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 630.426654] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 630.434795] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 630.441309] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 630.449028] Interruptibility = 00000000 ActivityState = 00000000 [ 630.456238] *** Host State *** [ 630.459632] RIP = 0xffffffff811fd350 RSP = 0xffff8880557b73f0 [ 630.466272] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 630.472873] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 630.480934] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 630.487674] CR0=0000000080050033 CR3=000000008d94c000 CR4=00000000001426f0 [ 630.494830] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 630.501535] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 630.507772] *** Control State *** [ 630.511285] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 630.518274] EntryControls=0000d1ff ExitControls=002fefff [ 630.523966] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 630.530995] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 630.537805] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 630.544531] reason=80000021 qualification=0000000000000002 [ 630.550923] IDTVectoring: info=00000000 errcode=00000000 [ 630.556478] TSC Offset = 0xfffffeac8567a7f0 [ 630.560868] EPT pointer = 0x00000000a006301e [ 630.625904] *** Guest State *** [ 630.629370] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 630.638343] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 630.647412] CR3 = 0x0000000000004000 [ 630.651138] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 630.657723] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 630.664665] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 630.670636] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 630.676788] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 630.683510] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 630.691476] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 630.699578] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 630.707589] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 630.716518] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 630.724631] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 630.732641] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 630.740842] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 630.748904] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 630.756927] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 630.764964] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 630.771371] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 630.778890] Interruptibility = 00000000 ActivityState = 00000000 [ 630.785144] *** Host State *** [ 630.788331] RIP = 0xffffffff811fd350 RSP = 0xffff8880913b73f0 [ 630.794396] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 630.800806] FSBase=00007f4e27b10700 GSBase=ffff8880ae700000 TRBase=fffffe0000033000 [ 630.808710] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 630.814668] CR0=0000000080050033 CR3=000000008d94c000 CR4=00000000001426e0 [ 630.821687] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff88001360 [ 630.828418] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 630.834522] *** Control State *** [ 630.837964] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 630.845551] EntryControls=0000d1ff ExitControls=002fefff [ 630.851012] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 630.857997] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 630.864693] VMExit: intr_info=00000000 errcode=00000000 ilen=00000004 18:31:17 executing program 1: shmat(0x0, &(0x7f0000ffa000/0x5000)=nil, 0x7000) getpgid(0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$netlink(0x10, 0x3, 0xf) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000040)={0x7, @pix_mp={0x5300000000000000, 0x0, 0x31303453, 0x0, 0x6, [{0x80000001}, {0x5, 0x2}, {0x1, 0x2}, {0x600000000, 0xdd9e}, {0x8}, {0x9e4, 0xf9}, {0x9, 0x4}, {0x0, 0x675}], 0x2, 0x25, 0x6, 0x2, 0x4}}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, &(0x7f0000000300)="67660f3a400300baf80c66b85fbeb78066efbafc0cb0e3eeba200066edc30f350f20e06635200000000f22e0660f3830b3708f3e0f060f01712166b9800000c00f326635000100000f30", 0x4a}], 0x1, 0x13, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffff9c, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=0x0, &(0x7f0000000200)=0x4) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f00000002c0)={r3, 0x7fff}, &(0x7f0000001380)=0x8) mincore(&(0x7f0000ff1000/0x7000)=nil, 0x7000, &(0x7f0000000380)=""/4096) r4 = syz_open_dev$swradio(0x0, 0x1, 0x2) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f0000000180)={0x30, 0x5, 0x0, {0x0, 0x6, 0xc72}}, 0x30) write$P9_RSTAT(0xffffffffffffffff, 0x0, 0x0) ioctl$SG_SET_COMMAND_Q(r4, 0x2271, &(0x7f0000000140)) mbind(&(0x7f0000ff2000/0x2000)=nil, 0x2000, 0x1, &(0x7f0000000000)=0x8001, 0x1, 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) 18:31:17 executing program 5: 18:31:17 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0xc0, 0x4000000000002, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:17 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="8500000007000000250000000000000095000000000000008744aba368ec88caf9bcc6ff035c1028341f73e3a56861f232755a8550e32d0fa3defc4f57a600"], &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = gettid() syz_open_dev$audion(&(0x7f0000000140)='/dev/audio#\x00', 0xffffffff, 0x8000) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r2, r0, 0x0, 0xa, &(0x7f0000000100)='em0--eth1\x00', 0xffffffffffffffff}, 0x30) 18:31:17 executing program 3: 18:31:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000014000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000240)="640fbe0af0f75100ba420066ed360faa66b9800000c00f326635000800000f308221990fc71e27000f216d260f2134baf80c66b82735ea8166efbafc0cb06cee", 0x40}], 0x1, 0x24, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_CPUID(0xffffffffffffffff, 0x4008ae8a, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 630.871260] reason=80000021 qualification=0000000000000002 [ 630.877650] IDTVectoring: info=00000000 errcode=00000000 [ 630.883244] TSC Offset = 0xfffffeac8567a7f0 [ 630.887564] EPT pointer = 0x00000000a006301e 18:31:17 executing program 3: 18:31:17 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000008, 0x1, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:17 executing program 5: [ 631.156885] *** Guest State *** 18:31:17 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001280)='/dev/dlm_plock\x00', 0x40, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000001340)={0x0, 0x9, 0x30, 0x0, 0x2}, &(0x7f0000001380)=0x18) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f00000013c0)={r2, 0x16, "792bc5e5602f3f21bf2d668b61d1dbb0442887e4eb22"}, &(0x7f0000001400)=0x1e) r3 = gettid() ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) r4 = creat(&(0x7f0000000100)='./file0\x00', 0x60) ioctl$DRM_IOCTL_SET_MASTER(r4, 0x641e) ioctl$KVM_SET_GUEST_DEBUG(r4, 0x4048ae9b, &(0x7f0000001440)={0x1, 0x0, [0x1c, 0x7ff, 0xfffffffffffffffd, 0x800, 0xfffffffffffeffff, 0x400, 0x1, 0x6]}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={r3, r0, 0x0, 0x475, &(0x7f00000012c0)='\x88x\x80\nx\xaaX0\n\xe9^EC\xdf\xdfp\xc9+}h\xf92\xdeJ\xc3\x8d\x01@C,\xc4$\x8e-\xf1c\xdaY\xff8R!z%&\x82\xc6\xf2\xf7\xffeD\xd5 L\x00\x97;\x9dyI\xe9\xa3\xe8\xee\x8c\xffr\x8a\x11\x83L\x9bte\xea:\x11\xfb3\xcb\x11e\xb8\x0e\",\a', 0xffffffffffffffff}, 0xffffffffffffffe2) r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x20100, 0x0) ioctl$DRM_IOCTL_MAP_BUFS(r5, 0xc0186419, &(0x7f0000001240)={0x1, &(0x7f0000000040)=""/146, &(0x7f0000001200)=[{0xe82, 0x1000, 0x8, &(0x7f0000000200)=""/4096}]}) 18:31:17 executing program 0: socket$inet(0x2, 0x4000000000000001, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x14, 0x4000000000002, 0xffffff1f, 0xffffffffffffffff}, 0x14}}, 0x0) 18:31:17 executing program 3: [ 631.191339] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 631.247255] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 631.297680] CR3 = 0x0000000000004000 [ 631.309829] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 631.318715] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 631.336227] RSP = 0x0000000000000f6e RIP = 0x000000000000912c [ 631.350937] Unknown ioctl -1072143335 [ 631.359389] RFLAGS=0x00000006 DR7 = 0x0000000000000400 [ 631.365142] Unknown ioctl -1072143335 [ 631.375614] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 631.387259] CS: sel=0x0010, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 631.402595] DS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 631.421002] SS: sel=0x0038, attr=0x04093, limit=0x0000ffff, base=0x0000000000000000 [ 631.448442] ES: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 631.462419] FS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 631.471148] GS: sel=0x0000, attr=0x100f3, limit=0x0000ffff, base=0x0000000000000000 [ 631.479371] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 631.487488] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 631.495609] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 631.503638] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 631.511655] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 631.518118] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 631.525712] Interruptibility = 00000000 ActivityState = 00000000 [ 631.531944] *** Host State *** [ 631.535211] RIP = 0xffffffff811fd350 RSP = 0xffff8880585573f0 [ 631.541181] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 631.547643] FSBase=00007f4e27b52700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 631.555484] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 631.561362] CR0=0000000080050033 CR3=00000000a0ec8000 CR4=00000000001426f0 [ 631.568426] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 631.575136] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 631.581184] *** Control State *** [ 631.584683] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 631.591343] EntryControls=0000d1ff ExitControls=002fefff [ 631.596849] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 631.603894] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 631.610560] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 631.617224] reason=80000021 qualification=0000000000000002 [ 631.623601] IDTVectoring: info=00000000 errcode=00000000 [ 631.629042] TSC Offset = 0xfffffeabf3a4a35d [ 631.633403] EPT pointer = 0x000000009f7d901e [ 631.693156] *** Guest State *** [ 631.696542] CR0: actual=0x0000000080000039, shadow=0x00000000e0000019, gh_mask=fffffffffffffff7 [ 631.711261] CR4: actual=0x0000000000002070, shadow=0x0000000000000030, gh_mask=ffffffffffffe871 [ 631.720219] CR3 = 0x0000000000004000 [ 631.724757] PDPTR0 = 0x00000000000000e7 PDPTR1 = 0x0000000000000000 [ 631.731388] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 631.737947] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 631.744612] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 631.750710] Sysenter RSP=0000000000000f80 CS:RIP=0030:0000000000002810 [ 631.757474] CS: sel=0x0030, attr=0x0409b, limit=0x000fffff, base=0x0000000000000000 [ 631.765572] DS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 631.773560] SS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 631.781512] ES: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 631.789518] FS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 631.797526] GS: sel=0x0038, attr=0x04093, limit=0x000fffff, base=0x0000000000000000 [ 631.805597] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 631.813632] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 631.821594] IDTR: limit=0x000001ff, base=0x0000000000003800 [ 631.829622] TR: sel=0x00d0, attr=0x0008b, limit=0x000001ff, base=0x0000000000004e00 [ 631.837608] EFER = 0x0000000000000001 PAT = 0x0007040600070406 [ 631.844165] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 631.851608] Interruptibility = 00000000 ActivityState = 00000000 [ 631.857868] *** Host State *** [ 631.861063] RIP = 0xffffffff811fd350 RSP = 0xffff88805581f3f0 [ 631.867093] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 631.873542] FSBase=00007f4e27b10700 GSBase=ffff8880ae600000 TRBase=fffffe0000003000 [ 631.881319] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 631.887253] CR0=0000000080050033 CR3=00000000a0ec8000 CR4=00000000001426f0 [ 631.894287] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff88001360 [ 631.900934] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 631.907031] *** Control State *** [ 631.910474] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ca [ 631.917160] EntryControls=0000d1ff ExitControls=002fefff [ 631.922605] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 631.929552] VMEntry: intr_info=00000306 errcode=00000000 ilen=00000000 [ 631.936234] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 631.942791] reason=80000021 qualification=0000000000000002 [ 631.949142] IDTVectoring: info=00000000 errcode=00000000 [ 631.954628] TSC Offset = 0xfffffeabf3a4a35d [ 631.958930] EPT pointer = 0x000000009f7d901e [ 631.965278] WARNING: CPU: 0 PID: 27442 at arch/x86/kvm/mmu.c:830 mmu_spte_clear_track_bits+0x45f/0x520 [ 631.975053] Kernel panic - not syncing: panic_on_warn set ... [ 631.980938] CPU: 0 PID: 27442 Comm: syz-executor1 Not tainted 4.20.0+ #395 [ 631.987929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 631.997261] Call Trace: [ 631.999831] dump_stack+0x1d3/0x2c6 [ 632.003455] ? dump_stack_print_info.cold.1+0x20/0x20 [ 632.008640] panic+0x2ad/0x55f [ 632.011814] ? add_taint.cold.5+0x16/0x16 [ 632.015960] ? __warn.cold.8+0x5/0x52 [ 632.019746] ? mmu_spte_clear_track_bits+0x45f/0x520 [ 632.024834] __warn.cold.8+0x20/0x52 [ 632.028537] ? rcu_softirq_qs+0x20/0x20 [ 632.032487] ? mmu_spte_clear_track_bits+0x45f/0x520 [ 632.037566] report_bug+0x254/0x2d0 [ 632.041235] do_error_trap+0x11b/0x200 [ 632.045135] do_invalid_op+0x36/0x40 [ 632.048869] ? mmu_spte_clear_track_bits+0x45f/0x520 [ 632.053993] invalid_op+0x14/0x20 [ 632.057461] RIP: 0010:mmu_spte_clear_track_bits+0x45f/0x520 [ 632.063190] Code: 40 ff ff ff 31 ff 44 89 fe 48 ba 00 00 00 00 00 fc ff df c6 04 10 f8 e8 6f 74 70 00 45 85 ff 0f 85 65 fd ff ff e8 51 73 70 00 <0f> 0b e9 59 fd ff ff e8 45 73 70 00 4c 89 ef e8 3d 32 f7 ff 31 f6 [ 632.082096] RSP: 0018:ffff88805581ecf8 EFLAGS: 00010246 [ 632.087544] RAX: 0000000000040000 RBX: 400000003ede8c77 RCX: ffffc900081e3000 [ 632.094809] RDX: 0000000000040000 RSI: ffffffff8111435f RDI: 0000000000000005 [ 632.102116] RBP: ffff88805581ee10 R08: ffff88809a4c6600 R09: fffff940001f6f46 [ 632.109431] R10: fffff940001f6f46 R11: ffffea0000fb7a37 R12: 1ffff1100ab03da1 [ 632.116701] R13: 000000000003ede8 R14: ffff88805581ede8 R15: 0000000000000000 [ 632.123996] ? mmu_spte_clear_track_bits+0x45f/0x520 [ 632.129104] ? mmu_spte_clear_track_bits+0x45f/0x520 [ 632.134209] ? mmu_spte_update+0x340/0x340 [ 632.138444] ? mmu_shrink_scan+0xb70/0xb70 [ 632.142669] ? __lock_acquire+0x62f/0x4c20 [ 632.146915] ? debug_object_deactivate+0x2eb/0x450 [ 632.151848] drop_spte+0x24/0x220 [ 632.155295] mmu_page_zap_pte+0x2d3/0x3a0 [ 632.159430] ? drop_spte+0x220/0x220 [ 632.163147] ? __lock_is_held+0xb5/0x140 [ 632.167235] kvm_mmu_prepare_zap_page+0x1f9/0x1530 [ 632.172169] ? kvm_handle_hva_range+0x780/0x780 [ 632.176829] ? __lock_acquire+0x62f/0x4c20 [ 632.181086] ? __lock_acquire+0x62f/0x4c20 [ 632.185318] ? graph_lock+0x270/0x270 [ 632.189115] ? print_usage_bug+0xc0/0xc0 [ 632.193180] ? mark_held_locks+0x130/0x130 [ 632.197410] ? mark_held_locks+0x130/0x130 [ 632.201632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 632.207164] ? check_preemption_disabled+0x48/0x280 [ 632.212178] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 632.217702] ? kvm_make_vcpus_request_mask+0x48c/0x5a0 [ 632.222969] ? gfn_to_pfn_atomic+0x7a0/0x7a0 [ 632.227379] ? graph_lock+0x270/0x270 [ 632.231176] ? lock_acquire+0x1ed/0x520 [ 632.235143] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 632.240664] ? check_preemption_disabled+0x48/0x280 [ 632.245705] ? kvm_make_all_cpus_request+0x82/0xb0 [ 632.250630] ? kvm_make_vcpus_request_mask+0x5a0/0x5a0 [ 632.255901] kvm_mmu_invalidate_zap_all_pages+0x348/0x7b0 [ 632.261427] ? kvm_mmu_zap_collapsible_sptes+0x850/0x850 [ 632.266877] ? kvm_vcpu_on_spin+0x830/0x830 [ 632.271193] ? lock_acquire+0x1ed/0x520 [ 632.275165] ? lock_release+0xa00/0xa00 [ 632.279125] ? lock_release+0xa00/0xa00 [ 632.283098] ? trace_hardirqs_on+0x310/0x310 [ 632.287520] kvm_arch_flush_shadow_all+0x15/0x20 [ 632.292271] kvm_mmu_notifier_release+0x59/0x90 [ 632.296927] ? kvm_vcpu_on_spin+0x830/0x830 [ 632.301279] mmu_notifier_unregister+0x1fa/0x600 [ 632.306032] ? kvm_vcpu_on_spin+0x830/0x830 [ 632.310351] ? __mmu_notifier_register+0x30/0x30 [ 632.315088] ? __free_pages+0x10a/0x190 [ 632.319048] ? free_unref_page+0x960/0x960 [ 632.323270] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 632.328712] kvm_put_kvm+0x6c0/0xff0 [ 632.332406] ? kvm_write_guest_cached+0x40/0x40 [ 632.337088] ? up_write+0x7b/0x220 [ 632.340612] ? down_write_nested+0x130/0x130 [ 632.345016] ? mntput+0x74/0xa0 [ 632.348326] ? debugfs_remove_recursive+0x40d/0x530 [ 632.353372] ? fsnotify_first_mark+0x350/0x350 [ 632.357948] ? debugfs_remove+0x130/0x130 [ 632.362083] ? kvm_vm_release+0x50/0x50 [ 632.366048] kvm_vcpu_release+0x7b/0xa0 [ 632.370012] __fput+0x385/0xa50 [ 632.373288] ? get_max_files+0x20/0x20 [ 632.377162] ? trace_hardirqs_on+0xbd/0x310 [ 632.381466] ? kasan_check_read+0x11/0x20 [ 632.385612] ? task_work_run+0x1af/0x2a0 [ 632.389667] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 632.395100] ? kvm_vcpu_ioctl+0x2a1/0x1150 [ 632.399317] ____fput+0x15/0x20 [ 632.402579] task_work_run+0x1e8/0x2a0 [ 632.406474] ? task_work_cancel+0x240/0x240 [ 632.410792] ? __fget+0x4aa/0x740 [ 632.414256] get_signal+0x1558/0x1980 [ 632.418046] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 632.423333] ? ptrace_notify+0x130/0x130 [ 632.427414] ? ksys_dup3+0x680/0x680 [ 632.431152] ? __might_fault+0x12b/0x1e0 [ 632.435219] do_signal+0x9c/0x21c0 [ 632.438753] ? arch_local_save_flags+0x40/0x40 [ 632.443331] ? kvm_vcpu_block+0x1030/0x1030 [ 632.447669] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 632.453207] ? do_vfs_ioctl+0x201/0x1790 [ 632.457266] ? setup_sigcontext+0x7d0/0x7d0 [ 632.461582] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 632.467121] ? check_preemption_disabled+0x48/0x280 [ 632.472136] ? exit_to_usermode_loop+0x8c/0x380 [ 632.476791] ? exit_to_usermode_loop+0x8c/0x380 [ 632.481447] ? lockdep_hardirqs_on+0x421/0x5c0 [ 632.486030] ? trace_hardirqs_on+0xbd/0x310 [ 632.490355] ? task_work_add+0x123/0x1f0 [ 632.494409] ? do_syscall_64+0x6be/0x820 [ 632.498468] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 632.503924] ? cpumask_weight.constprop.5+0x3f/0x3f [ 632.508944] ? do_syscall_64+0x9a/0x820 [ 632.512916] ? do_syscall_64+0x9a/0x820 [ 632.516886] exit_to_usermode_loop+0x2e5/0x380 [ 632.521461] ? syscall_trace_enter+0x1260/0x1260 [ 632.526223] ? ksys_ioctl+0x81/0xd0 [ 632.529881] do_syscall_64+0x6be/0x820 [ 632.533774] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 632.539158] ? syscall_return_slowpath+0x5e0/0x5e0 [ 632.544092] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 632.548960] ? trace_hardirqs_on_caller+0x310/0x310 [ 632.553993] ? prepare_exit_to_usermode+0x291/0x3b0 [ 632.559019] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 632.563893] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 632.569083] RIP: 0033:0x4579b9 [ 632.572283] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 632.591194] RSP: 002b:00007f4e27b0fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 632.598900] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 00000000004579b9 [ 632.606167] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 632.613445] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 632.620719] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4e27b106d4 [ 632.627978] R13: 00000000004c0a77 R14: 00000000004d22b0 R15: 00000000ffffffff [ 632.636694] Kernel Offset: disabled [ 632.640518] Rebooting in 86400 seconds..