, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:47 executing program 2: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x2000, 0x0) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000040)=0x800, 0x4) r1 = syz_open_dev$binder(&(0x7f0000000480)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r2 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r2, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r2, 0x40046207, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000340)={0x88, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00634040000071f4f92dbe89fb22bee717500014000000000000000000000000000000000000110000000000000000000000000000000000000000000000000400000000000000000000000000000000000001045e4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x0, 0x0, 0x0}) [ 279.123789] binder: 11810:11813 got transaction to invalid handle 19:58:47 executing program 5: r0 = syz_open_dev$video4linux(&(0x7f0000000140)='/dev/v4l-subdev#\x00', 0xff, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x200000, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000040)={0x0, 0xcc1}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f00000000c0)=@assoc_value={r2, 0x6}, 0x8) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0585605, &(0x7f0000000180)={0x0, 0x1, 0x0, [], 0x0}) [ 279.183592] binder: 11810:11813 transaction failed 29201/-22, size 1114112-0 line 2896 19:58:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:47 executing program 2: personality(0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000680)='/dev/dlm-control\x00', 0x10000, 0x0) ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000700)={0x100000, 0x6000, 0x401, 0x0, 0x7665b3e7}) r2 = getpgid(0xffffffffffffffff) process_vm_readv(r2, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/77, 0x4d}, {&(0x7f0000000180)=""/52, 0x34}], 0x2, &(0x7f0000000600)=[{&(0x7f0000000200)=""/70, 0x46}, {&(0x7f0000000280)=""/208, 0xd0}, {&(0x7f0000000380)=""/206, 0xce}, {&(0x7f0000000480)=""/95, 0x5f}, {&(0x7f0000000500)=""/219, 0xdb}], 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000001380)={0x0, 0x0, 0x0, 0xfda2, &(0x7f00000000c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0xa14e}, 0x40840) write$binfmt_script(r3, &(0x7f0000000300)=ANY=[], 0xffffffaa) recvmsg(r3, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000013c0)=""/4096, 0x1000}], 0x1}, 0x0) 19:58:47 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xde\xe9\x01\xd2\xdau\xaf0\x02\x00\xf5\xab\xfb\x98E\xf9\xe1\x98Y\xc9i2\x06\xf2\xc6\v\x00\x00\x00\a\x19\xe1\xd6n\x97\x01#\xd8\x93\xd9t\xe5\xb9\xc3(Vw\xb2\x13\x98#\xe5P\f\x92\xab[\x94\xda:}\xe1\x9f\x06;\xb7e\xb0+\xd5\xb6`\xfb\x7f\xa8\x98\xc6\xf5\xc66\x9c?60h\xd1\n\xf83\xf6G[\xbe\x8byg%[\x17v\a\xba\x10\x0flFTq\x822\xdb\xdad\xaa\x1fi\xcf\x9a\xb5\xb3\xea>\xd64R\xb7\xeb\xd3|\x9d\xaefN2.\b\xad\x8f`)\xfe\x8f\xd0\xb3Lq\x17H\x04q\xae\xca\n?\xc9\xec\xeb(P\x9c\xa8\xa8>O\x8b\x85\x13\x18\b\xbc\\\xfbL\xc2N\x19\x01v\x9c\bL\b\'\x12\xb4pfkm\xdd\xf7L\xedi9s\xba\x1d\xed\x8b') fchown(r0, 0x0, 0x0) 19:58:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 279.306205] binder: undelivered TRANSACTION_ERROR: 29201 19:58:48 executing program 1: r0 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0xffffffffffffffff, 0x2) r1 = syz_open_dev$cec(0x0, 0xffffffffffffffff, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000000)={0x10207, 0x1, 0xd000, 0x1000, &(0x7f0000ffd000/0x1000)=nil}) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0xc0386106, &(0x7f0000000300)) 19:58:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 5: r0 = syz_open_dev$sndseq(&(0x7f0000ff0ff3)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f00000002c0)={{0x80, 0x3}, '\nL\xea\xa0]\x9a\x00\x00\x00\x00\x00\x00\x00\x03\x9b?\xd4\xce\xc3\a\xe8\xef=\x13\xeby\x0e\xc9\xc6Z\xba\xf9\r\"\x9d\xb6\x92T.[x\xf8\xb2\x9e\n\'\x80\x0f\x00\x00\x00\x00\x00\x00\x00\t\xfbB\xf3vX\x97\x01\xa4', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}) syz_open_dev$amidi(&(0x7f0000000440)='/dev/amidi#\x00', 0x0, 0x40) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000480)='net/igmp\x00') ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000400)={0x0}) ioctl$DRM_IOCTL_SET_SAREA_CTX(0xffffffffffffffff, 0x4010641c, &(0x7f0000000200)={r2, &(0x7f0000000080)=""/157}) pipe(&(0x7f0000000240)={0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000000380)={{0x3a, @multicast2, 0x4e24, 0x4, 'rr\x00', 0x0, 0x3ff, 0xb}, {@rand_addr=0x401, 0x4e22, 0x0, 0x7, 0x4edf, 0x462c32d8}}, 0x44) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000140)={{0x80}, 'port1\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\t\x00'}) arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000280)) close(0xffffffffffffffff) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x0, 0x0) 19:58:48 executing program 2: openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x44000, 0x0) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000080)=0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) ioctl$UI_SET_RELBIT(r1, 0x40045566, 0xc) r2 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) connect$can_bcm(r2, &(0x7f0000001ff0)={0x1d, r3}, 0x10) sendmsg$can_raw(r2, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d, 0x0, 0xa}, 0xffd1, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0xfeb8}}, 0x0) write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0) 19:58:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:58:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f00000008c0)=""/112, 0x70}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000b00)=""/178, 0xb2}, {&(0x7f00000001c0)=""/33, 0x21}, {&(0x7f0000000bc0)=""/245, 0xf5}, {&(0x7f0000000cc0)=""/62, 0x3e}], 0x7, &(0x7f0000000d80)=""/38, 0x26}, 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0xc020660b, &(0x7f0000000040)={0x0, 0x0, 0x6940000, 0x1000000}) ioctl$RTC_VL_CLR(r1, 0x7014) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@remote}) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000380)={0x0, 0x100000001}, &(0x7f00000003c0)=0x8) ioctl$DRM_IOCTL_ADD_BUFS(r1, 0xc0206416, &(0x7f0000000080)={0x5, 0x4, 0x4c, 0x1ff, 0x4, 0x7d}) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000400)={r2, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x17}}}, 0x1, 0x40, 0x1b3a, 0x3, 0x20}, 0x98) getresuid(&(0x7f00000007c0), &(0x7f0000000800), &(0x7f0000000200)) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000240)={{{@in6=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@local}}, &(0x7f0000000340)=0xe8) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth0_to_bridge\x00', r3}) fdatasync(r1) 19:58:48 executing program 0 (fault-call:7 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_user\x00', 0x0, 0x0) recvmsg(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f00000008c0)=""/112, 0x70}, {&(0x7f0000000940)=""/137, 0x89}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000b00)=""/178, 0xb2}, {&(0x7f00000001c0)=""/33, 0x21}, {&(0x7f0000000bc0)=""/245, 0xf5}, {&(0x7f0000000cc0)=""/62, 0x3e}], 0x7, &(0x7f0000000d80)=""/38, 0x26}, 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='/exe\x00\x00\x00\x00\x00\x04\x89\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\x1e\x18\xf0\xc7o\xbb#*\aBJ\xe1\xe9\x01\xd2\xdau\xaf\x1f\x02\x00\xf5\xab&\xd7\xe0q\xfb53\x1c\xe3\x9cZ\x00\x00') ioctl$FS_IOC_FSGETXATTR(r1, 0xc020660b, &(0x7f0000000040)={0x0, 0x0, 0x6940000, 0x1000000}) ioctl$RTC_VL_CLR(r1, 0x7014) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={@remote}) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000380)={0x0, 0x100000001}, &(0x7f00000003c0)=0x8) ioctl$DRM_IOCTL_ADD_BUFS(r1, 0xc0206416, &(0x7f0000000080)={0x5, 0x4, 0x4c, 0x1ff, 0x4, 0x7d}) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000400)={r2, @in={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x17}}}, 0x1, 0x40, 0x1b3a, 0x3, 0x20}, 0x98) getresuid(&(0x7f00000007c0), &(0x7f0000000800), &(0x7f0000000200)) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000240)={{{@in6=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@local}}, &(0x7f0000000340)=0xe8) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'veth0_to_bridge\x00', r3}) fdatasync(r1) [ 280.399177] FAULT_INJECTION: forcing a failure. [ 280.399177] name failslab, interval 1, probability 0, space 0, times 1 [ 280.466155] CPU: 0 PID: 11888 Comm: syz-executor0 Not tainted 4.20.0+ #5 [ 280.473098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 280.482443] Call Trace: [ 280.485089] dump_stack+0x1db/0x2d0 [ 280.488751] ? dump_stack_print_info.cold+0x20/0x20 [ 280.493804] ? check_usage+0x1a5/0x6f0 [ 280.497689] ? __lock_acquire+0x572/0x4a30 [ 280.501962] should_fail.cold+0xa/0x15 [ 280.505855] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 280.511220] ? ___might_sleep+0x1e7/0x310 [ 280.515377] ? arch_local_save_flags+0x50/0x50 [ 280.519958] ? print_usage_bug+0xd0/0xd0 [ 280.524071] __should_failslab+0x121/0x190 [ 280.528360] should_failslab+0x9/0x14 [ 280.532155] kmem_cache_alloc+0x2be/0x710 [ 280.536305] ? __lock_acquire+0x572/0x4a30 [ 280.540585] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.546264] mmu_topup_memory_caches+0x97/0x490 [ 280.550941] kvm_mmu_load+0x21/0x1200 [ 280.554733] ? mark_held_locks+0x100/0x100 [ 280.554749] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 280.554802] ? __phys_addr+0xa4/0x120 [ 280.564520] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 280.564553] vcpu_enter_guest+0x3f0e/0x6520 [ 280.564575] ? emulator_read_emulated+0x50/0x50 [ 280.582830] ? add_lock_to_list.isra.0+0x450/0x450 [ 280.587756] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.593294] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.598886] ? check_preemption_disabled+0x48/0x290 [ 280.603906] ? __lock_is_held+0xb6/0x140 [ 280.607969] ? lock_acquire+0x1db/0x570 [ 280.611939] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 280.616959] ? lock_release+0xc40/0xc40 [ 280.620961] ? kvm_gen_update_masterclock+0x380/0x380 [ 280.626188] ? rcu_sync_dtor+0x170/0x170 [ 280.630266] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 280.635128] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 280.640206] kvm_vcpu_ioctl+0x558/0x12d0 [ 280.644268] ? kvm_vcpu_block+0x1010/0x1010 [ 280.648585] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 280.654127] ? lock_downgrade+0x910/0x910 [ 280.654139] ? kasan_check_read+0x11/0x20 [ 280.654151] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 280.654164] ? rcu_read_unlock_special+0x380/0x380 [ 280.662477] ? __fget+0x499/0x710 [ 280.662495] ? iterate_fd+0x4b0/0x4b0 [ 280.662513] ? kvm_vcpu_block+0x1010/0x1010 [ 280.684478] do_vfs_ioctl+0x107b/0x17d0 [ 280.688450] ? wait_for_completion+0x810/0x810 [ 280.693054] ? ioctl_preallocate+0x2f0/0x2f0 [ 280.697454] ? __fget_light+0x2db/0x420 [ 280.701419] ? fget_raw+0x20/0x20 [ 280.704851] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 280.710408] ? fput+0x128/0x1a0 [ 280.713689] ? do_syscall_64+0x8c/0x800 [ 280.717646] ? do_syscall_64+0x8c/0x800 [ 280.721597] ? lockdep_hardirqs_on+0x415/0x5d0 [ 280.726190] ? security_file_ioctl+0x93/0xc0 [ 280.730579] ksys_ioctl+0xab/0xd0 [ 280.734010] __x64_sys_ioctl+0x73/0xb0 [ 280.737902] do_syscall_64+0x1a3/0x800 [ 280.741772] ? syscall_return_slowpath+0x5f0/0x5f0 [ 280.746690] ? prepare_exit_to_usermode+0x232/0x3b0 [ 280.751808] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 280.756757] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 280.761929] RIP: 0033:0x457ec9 [ 280.765107] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 280.784079] RSP: 002b:00007f161db97c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 280.791762] RAX: ffffffffffffffda RBX: 00007f161db97c90 RCX: 0000000000457ec9 [ 280.799008] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 280.806255] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 280.813541] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f161db986d4 [ 280.820807] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80003, 0x2f) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x9}, 0x1c) sendmmsg(r0, &(0x7f0000000c40)=[{{0x0, 0xc000002000000000, &(0x7f00000009c0), 0x3e8, &(0x7f00000000c0)}}], 0x40000000000026a, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000001cc0)=[{{&(0x7f0000000580)=@in, 0x80, 0x0, 0x0, &(0x7f00000008c0)}, 0x10fd}], 0x1, 0x10) socket$inet6(0xa, 0x1000000000003, 0x0) r1 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x9, 0x800) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f00000000c0)) setsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000080)={0x3, 0xfffffffffffffffd, 0x6, 0x426b7668, 0x4, 0x80, 0x1, 0x401, 0x7fffffff, 0x2, 0x1ff}, 0xb) 19:58:48 executing program 0 (fault-call:7 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:48 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0a5c1f023c126285719070") r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x7, 0x8000) ioctl$RTC_PIE_ON(r2, 0x7005) setsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000280), 0x1c) setsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f0000000200)=0xfffffffffffffffd, 0x4) ioctl$sock_proto_private(r2, 0x89e6, &(0x7f0000000580)="39dff0e8c759cb9b4f7b4c8a86809bfe4f8d13d8ffa3509261d0a8d070758a636cf013b0377e42c7456ae031d7c4244c3024dc1fdd9a56b9d95f59647eaa03e0fd2ba3cf5d746319") r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x40400, 0x0) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r3, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x290, r4, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x1c, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}]}, @TIPC_NLA_NET={0xc, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfff}]}, @TIPC_NLA_LINK={0x108, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfb}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffffff7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x483}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}]}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x100}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}, @TIPC_NLA_LINK={0x38, 0x4, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_LINK={0x70, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xaf69}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x4}]}, @TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_BEARER={0x68, 0x1, [@TIPC_NLA_BEARER_PROP={0x3c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_BEARER_NAME={0x18, 0x1, @l2={'eth', 0x3a, 'bridge_slave_0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'ip_vti0\x00'}}]}]}, 0x290}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) 19:58:48 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x4, 0x40) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e23, @broadcast}}, 0x9, 0x1, 0xffffffffffffffff, 0x6}, &(0x7f00000000c0)=0x98) setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000100)={r1}, 0x8) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f00000bd000), 0x80, 0x0) r4 = memfd_create(&(0x7f0000000380)='\x06\x00\x00\x00^\x00\xac\xd8\xfd\xcc\xeeq\xe5\xf5\xcb\x801`\xe48\x85\xa4\xf5\xd0\x1b\\\x04\f\xf8F\\\xb4\xba\x85\xef\x12d\xee\xa5?\x00kZ\x8b\x19h\xd7|\x14i\r\x18U9\xc1\xd7\x10\xf0G\x12\xa8\xbaa\xb2\x94|%n\x1e+\x9f\xbb\xb8\xac\x81\x8d\x93q\xd4\xd4z\xaaZ\x0f\xaa\xc7\x97#\xe5g l\xd55\x15\xbf\xfc\xf5\x83\xb72\x00Y\x15\x92\xb1\xb6a\xf4\xe9u\xb2\xe7\xeciy\b\xdb\xc7\xf1\x87\xc9\a\x91\x04J\xc8\x0e\xff|J\'Nxr\x00\xbc\xab5\x9b\x85>\x99\xcaz2\xabKI\xdc\xe4\x9f\xa5\xd0\x0ewm\xe7\xccK\xc9\x8b\x8bE\x89\x03\x00\x00\x00}]Ry\xa69^\xdc\x9d\xa0\x04\xdf \aelO7\xf1\xda\xcc\xa2x\xc2\x9a\xf5\x18F\xa0\x80M\xf9,+\xc9\xf7/nt\x9ba\x14\x1b\x18\xdd\x18X\xd2o\x15\x97L\xe6\xb5\xba\xc7\xf2W\n\x7f\x14ZIL:T\x1bd\x19\x8dE\x9c\xb1\xb9JK\x1do\x85\xe9\xa2\xca\x9cd\b\xc8\xbdiQ_L\xb0\xb9 \xf7/F\xfc\'M#,\x84M\xba\xa9\xa2yr\'?f\tb\xdai\xfd\x8c\x9aoj\x84\x03i\x8a|\xf7T;=p\xa2\x98f\xc7\xefu=\x96\xcb\x11\x91\xce\xce\xbev\xaa\xbb\xca\xfa\xa3\xde\xd5\x1f\xd7\x03:12\xf2\xfd\rN\x84=A\xae\x9b3\x81\xb8,j\xe1\xbb\x1b\x1f@\x80\x84O\x85y\xdem40\x0e`\xd4e\x9c\x83\xc5J\x8bg\xae\\\xb4\xbc\xe1\x8asf\xdb\x17 k\x81I{\xd7\xd2\x06\xa8A\xf0Fo\x17\x80\x9f\x17\x1e\xe8\xb6\x11\x9c\xf1\xe1ReVSE\x9eh:\x8b:\x16t\x10~nGq#\xdf\xbe\xa0\xb1\xab\xe8O\xabh\x94w\f\xcb\xd1\xdb\xbc\x1a\xcf\xa0s\xe6\xbd\x8f\xe3iV\xf2tS\x83h\x9e\x01ZD\xc8Cx', 0x6) write$binfmt_misc(r4, &(0x7f0000000c40)=ANY=[@ANYRES32], 0xff67) sendfile(r3, r4, &(0x7f0000000040), 0xfffb) fcntl$addseals(r4, 0x409, 0x8) fsetxattr$system_posix_acl(r4, &(0x7f0000000080)='system.posix_acl_access\x00', 0x0, 0x0, 0x0) dup3(r3, r4, 0x0) shutdown(r3, 0x1) 19:58:49 executing program 2: r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffff9c, 0xae41, 0x1) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.effective_mems\x00', 0x0, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891b, &(0x7f0000000100)={'syzkaller1\x00', {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}}) ioctl$KVM_TPR_ACCESS_REPORTING(r0, 0xc028ae92, &(0x7f0000000040)={0x5f87}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f00000001c0)={{0x695e, 0x3}, 'port1\x00', 0x84a5e205c185b300, 0x0, 0x7, 0x20, 0x5, 0x1, 0x5de, 0x0, 0x6, 0x3ff}) io_setup(0x1000, &(0x7f0000000080)=0x0) io_getevents(r3, 0x0, 0x0, 0x0, 0x0) close(0xffffffffffffffff) socket$vsock_dgram(0x28, 0x2, 0x0) io_submit(r3, 0x1400, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000140), 0x700000000000}]) ioctl$TUNGETVNETHDRSZ(r1, 0x800454d7, &(0x7f0000000140)) [ 281.068002] FAULT_INJECTION: forcing a failure. [ 281.068002] name failslab, interval 1, probability 0, space 0, times 0 [ 281.124507] CPU: 1 PID: 11925 Comm: syz-executor0 Not tainted 4.20.0+ #5 [ 281.131450] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.140816] Call Trace: [ 281.143497] dump_stack+0x1db/0x2d0 [ 281.147129] ? dump_stack_print_info.cold+0x20/0x20 [ 281.152144] ? percpu_ref_put_many+0x129/0x270 [ 281.156735] should_fail.cold+0xa/0x15 [ 281.160624] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 281.165729] ? ___might_sleep+0x1e7/0x310 [ 281.169877] ? arch_local_save_flags+0x50/0x50 [ 281.174471] __should_failslab+0x121/0x190 [ 281.178716] should_failslab+0x9/0x14 [ 281.182520] kmem_cache_alloc+0x2be/0x710 [ 281.186666] ? mark_held_locks+0xb1/0x100 [ 281.190820] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.196360] mmu_topup_memory_caches+0x97/0x490 [ 281.201032] kvm_mmu_load+0x21/0x1200 [ 281.204828] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.210373] ? check_preemption_disabled+0x48/0x290 [ 281.215394] vcpu_enter_guest+0x3f0e/0x6520 [ 281.219731] ? emulator_read_emulated+0x50/0x50 [ 281.224393] ? add_lock_to_list.isra.0+0x450/0x450 [ 281.229321] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.234855] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.240393] ? check_preemption_disabled+0x48/0x290 [ 281.245413] ? __lock_is_held+0xb6/0x140 [ 281.249503] ? lock_acquire+0x1db/0x570 [ 281.253472] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 281.258520] ? lock_release+0xc40/0xc40 [ 281.262512] ? kvm_gen_update_masterclock+0x380/0x380 [ 281.267699] ? rcu_sync_dtor+0x170/0x170 [ 281.271760] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 281.276604] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 281.281624] kvm_vcpu_ioctl+0x558/0x12d0 [ 281.285685] ? kvm_vcpu_block+0x1010/0x1010 [ 281.290002] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.295539] ? lock_downgrade+0x910/0x910 [ 281.299679] ? kasan_check_read+0x11/0x20 [ 281.303825] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 281.309209] ? rcu_read_unlock_special+0x380/0x380 [ 281.314146] ? __fget+0x499/0x710 [ 281.317603] ? iterate_fd+0x4b0/0x4b0 [ 281.321508] ? kvm_vcpu_block+0x1010/0x1010 [ 281.325914] do_vfs_ioctl+0x107b/0x17d0 [ 281.329889] ? wait_for_completion+0x810/0x810 [ 281.334474] ? ioctl_preallocate+0x2f0/0x2f0 [ 281.338967] ? __fget_light+0x2db/0x420 [ 281.342937] ? fget_raw+0x20/0x20 [ 281.346393] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 281.351926] ? fput+0x128/0x1a0 [ 281.355211] ? do_syscall_64+0x8c/0x800 [ 281.359180] ? do_syscall_64+0x8c/0x800 [ 281.363625] ? lockdep_hardirqs_on+0x415/0x5d0 [ 281.368206] ? security_file_ioctl+0x93/0xc0 [ 281.372615] ksys_ioctl+0xab/0xd0 [ 281.376073] __x64_sys_ioctl+0x73/0xb0 [ 281.379972] do_syscall_64+0x1a3/0x800 [ 281.383861] ? syscall_return_slowpath+0x5f0/0x5f0 [ 281.388790] ? prepare_exit_to_usermode+0x232/0x3b0 [ 281.393930] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 281.398779] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 281.403959] RIP: 0033:0x457ec9 [ 281.407145] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 19:58:49 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0xffffffa5}}, &(0x7f0000000240)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2', 0x1, 0x348, &(0x7f0000000480)=""/195, 0x0, 0x0, [0x42]}, 0x48) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) [ 281.426126] RSP: 002b:00007f161db97c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 281.433828] RAX: ffffffffffffffda RBX: 00007f161db97c90 RCX: 0000000000457ec9 [ 281.441102] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 281.448398] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 281.455673] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f161db986d4 [ 281.462936] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:49 executing program 5: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000140)='/proc/capi/capi20\x00', 0x0, 0x0) ioctl$EVIOCSABS2F(r0, 0x401845ef, &(0x7f0000000000)={0x9, 0x3ff, 0x7, 0x1, 0x6, 0x10001}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000000040)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) openat$capi20(0xffffffffffffff9c, &(0x7f0000000100)='/dev/capi20\x00', 0xfffffffffffffffc, 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') preadv(r0, &(0x7f0000000280)=[{&(0x7f00000001c0)=""/10}, {&(0x7f0000000200)=""/11}], 0xffffcfc, 0x1000000000000) 19:58:49 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0x10, 0x3, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0, 0x144) bind$vsock_dgram(r2, &(0x7f0000000940)={0x28, 0x0, 0x2711, @my=0x1}, 0x10) setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000480)={'filter\x00', 0x7, 0x4, 0x460, 0x258, 0x258, 0x258, 0x378, 0x378, 0x378, 0x4, &(0x7f0000000440), {[{{@arp={@rand_addr, @local, 0xffffffff, 0xff0000ff, @mac, {[0xff, 0xff, 0xff, 0x0, 0x0, 0xff]}, @mac, {[0x0, 0x0, 0xff, 0x0, 0xff, 0xff]}, 0x3, 0x910a, 0x5, 0x10000, 0x7, 0x3, 'yam0\x00', 'bcsf0\x00', {0xff}, {}, 0x0, 0x13}, 0xf0, 0x118}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x4, 0x20, 0x1}}}, {{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@dev={[], 0x25}, @local, @loopback, 0x2}}}, {{@uncond, 0xf0, 0x120}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x8, 0x3, 0x80, 0x1}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4b0) ioctl$sock_SIOCBRADDBR(0xffffffffffffffff, 0x89a0, &(0x7f0000000080)='veth1\x00') bind$isdn_base(r2, &(0x7f0000000980)={0x22, 0xb100, 0xfffffffffffffff7, 0x9, 0xffff}, 0x6) setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000180), 0x4) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, r3, 0x0, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x71}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x4}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x8, 0x7, 0x4e24}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8004}, 0x8001) fcntl$getown(r2, 0x9) sendmsg(r1, &(0x7f00000000c0)={&(0x7f0000000100)=@nl, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000000)="5500000018007f5300fe01b2a4a280930a602c0fffa8430291000000390009002b000c000b0000001900050000000000000008dc1338d54402009bcdc66ef75afb83de448daa7227c43ab8220000060cec4fab91cf", 0x55}], 0x1, &(0x7f00000000c0)}, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000300), 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040), &(0x7f00000000c0)=0xc) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000380), &(0x7f00000003c0)=0x40) 19:58:49 executing program 0 (fault-call:7 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:49 executing program 5: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x60002, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000000180)={0x0, 0x2, 0x8, &(0x7f0000000140)=0xffffffffffff0001}) r1 = socket$kcm(0x11, 0x3, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x284000, 0x0) getsockname$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4}, &(0x7f0000000080)=0x1c) getsockopt$sock_int(r1, 0x1, 0x7, 0x0, &(0x7f00000000c0)) 19:58:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x2203, 0x0) r1 = dup3(r0, r0, 0x80000) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000000c0)={r1, &(0x7f0000000080)="2cc1038a202729183029cce869403b62a42f2de361152606bb5e8b3f77a3bba9a9615e2d0a8d56c26749", &(0x7f0000000200)=""/78}, 0x18) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000340)}, &(0x7f0000000400)=0x10) ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000880)={{0x2, 0x4e22, @empty}, {0x307, @remote}, 0x0, {0x2, 0x4e24, @rand_addr=0xfffffffffffffff7}, 'veth1_to_team\x00'}) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000500)={0x0, 0xbc, &(0x7f0000000440)=[@in6={0xa, 0x4e24, 0x6, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x100}, @in={0x2, 0x4e22, @rand_addr=0x1}, @in6={0xa, 0x4e20, 0x8, @empty, 0x1}, @in={0x2, 0x4e24, @rand_addr=0x7}, @in6={0xa, 0x4e24, 0x1, @ipv4={[], [], @rand_addr=0x800}, 0x1}, @in6={0xa, 0x4e22, 0xf0, @local, 0x7}, @in={0x2, 0x4e22, @rand_addr=0x6}, @in6={0xa, 0x4e21, 0x8, @empty, 0x2}]}, &(0x7f0000000540)=0x10) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000580)={r2, 0x4f2e, 0x4, 0x40, 0x5, 0xffff, 0x2, 0x6, {r3, @in={{0x2, 0x4e23, @local}}, 0x4, 0x200, 0x4, 0x0, 0x5}}, &(0x7f0000000640)=0xb0) prctl$PR_SET_FPEMU(0xa, 0x1) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000380)='/dev/audio\x00', 0x4401000408002, 0x0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000680)) ioctl$TIOCMBIS(r5, 0x5416, 0xffffffffffffffff) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x3000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) r6 = add_key(&(0x7f00000006c0)='rxrpc\x00', &(0x7f0000000700)={'syz', 0x2}, &(0x7f0000000740)="fcb857eba7d53394126835f1eca4be594c0835c8ca7df8e5b0c5ef6522eee34d0a4ae55b9b400f2e5c00675749a3cdc75a9e1b8b1a0ea1342d5d46605bbd8a63ecbee41748047a542214565aaf2a262ad6c5b9edd6a7177638cb1c2245fd0464ce466da1be2c5e95b964863e9d506806a8f958", 0x73, 0xfffffffffffffffd) keyctl$read(0xb, r6, &(0x7f00000007c0)=""/126, 0x7e) r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2c000001}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x30, r7, 0x20, 0x70bd25, 0x25dfdbfe, {{}, 0x0, 0x5, 0x0, {0x14, 0x19, {0x7f4d9e93, 0xacc, 0x101, 0x80000001}}}, ["", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x800) r8 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r8, 0x4008ae89, &(0x7f0000000180)={0x7b, 0x0, [0x4b564d01, 0x35fd]}) ioctl$TIOCOUTQ(r5, 0x5411, &(0x7f0000000840)) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c832, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) [ 281.760429] IPv6: Can't replace route, no match found 19:58:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 281.819042] FAULT_INJECTION: forcing a failure. [ 281.819042] name failslab, interval 1, probability 0, space 0, times 0 [ 281.861529] IPv6: Can't replace route, no match found [ 281.872986] CPU: 0 PID: 11966 Comm: syz-executor0 Not tainted 4.20.0+ #5 [ 281.879833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 281.889177] Call Trace: [ 281.891764] dump_stack+0x1db/0x2d0 [ 281.895406] ? dump_stack_print_info.cold+0x20/0x20 [ 281.900526] ? percpu_ref_put_many+0x129/0x270 [ 281.905115] should_fail.cold+0xa/0x15 [ 281.908999] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 281.914093] ? ___might_sleep+0x1e7/0x310 [ 281.918261] ? arch_local_save_flags+0x50/0x50 [ 281.922853] __should_failslab+0x121/0x190 [ 281.927069] should_failslab+0x9/0x14 [ 281.930852] kmem_cache_alloc+0x2be/0x710 [ 281.934981] ? mark_held_locks+0xb1/0x100 [ 281.939206] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.944736] mmu_topup_memory_caches+0x97/0x490 [ 281.949391] kvm_mmu_load+0x21/0x1200 [ 281.953182] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 281.958792] ? check_preemption_disabled+0x48/0x290 [ 281.963793] vcpu_enter_guest+0x3f0e/0x6520 [ 281.968112] ? emulator_read_emulated+0x50/0x50 [ 281.972759] ? add_lock_to_list.isra.0+0x450/0x450 [ 281.977668] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.983182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 281.988698] ? check_preemption_disabled+0x48/0x290 [ 281.993701] ? __lock_is_held+0xb6/0x140 [ 281.997743] ? lock_acquire+0x1db/0x570 [ 282.001699] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 282.006712] ? lock_release+0xc40/0xc40 [ 282.010669] ? kvm_gen_update_masterclock+0x380/0x380 [ 282.015842] ? rcu_sync_dtor+0x170/0x170 [ 282.019904] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 282.024745] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 282.029748] kvm_vcpu_ioctl+0x558/0x12d0 [ 282.033791] ? kvm_vcpu_block+0x1010/0x1010 [ 282.038095] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 282.043620] ? lock_downgrade+0x910/0x910 [ 282.047763] ? kasan_check_read+0x11/0x20 [ 282.051895] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 282.057163] ? rcu_read_unlock_special+0x380/0x380 [ 282.062077] ? __fget+0x499/0x710 [ 282.065530] ? iterate_fd+0x4b0/0x4b0 [ 282.069323] ? kvm_vcpu_block+0x1010/0x1010 [ 282.073642] do_vfs_ioctl+0x107b/0x17d0 [ 282.077613] ? wait_for_completion+0x810/0x810 [ 282.082180] ? ioctl_preallocate+0x2f0/0x2f0 [ 282.086568] ? __fget_light+0x2db/0x420 [ 282.090531] ? fget_raw+0x20/0x20 [ 282.093964] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 282.099478] ? fput+0x128/0x1a0 [ 282.102737] ? do_syscall_64+0x8c/0x800 [ 282.106690] ? do_syscall_64+0x8c/0x800 [ 282.110642] ? lockdep_hardirqs_on+0x415/0x5d0 [ 282.115216] ? security_file_ioctl+0x93/0xc0 [ 282.119604] ksys_ioctl+0xab/0xd0 [ 282.123056] __x64_sys_ioctl+0x73/0xb0 [ 282.126924] do_syscall_64+0x1a3/0x800 [ 282.130801] ? syscall_return_slowpath+0x5f0/0x5f0 [ 282.135713] ? prepare_exit_to_usermode+0x232/0x3b0 [ 282.140724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 282.145560] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.150750] RIP: 0033:0x457ec9 [ 282.153924] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.172804] RSP: 002b:00007f161db97c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 282.180491] RAX: ffffffffffffffda RBX: 00007f161db97c90 RCX: 0000000000457ec9 [ 282.187739] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 282.194989] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 282.202238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f161db986d4 19:58:49 executing program 5: socketpair$unix(0x1, 0x2000000000000002, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2800000013000502000000000000000000000000", @ANYRES32=r2, @ANYBLOB="e1ffffffffffffff00e6b4bc10000000"], 0x28}}, 0x0) [ 282.209486] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:50 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000000c0)={{{@in=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @initdev}}, 0x0, @in6=@local}}, &(0x7f00000001c0)=0xe8) r2 = getgid() write$FUSE_ATTR(r0, &(0x7f0000000200)={0x78, 0x7, 0x4, {0xc153, 0x6678, 0x0, {0x1, 0x9, 0xfffffffffffffff8, 0x5, 0x100000001, 0x81, 0x577d, 0x863, 0xcc, 0x40, 0x6, r1, r2, 0x100000000, 0x7ff}}}, 0x78) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000280)=0x0) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000400)=0x5, 0x4) getpriority(0x2, r3) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000002c0)={{{@in=@loopback, @in=@multicast1}}, {{@in=@dev}, 0x0, @in=@remote}}, &(0x7f00000003c0)=0xe8) r4 = socket$nl_generic(0xa, 0x5, 0x84) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000080)={'ip6_vti0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="1f00000000002709000000000000000000000300000000000000120000000000000000"]}) [ 282.238114] netlink: 8 bytes leftover after parsing attributes in process `syz-executor5'. 19:58:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 282.289546] device syz_tun entered promiscuous mode 19:58:50 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f0000000380)={@nl=@unspec, {&(0x7f0000000240)=""/217, 0xd9}, &(0x7f0000000340), 0x1}, 0xa0) perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x10040, 0x0) clone(0x200, &(0x7f0000000440)="a852aea646632a039bb73171ca3bb7ecc9893130d1763ea5e1258af6301cd1d34b74dd17a16cc2ee5f49142b5861d06d6e66f04663ef565d0aa11578d9193e0225d3067141a081c42c439d195a1e0d9fd6dc4c50b5d3c692e8e77daf1b94162b0b2ff5271a0a", &(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540)="815e9e863b5d6bd2d47ae8729c6fc7eff58cecd1bb49ea50fe63a408a16c868f6ccdb9639ce6084d700fcdb6d69f77012105a210a64186ca095b05a9a4f06d4fbb797b0efc8eb12a4b512dab0856ddc15a938ccbcf807aa923fb370086e7109453d6c66f78223d2cdd318c159879f28f5301b7f4625e38dd4bf0e3c4a62506e83449ae9f232d508f4039549e5b59820ccf170f75895f517f1eb0c68cd317eefe35336e7627d70bdd356ce9873635ff51c28111682eb7ec7cc19fb9bc31efa922fef8d28f289ce6208f267d3c9b3d7470ea361bb1aebe8050c01af6fcf17444575a729ffe7911c304") getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffff9c, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x641}, &(0x7f0000000080)=0x8) openat$zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0x100, 0x0) getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000100)={r2, 0x7fff, 0x8001, 0x3, 0x5, 0x8}, &(0x7f00000001c0)=0x14) 19:58:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000000c0)=ANY=[@ANYBLOB="20000000220001150000000000000000060000000c000a00000000000000400063977b6ae00374ba63b4de4b5206b937d87cbfe4a5683eb8a07c505a5ea3d2448c5fb92dc64d82cf2afd86995adc2020d7a6cea26a5d61ad5ca54e2b13897646fc404eed25d55c4017ee745bc94e68a76ed449212f3b0ece6c2725493c659a53f33e1639330000000000000000000000000000"], 0x20}}, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/udplite6\x00') accept4$alg(r1, 0x0, 0x0, 0x80000) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x80000, 0x0) ioctl$TUNGETVNETHDRSZ(r2, 0x800454d7, &(0x7f0000000040)) 19:58:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:50 executing program 0 (fault-call:7 fault-nth:3): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:50 executing program 2: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f0000000080)={0x105000, 0x100000}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$UI_SET_SNDBIT(r0, 0x4004556a, 0x7) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'lo\x00'}, 0x3c3) ioctl(r2, 0x800000000008982, &(0x7f0000000000)) [ 282.463383] netlink: 'syz-executor5': attribute type 10 has an invalid length. [ 282.525166] netlink: 'syz-executor5': attribute type 10 has an invalid length. [ 282.551556] 8021q: VLANs not supported on lo 19:58:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 282.578741] 8021q: VLANs not supported on lo 19:58:50 executing program 5: r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x9, 0x400000) ioctl$VIDIOC_ENUMAUDIO(r0, 0xc0345641, &(0x7f0000000080)={0x4, "f544ec0ec93dc85009a369b437926f15dafeb574ad6bcbeb68fb1020217eade7", 0x3, 0x1}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) openat$vim2m(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/video35\x00', 0x2, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000015c0)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x21000000, &(0x7f0000fff000/0x1000)=nil}) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, 0x0, 0x0) ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f0000000b40)={0x0, 0xffffffffffffffff, 0x1}) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in, @in6=@loopback}}, {{}, 0x0, @in6=@remote}}, 0x0) 19:58:50 executing program 2: syz_emit_ethernet(0x66, &(0x7f00000005c0)={@broadcast, @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "fbf5ae", 0x30, 0x67, 0x0, @ipv4={[], [], @local}, @mcast2, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "81a8bf", 0x0, 0x0, 0x0, @loopback, @loopback}}}}}}}, 0x0) clock_settime(0x1, &(0x7f0000000100)={0x0, 0x1c9c380}) r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet_udplite(0x2, 0x2, 0x88) perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x3, 0x100, 0x0, 0x5, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x880, 0x7d03}, 0x0, 0x0, r0, 0x0) r3 = socket(0x15, 0xa, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x3d, &(0x7f0000164ff0)={0x0, &(0x7f0000000080)}, 0x8) r4 = gettid() getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0}, &(0x7f0000000400)=0xc) r6 = getegid() setsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000004c0)={r4, r5, r6}, 0xc) r7 = syz_open_dev$admmidi(&(0x7f00000012c0)='/dev/admmidi#\x00', 0x2, 0x150d1c6b1b09fa8f) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000001300)={0x0, 0x7fffffff}, &(0x7f0000001700)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x1f, &(0x7f0000001740)={r8, @in={{0x2, 0x4e24, @multicast2}}, 0x100, 0x100000000000}, 0x90) rt_sigprocmask(0x1, &(0x7f0000000440)={0x3}, &(0x7f00000006c0), 0xffffffffffffffdc) recvfrom$unix(r3, &(0x7f0000000300)=""/121, 0x79, 0x10002, &(0x7f0000000640)=@abs={0x0, 0x0, 0x4e21}, 0x6e) setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000380), 0x0) sendto$inet(r7, &(0x7f0000000000)="ed5e683e4aff75573525928ec56ee3b5b639cb05d129112eac4216ea3ef2c86e003b8f1048ad68d3b3c6cc15ebb90ded100f2f4adfcd18bb2826e6ecbeb68e7ca2222e58ec1707640af76bdd6870c93188b083e037fe99a1117fcd49f1c0938f56defffac1a42583eabfae96cc32efcda7c4b95283d08efd30952a16537473cef491214a45062c0cf58c0d42cd99c2145f9430460555acb21bedfdd668db21b8f6b4d26464912f2922099b2598b317982023a36925c3199dc493c66c6fa19f24871dabee920a44e90cf3260fd75b18e066d230a4c5211017862a226f739d52af01e76fc5d807a13381d7ec2169dfcb5f", 0xf0, 0x1, 0x0, 0x0) lstat(&(0x7f0000001600)='./file0\x00', &(0x7f0000001640)) fcntl$setsig(r2, 0xa, 0x6) ioctl$sock_inet_SIOCGIFDSTADDR(r2, 0x8917, &(0x7f0000000240)={'ip_vti0\x00', {0x2, 0x4e24}}) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x20000000000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_bp, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r9 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001340)=@broute={'broute\x00', 0x20, 0x3, 0x979, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, &(0x7f00000003c0), &(0x7f00000008c0)=ANY=[@ANYBLOB="000000000000000000000000000000000000000000e4ffffff000000000000000000000000000000ffffffff010000000900000008000000001569705f76746930000000000000000000627269646765300000000000000000006272696467655f736c6176655f31000074eb41000000000000000000b277df9c02eff96b00000000ffffffffffff00ff00ffffffaaaaaaaaaabbffffffffff4b807eff000070000000b8000000280100006c6f67000000000000000000000000000000000000000000000000000000000024000000d16535ee7e72fd3aab975c835d31bfbd34dc65003ad790d60285c60e94528800020000006e666c6f670000000000000000000000000000000000000000000000000000004c0000000100008000000100000000001f046064bb0767aa005c1d5b5b14aa5d040ea366d92341f69985000042a4b84ff185c7d728a687aaae7649aa038ddef7118410b8443d1fa71cbb1edc7300000000000000000000000000000000000000000000000000000001000000000000000001000000ffffffff010000000500000004000000886362637366300000000000000000000000697036746e6c300000000000fe00000079616d30000000000000560000000000766c616e30000004000000000000000000000000000000ff00ff00ffaa782994c15fdee347ff00000000d80200002803000050030000636f6e6e6279746573ddfd118ecc8da0d3000000000000000000000000000000180000000200000000000000ff0300f9ff000000020000000000000062706600000000000000000000fc1c0c00000000000000000000000000000000003c0008020000340000000000020009000000ba0007083bf8fffffe0e00070400000038ff01030900000040007124db0000000800018009000000040005f807000000ed0568010300000008000806bc850000030000080500000008000100000000000000000800000800ff7f8007196100001f00b20608000000e0fff54e05000000070008f90100000000000000000100020001ff40000000ae0d5305060000000200ff2803000000070001035ca9ffff0700041f8100000005002904050000000500fc00dd0300003b727f0005000000030081080000010081000101000000000001030380000000fbff010305000000030000fb0400000007002108ff080000000800cb433000000000007f06010400000200ff00ffff00083ed8b702020000000600b09f01000000e600070008000001040081000700000080000705000000000500ca073f000000800009020300000000008177080000000080090801000000070000010800000000010809000000000700090205000000000400000063620801040000000300ff07000000000000011fff00000002000205090000003f00c1ff03000000060005008d3b0000000003069a00000001003f07fdffffff0104010309000000b10002061600000001000002070000000500060504000000a80300ff000000000900040101000080fcff01070400000001000000726564697265637400000000000000000000000000000000000000000000000004000000ffffffff72656469aa0b000000000000000000000000000000000000000000000004000000feffffff4e46515545554500000000000000000000000000000000000000000000000000040000000900000000000000000000000000000000000000000000000000000000000000000000000000000003000000feffffff00000000956c01000000b9fa2d8d50cd324b534dd3a90c77578631b18f80a2900ad91e7829cde0dcd1e3dbd61e087ca74ba4e6fc37b1f2fdebde320bae0d0f842c6b47850b987355241fcb3d72780eb85f13e24b38ae4a8294b01eae765b1c4388bd6e000000b1658917cc882457972794ebe38a6cd086eb00d7dfc17872c5a2f0cc36e3d23bd41c7b34eafbdc17ffa912058201026fd76e6ffc63f6f7c679907248647ae767cc1c15c498bff1a6f7d938f4b4da2636d1af40694d0ca91e53e4ed651263b84f8898804b8cbe2a93441343143a868ce4c249c9811ed60af2a4eb92595f5eafbc7a03647c9152b1aeaa3c8d48a39917777c4b5d1f26b9b02c0e6d042f422961822dfee7f4a7c4cf0edf5d7f40ac547398b60d2a54aeac8c2bca5add084a623d7624543ffa62ecdf07710d6ce4a51d3f4040bdc89603e8a08f7770039735fb27a7f4c4cf385d72fdcb9fae811f777000ee0bb2bfb20b9bc0e2fa09d5bb51c4a8d163a1002a283ead2e5b55b8ffd157a15af1bed10d24c89ca32f46411cda916b06cf8fe709b53801c49529c97fd7242deeca5de8a296617c78dace8e692c1d193dab76053406a8ebe3ee014700798cee6e0778cf7a6d3fdda429853d91fd8959972e98e1c60e81cb9dfeb13b737994dbd009085f44ac3413000000000000000000ed7c369b44872e968a2da172dba4b113e34e1f29ceaaef78415a508b8969048e4617a50433f06a70e7aacc9837802511d38cd133d599a6fe9907054e479dd09d10dedc9132283c700be8dfa8b49a6cf44272fcf3ca164156dc987e4d8a914144267fdf5766d54e7886c1dcd183aad555faca3800e1349fa4e2183aae01f6f5ed32cf776e696e4f08946458648eff45e46e351b78b5bbc2c1b154ddb910afc2908dae25c40c7168522af824f602a5d56ab50ea78bb6dd9c1037b9c1b4c42220926478ecdff4ec258fdbdce5d693364b04b437f3a4d2c2c65504f3e14c06628fd3e887850e1ec48fb658284dafec9b6a25b34cac5a5c1e12a7b51f3199e93b48868f1df84421308a7bbbfad5d9b9709856f2175522272b423309f0a7e13f066f70276535a96cbf3d1aa58a03040909e263b8086aaa986c81d4de3a23db484059c3045175d2e49c5be4383370ba0e4186788acdd28a888b7f8001b5af44660d4801769fc5f138e918228f7e8454515b34ebfc8fb1d22cba7040399e46a837b3dfbcf3bd9991a2144181fe23bb15936bdf693cc89fa8641e2609080a23da3d6015891a79120dfae95b9c37b9c86f7457b56b363442f2d77f4b83285c8db0147a7c2504a0db7f8a7da636c17523641e121f2958dc36d53628b655b43bf99695e638b43e5b1150ad6561b18b7c2b97ae0eb3e99bbf2e91babf1871916cb45a3a698e75410d9d91e34dfd6a8afcfe5a355acde87afc6fee3c3a2732c35bb90640704f26822af0294c309545df2493a59ff174507208bcc19393777ecc7385c042cffe026dcbf353699a730c8038378a93d61ed5905b39382dc4653d266cff89342b5cb0e3e9cd2f4dc041f0fdd7f8e77b253d9613e30b91958ee79582d63b61543538de4473d7d30c2e55354d915710d7a095a2ebcb91aa4c3040757004"]}, 0x9f1) setsockopt$XDP_UMEM_REG(r9, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/2, 0x2000, 0x800}, 0x18) r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x1, 0x1, 0x2009, 0x20000000000001, 0x1, 0x0}, 0x2c) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x9) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r10, &(0x7f0000000000), 0x0}, 0x20) ustat(0x1, &(0x7f0000000200)) setsockopt$packet_fanout_data(r3, 0x107, 0x16, &(0x7f0000000480)={0x4, &(0x7f00000002c0)=[{0xa, 0x35ff, 0x5}, {0x6, 0x5, 0x6, 0x8007}, {0xffffffff00000001, 0xff, 0xd8, 0x101}, {0x4, 0x4, 0x7, 0x4}]}, 0x8) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r10, &(0x7f0000000000), 0x0}, 0x18) socket$inet6(0xa, 0x0, 0x0) [ 282.602907] FAULT_INJECTION: forcing a failure. [ 282.602907] name failslab, interval 1, probability 0, space 0, times 0 19:58:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 282.693961] kernel msg: ebtables bug: please report to author: entries_size too small [ 282.712052] CPU: 0 PID: 12025 Comm: syz-executor0 Not tainted 4.20.0+ #5 [ 282.719013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 282.719019] Call Trace: [ 282.719038] dump_stack+0x1db/0x2d0 [ 282.719054] ? dump_stack_print_info.cold+0x20/0x20 [ 282.739572] ? percpu_ref_put_many+0x129/0x270 [ 282.744153] should_fail.cold+0xa/0x15 [ 282.748046] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 282.753355] ? ___might_sleep+0x1e7/0x310 [ 282.757501] ? arch_local_save_flags+0x50/0x50 [ 282.762086] __should_failslab+0x121/0x190 [ 282.766341] should_failslab+0x9/0x14 [ 282.770220] kmem_cache_alloc+0x2be/0x710 [ 282.774401] ? mark_held_locks+0xb1/0x100 [ 282.778541] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 282.784075] mmu_topup_memory_caches+0x97/0x490 [ 282.784093] kvm_mmu_load+0x21/0x1200 [ 282.784106] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 282.784117] ? check_preemption_disabled+0x48/0x290 [ 282.784135] vcpu_enter_guest+0x3f0e/0x6520 [ 282.807379] ? emulator_read_emulated+0x50/0x50 [ 282.812210] ? add_lock_to_list.isra.0+0x450/0x450 [ 282.812225] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 282.812237] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 282.812264] ? check_preemption_disabled+0x48/0x290 [ 282.812281] ? __lock_is_held+0xb6/0x140 [ 282.812312] ? lock_acquire+0x1db/0x570 [ 282.833339] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 282.833357] ? lock_release+0xc40/0xc40 [ 282.833371] ? kvm_gen_update_masterclock+0x380/0x380 [ 282.833385] ? rcu_sync_dtor+0x170/0x170 [ 282.833404] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 282.864417] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 282.869438] kvm_vcpu_ioctl+0x558/0x12d0 [ 282.873498] ? kvm_vcpu_block+0x1010/0x1010 [ 282.873513] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 282.873529] ? lock_downgrade+0x910/0x910 [ 282.873542] ? kasan_check_read+0x11/0x20 [ 282.883360] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 282.896905] ? rcu_read_unlock_special+0x380/0x380 [ 282.901829] ? __fget+0x499/0x710 [ 282.905308] ? iterate_fd+0x4b0/0x4b0 [ 282.909121] ? kvm_vcpu_block+0x1010/0x1010 [ 282.913468] do_vfs_ioctl+0x107b/0x17d0 [ 282.917447] ? wait_for_completion+0x810/0x810 [ 282.922033] ? ioctl_preallocate+0x2f0/0x2f0 [ 282.926443] ? __fget_light+0x2db/0x420 [ 282.926458] ? fget_raw+0x20/0x20 [ 282.926472] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 282.926484] ? fput+0x128/0x1a0 [ 282.926499] ? do_syscall_64+0x8c/0x800 [ 282.942685] ? do_syscall_64+0x8c/0x800 [ 282.942698] ? lockdep_hardirqs_on+0x415/0x5d0 [ 282.942715] ? security_file_ioctl+0x93/0xc0 [ 282.942731] ksys_ioctl+0xab/0xd0 [ 282.942763] __x64_sys_ioctl+0x73/0xb0 [ 282.966932] do_syscall_64+0x1a3/0x800 [ 282.970821] ? syscall_return_slowpath+0x5f0/0x5f0 [ 282.975746] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 282.980842] ? __switch_to_asm+0x34/0x70 [ 282.984896] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 282.984916] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 282.984926] RIP: 0033:0x457ec9 [ 282.984939] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 282.984948] RSP: 002b:00007f161db76c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 283.017169] RAX: ffffffffffffffda RBX: 00007f161db76c90 RCX: 0000000000457ec9 [ 283.017177] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 283.017185] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 283.017193] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f161db776d4 [ 283.017200] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:51 executing program 1: syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x4, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = memfd_create(&(0x7f0000000180)='wlan0\x00', 0x1) setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) r1 = socket$pppoe(0x18, 0x1, 0x0) r2 = socket$pppoe(0x18, 0x1, 0x0) r3 = getpid() sched_setscheduler(r3, 0x0, 0x0) connect$pppoe(0xffffffffffffffff, 0x0, 0xffffffffffffff19) connect$pppoe(0xffffffffffffffff, 0x0, 0x0) r4 = dup2(r1, r2) ioctl$LOOP_CHANGE_FD(r4, 0x4c06, 0xffffffffffffffff) r5 = syz_open_procfs(0x0, &(0x7f0000000380)='/exe\x00\x00\x00\x00\x00\x04\t\x00K\xdd\xd9\xde\x91\xbe\x10\xee\xbf\x00\x0e\xe9\xa9\x0fy\x80XC\x9e\xd5T\xfa\aBJ\xde\xe9\x01\xd2\xdau\xaf\x1f\x02\xac\xc7\xed\xbc\xd7\xa0q\xfb53\x1c\xe3\x9cZ\v\xcb\x98\xa3\xe1\xf4o\xd5\x1b\x13\x9du^\xfc\xe9v\x8b\x84\xeau\xc2\xffK<\x85\xca\xef7M\x12jV\xfaGC\xaf~\xf5\\\x84k\xfe}\xd1`r\xd2`\xff\xdd\xcc\x8am\"\xe0/D\xd6\xa3`RK\x86\xb5\x1aKX\xaf\xca5\xf1\"\x01\xad\xb0$\xbf\xb2\x0f\xbd6Nx\xa22\xfb\xef1YP)\xf7Ut\n\xb1^\x17=\xc7;\xa9d\xa4\x18\x90\a\xc7\xc4\r\xb8\xfbKd\xdd\x8e\xc4\xd3f') fcntl$setstatus(r5, 0x4, 0x4000) ioctl$NBD_DO_IT(r4, 0xab03) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f0000000100)={0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f00000001c0)=0x20) ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000300)) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000340)) ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r2, 0xc0305616, &(0x7f00000000c0)={0x0, {0x5, 0x80000000}}) seccomp(0x1, 0x1, &(0x7f0000000080)={0x3, &(0x7f0000000000)=[{0x3ff, 0x6, 0x20000000000, 0x6}, {0x300000, 0x1}, {0xe3, 0x4, 0x5, 0x101}]}) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000140)={0x0, 0x0, 0x7}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f00000002c0)={r6, 0x80000, r0}) sendfile(r0, r5, &(0x7f0000000040), 0x1080005000) [ 283.090498] kernel msg: ebtables bug: please report to author: entries_size too small 19:58:51 executing program 0 (fault-call:7 fault-nth:4): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:51 executing program 2: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$vsock_dgram(0x28, 0x2, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) r2 = dup2(r0, r1) ioctl$EVIOCGABS20(0xffffffffffffffff, 0x80184560, &(0x7f00000000c0)=""/4096) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000080)) sched_setaffinity(0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r1) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r3, &(0x7f0000d65000)={&(0x7f0000de2ff4), 0xc, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="120000000301ffff020000000000000000000000771b629c09c3db12255aa0c5259a89"], 0x14}}, 0x0) 19:58:51 executing program 5: r0 = socket$vsock_dgram(0x28, 0x2, 0x0) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000000)='trusted.overlay.origin\x00', &(0x7f0000000080)='y\x00', 0x2, 0x3) r1 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000640)='/dev/capi20\x00', 0x0, 0x0) r2 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000040)) 19:58:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 283.416529] FAULT_INJECTION: forcing a failure. [ 283.416529] name failslab, interval 1, probability 0, space 0, times 0 [ 283.535504] CPU: 1 PID: 12061 Comm: syz-executor0 Not tainted 4.20.0+ #5 [ 283.542468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 283.542473] Call Trace: [ 283.542492] dump_stack+0x1db/0x2d0 [ 283.542511] ? dump_stack_print_info.cold+0x20/0x20 [ 283.542527] ? percpu_ref_put_many+0x129/0x270 [ 283.542552] should_fail.cold+0xa/0x15 [ 283.542568] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 283.567754] ? ___might_sleep+0x1e7/0x310 [ 283.580828] ? arch_local_save_flags+0x50/0x50 [ 283.585428] __should_failslab+0x121/0x190 [ 283.589672] should_failslab+0x9/0x14 [ 283.593484] kmem_cache_alloc+0x2be/0x710 [ 283.597638] ? __lock_acquire+0x572/0x4a30 [ 283.601874] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 283.607412] mmu_topup_memory_caches+0x97/0x490 [ 283.612079] kvm_mmu_load+0x21/0x1200 [ 283.615897] ? mark_held_locks+0x100/0x100 [ 283.620125] ? lock_release+0xc40/0xc40 [ 283.624102] ? mark_held_locks+0x100/0x100 [ 283.628327] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 283.633862] vcpu_enter_guest+0x3f0e/0x6520 [ 283.638188] ? emulator_read_emulated+0x50/0x50 [ 283.642844] ? add_lock_to_list.isra.0+0x450/0x450 [ 283.647854] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.653384] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.658913] ? check_preemption_disabled+0x48/0x290 [ 283.664271] ? __lock_is_held+0xb6/0x140 [ 283.668324] ? lock_acquire+0x1db/0x570 [ 283.672299] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 283.677310] ? lock_release+0xc40/0xc40 [ 283.681276] ? kvm_gen_update_masterclock+0x380/0x380 [ 283.686458] ? rcu_sync_dtor+0x170/0x170 [ 283.690516] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 283.695504] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 283.700526] kvm_vcpu_ioctl+0x558/0x12d0 [ 283.704574] ? kvm_vcpu_block+0x1010/0x1010 [ 283.708892] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 283.714414] ? lock_downgrade+0x910/0x910 [ 283.718540] ? kasan_check_read+0x11/0x20 [ 283.722681] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 283.727938] ? rcu_read_unlock_special+0x380/0x380 [ 283.732892] ? __fget+0x499/0x710 [ 283.736330] ? iterate_fd+0x4b0/0x4b0 [ 283.740121] ? kvm_vcpu_block+0x1010/0x1010 [ 283.744424] do_vfs_ioctl+0x107b/0x17d0 [ 283.748420] ? wait_for_completion+0x810/0x810 [ 283.752990] ? ioctl_preallocate+0x2f0/0x2f0 [ 283.757381] ? __fget_light+0x2db/0x420 [ 283.761334] ? fget_raw+0x20/0x20 [ 283.764768] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 283.770285] ? fput+0x128/0x1a0 [ 283.773544] ? do_syscall_64+0x8c/0x800 [ 283.777497] ? do_syscall_64+0x8c/0x800 [ 283.781451] ? lockdep_hardirqs_on+0x415/0x5d0 [ 283.786014] ? security_file_ioctl+0x93/0xc0 [ 283.790404] ksys_ioctl+0xab/0xd0 [ 283.793838] __x64_sys_ioctl+0x73/0xb0 [ 283.797705] do_syscall_64+0x1a3/0x800 [ 283.801573] ? syscall_return_slowpath+0x5f0/0x5f0 [ 283.806486] ? prepare_exit_to_usermode+0x232/0x3b0 [ 283.811483] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 283.816311] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 283.821480] RIP: 0033:0x457ec9 [ 283.824658] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 283.843555] RSP: 002b:00007f161db97c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 283.851243] RAX: ffffffffffffffda RBX: 00007f161db97c90 RCX: 0000000000457ec9 [ 283.858501] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 283.866297] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 283.873547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f161db986d4 [ 283.880796] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:52 executing program 2: r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000440), 0x80000) r2 = socket$unix(0x1, 0x1, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000280)={0x0, 0x6, 0x30, 0x4, 0x5}, 0x0) listen(r1, 0x48f) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, 0x0, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) listen(r3, 0x0) connect(r2, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$DRM_IOCTL_SET_VERSION(0xffffffffffffffff, 0xc0106407, 0x0) add_key(&(0x7f0000000080)='logon\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f00000001c0)="ef0ba7c4c852bd7ad094779caa595c7d45c3d5588405b9f76a71d782279c4cc5cc2002ab3e9f3caf053656ca87e1c5790ee302c19eb3781c2991e377de19eefb50c71daaadc889b019ed5c7fb5126657713143c2572fa9b513236bb550770b1c18fd444072d75f5cbbdaae477437e8d021e54396c1af972d027bb01a85113ae613698b4100", 0x85, 0xfffffffffffffffc) ioctl$LOOP_CLR_FD(r0, 0x4c01) linkat(r4, &(0x7f0000000340)='\xe9\x1fq\x89Y\x1e\x923aK\x00', r5, &(0x7f0000000380)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x1400) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'team_slave_0\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'team_slave_0\x00', 0x200008000005}) getgid() ioctl$KVM_ARM_SET_DEVICE_ADDR(r5, 0x4010aeab, &(0x7f0000000300)={0x7, 0x100004}) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000180)) statx(r5, &(0x7f00000002c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x800, &(0x7f0000000480)) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x8000, 0x0) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000600)={0xd, @raw_data="53e43a6eb13c0df96fb8c3bd9c8ffc66e929d2ce9d99fda5d6cb434f81eeda0f79fcbea21ed6927271bb5226ddea553264625e72e89760e6a8a332bf6d6fdadb74e28a050e20298cb14064730c67cfdf71e10f889bb8fa945c9890e0e7c940e207be584febe1b7fa20ac15b9db79ed6253a256c758b011f569b7f11144b3dd085667ab50eda15621f532f0905f1fb8c29d1607e78601e175c3c9d54e96610161d757980f60fb440bbf6a251e25f7a3000d2cda5f0c428bb8686d5ecfbc73a1a4f30076d51d08678d"}) socket(0x1b, 0x4, 0x10200000000) 19:58:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x81, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:52 executing program 1: r0 = syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000009f7c)=""/132, 0x84}, {0x0}, {&(0x7f0000012000)=""/155, 0x9b}, {0x0}, {&(0x7f0000000000)=""/102, 0x66}], 0x5, 0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f00000000c0)) preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000280)=""/92, 0x5c}, {&(0x7f0000000080)=""/7, 0x7}, {&(0x7f0000000400)=""/4096, 0x1000}], 0x3, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0x80045500, &(0x7f00000001c0)) recvmmsg(0xffffffffffffffff, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)=""/34, 0x22}], 0x1}}], 0x1, 0x0, 0x0) bind$xdp(0xffffffffffffffff, &(0x7f0000000140)={0x2c, 0x2, 0x0, 0x16}, 0x10) ioctl(r0, 0xc2604110, &(0x7f0000000000)) 19:58:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:52 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f000001a000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f000039a000)=[{0x20, 0x0, 0x0, 0xfbfff024}, {0x6}]}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x80002, 0x0) getsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f0000000080)={@local}, &(0x7f00000000c0)=0x14) sendmmsg(r0, &(0x7f0000004500), 0x2a6, 0x0) dup3(r1, r1, 0x80000) 19:58:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:52 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) socket$inet_smc(0x2b, 0x1, 0x0) io_setup(0x7, &(0x7f0000000100)=0x0) socketpair$unix(0x1, 0x11000000000005, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) io_getevents(r1, 0x0, 0x0, 0x0, 0x0) io_submit(r1, 0x2000000000000134, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x800000000001, 0x0, r0, &(0x7f0000000140), 0x400000000000000}]) 19:58:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5451, 0x0) 19:58:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 285.385931] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready 19:58:53 executing program 2: r0 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x1000000000002, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000440), 0x80000) r2 = socket$unix(0x1, 0x1, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000280)={0x0, 0x6, 0x30, 0x4, 0x5}, 0x0) listen(r1, 0x48f) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, 0x0, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) listen(r3, 0x0) connect(r2, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$DRM_IOCTL_SET_VERSION(0xffffffffffffffff, 0xc0106407, 0x0) add_key(&(0x7f0000000080)='logon\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f00000001c0)="ef0ba7c4c852bd7ad094779caa595c7d45c3d5588405b9f76a71d782279c4cc5cc2002ab3e9f3caf053656ca87e1c5790ee302c19eb3781c2991e377de19eefb50c71daaadc889b019ed5c7fb5126657713143c2572fa9b513236bb550770b1c18fd444072d75f5cbbdaae477437e8d021e54396c1af972d027bb01a85113ae613698b4100", 0x85, 0xfffffffffffffffc) ioctl$LOOP_CLR_FD(r0, 0x4c01) linkat(r4, &(0x7f0000000340)='\xe9\x1fq\x89Y\x1e\x923aK\x00', r5, &(0x7f0000000380)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x1400) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'team_slave_0\x00'}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'team_slave_0\x00', 0x200008000005}) getgid() ioctl$KVM_ARM_SET_DEVICE_ADDR(r5, 0x4010aeab, &(0x7f0000000300)={0x7, 0x100004}) ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000180)) statx(r5, &(0x7f00000002c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x800, &(0x7f0000000480)) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x8000, 0x0) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000600)={0xd, @raw_data="53e43a6eb13c0df96fb8c3bd9c8ffc66e929d2ce9d99fda5d6cb434f81eeda0f79fcbea21ed6927271bb5226ddea553264625e72e89760e6a8a332bf6d6fdadb74e28a050e20298cb14064730c67cfdf71e10f889bb8fa945c9890e0e7c940e207be584febe1b7fa20ac15b9db79ed6253a256c758b011f569b7f11144b3dd085667ab50eda15621f532f0905f1fb8c29d1607e78601e175c3c9d54e96610161d757980f60fb440bbf6a251e25f7a3000d2cda5f0c428bb8686d5ecfbc73a1a4f30076d51d08678d"}) socket(0x1b, 0x4, 0x10200000000) 19:58:53 executing program 1: r0 = socket$isdn_base(0x22, 0x3, 0x0) connect(r0, &(0x7f0000000000)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha1_mb\x00'}, 0x80) r1 = socket$isdn_base(0x22, 0x3, 0x0) dup2(r0, r1) 19:58:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000240)={{{@in=@remote, @in6=@initdev}}, {{@in=@multicast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000180)=0xe8) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 19:58:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:53 executing program 1: socket$unix(0x1, 0x1, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x0, 0x480300) syz_genetlink_get_family_id$ipvs(&(0x7f0000000540)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, 0x0, 0x44000) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x0, 0x9ba, 0x4, 0x5, 0x0, r0, 0x7}, 0x2c) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) geteuid() ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605) getuid() ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0585605, &(0x7f0000000340)={0x1, 0x0, {0x0, 0x3, 0x100e, 0x0, 0xa, 0x0, 0x3}}) getpeername$inet6(0xffffffffffffffff, &(0x7f0000000500)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000003c0)=0x3e) r2 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysinfo(&(0x7f0000000d80)=""/201) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x700000000000000, 0x3ef, 0xa500000000000000, 0x3f00000000000000, 0x0, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x2000000}) shutdown(0xffffffffffffffff, 0x0) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000300)=0x3) ioctl$sock_inet6_SIOCADDRT(r2, 0x89a0, &(0x7f0000000100)={@local, @empty, @loopback, 0x3}) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000001c0), 0x113}}, 0x20) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x0) ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f0000000280)={0x0, 0x40, 0x0, 0x8, &(0x7f0000ffa000/0x3000)=nil, 0x8}) setsockopt$l2tp_PPPOL2TP_SO_DEBUG(0xffffffffffffffff, 0x111, 0x1, 0x3, 0x4) syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x3, 0x0) migrate_pages(0x0, 0x9, &(0x7f0000000080)=0x3, &(0x7f0000000980)=0xffffffef80000801) ioctl(r0, 0x4161, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 19:58:53 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreqsrc(r2, 0x0, 0x2000000000000004, &(0x7f0000013ff4)={@local}, 0xc) setsockopt$inet_tcp_int(r2, 0x6, 0x1, &(0x7f0000000880)=0x9, 0x4) close(r2) accept$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) dup3(r0, r1, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) 19:58:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000180)) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 285.671557] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready 19:58:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x40049409, 0x0) [ 285.777434] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready 19:58:53 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ff4000/0xb000)=nil, 0xb000, 0x0, &(0x7f0000000280), 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000200)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000100), 0x28) recvmmsg(r1, &(0x7f0000000180), 0x26d, 0x0, &(0x7f00000001c0)={0x0, 0x1c9c380}) r2 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x1, 0x400000) dup(r0) ioctl$KDGETKEYCODE(r2, 0x4b4c, &(0x7f0000000040)={0xfffffffffffffffc, 0x1}) shutdown(r1, 0x0) seccomp(0x1, 0x2, &(0x7f0000007ff0)={0x1, &(0x7f0000004fe8)=[{0x6, 0x0, 0x0, 0x50000}]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="c744240020000000c74424024f000000c7442406000000000f011c24c4427d180508000000c4c245ae08c4e2850108b9800000c00f3235004000000f30d3559e67470f224205c814000066b89d000f00d0c423a95f2518410000e1", 0x5b}], 0x1, 0x0, &(0x7f0000000040), 0x4000) dup3(r0, r1, 0x0) 19:58:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:54 executing program 2: mmap(&(0x7f000035d000/0x1000)=nil, 0x1000, 0x2, 0x32, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000080)={0x3, 0xf0, "fbe320f5d55e2be8017972b5e7b685de16bf83bc9be72a0c9bc73f3f6af01a696abc24cd35d273aa7efb0872375549598b7c02c75ac6c9b640c4210c041aedc7f9b71cc42b0fd46eeb10f4a61de48a1a510f55d00cf1c948c0ba986d4538fd1e88d750d90064d52c878bf9ab588f9839c24754db04893c0b9b979e71a2d832bfd2ed2bb276945629e9623fd80e2d4a0c7697c6182b21cff5a8570d4978d343ac4f4e03ab773872ae67152761d028efa9a9317f394b5015b69d7f4d1fd65f9b6999a39d5d7a15e5f2cdd14244f4daf843d2f0ce4fae69956f5d3d54d77897f106f430f27261c50a07b969e5af9d75c515"}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc10c5541, &(0x7f000035dffc)=0x3) 19:58:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 19:58:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000180)) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) openat$cgroup_subtree(r2, &(0x7f0000000240)='cgroup.subtree_control\x00', 0x2, 0x0) 19:58:54 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000008000)={0x8000000008, {{0x2, 0x0, @multicast2}}}, 0x88) mprotect(&(0x7f0000007000/0x2000)=nil, 0x2000, 0x4) mprotect(&(0x7f0000007000/0x3000)=nil, 0x3000, 0x2) getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f0000008000), &(0x7f0000000000)=0x22c) [ 286.174098] kauditd_printk_skb: 68 callbacks suppressed [ 286.174108] audit: type=1326 audit(1546459134.165:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=228 compat=0 ip=0x45ad2a code=0x50000 19:58:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) openat$cgroup_subtree(r2, &(0x7f0000000240)='cgroup.subtree_control\x00', 0x2, 0x0) 19:58:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5450, 0x0) 19:58:54 executing program 1: capset(&(0x7f0000000000)={0x400019980330}, &(0x7f0000000200)={0x102c, 0x7fff}) r0 = socket$inet_udp(0x2, 0x2, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) r2 = socket(0xa, 0x5, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000040)={0x5, {{0x2, 0x0, @multicast2}}}, 0x88) setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000100)=0x200, 0x4) [ 286.352588] audit: type=1326 audit(1546459134.205:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457ec9 code=0x50000 19:58:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000180)) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:54 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ff4000/0xb000)=nil, 0xb000, 0x0, &(0x7f0000000280), 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x1d4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000200)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000100), 0x28) recvmmsg(r1, &(0x7f0000000180), 0x26d, 0x0, &(0x7f00000001c0)={0x0, 0x1c9c380}) r2 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x1, 0x400000) dup(r0) ioctl$KDGETKEYCODE(r2, 0x4b4c, &(0x7f0000000040)={0xfffffffffffffffc, 0x1}) shutdown(r1, 0x0) seccomp(0x1, 0x2, &(0x7f0000007ff0)={0x1, &(0x7f0000004fe8)=[{0x6, 0x0, 0x0, 0x50000}]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="c744240020000000c74424024f000000c7442406000000000f011c24c4427d180508000000c4c245ae08c4e2850108b9800000c00f3235004000000f30d3559e67470f224205c814000066b89d000f00d0c423a95f2518410000e1", 0x5b}], 0x1, 0x0, &(0x7f0000000040), 0x4000) dup3(r0, r1, 0x0) 19:58:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 286.402650] capability: warning: `syz-executor1' uses 32-bit capabilities (legacy support in use) 19:58:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) openat$cgroup_subtree(r2, &(0x7f0000000240)='cgroup.subtree_control\x00', 0x2, 0x0) [ 286.508434] audit: type=1326 audit(1546459134.205:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=228 compat=0 ip=0x45ad2a code=0x50000 19:58:54 executing program 1: creat(&(0x7f0000000380)='./file0/file0\x00', 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000300)='ramfs\x00', 0x0, 0x0) prctl$PR_GET_NAME(0x10, &(0x7f00000008c0)=""/4096) mount(0x0, &(0x7f0000903000)='./file0\x00', 0x0, 0x100000, 0x0) mount(&(0x7f00000006c0), &(0x7f0000000180)='./file0\x00', 0x0, 0x1002, 0x0) mkdir(&(0x7f0000000040)='./file0/file0\x00', 0x0) mount(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x5010, 0x0) llistxattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)=""/197, 0xc5) umount2(&(0x7f00000000c0)='./file0\x00', 0x8) 19:58:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) openat$cgroup_subtree(r2, &(0x7f0000000240)='cgroup.subtree_control\x00', 0x2, 0x0) [ 286.627133] audit: type=1326 audit(1546459134.215:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=298 compat=0 ip=0x457ec9 code=0x50000 19:58:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(r1, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) 19:58:54 executing program 5: openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) msgctl$IPC_INFO(0x0, 0x3, &(0x7f0000000240)=""/83) semctl$SEM_INFO(0x0, 0x0, 0x13, &(0x7f00000002c0)=""/213) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000440)='/dev/mixer\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KDSIGACCEPT(0xffffffffffffffff, 0x4b4e, 0x2d) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000580), 0x4) syz_genetlink_get_family_id$ipvs(0x0) madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x76) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000100)=0x8) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_G_ENC_INDEX(0xffffffffffffffff, 0x8818564c, 0x0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(0xffffffffffffffff, 0xc0a85320, &(0x7f00000005c0)={{0x3ff}, 'port1\x00', 0x80, 0x21000, 0x5, 0x5, 0x0, 0x96c, 0x8, 0x0, 0x7, 0x2}) r3 = fcntl$getown(r1, 0x9) syz_open_procfs$namespace(r3, &(0x7f0000000040)='ns/net\x00') dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = socket(0x10, 0x2, 0xc) write(r4, &(0x7f0000000180)="1f0000000104ffce9e67fa5eaca27100f305010008000100010423dcffdf00", 0x1f) lookup_dcookie(0x4, &(0x7f00000003c0)=""/10, 0xa) write$smack_current(r0, &(0x7f0000000480)=':\x00', 0x2) [ 286.776144] audit: type=1326 audit(1546459134.215:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=228 compat=0 ip=0x45ad2a code=0x50000 19:58:54 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) 19:58:54 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) creat(0x0, 0x8000000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x401}, 0x0, 0x0, 0x1}, {{@in6=@local, 0xffffffffffffffff, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x5, 0x1000000000}}, 0xe8) connect$inet6(r1, &(0x7f0000000140)={0xa, 0xffffffffffffffff, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x18}}}, 0x1c) sendmmsg(r1, &(0x7f0000000240), 0x5c3, 0x0) sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x2, 0x7, 0x0, 0x9, 0x2}, 0x10}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl(0xffffffffffffffff, 0x20000000008912, 0x0) 19:58:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 286.890258] audit: type=1326 audit(1546459134.235:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457ec9 code=0x50000 [ 286.972008] audit: type=1326 audit(1546459134.245:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457ec9 code=0x50000 19:58:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000340)) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:58:55 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) [ 287.041716] netlink: 3 bytes leftover after parsing attributes in process `syz-executor5'. [ 287.105799] audit: type=1326 audit(1546459134.255:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457ec9 code=0x50000 19:58:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 287.182407] netlink: 3 bytes leftover after parsing attributes in process `syz-executor5'. 19:58:55 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) 19:58:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 287.310157] audit: type=1326 audit(1546459134.275:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=228 compat=0 ip=0x45ad2a code=0x50000 19:58:55 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) 19:58:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) [ 287.502722] audit: type=1326 audit(1546459134.275:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12194 comm="syz-executor5" exe="/root/syz-executor5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457ec9 code=0x50000 19:58:55 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) getpeername$tipc(r2, &(0x7f0000000100), &(0x7f0000000140)=0x10) 19:58:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:55 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) 19:58:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 19:58:55 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) creat(0x0, 0x8000000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000013c0)={{{@in, @in6=@ipv4, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {0x0, 0x401}, 0x0, 0x0, 0x1}, {{@in6=@local, 0xffffffffffffffff, 0x32}, 0x0, @in6, 0x0, 0x0, 0x0, 0x5, 0x0, 0x5, 0x1000000000}}, 0xe8) connect$inet6(r1, &(0x7f0000000140)={0xa, 0xffffffffffffffff, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x18}}}, 0x1c) sendmmsg(r1, &(0x7f0000000240), 0x5c3, 0x0) sendmsg$key(r0, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x2, 0x7, 0x0, 0x9, 0x2}, 0x10}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl(0xffffffffffffffff, 0x20000000008912, 0x0) 19:58:55 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) 19:58:56 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) 19:58:56 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:58:56 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x0, 'rdma'}]}, 0x6) 19:58:56 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:56 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 19:58:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:56 executing program 1: epoll_create1(0x0) r0 = epoll_create1(0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x1, 0x0) close(r0) openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000040)={0x2}) 19:58:56 executing program 3 (fault-call:10 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:56 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:56 executing program 5: r0 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) ioctl(r0, 0x0, &(0x7f0000000100)="904b66a915167b6920692a885d34ba55c6a0ea478ccf6115542f60177005280000000000000000000000000100000000ffff0000007042e7455365bed6bea76297046d3ad86e471b026774dbd3b71e7b82e8a11f4164c88d9a1e21a566516542947289871e6f36889aa00a511940bd96c0f46168705031e613c13396f10773d63c40989ad541cd") 19:58:56 executing program 5: r0 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x14, 0x9) ioctl$FS_IOC_FSGETXATTR(r0, 0xc0185500, &(0x7f0000000180)={0x80123, 0x104}) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000040)=0x0) r2 = getpgid(0x0) kcmp(r1, r2, 0x7, r0, r0) 19:58:56 executing program 1: r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x140, 0x0) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f00000000c0)={0x0, 0x5}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000140)={r1, 0x8}, &(0x7f0000000180)=0x8) r2 = syz_open_dev$sndpcmc(&(0x7f0000004fee)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000001c0)={r1, 0x2}, &(0x7f0000000200)=0x8) ioctl(r2, 0x40084146, &(0x7f0000000080)='}') ioctl$CAPI_GET_FLAGS(r2, 0x80044323, &(0x7f0000000000)) 19:58:56 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0xa000, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 288.609940] FAULT_INJECTION: forcing a failure. [ 288.609940] name failslab, interval 1, probability 0, space 0, times 0 [ 288.678397] CPU: 0 PID: 12436 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 288.685343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 288.695386] Call Trace: [ 288.697970] dump_stack+0x1db/0x2d0 [ 288.701596] ? dump_stack_print_info.cold+0x20/0x20 [ 288.706742] ? __lock_acquire+0x572/0x4a30 [ 288.710973] ? __lock_acquire+0x572/0x4a30 [ 288.710990] should_fail.cold+0xa/0x15 [ 288.711004] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 288.724182] ? ___might_sleep+0x1e7/0x310 [ 288.728450] ? arch_local_save_flags+0x50/0x50 [ 288.733038] ? print_usage_bug+0xd0/0xd0 [ 288.737103] __should_failslab+0x121/0x190 [ 288.741538] should_failslab+0x9/0x14 [ 288.745347] kmem_cache_alloc+0x2be/0x710 [ 288.749532] ? __lock_acquire+0x572/0x4a30 [ 288.753768] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 288.759345] mmu_topup_memory_caches+0x97/0x490 [ 288.764020] kvm_mmu_load+0x21/0x1200 [ 288.767816] ? mark_held_locks+0x100/0x100 [ 288.772044] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 288.772059] ? __phys_addr+0xa4/0x120 [ 288.772071] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.772087] vcpu_enter_guest+0x3f0e/0x6520 [ 288.791258] ? emulator_read_emulated+0x50/0x50 [ 288.795926] ? add_lock_to_list.isra.0+0x450/0x450 [ 288.795942] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.795954] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.795971] ? check_preemption_disabled+0x48/0x290 [ 288.816953] ? __lock_is_held+0xb6/0x140 [ 288.821032] ? lock_acquire+0x1db/0x570 [ 288.824993] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 288.830001] ? lock_release+0xc40/0xc40 [ 288.833960] ? kvm_gen_update_masterclock+0x380/0x380 [ 288.839141] ? rcu_sync_dtor+0x170/0x170 [ 288.843192] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 288.848018] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 288.853028] kvm_vcpu_ioctl+0x558/0x12d0 [ 288.857076] ? kvm_vcpu_block+0x1010/0x1010 [ 288.861470] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 288.866996] ? lock_downgrade+0x910/0x910 [ 288.871131] ? kasan_check_read+0x11/0x20 [ 288.875278] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 288.880560] ? rcu_read_unlock_special+0x380/0x380 [ 288.885504] ? __fget+0x499/0x710 [ 288.888959] ? iterate_fd+0x4b0/0x4b0 [ 288.892746] ? kvm_vcpu_block+0x1010/0x1010 [ 288.897049] do_vfs_ioctl+0x107b/0x17d0 [ 288.901097] ? wait_for_completion+0x810/0x810 [ 288.905677] ? ioctl_preallocate+0x2f0/0x2f0 [ 288.910082] ? __fget_light+0x2db/0x420 [ 288.914048] ? fget_raw+0x20/0x20 [ 288.917487] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 288.923010] ? fput+0x128/0x1a0 [ 288.926274] ? do_syscall_64+0x8c/0x800 [ 288.930239] ? do_syscall_64+0x8c/0x800 [ 288.934195] ? lockdep_hardirqs_on+0x415/0x5d0 [ 288.938771] ? security_file_ioctl+0x93/0xc0 [ 288.943175] ksys_ioctl+0xab/0xd0 [ 288.946624] __x64_sys_ioctl+0x73/0xb0 [ 288.950498] do_syscall_64+0x1a3/0x800 [ 288.954369] ? syscall_return_slowpath+0x5f0/0x5f0 [ 288.959283] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 288.964279] ? __switch_to_asm+0x34/0x70 [ 288.968330] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 288.973164] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 288.978343] RIP: 0033:0x457ec9 [ 288.981520] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 289.000494] RSP: 002b:00007ff88cef3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 289.008183] RAX: ffffffffffffffda RBX: 00007ff88cef3c90 RCX: 0000000000457ec9 [ 289.015435] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 289.022686] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 19:58:56 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5421, 0x0) 19:58:56 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(0x0, 0x0) r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x20100, 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(r0, 0x4040ae75, &(0x7f0000000080)={0x6, 0xf0c3, 0xe40, 0x407}) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(0xffffffffffffffff, 0x28, 0x2, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000680)=""/187, &(0x7f0000000500)=0xbb) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r1, 0x40045431, &(0x7f00005befdc)) r2 = syz_open_pts(r1, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x3) dup3(r2, r1, 0x0) 19:58:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:57 executing program 1: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000000)=0x0) timer_create(0x0, &(0x7f0000000040)={0x0, 0x32, 0x4, @tid=r0}, &(0x7f0000000080)) setrlimit(0xb, &(0x7f0000000140)) timer_create(0x0, 0x0, 0x0) [ 289.029945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cef46d4 [ 289.037194] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:57 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:57 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:57 executing program 3 (fault-call:10 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:57 executing program 1: ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000000)=0x0) timer_create(0x0, &(0x7f0000000040)={0x0, 0x32, 0x4, @tid=r0}, &(0x7f0000000080)) setrlimit(0xb, &(0x7f0000000140)) timer_create(0x0, 0x0, 0x0) 19:58:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5452, 0x0) 19:58:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:58:57 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:57 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5421, 0x0) 19:58:57 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:57 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) [ 289.507921] FAULT_INJECTION: forcing a failure. [ 289.507921] name failslab, interval 1, probability 0, space 0, times 0 19:58:57 executing program 4 (fault-call:6 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:57 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x100000890e, &(0x7f0000000140)="0adc1f023c123f3188a070") clone(0x802902001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$pptp(0x18, 0x1, 0x3) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r2 = dup3(r1, r1, 0x80000) accept$packet(r2, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x68, r3, 0x3, 0x70bd2a, 0x25dfdbfe, {{}, 0x0, 0x4108, 0x0, {0x4c, 0x18, {0x2, @media='udp\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) [ 289.647927] CPU: 1 PID: 12489 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 289.654882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 289.664315] Call Trace: [ 289.666991] dump_stack+0x1db/0x2d0 [ 289.670634] ? dump_stack_print_info.cold+0x20/0x20 [ 289.670659] ? percpu_ref_put_many+0x129/0x270 [ 289.680326] should_fail.cold+0xa/0x15 [ 289.680341] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 289.689298] ? ___might_sleep+0x1e7/0x310 [ 289.693440] ? arch_local_save_flags+0x50/0x50 [ 289.698223] __should_failslab+0x121/0x190 [ 289.702457] should_failslab+0x9/0x14 [ 289.706254] kmem_cache_alloc+0x2be/0x710 [ 289.710382] ? mark_held_locks+0xb1/0x100 [ 289.714596] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 289.720118] mmu_topup_memory_caches+0x97/0x490 [ 289.724770] kvm_mmu_load+0x21/0x1200 [ 289.728548] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 289.734075] ? check_preemption_disabled+0x48/0x290 [ 289.739074] vcpu_enter_guest+0x3f0e/0x6520 [ 289.743406] ? emulator_read_emulated+0x50/0x50 [ 289.748073] ? add_lock_to_list.isra.0+0x450/0x450 [ 289.753005] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.758520] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.764041] ? check_preemption_disabled+0x48/0x290 [ 289.769040] ? __lock_is_held+0xb6/0x140 [ 289.773082] ? lock_acquire+0x1db/0x570 [ 289.777053] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 289.782062] ? lock_release+0xc40/0xc40 [ 289.786029] ? kvm_gen_update_masterclock+0x380/0x380 [ 289.791205] ? rcu_sync_dtor+0x170/0x170 [ 289.795253] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 289.800077] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 289.805087] kvm_vcpu_ioctl+0x558/0x12d0 [ 289.809135] ? kvm_vcpu_block+0x1010/0x1010 [ 289.813531] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 289.819064] ? lock_downgrade+0x910/0x910 [ 289.823205] ? kasan_check_read+0x11/0x20 [ 289.827332] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 289.832588] ? rcu_read_unlock_special+0x380/0x380 [ 289.837501] ? __fget+0x499/0x710 [ 289.840937] ? iterate_fd+0x4b0/0x4b0 [ 289.844719] ? kvm_vcpu_block+0x1010/0x1010 [ 289.849022] do_vfs_ioctl+0x107b/0x17d0 [ 289.852977] ? wait_for_completion+0x810/0x810 [ 289.857541] ? ioctl_preallocate+0x2f0/0x2f0 [ 289.862468] ? __fget_light+0x2db/0x420 [ 289.866425] ? fget_raw+0x20/0x20 [ 289.869862] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 289.875378] ? fput+0x128/0x1a0 [ 289.878644] ? do_syscall_64+0x8c/0x800 [ 289.882597] ? do_syscall_64+0x8c/0x800 [ 289.886551] ? lockdep_hardirqs_on+0x415/0x5d0 [ 289.891121] ? security_file_ioctl+0x93/0xc0 [ 289.895518] ksys_ioctl+0xab/0xd0 [ 289.898952] __x64_sys_ioctl+0x73/0xb0 [ 289.902831] do_syscall_64+0x1a3/0x800 [ 289.906704] ? syscall_return_slowpath+0x5f0/0x5f0 [ 289.911613] ? prepare_exit_to_usermode+0x232/0x3b0 [ 289.916616] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 289.921456] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 289.926651] RIP: 0033:0x457ec9 [ 289.929841] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 19:58:58 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 289.948721] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 289.956429] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 289.963686] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 289.970933] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 289.978286] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 289.985536] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 [ 290.005200] FAULT_INJECTION: forcing a failure. [ 290.005200] name failslab, interval 1, probability 0, space 0, times 0 [ 290.029000] CPU: 1 PID: 12512 Comm: syz-executor4 Not tainted 4.20.0+ #5 [ 290.035998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.045513] Call Trace: [ 290.048106] dump_stack+0x1db/0x2d0 [ 290.051739] ? dump_stack_print_info.cold+0x20/0x20 [ 290.056760] should_fail.cold+0xa/0x15 [ 290.060651] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 290.065755] ? ___might_sleep+0x1e7/0x310 [ 290.069902] ? arch_local_save_flags+0x50/0x50 [ 290.074492] __should_failslab+0x121/0x190 [ 290.078813] should_failslab+0x9/0x14 [ 290.082624] kmem_cache_alloc+0x2be/0x710 [ 290.086892] ? mark_held_locks+0xb1/0x100 [ 290.091036] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 290.096664] mmu_topup_memory_caches+0x97/0x490 [ 290.101417] kvm_mmu_load+0x21/0x1200 [ 290.105204] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 290.110721] ? check_preemption_disabled+0x48/0x290 [ 290.115724] vcpu_enter_guest+0x3f0e/0x6520 [ 290.120035] ? emulator_read_emulated+0x50/0x50 [ 290.124682] ? add_lock_to_list.isra.0+0x450/0x450 [ 290.129630] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.135147] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.140668] ? check_preemption_disabled+0x48/0x290 [ 290.145672] ? __lock_is_held+0xb6/0x140 [ 290.149717] ? lock_acquire+0x1db/0x570 [ 290.153676] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 290.158676] ? lock_release+0xc40/0xc40 [ 290.162642] ? kvm_gen_update_masterclock+0x380/0x380 [ 290.167999] ? rcu_sync_dtor+0x170/0x170 [ 290.172049] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 290.176873] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 290.181881] kvm_vcpu_ioctl+0x558/0x12d0 [ 290.185952] ? kvm_vcpu_block+0x1010/0x1010 [ 290.190255] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.195777] ? lock_downgrade+0x910/0x910 [ 290.199909] ? kasan_check_read+0x11/0x20 [ 290.204045] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 290.209313] ? rcu_read_unlock_special+0x380/0x380 [ 290.214231] ? __fget+0x499/0x710 [ 290.217673] ? iterate_fd+0x4b0/0x4b0 [ 290.221464] ? kvm_vcpu_block+0x1010/0x1010 [ 290.225765] do_vfs_ioctl+0x107b/0x17d0 [ 290.229720] ? wait_for_completion+0x810/0x810 [ 290.234291] ? ioctl_preallocate+0x2f0/0x2f0 [ 290.238703] ? __fget_light+0x2db/0x420 [ 290.242661] ? fget_raw+0x20/0x20 [ 290.246097] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.251622] ? fput+0x128/0x1a0 [ 290.254901] ? do_syscall_64+0x8c/0x800 [ 290.258856] ? do_syscall_64+0x8c/0x800 [ 290.262814] ? lockdep_hardirqs_on+0x415/0x5d0 [ 290.267380] ? security_file_ioctl+0x93/0xc0 [ 290.271769] ksys_ioctl+0xab/0xd0 [ 290.275207] __x64_sys_ioctl+0x73/0xb0 [ 290.279074] do_syscall_64+0x1a3/0x800 [ 290.282943] ? syscall_return_slowpath+0x5f0/0x5f0 [ 290.287852] ? prepare_exit_to_usermode+0x232/0x3b0 [ 290.292850] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 290.297677] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.302845] RIP: 0033:0x457ec9 [ 290.306035] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 290.324932] RSP: 002b:00007fa7bc31fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.332641] RAX: ffffffffffffffda RBX: 00007fa7bc31fc90 RCX: 0000000000457ec9 [ 290.339889] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 290.347136] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 290.354396] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa7bc3206d4 [ 290.361817] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:58 executing program 3 (fault-call:10 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:58 executing program 1: epoll_create1(0x80000) flock(0xffffffffffffffff, 0x0) r0 = epoll_create1(0x80000) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x8000, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000100)={0x0, 0x8000, 0x0, 'queue1\x00'}) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x1, 0x0) r3 = getpid() sched_setscheduler(r3, 0x5, &(0x7f0000000040)) readlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000003c0)=""/114, 0x72) r4 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000200)={0x10000000002, 0x0, @ioapic={0x0, 0x0, 0x0, 0x7f, 0x0, [{0x0, 0x9, 0x17000000, [], 0xffffffffffffffff}]}}) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000001c0)={0xffffffffffffffff}, 0x13f, 0x8}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r4, &(0x7f0000000500)={0xb, 0x10, 0xfa00, {&(0x7f0000000440), r5, 0xffffffff}}, 0x18) r6 = gettid() timer_create(0x0, &(0x7f0000000380)={0x0, 0x200000000000030, 0x3, @tid=r6}, &(0x7f0000000300)=0x0) timer_gettime(0x0, 0x0) ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0) timer_settime(r7, 0x0, 0x0, 0x0) syz_open_dev$usbmon(0x0, 0x80000001, 0x4002) syz_open_dev$adsp(&(0x7f0000000540)='/dev/adsp#\x00', 0x8, 0x2000) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)) 19:58:58 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup2(r0, r0) ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r1, 0xc0845658, &(0x7f00000001c0)={0x0, @bt={0x4, 0x9, 0x0, 0x2, 0x3, 0xfffffffffffffffb, 0x1, 0x3, 0x1, 0x8, 0xd03, 0x9, 0x45767f92, 0x0, 0x8, 0x20}}) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f023c123f3188a070") ioctl$VIDIOC_STREAMON(r1, 0x40045612, &(0x7f0000000140)) r2 = socket$inet6_sctp(0xa, 0xfffffffffffffffd, 0x84) sendmsg$inet_sctp(r2, &(0x7f00000000c0)={&(0x7f0000139ff0)=@in={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000000)="be", 0x1}], 0x1}, 0x0) recvmmsg(r2, &(0x7f0000006780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8000000000000}, 0xb) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000100)) sendmmsg$inet_sctp(r2, &(0x7f000093eee8), 0x39, 0x8000000000000000) 19:58:58 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) 19:58:58 executing program 4 (fault-call:6 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:58 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:58 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000001740)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x4000010) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x40100, 0x0) ioctl$TIOCLINUX2(r1, 0x541c, &(0x7f0000000080)={0x2, 0xfc, 0x2, 0xdab7, 0x4e54d2fe, 0x8001}) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000000000000010000105000600200000000a00000000000000000500e50000070000001f0000000000000300000000000002000100f5000000000000020000000005000500000000000a00000000000000000000000000000000170000000000000000000000000000ce1a03d4a301bc55a2b716f795b0acc5de05eca92814370758cbb5d0289d233ff5c6caedcb7f813e9750830892b7c9d5eb8167cbdff6ea48b0bab86ac0de5a24ae8dfed6396f2ec33232503567be045057471251ca4a0a7784212f76da9751627cd4b781655a1301fc6973aed67ad08f"], 0x80}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000018c0)={{{@in6, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f00000019c0)=0xe8) sendmmsg(r0, &(0x7f0000007180)=[{{0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000000300)="c299832247a1ed8ed59614e5061cf79c380bb6ea717cfb9cb32e1f5eef3f0e07b4d39d0ded4756571d7f9e42bab031ead9de3b522bb1dbf8c528a28fd0c08bc2b2d3f2ad9e6203a27144a4e1a2b074dc30ba4dbca869a5deefb99f277c538fc5c22e59db7365d54e584ff5c515afaebda0ee8bc2392296d25481e78a63e21b97edfa40aab995cfec231135e1121223a582a0f5b6c1e45856c1daeb26c9991fde6484e731857df3aac51c5fa2672ac4b434407f9e9e64e6a6ab6751df2ae83ce7fb7d4d2b6eaa4e87ba218991fc6870e3693c12a18d27d2a414ae2c43f57880cf6a712730", 0xe4}, {&(0x7f00000000c0)="25b94696ad8112e184fb83c14f0c8205f0259f1fd21fee8bc0758413cb9506cfc17d516e58bec70e5a88782184bd667541e2afdcc2b839cbf7164c8816cbd61ec4d66a608db6028c55016bf3ebbb56e02faa7674fec160a7a1769a5471ef9312d6e810b1d606c3aa165d436aa48460234def0e3d7698b65d084776a0639f15c62d2216f27a5a5f19287415a1b72d82e181f8b4f4a1900d32851b50cdfc6436a2d3a484eee73dce44dab5522bb1b393643ae4bbcc8421e12c277a25a2b2", 0xbd}, {&(0x7f0000000400)="6e4e568b97eba79e0b888c981f38dd49a97aeeb983e25df18ea200c001dc35b469ae3e1f1ab5166aa3b3db7438731e6407f17affe3b6abf56eb9a3ac4164bf5a23da7c6d30934cc0922134bc31a7376bed9c93dde710fde7990561ded45109ec799ffc19f061b7b62385b7065fcab05bac6b34b0b96e77c6833d070260a3d307323755cb87391808991836c556dbedd03317973f023097af79a64d", 0x9b}, {&(0x7f00000004c0)}, {&(0x7f0000000500)="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", 0x1000}], 0x5, &(0x7f0000001580)=[{0x90, 0x1ff, 0x0, "01c7b8d1d3c15dad8e9b9650f0dca78261c9f2f23ba68c97d6284ad62aab7c220114cf48b01d33f409025aeec0d62a1f4161f2e0b1db76274881076a6ad6907a951ceaeb669d06581035cc781adc1c6149e98e180e7368463d657f65a042c8bc51a017263b73bec3e20f8bdc83d63e1101b2d06f62fe3518fb72ad5d"}, {0xa0, 0x111, 0x573c, "96c836ecad47ccfdf1f587d71c218f8f9a7a80856f1bb3049c98c93486290b140b8e6db133e39b27d8c2b5f48e25b3c789609e3a47243710bfecf2def85c273ae5191507e6e1e964631b21f60f4d2868036e9e1d8e0ec602ac3b904c1b1f2471ae7c50fbf08ded93c7d335026e637bc95c3b9285ac32c94605cf6458cc39715c53ef04b0bad95ce9be"}, {0x78, 0x200000103, 0x3, "1e9e26006e42173239dde98a9e6afa64137d1fa6ff28ad6258fac394defe90cb5c755fbdee0802513996afe11e85b7602158ba324855656a677322e9916c8e27e6782856a3d04a01f20daaaaf16d13cd57494f687643249bb357cfee6525a6812f9ca692c8a3ad"}], 0x1a8}, 0x20}, {{&(0x7f0000001a00)=@can={0x1d, r2}, 0x80, &(0x7f0000001f00)=[{&(0x7f0000001a80)="9fbcdd03129cfcd51e58875f14375a01aa4a57b7942221956382e079c6666add0f51e2cf5d72582db4ffe30bd0edb1bdec1fc4897b01cca45253f1f1b1eea8029225610f8841fee349714cc39340210d90b9ed48f35301ae5d963cd7517a69643edba687943658019a04856bc42b7c7f251be784bd7e96c9c16a3f9cd3ff967c5d6174d68777b66ba86e846489d2eb2f66487a0af568473460c744ce7714823def2bab3c691f4a8be4214d3c923c3fd0d91f43f30b0ccc1187fa8e1f70da", 0xbe}, {&(0x7f0000001b40)="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", 0xfd}, {&(0x7f0000001c40)="d8308ec08ec866eccb0154458fe5912222c387aeb94f09008f007be1c88a621fc0025e79", 0xffffffffffffffa6}, {&(0x7f0000001c80)="a69c5b18acd7155e58c69ed1005f907e0d157ecbc20d75bbc2a3e8e6e51d9ebef4f94e19eb3d123b0cd214eb8a9eb0d3591d091570b68abd7d32e739a8ae461c28d868fd959e7ce0bb973a6f98bfd924c4377d3b02d638fdb8daad4e7a16138890914606df6783e9c803c5939ceb04c5a097c1e6971da5975885ad9d543b368dba6a307d9ae907fa3d3c797217d81a7e6ea61d9ddfa1f78e7ebc2b62a89cc8c59513bd163a1b777c5b6afdcbc6e6f56351bac4d4c0c59e40c82b758b16e8eaa57de237", 0xc3}, {&(0x7f0000001d80)="3bf0f06cdaa112474f77391dc24f197dcfe2bd39026389ffd98e7f61b93b41b9c92a3a0c5ced0d57578ad02c68d553db0c42f396f84afe6425f87784f4894dccf8f0ab9acaf7c7c1816e8beb6ad32d2e140489030208f14aeb759f5a51110802dd4eda0596f3f3b12e25b98319bef30bf01031f5264b4f7875180bbefc1421", 0x7f}, {&(0x7f0000001e00)="f172d241fed649f2eab7a16c1d2c5e8435134d36c757d8add4e798b86869b25d3950e1c2678fb68316af7b56d485ac588281e8e440a246b5e6931720aa498baf4c22a39283a4c6549d415a7c06f3a33288bc8b649d282c468f6ca63d5723f168cd45e946b2eddf28a80c773ee977e2a4865be323ed4c5cebe56d3468bbb86146ea53e2b4eb854ace76e645c68b087220b3cf6191252d33151b1096f86998aaa83ec26f46fe9b940940c5af23f5d1f56f9f8bd1763e1e551f5df3fe8571017ed6a8f66be3515a70bc6d6afc52b7ad03768258590f99e0646259898b7e3dd10f", 0xdf}], 0x6, &(0x7f0000001f80)=[{0x1010, 0x3e, 0x2, "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"}, {0xa0, 0xff, 0x80000001, "38731cf3deb6c96b4b9930cb06261ecfc98fe5f78ca06b6e29c42a34937591a2fbd01fbd3f7ac0b920eaba70ff69de1f6d0cb28055af24024a4646d8b00523bd295497857fb8df8c85fe57c16fd08ec7d86fb2241c29eac570d22f83a27b746912dfcd7b803811507a2270954e6cb26f39d9138b2d841cb84c6e9d450b65d8a9c4f6a0ec89fe9f4c6de0089697ad"}, {0xa0, 0x103, 0x63, "88985a5d641720d95bf5a6ff3e9b516b3c9d2c39ec7e15390037315e308237fb17954d84622c1fb334c968735db448cfb8b044be8e7f1e0fc919ae6fce8dc921d18d0727579083fc275f71c26a809957a4ccf4ea4b5528b67162643bedff19c09faddb8e6a7cab06d43790d5529a00a8ec0b3e4377a4a2e90d8213415df3378203de03eb3fd82c9fb6e4061b"}, {0xc0, 0x109, 0x2, "c5c63e69b247195290cc377c204772f8e0a3203896175100fe79f5c8690c8af7072cdfdf3954650f6191604ed07d3adecb50af24dcadde3ba9155a95145a5de11ec66840659ba7688221e488c23ee95a45de1f4cc2146d8a21ff763754fb81a118070a8e37327aa7fc97d83a4b2c58112696cbbd72aad3fbe7529ee03d0f302b58bd9b1b339bd218af1390ed98766cd3be0ab1eb0a718b10fba37b4562e991af042e3553b8bf0a29acb7"}], 0x1210}}, {{0x0, 0x1a8, &(0x7f00000044c0)=[{&(0x7f00000031c0)="433a1c18cfc1423722af2d9753753e70f44447376b86a2d9f0827b0e98dbb762b5daafceae3ff53cce0c8c532e44e25de5b88239e17490558de9e8158acda5ca07eb8d1e204c3e1bb9a43a8017d4069c4e74146fe5cce64a003ce6b3fb49d48c767196c982db9d790f2185e2af2b94a17b13b61a9b1c6a4e9bc26b2420bd9602c0b0a9915c6774ee4d046db1473bc5481b0800d449ee0aa5fc59b13d83a8bb2654c8523d92e3f1a05e5667f75e75fbe617b7d068d8273d77b9", 0x2d9}, {&(0x7f0000003280)="8d894617beffa65459470bd9f33181d8bbe7e65c7044ce17d5405cb178430a26381b5445ec4d3a20a9de5a4ae6a6acd295de6f2729d77e99e887ab3b9355a6a51bbf52570b770ab44e5a88c9a2f77ab6880a18b620d0c2b4722d255a58fb0b223d52b3d9c16080e563a47220ef2a82b240f60b399ab1f2451c33a2225b824055bba1a296a5b470337e9f020f749db302c3fa9b339329bc1b2648a4ce9fb5cb99f1da3f8636a619e163d0183c73b7ae48", 0xb0}, {&(0x7f0000003340)="d4a6361143a41145192516f6bc72857d2ea224ffc259df930ff084d0ee38621b8a3942b4879548a64d1aecba51b7637b89b54c6b12ac", 0x36}, {&(0x7f0000003380)="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", 0x1000}, {&(0x7f0000004380)="38016d9fdc0f6fa33b573775c789ae100da7874e3f4249d69ed000bc61e095582551d79825d7551cbaadf04c9b3bba9a37219cde111b55280a5529ab1127877bec2576", 0x43}, {&(0x7f0000004400)="531ba00595931584d42e59042bfe8d49a38696f24d855c89075b55572a724be15d8ccb6e74eb81e35eb90571dc7f28dc451c0d5cd2a6cf09697c1fba3aa6601f906f5fe6b6cd1663555ebaaf69e09a7c476950af8cf600a49c7ab57d17db8c589894f8e2622432b10f5dca9ed42947833fad0314695b16cdb34265581a0cd0a22af9b68aa9f6d458e249ba820de16e0dff8fda985a761cb0ce0b91a6e3c7aab538f51af85aca30f25f4a92b3c8edda2dd6c34994be4093ed97470bfa95", 0xbd}], 0x0, &(0x7f0000004540)=ANY=[@ANYBLOB="5000000000000000ff010000caa39ff083283580c0fd9f9366d47afe73506e14f7f11983350775a23a5f1aaa6168822276e2a08f6819b79efce4aa77c7c9aeee22000000000000"], 0x50}, 0x8}, {{&(0x7f00000045c0)=@pptp={0x18, 0x2, {0x2, @multicast1}}, 0x80, &(0x7f0000004b80)=[{&(0x7f0000004640)="18332d6fb4fbdda26eaefb1b6527c4015f5b60d629d6ce1e7022773ae6940c943408c59af34e7279e24ccd968faabc04e76cf21c96d172fec749dc679b2dc56b3bdbf8f39b06156b8153b1155f9da327a6e6bf763e207a34cdd850673cd0d149abeb824d5ee8e65dbee949d70af5d5", 0x6f}, {&(0x7f00000046c0)="acf295b15c", 0x5}, {&(0x7f0000004700)="cf8814bc9311e562379d2840ceb5ac251a907886cdf99ededd36c74410f08b58b1939ef54ace1de602673416b86b044c7e208cc16b34b0072a", 0x39}, {&(0x7f0000004740)="fd157764ddf49455e3b66ffe85efa7e7dcf4509a8b6682f31b075afeb24e21b143d9378141fbcdc5093a1d984f5dd842402cb3b54f684ba4e117c7911bdf525d367a315b19ae6caf6229b947f490395a298a1763bdd155188c4345b7042d2b16db72fa93ffd3b38bfe1a1d1a095122c51189b9a8441419", 0x77}, {&(0x7f00000047c0)="bc3f5eef460576faf5ce7244de31680f1f887288afab56462c214d0865287768f1d1cd4578f8901cc6d7abdb88ab7e00b372543361c004d9edd3492ce764ad1666b94754f32df24fdadda4837d6a15664914eb62bfab14b2c8b1e93968ae39da7b36", 0x62}, {&(0x7f0000004840)="28e56b3061a2326c05df668e96c03f5af9f51f4d55f786bce5788a7b20fa6bc24ae36cae6aa5982c5c64962d6691d44005cfe05e31e6ead60363e3464997e066c497aa00e2416f2d2da953fc75f60d1851a4a323c93509e8a8f3dffd672d0e9d6b30d874bfafe426ee1116ce59f2a6e922cc2811c9088e7aa6635654d5c3c5a404fec87a9b8bf35116168ab7962518251d2f5fa7", 0x94}, {&(0x7f0000004900)="0d12a5a97b859d2bc80565a1f1d25fe3116a3ffcb28680d726f4f49912369b4598974873ac784c04278cb2ad5c762727526098909c1f408140569afecbc2f211034dacde5c14497e0930de74fb650e30c1f3f9e11e2c543ba366a7d49ca774332d3a6efcd23c30813431aadcfba41985662e1a74b57329aecba99466bee17702cf0f2c864c4d0dff60d42ec3f79ebd34568d2f2475fd6e5954a9a8a155f741af8d01", 0x413}, {&(0x7f00000049c0)="d95827859d6fc71a2eb9faa7691548457ee6bf21357943cf1b72baf5fb264832daabbd5128412ffcd55dd4ff337610c5ffce622456d73425f2df3ba69122c11df9a3221ee738448deebe9de35e5dd355dac56aac80f94f6306010ee66d1d718969e446ca69f666e1e9fed668174cc342cbe2756e08311956403baa87f281078dce65d3355d6e25f42ce407f4fac101bba109865f5016ca101a487c", 0x9b}, {&(0x7f0000004a80)="de47a04d6b981cc89592ca95a69c0167c9f865666c431bb9971d3f7927287255b6217d1b9a411a619da30eec5265964a8e8544c4e02c8a77d7fd49ad7faede960c4683b9a2a65bc65a3e69bd00ad4e10e0f8a1806ebf64ae1c9741cba49903a495ddbd52628747f9827ffa7bbf1aa2687f2d873c18d39a503778046722a9e144907e57437be706a0aaa5724ddfbfd461b4dff31a05b747488f85f45b1ab978bdf231c06b", 0xa4}, {&(0x7f0000004b40)="c2859eca8a0b97", 0x7}], 0xa, &(0x7f0000004c40)=[{0xb8, 0xff, 0x7fff, "4641a31cecba2b2e432af931a4752f3b90c01ae67f76fd986e0c1a3016f3e77e5bf74a2a6fd980e09fe0a6d806256199980850607f744ff6028580effdbb5fae585115d67e66ad8a5d1991659c0d9992566a5b756db87289c77c70989b6da3b842abe34e95912e71a8bdaa6a7c228a92686e083ca254428f35b374d33f5384eaad09f606d249ec6cdf38d44e247100df466e322b8604f9f8415a911d307ac04d59"}, {0xd8, 0x13f, 0x8, "31f8f6c92e1c952af32da9f9899f3abc5e08704a7e764cdc9289ce51c356fa04a8050f247c6c5e8b1d741cefec5aae02ecf27adae50b402d4228b1a8e99c33f0a01ac03a55a8187de07a180dce23c42a80d6538197b5e2c62f6f80fdb68f872103abdb60a887fa14a45e6b2b62d8f3f4913dc826da9d09ef8deaf21bf56cbc4af9d1fdd6b8d30598b841cbf3bb5a264904a292362e46126ead9a9fbd0b2ba6f09ce9122d83ac7c9767abf407afc8f3c55ab483db802e5d5a9672d5ba0506edae30"}, {0x38, 0x117, 0x5, "aa7d136ffcd6a2758a9ffd5ba7a1b847487fabafc5980f58a83d83a949ee96a1b1df8325b5d378"}, {0x1010, 0x110, 0x1, "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"}, {0x50, 0x11f, 0xb0, "98302fa4424e06a59b669a5f1986c728c2745209a102e095225fb617a3bea55475223fd8e87aebfa3648ace510d70ff8e775d61613942f6b03d2d77b1a050811"}, {0x1010, 0x102, 0x80000000, "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"}], 0x2238}, 0xfffffffffffffff9}, {{&(0x7f0000006e80)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x10}, 0x80, &(0x7f00000070c0)=[{&(0x7f0000006f00)="7232546649f1c68838ca76fa7cd9a55a99ac57b89f7c969f302db259a2bd6ffa37dfbc2dbea8020761f265971e0bf56853dc9cfffec3b9111f7aedfc3122954d1ec3ff3b03ab29dba7eb7f54df1fe09400ca940197d2be12846edbbec3987672812cd6e8dfe1491517a2b88bf62f6ba03434d16373018e9dda9d168bcc55f6f8ac1288c2083b88f7acdb94c3013030e6e6426dbc10e7a2c53a23c5f5f516f57eee3ad19141f2783f7bb717a109c17b849f8061d9b8424c9839ca4a5798c39a82bff0ba89d66ffce0df8783b4a45fd90b22f156e396faa9a8a5d340d885ac418d2ce536ac90bdf9d5b98a2a952c366b", 0xef}, {&(0x7f0000007000)="5d4a1d45b4bb75f5adf9bbb24700a571b207e5bbc64e724fc44160799f479de8af4aa0231bc7abbc12c11b7930ba103f7dbe92b9b835ef99fb2b5f6c109cd37cecce10ea212379efdfeba394d0b415d9bf9a432f1ecf19c839feeb992d60116d312b5e01a20084de0e5f830c3305875d38bb0a39e216d7d05960f5187068a381c1695e4e03c0739803b8eec217a83f51ef9b81f90704827ecf957344ba15add85e768043c97833ef85bb631ab68b83", 0xaf}], 0x2, &(0x7f0000007100)=[{0x50, 0x0, 0xffffffffffffffa4, "24796dabf838405107bcbed99c7b36b1e5ab96e4e702c7db27de6dbda9c2aff1efa2ab2114b84e92bb0b43577b6db337603abaf7b15730463f27d9"}], 0x50}, 0xf6a}], 0x5, 0x0) setsockopt$sock_void(r1, 0x1, 0x1b, 0x0, 0x0) [ 290.625691] FAULT_INJECTION: forcing a failure. [ 290.625691] name failslab, interval 1, probability 0, space 0, times 0 [ 290.660655] CPU: 0 PID: 12550 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 290.667518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 290.676872] Call Trace: [ 290.679470] dump_stack+0x1db/0x2d0 [ 290.683093] ? dump_stack_print_info.cold+0x20/0x20 [ 290.688101] ? percpu_ref_put_many+0x129/0x270 [ 290.692690] should_fail.cold+0xa/0x15 [ 290.696594] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 290.701714] ? ___might_sleep+0x1e7/0x310 [ 290.705961] ? arch_local_save_flags+0x50/0x50 [ 290.710592] __should_failslab+0x121/0x190 [ 290.714832] should_failslab+0x9/0x14 [ 290.718636] kmem_cache_alloc+0x2be/0x710 [ 290.722869] ? __lock_acquire+0x572/0x4a30 [ 290.727101] ? find_held_lock+0x35/0x120 [ 290.731159] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 290.736705] mmu_topup_memory_caches+0x97/0x490 [ 290.741369] kvm_mmu_load+0x21/0x1200 [ 290.745153] ? mark_held_locks+0x100/0x100 [ 290.745232] ? do_raw_spin_unlock+0xa0/0x330 [ 290.745246] ? do_raw_spin_trylock+0x270/0x270 [ 290.758536] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.764066] vcpu_enter_guest+0x3f0e/0x6520 [ 290.768461] ? _raw_spin_unlock+0x2d/0x50 [ 290.772603] ? emulator_read_emulated+0x50/0x50 [ 290.777269] ? add_lock_to_list.isra.0+0x450/0x450 [ 290.782183] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.787790] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.793310] ? check_preemption_disabled+0x48/0x290 [ 290.798311] ? __lock_is_held+0xb6/0x140 [ 290.802453] ? lock_acquire+0x1db/0x570 [ 290.806409] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 290.811405] ? lock_release+0xc40/0xc40 [ 290.815363] ? kvm_gen_update_masterclock+0x380/0x380 [ 290.820535] ? rcu_sync_dtor+0x170/0x170 [ 290.824595] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 290.829518] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 290.834536] kvm_vcpu_ioctl+0x558/0x12d0 [ 290.838585] ? kvm_vcpu_block+0x1010/0x1010 [ 290.842888] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 290.848408] ? lock_downgrade+0x910/0x910 [ 290.852627] ? kasan_check_read+0x11/0x20 [ 290.856757] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 290.862034] ? rcu_read_unlock_special+0x380/0x380 [ 290.866959] ? __fget+0x499/0x710 [ 290.870413] ? iterate_fd+0x4b0/0x4b0 [ 290.874306] ? kvm_vcpu_block+0x1010/0x1010 [ 290.878608] do_vfs_ioctl+0x107b/0x17d0 [ 290.882572] ? wait_for_completion+0x810/0x810 [ 290.887135] ? ioctl_preallocate+0x2f0/0x2f0 [ 290.891523] ? __fget_light+0x2db/0x420 [ 290.895476] ? fget_raw+0x20/0x20 [ 290.898926] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 290.904441] ? fput+0x128/0x1a0 [ 290.907704] ? do_syscall_64+0x8c/0x800 [ 290.911658] ? do_syscall_64+0x8c/0x800 [ 290.915635] ? lockdep_hardirqs_on+0x415/0x5d0 [ 290.920213] ? security_file_ioctl+0x93/0xc0 [ 290.924604] ksys_ioctl+0xab/0xd0 [ 290.928139] __x64_sys_ioctl+0x73/0xb0 [ 290.932006] do_syscall_64+0x1a3/0x800 [ 290.935873] ? syscall_return_slowpath+0x5f0/0x5f0 [ 290.940781] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 290.945776] ? __switch_to_asm+0x34/0x70 [ 290.949821] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 290.954650] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 290.959817] RIP: 0033:0x457ec9 19:58:58 executing program 2: mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:58 executing program 2: mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 290.962992] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 290.981875] RSP: 002b:00007ff88cef3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 290.989571] RAX: ffffffffffffffda RBX: 00007ff88cef3c90 RCX: 0000000000457ec9 [ 290.996818] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 291.004068] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 291.011320] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cef46d4 [ 291.018571] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 [ 291.069502] FAULT_INJECTION: forcing a failure. [ 291.069502] name failslab, interval 1, probability 0, space 0, times 0 [ 291.081929] CPU: 0 PID: 12555 Comm: syz-executor4 Not tainted 4.20.0+ #5 [ 291.088770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.098109] Call Trace: [ 291.098127] dump_stack+0x1db/0x2d0 [ 291.098143] ? dump_stack_print_info.cold+0x20/0x20 [ 291.098157] ? percpu_ref_put_many+0x129/0x270 [ 291.098179] should_fail.cold+0xa/0x15 [ 291.098194] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 291.098213] ? ___might_sleep+0x1e7/0x310 [ 291.098225] ? arch_local_save_flags+0x50/0x50 [ 291.098249] __should_failslab+0x121/0x190 [ 291.098264] should_failslab+0x9/0x14 [ 291.098276] kmem_cache_alloc+0x2be/0x710 [ 291.123100] ? mark_held_locks+0xb1/0x100 [ 291.123114] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 291.123133] mmu_topup_memory_caches+0x97/0x490 [ 291.123150] kvm_mmu_load+0x21/0x1200 [ 291.123165] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 291.153653] ? check_preemption_disabled+0x48/0x290 [ 291.153676] vcpu_enter_guest+0x3f0e/0x6520 [ 291.153688] ? __switch_to_asm+0x40/0x70 [ 291.153707] ? emulator_read_emulated+0x50/0x50 [ 291.185630] ? add_lock_to_list.isra.0+0x450/0x450 [ 291.190562] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.196084] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.201605] ? check_preemption_disabled+0x48/0x290 [ 291.206624] ? __lock_is_held+0xb6/0x140 [ 291.210702] ? lock_acquire+0x1db/0x570 [ 291.214658] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 291.219657] ? lock_release+0xc40/0xc40 [ 291.223614] ? kvm_gen_update_masterclock+0x380/0x380 [ 291.228792] ? preempt_schedule+0x4b/0x60 [ 291.232920] ? rcu_sync_dtor+0x170/0x170 [ 291.236965] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 291.241786] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 291.246790] kvm_vcpu_ioctl+0x558/0x12d0 [ 291.250833] ? kvm_vcpu_block+0x1010/0x1010 [ 291.255133] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.260653] ? lock_downgrade+0x910/0x910 [ 291.264781] ? kasan_check_read+0x11/0x20 [ 291.268907] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 291.274163] ? rcu_read_unlock_special+0x380/0x380 [ 291.279078] ? __fget+0x499/0x710 [ 291.282512] ? iterate_fd+0x4b0/0x4b0 [ 291.286303] ? kvm_vcpu_block+0x1010/0x1010 [ 291.290606] do_vfs_ioctl+0x107b/0x17d0 [ 291.294565] ? wait_for_completion+0x810/0x810 [ 291.299128] ? ioctl_preallocate+0x2f0/0x2f0 [ 291.303518] ? __fget_light+0x2db/0x420 [ 291.307498] ? fget_raw+0x20/0x20 [ 291.310931] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 291.316454] ? fput+0x128/0x1a0 [ 291.319726] ? do_syscall_64+0x8c/0x800 [ 291.323684] ? do_syscall_64+0x8c/0x800 [ 291.327642] ? lockdep_hardirqs_on+0x415/0x5d0 [ 291.332207] ? security_file_ioctl+0x93/0xc0 [ 291.336597] ksys_ioctl+0xab/0xd0 [ 291.340031] __x64_sys_ioctl+0x73/0xb0 [ 291.343900] do_syscall_64+0x1a3/0x800 [ 291.347768] ? syscall_return_slowpath+0x5f0/0x5f0 [ 291.352686] ? prepare_exit_to_usermode+0x232/0x3b0 [ 291.357687] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 291.362516] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 291.367692] RIP: 0033:0x457ec9 [ 291.370866] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 291.389743] RSP: 002b:00007fa7bc2fec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 291.397428] RAX: ffffffffffffffda RBX: 00007fa7bc2fec90 RCX: 0000000000457ec9 [ 291.404679] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 291.412040] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 19:58:59 executing program 5: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000300)={0x0, 0x0}) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) rt_sigqueueinfo(r1, 0x1e, &(0x7f0000001740)={0x0, 0x0, 0xfffffffffffffff9}) [ 291.419292] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa7bc2ff6d4 [ 291.426547] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:58:59 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f00004c0000)={0xa, 0x3, 0x0, @ipv4}, 0x1c) listen(r0, 0x43) r1 = socket$inet6_sctp(0xa, 0x4000000000000001, 0x84) bind$inet6(r1, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0) 19:58:59 executing program 3 (fault-call:10 fault-nth:3): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:59 executing program 2: mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:58:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) 19:58:59 executing program 4 (fault-call:6 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:58:59 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) close(r0) io_setup(0x6, &(0x7f00000001c0)=0x0) socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) io_submit(r1, 0x1, &(0x7f0000000600)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x3d5}]) 19:58:59 executing program 5: clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2c) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x20000000, 0x9c}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x9, r0, 0x0, 0x0) 19:58:59 executing program 2: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 291.674834] ptrace attach of "/root/syz-executor5"[12594] was attempted by "/root/syz-executor5"[12596] 19:58:59 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000001280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x40000200000600b, 0xffffffffffffffff) [ 291.733857] FAULT_INJECTION: forcing a failure. [ 291.733857] name failslab, interval 1, probability 0, space 0, times 0 [ 291.755698] CPU: 0 PID: 12591 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 291.762559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 291.771901] Call Trace: [ 291.774509] dump_stack+0x1db/0x2d0 [ 291.778169] ? dump_stack_print_info.cold+0x20/0x20 [ 291.778185] ? percpu_ref_put_many+0x129/0x270 [ 291.778206] should_fail.cold+0xa/0x15 [ 291.791651] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 291.796787] ? ___might_sleep+0x1e7/0x310 [ 291.796803] ? arch_local_save_flags+0x50/0x50 [ 291.796826] __should_failslab+0x121/0x190 [ 291.809753] should_failslab+0x9/0x14 [ 291.813557] kmem_cache_alloc+0x2be/0x710 [ 291.813588] ? __lock_acquire+0x572/0x4a30 [ 291.813682] ? trace_event_raw_event_bkey+0x1c0/0x370 [ 291.813696] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 291.822047] mmu_topup_memory_caches+0x97/0x490 [ 291.822065] kvm_mmu_load+0x21/0x1200 [ 291.822076] ? mark_held_locks+0x100/0x100 [ 291.822087] ? lock_release+0xc40/0xc40 [ 291.822096] ? mark_held_locks+0x100/0x100 [ 291.822109] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 291.849418] vcpu_enter_guest+0x3f0e/0x6520 [ 291.849440] ? emulator_read_emulated+0x50/0x50 [ 291.849452] ? add_lock_to_list.isra.0+0x450/0x450 [ 291.859181] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.859193] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 19:58:59 executing program 5: r0 = syz_open_pts(0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x400000009, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x101000000}) read(r0, &(0x7f0000000100)=""/67, 0x43) flock(r0, 0x2) mknod(&(0x7f0000000000)='./file0\x00', 0x8007, 0x16eb) r1 = open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x80000000000002, 0x10, r1, 0x0) flock(r0, 0x2) flock(r0, 0x2) msgrcv(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="64869c375a8fc672e4fddd7e0ae16087dcf944384574f9f041010a1a61026809133995c7ae3aa7dc622eacca270dad1d2810e824e58d2dc419fc78f01e800bbd26851a55f6f63a06a007ac62e77224278fe06fa646cd44b9efa2a1ecaf175ae35e04"], 0x1, 0x0, 0x0) 19:58:59 executing program 5: r0 = syz_open_pts(0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x400000009, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x101000000}) read(r0, &(0x7f0000000100)=""/67, 0x43) flock(r0, 0x2) mknod(&(0x7f0000000000)='./file0\x00', 0x8007, 0x16eb) r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x10, r1, 0x0) flock(r0, 0x2) flock(r0, 0x2) msgsnd(0x0, &(0x7f00000001c0)={0x0, "adff568f78c97d73de591738782107a8af1c"}, 0x1a, 0x0) [ 291.859206] ? check_preemption_disabled+0x48/0x290 [ 291.859224] ? __lock_is_held+0xb6/0x140 [ 291.893590] ? lock_acquire+0x1db/0x570 [ 291.897562] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 291.902585] ? lock_release+0xc40/0xc40 [ 291.902600] ? kvm_gen_update_masterclock+0x380/0x380 [ 291.902615] ? rcu_sync_dtor+0x170/0x170 [ 291.902632] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 291.902643] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 291.902665] kvm_vcpu_ioctl+0x558/0x12d0 [ 291.902680] ? kvm_vcpu_block+0x1010/0x1010 19:58:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x2, 0x0) [ 291.925684] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 291.925701] ? lock_downgrade+0x910/0x910 [ 291.925715] ? kasan_check_read+0x11/0x20 [ 291.925727] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 291.925740] ? rcu_read_unlock_special+0x380/0x380 [ 291.958006] ? __fget+0x499/0x710 [ 291.961454] ? iterate_fd+0x4b0/0x4b0 [ 291.965266] ? kvm_vcpu_block+0x1010/0x1010 [ 291.969591] do_vfs_ioctl+0x107b/0x17d0 [ 291.973563] ? wait_for_completion+0x810/0x810 [ 291.978147] ? ioctl_preallocate+0x2f0/0x2f0 [ 291.982554] ? __fget_light+0x2db/0x420 [ 291.986534] ? fget_raw+0x20/0x20 [ 291.990001] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 291.995540] ? fput+0x128/0x1a0 [ 291.998823] ? do_syscall_64+0x8c/0x800 [ 292.002799] ? do_syscall_64+0x8c/0x800 [ 292.002815] ? lockdep_hardirqs_on+0x415/0x5d0 [ 292.002833] ? security_file_ioctl+0x93/0xc0 [ 292.002848] ksys_ioctl+0xab/0xd0 [ 292.002863] __x64_sys_ioctl+0x73/0xb0 [ 292.011499] do_syscall_64+0x1a3/0x800 [ 292.011514] ? syscall_return_slowpath+0x5f0/0x5f0 [ 292.011529] ? prepare_exit_to_usermode+0x232/0x3b0 [ 292.033000] FAULT_INJECTION: forcing a failure. [ 292.033000] name failslab, interval 1, probability 0, space 0, times 0 [ 292.037068] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.037111] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.058294] RIP: 0033:0x457ec9 [ 292.061508] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 19:59:00 executing program 5: syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x0) r0 = syz_open_dev$mice(0x0, 0x0, 0x0) readv(r0, &(0x7f00000007c0)=[{&(0x7f0000000740)=""/114, 0x72}], 0x2000000000000145) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) shmctl$IPC_SET(0x0, 0x1, 0x0) [ 292.080411] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.088128] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 292.088138] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 292.088147] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 292.088156] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 292.088167] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 [ 292.143989] CPU: 1 PID: 12611 Comm: syz-executor4 Not tainted 4.20.0+ #5 [ 292.150858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 292.160215] Call Trace: [ 292.160236] dump_stack+0x1db/0x2d0 [ 292.160252] ? dump_stack_print_info.cold+0x20/0x20 [ 292.160268] ? percpu_ref_put_many+0x129/0x270 [ 292.160293] should_fail.cold+0xa/0x15 [ 292.160311] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 292.160334] ? ___might_sleep+0x1e7/0x310 [ 292.160348] ? arch_local_save_flags+0x50/0x50 [ 292.160375] __should_failslab+0x121/0x190 [ 292.160393] should_failslab+0x9/0x14 [ 292.160407] kmem_cache_alloc+0x2be/0x710 [ 292.160422] ? __lock_acquire+0x572/0x4a30 [ 292.160436] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 292.160457] mmu_topup_memory_caches+0x97/0x490 [ 292.171679] kvm_mmu_load+0x21/0x1200 [ 292.171694] ? mark_held_locks+0x100/0x100 [ 292.220521] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 292.220535] ? __phys_addr+0xa4/0x120 [ 292.220550] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 292.234108] vcpu_enter_guest+0x3f0e/0x6520 [ 292.234136] ? emulator_read_emulated+0x50/0x50 [ 292.234150] ? add_lock_to_list.isra.0+0x450/0x450 [ 292.234165] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 292.234179] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 292.268478] ? check_preemption_disabled+0x48/0x290 [ 292.273514] ? __lock_is_held+0xb6/0x140 [ 292.277573] ? lock_acquire+0x1db/0x570 [ 292.281543] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 292.286556] ? lock_release+0xc40/0xc40 [ 292.290525] ? kvm_gen_update_masterclock+0x380/0x380 [ 292.295710] ? rcu_sync_dtor+0x170/0x170 [ 292.299772] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 292.304611] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 292.309810] kvm_vcpu_ioctl+0x558/0x12d0 [ 292.313874] ? kvm_vcpu_block+0x1010/0x1010 [ 292.318191] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 292.323728] ? lock_downgrade+0x910/0x910 [ 292.327869] ? kasan_check_read+0x11/0x20 [ 292.332030] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 292.337302] ? rcu_read_unlock_special+0x380/0x380 [ 292.342232] ? __fget+0x499/0x710 [ 292.345683] ? iterate_fd+0x4b0/0x4b0 [ 292.349491] ? kvm_vcpu_block+0x1010/0x1010 [ 292.353810] do_vfs_ioctl+0x107b/0x17d0 [ 292.357781] ? wait_for_completion+0x810/0x810 [ 292.362362] ? ioctl_preallocate+0x2f0/0x2f0 [ 292.366764] ? __fget_light+0x2db/0x420 [ 292.370733] ? fget_raw+0x20/0x20 [ 292.374182] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 292.379715] ? fput+0x128/0x1a0 [ 292.382988] ? do_syscall_64+0x8c/0x800 [ 292.386959] ? do_syscall_64+0x8c/0x800 [ 292.390930] ? lockdep_hardirqs_on+0x415/0x5d0 [ 292.395516] ? security_file_ioctl+0x93/0xc0 [ 292.399919] ksys_ioctl+0xab/0xd0 [ 292.403368] __x64_sys_ioctl+0x73/0xb0 [ 292.407250] do_syscall_64+0x1a3/0x800 [ 292.411132] ? syscall_return_slowpath+0x5f0/0x5f0 [ 292.416093] ? prepare_exit_to_usermode+0x232/0x3b0 [ 292.421111] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.425956] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.431140] RIP: 0033:0x457ec9 [ 292.434333] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 292.453227] RSP: 002b:00007fa7bc31fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.460930] RAX: ffffffffffffffda RBX: 00007fa7bc31fc90 RCX: 0000000000457ec9 [ 292.468198] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 292.475476] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 292.482738] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa7bc3206d4 [ 292.490001] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 [ 292.497864] cgroup: fork rejected by pids controller in /syz5 19:59:00 executing program 3 (fault-call:10 fault-nth:4): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:00 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'lo\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000056c0)={&(0x7f0000000200)=@ipv6_newaddr={0x40, 0x14, 0x90b, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @dev}, @IFA_ADDRESS={0x14, 0x8, @mcast1}]}, 0x40}}, 0x0) 19:59:00 executing program 2: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 292.645588] FAULT_INJECTION: forcing a failure. [ 292.645588] name failslab, interval 1, probability 0, space 0, times 0 [ 292.656993] CPU: 1 PID: 12637 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 292.663847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 292.673211] Call Trace: [ 292.675812] dump_stack+0x1db/0x2d0 [ 292.675830] ? dump_stack_print_info.cold+0x20/0x20 [ 292.675848] ? percpu_ref_put_many+0x129/0x270 [ 292.684496] should_fail.cold+0xa/0x15 [ 292.684517] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 292.684543] ? ___might_sleep+0x1e7/0x310 [ 292.684559] ? arch_local_save_flags+0x50/0x50 [ 292.684588] __should_failslab+0x121/0x190 [ 292.711115] should_failslab+0x9/0x14 [ 292.714927] kmem_cache_alloc+0x2be/0x710 [ 292.719092] ? __lock_acquire+0x572/0x4a30 [ 292.723338] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 292.728890] mmu_topup_memory_caches+0x97/0x490 [ 292.733574] kvm_mmu_load+0x21/0x1200 [ 292.737380] ? mark_held_locks+0x100/0x100 [ 292.741617] ? lock_release+0xc40/0xc40 [ 292.745595] ? mark_held_locks+0x100/0x100 [ 292.749860] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 292.755517] vcpu_enter_guest+0x3f0e/0x6520 [ 292.759860] ? emulator_read_emulated+0x50/0x50 [ 292.764538] ? add_lock_to_list.isra.0+0x450/0x450 [ 292.769477] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 292.775020] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 292.780565] ? check_preemption_disabled+0x48/0x290 [ 292.785595] ? __lock_is_held+0xb6/0x140 [ 292.789667] ? lock_acquire+0x1db/0x570 [ 292.793649] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 292.798678] ? lock_release+0xc40/0xc40 [ 292.802660] ? kvm_gen_update_masterclock+0x380/0x380 [ 292.807865] ? rcu_sync_dtor+0x170/0x170 [ 292.811944] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 292.816797] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 292.821918] kvm_vcpu_ioctl+0x558/0x12d0 [ 292.825997] ? kvm_vcpu_block+0x1010/0x1010 [ 292.830324] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 292.835965] ? lock_downgrade+0x910/0x910 [ 292.840120] ? kasan_check_read+0x11/0x20 [ 292.844274] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 292.849580] ? rcu_read_unlock_special+0x380/0x380 [ 292.854582] ? __fget+0x499/0x710 [ 292.858046] ? iterate_fd+0x4b0/0x4b0 [ 292.861863] ? kvm_vcpu_block+0x1010/0x1010 [ 292.866193] do_vfs_ioctl+0x107b/0x17d0 [ 292.870174] ? wait_for_completion+0x810/0x810 [ 292.874764] ? ioctl_preallocate+0x2f0/0x2f0 [ 292.879177] ? __fget_light+0x2db/0x420 [ 292.883292] ? fget_raw+0x20/0x20 [ 292.886756] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 292.892302] ? fput+0x128/0x1a0 [ 292.895589] ? do_syscall_64+0x8c/0x800 [ 292.899570] ? do_syscall_64+0x8c/0x800 [ 292.903557] ? lockdep_hardirqs_on+0x415/0x5d0 [ 292.908150] ? security_file_ioctl+0x93/0xc0 [ 292.912571] ksys_ioctl+0xab/0xd0 [ 292.916037] __x64_sys_ioctl+0x73/0xb0 [ 292.919937] do_syscall_64+0x1a3/0x800 [ 292.923839] ? syscall_return_slowpath+0x5f0/0x5f0 [ 292.928787] ? prepare_exit_to_usermode+0x232/0x3b0 [ 292.933900] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 292.938826] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 292.944019] RIP: 0033:0x457ec9 [ 292.947221] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 292.966127] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 292.973845] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 292.981113] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 292.988384] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 292.995780] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 293.003055] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:01 executing program 1: r0 = syz_open_pts(0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x400000009, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x101000000}) flock(r0, 0x40000002) mknod(&(0x7f0000000240)='./file0\x00', 0x8007, 0x16eb) r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x10, r1, 0x0) flock(r0, 0x2) flock(r0, 0x2) flock(r0, 0x2) sendmsg(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="9fe7d83781892488f55eb6a2c3c4bb0c4fec646cfc83ee1ae51de646bbb847d03701002e07979776b02d6f0707ad97e3b9676d4a63dab844250d8f38202a3ba0cbec74750cf6a340d78c8ac82b06fa1b34e6b0c658bf91f87b8633d3d358190c98c338f2efc32cce5438f1173326e33c4fb4db834b4117f5c7c09a6d30e6da26a81f7883c08d881e09cde6c4d8ce70", 0x8f}], 0x1, 0xfffffffffffffffe}, 0x0) 19:59:01 executing program 2: r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:01 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet6_tcp_buf(r0, 0x6, 0x1f, &(0x7f0000000380)="e2", 0x1) setsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, 0x0, 0x0) 19:59:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 19:59:01 executing program 3 (fault-call:10 fault-nth:5): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:01 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200)='/dev/rtc0\x00', 0x800, 0x0) read(r0, &(0x7f0000001480)=""/42, 0x2a) getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) 19:59:01 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40086602, 0x420007) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x801c581f, 0x709000) 19:59:01 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 293.287089] FAULT_INJECTION: forcing a failure. [ 293.287089] name failslab, interval 1, probability 0, space 0, times 0 [ 293.335301] CPU: 0 PID: 12675 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 293.342177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.351536] Call Trace: [ 293.354137] dump_stack+0x1db/0x2d0 [ 293.357781] ? dump_stack_print_info.cold+0x20/0x20 [ 293.362815] ? percpu_ref_put_many+0x129/0x270 [ 293.367523] should_fail.cold+0xa/0x15 [ 293.371443] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 293.376566] ? ___might_sleep+0x1e7/0x310 [ 293.380745] ? arch_local_save_flags+0x50/0x50 [ 293.385456] __should_failslab+0x121/0x190 [ 293.389710] should_failslab+0x9/0x14 [ 293.393529] kmem_cache_alloc+0x2be/0x710 [ 293.393548] ? mark_held_locks+0xb1/0x100 [ 293.393561] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 293.393582] mmu_topup_memory_caches+0x97/0x490 [ 293.401995] kvm_mmu_load+0x21/0x1200 [ 293.402010] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 293.402026] ? check_preemption_disabled+0x48/0x290 [ 293.426978] vcpu_enter_guest+0x3f0e/0x6520 [ 293.431327] ? emulator_read_emulated+0x50/0x50 [ 293.436012] ? add_lock_to_list.isra.0+0x450/0x450 [ 293.440965] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 293.446568] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 293.452141] ? check_preemption_disabled+0x48/0x290 [ 293.452163] ? __lock_is_held+0xb6/0x140 [ 293.452180] ? lock_acquire+0x1db/0x570 [ 293.465217] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 293.470351] ? lock_release+0xc40/0xc40 [ 293.474385] ? kvm_gen_update_masterclock+0x380/0x380 [ 293.479700] ? rcu_sync_dtor+0x170/0x170 19:59:01 executing program 1: syz_open_dev$loop(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000240)=0xa3, 0x4) connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @broadcast}, 0x10) setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000080), 0x4) sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x9) 19:59:01 executing program 5: r0 = syz_open_pts(0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x400000009, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x101000000}) flock(r0, 0x2) mknod(&(0x7f0000000000)='./file0\x00', 0x8007, 0x16eb) r1 = syz_open_pts(0xffffffffffffffff, 0x0) fcntl$lock(r1, 0x400000009, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x101000004}) flock(r1, 0x2) r2 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x10, r2, 0x0) flock(r0, 0x2) flock(r1, 0x2) poll(&(0x7f00000000c0)=[{r1, 0x88}, {r2, 0x180}, {r0, 0x1}, {r0, 0x8}, {r1, 0x44}, {r2}], 0x6, 0x1f) 19:59:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5460, 0x0) [ 293.483885] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 293.488731] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 293.493769] kvm_vcpu_ioctl+0x558/0x12d0 [ 293.497852] ? kvm_vcpu_block+0x1010/0x1010 [ 293.502190] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 293.507745] ? lock_downgrade+0x910/0x910 [ 293.511925] ? kasan_check_read+0x11/0x20 [ 293.516200] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 293.521594] ? rcu_read_unlock_special+0x380/0x380 [ 293.526548] ? __fget+0x499/0x710 [ 293.530022] ? iterate_fd+0x4b0/0x4b0 19:59:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) [ 293.533838] ? kvm_vcpu_block+0x1010/0x1010 [ 293.538412] do_vfs_ioctl+0x107b/0x17d0 [ 293.542423] ? wait_for_completion+0x810/0x810 [ 293.547023] ? ioctl_preallocate+0x2f0/0x2f0 [ 293.551449] ? __fget_light+0x2db/0x420 [ 293.555447] ? fget_raw+0x20/0x20 [ 293.559073] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 293.559090] ? fput+0x128/0x1a0 [ 293.559103] ? do_syscall_64+0x8c/0x800 [ 293.559118] ? do_syscall_64+0x8c/0x800 [ 293.575872] ? lockdep_hardirqs_on+0x415/0x5d0 [ 293.580470] ? security_file_ioctl+0x93/0xc0 19:59:01 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000200)={0x10000000000009, 0xc, 0x209e1e, 0x2}, 0x2c) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x0, 0x0}, 0x2c) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") [ 293.584900] ksys_ioctl+0xab/0xd0 [ 293.588379] __x64_sys_ioctl+0x73/0xb0 [ 293.588398] do_syscall_64+0x1a3/0x800 [ 293.588415] ? syscall_return_slowpath+0x5f0/0x5f0 [ 293.601109] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 293.606128] ? __switch_to_asm+0x34/0x70 [ 293.606148] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 293.606169] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 293.620261] RIP: 0033:0x457ec9 19:59:01 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 293.623470] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 293.642602] RSP: 002b:00007ff88cef3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.650323] RAX: ffffffffffffffda RBX: 00007ff88cef3c90 RCX: 0000000000457ec9 [ 293.657626] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 293.657635] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 293.657644] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cef46d4 [ 293.657653] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:01 executing program 5: syz_execute_func(&(0x7f0000000140)="3666440f50f564ff0941c3c4e2c9975842c4c27d794e00c42105d99f0b0000003e0f111066400faeb30700000040f80909") mknod(&(0x7f0000000540)='./file0\x00', 0x47, 0x0) clone(0x3102001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) sendmsg$IPVS_CMD_DEL_SERVICE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 19:59:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:59:01 executing program 3 (fault-call:10 fault-nth:6): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:01 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x5421, 0x0) 19:59:02 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) [ 294.074505] FAULT_INJECTION: forcing a failure. [ 294.074505] name failslab, interval 1, probability 0, space 0, times 0 19:59:02 executing program 1: socket$unix(0x1, 0x0, 0x0) socket$alg(0x26, 0x5, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) ppoll(&(0x7f0000000000)=[{r0}], 0x1, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f00000001c0)={{0x80}, 'por\xff\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\xff\xff\xff\x03\x00\x00\x00\xef\x00\x00\x03\xff\x02\x00\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x06\x00', 0xc7, 0x80003}) close(r0) ioctl$sock_proto_private(0xffffffffffffffff, 0x0, 0x0) 19:59:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 294.138261] CPU: 1 PID: 12737 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 294.145274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.154637] Call Trace: [ 294.157330] dump_stack+0x1db/0x2d0 [ 294.160982] ? dump_stack_print_info.cold+0x20/0x20 [ 294.166031] ? percpu_ref_put_many+0x129/0x270 [ 294.170742] should_fail.cold+0xa/0x15 [ 294.174680] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 294.179806] ? ___might_sleep+0x1e7/0x310 19:59:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 294.184090] ? arch_local_save_flags+0x50/0x50 [ 294.188832] __should_failslab+0x121/0x190 [ 294.193087] should_failslab+0x9/0x14 [ 294.196907] kmem_cache_alloc+0x2be/0x710 [ 294.201071] ? __lock_acquire+0x572/0x4a30 [ 294.205343] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 294.210904] mmu_topup_memory_caches+0x97/0x490 [ 294.215615] kvm_mmu_load+0x21/0x1200 [ 294.219428] ? mark_held_locks+0x100/0x100 [ 294.223677] ? lock_release+0xc40/0xc40 [ 294.227664] ? mark_held_locks+0x100/0x100 [ 294.231913] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 19:59:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) [ 294.237471] vcpu_enter_guest+0x3f0e/0x6520 [ 294.241962] ? emulator_read_emulated+0x50/0x50 [ 294.246653] ? add_lock_to_list.isra.0+0x450/0x450 [ 294.251616] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.257376] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.262928] ? check_preemption_disabled+0x48/0x290 [ 294.267970] ? __lock_is_held+0xb6/0x140 [ 294.272047] ? lock_acquire+0x1db/0x570 [ 294.276036] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 294.281071] ? lock_release+0xc40/0xc40 19:59:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 294.285096] ? kvm_gen_update_masterclock+0x380/0x380 [ 294.290431] ? rcu_sync_dtor+0x170/0x170 [ 294.294517] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 294.299378] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 294.304442] kvm_vcpu_ioctl+0x558/0x12d0 [ 294.308529] ? kvm_vcpu_block+0x1010/0x1010 [ 294.312865] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.312886] ? lock_downgrade+0x910/0x910 [ 294.312901] ? kasan_check_read+0x11/0x20 [ 294.312917] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 294.312934] ? rcu_read_unlock_special+0x380/0x380 19:59:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 294.312960] ? __fget+0x499/0x710 [ 294.322642] ? iterate_fd+0x4b0/0x4b0 [ 294.344222] ? kvm_vcpu_block+0x1010/0x1010 [ 294.348556] do_vfs_ioctl+0x107b/0x17d0 [ 294.352664] ? wait_for_completion+0x810/0x810 [ 294.357265] ? ioctl_preallocate+0x2f0/0x2f0 [ 294.361712] ? __fget_light+0x2db/0x420 [ 294.365724] ? fget_raw+0x20/0x20 [ 294.369196] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 294.374745] ? fput+0x128/0x1a0 [ 294.374762] ? do_syscall_64+0x8c/0x800 [ 294.374776] ? do_syscall_64+0x8c/0x800 [ 294.374791] ? lockdep_hardirqs_on+0x415/0x5d0 [ 294.374818] ? security_file_ioctl+0x93/0xc0 [ 294.386154] ksys_ioctl+0xab/0xd0 [ 294.386174] __x64_sys_ioctl+0x73/0xb0 [ 294.386192] do_syscall_64+0x1a3/0x800 [ 294.386210] ? syscall_return_slowpath+0x5f0/0x5f0 [ 294.398629] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 294.398646] ? __switch_to_asm+0x34/0x70 [ 294.398666] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 294.398687] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 294.398700] RIP: 0033:0x457ec9 [ 294.411607] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 294.411616] RSP: 002b:00007ff88cef3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 294.411632] RAX: ffffffffffffffda RBX: 00007ff88cef3c90 RCX: 0000000000457ec9 [ 294.430718] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 294.430728] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 19:59:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) 19:59:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 294.430737] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cef46d4 [ 294.430746] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:02 executing program 3 (fault-call:10 fault-nth:7): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:02 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) [ 294.860315] FAULT_INJECTION: forcing a failure. [ 294.860315] name failslab, interval 1, probability 0, space 0, times 0 [ 294.877691] CPU: 1 PID: 12791 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 294.884545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 294.884552] Call Trace: [ 294.884572] dump_stack+0x1db/0x2d0 [ 294.884592] ? dump_stack_print_info.cold+0x20/0x20 [ 294.884611] ? percpu_ref_put_many+0x129/0x270 [ 294.884638] should_fail.cold+0xa/0x15 [ 294.896584] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 294.896610] ? ___might_sleep+0x1e7/0x310 [ 294.896626] ? arch_local_save_flags+0x50/0x50 [ 294.896653] __should_failslab+0x121/0x190 [ 294.931942] should_failslab+0x9/0x14 [ 294.935744] kmem_cache_alloc+0x2be/0x710 [ 294.939890] ? mark_held_locks+0xb1/0x100 [ 294.944134] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 294.949669] mmu_topup_memory_caches+0x97/0x490 [ 294.954335] kvm_mmu_load+0x21/0x1200 [ 294.958127] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 294.963657] ? check_preemption_disabled+0x48/0x290 [ 294.968684] vcpu_enter_guest+0x3f0e/0x6520 [ 294.973014] ? emulator_read_emulated+0x50/0x50 [ 294.977676] ? add_lock_to_list.isra.0+0x450/0x450 [ 294.982632] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.988170] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 294.993710] ? check_preemption_disabled+0x48/0x290 [ 294.998737] ? __lock_is_held+0xb6/0x140 [ 295.002803] ? lock_acquire+0x1db/0x570 [ 295.006777] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 295.011793] ? lock_release+0xc40/0xc40 [ 295.015765] ? kvm_gen_update_masterclock+0x380/0x380 [ 295.021013] ? rcu_sync_dtor+0x170/0x170 [ 295.025071] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 295.029960] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 295.034970] ? kvm_vcpu_ioctl+0x184/0x12d0 [ 295.039207] kvm_vcpu_ioctl+0x558/0x12d0 [ 295.043450] ? kvm_vcpu_block+0x1010/0x1010 [ 295.047773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.053329] ? lock_downgrade+0x910/0x910 [ 295.057469] ? kasan_check_read+0x11/0x20 [ 295.061608] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 295.066876] ? rcu_read_unlock_special+0x380/0x380 [ 295.071803] ? __fget+0x499/0x710 [ 295.075271] ? iterate_fd+0x4b0/0x4b0 [ 295.079073] ? kvm_vcpu_block+0x1010/0x1010 [ 295.083387] do_vfs_ioctl+0x107b/0x17d0 [ 295.087356] ? wait_for_completion+0x810/0x810 [ 295.091944] ? ioctl_preallocate+0x2f0/0x2f0 [ 295.096366] ? __fget_light+0x2db/0x420 [ 295.100354] ? fget_raw+0x20/0x20 [ 295.103821] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 19:59:03 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:03 executing program 1: 19:59:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) 19:59:03 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) [ 295.109371] ? fput+0x128/0x1a0 [ 295.112671] ? do_syscall_64+0x8c/0x800 [ 295.116656] ? do_syscall_64+0x8c/0x800 [ 295.120735] ? lockdep_hardirqs_on+0x415/0x5d0 [ 295.125334] ? security_file_ioctl+0x93/0xc0 [ 295.125352] ksys_ioctl+0xab/0xd0 [ 295.125370] __x64_sys_ioctl+0x73/0xb0 [ 295.137219] do_syscall_64+0x1a3/0x800 [ 295.141135] ? syscall_return_slowpath+0x5f0/0x5f0 [ 295.146076] ? prepare_exit_to_usermode+0x232/0x3b0 [ 295.151112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 295.156088] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 295.161297] RIP: 0033:0x457ec9 [ 295.164502] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 295.183412] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 295.191225] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 295.191235] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 19:59:03 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 295.191257] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 295.191268] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 295.220332] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:03 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:03 executing program 1: 19:59:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) 19:59:03 executing program 3 (fault-call:10 fault-nth:8): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:03 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000000, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) 19:59:03 executing program 1: 19:59:03 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10010, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:03 executing program 1: 19:59:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x5460, 0x0) 19:59:03 executing program 1: [ 295.679073] FAULT_INJECTION: forcing a failure. [ 295.679073] name failslab, interval 1, probability 0, space 0, times 0 19:59:03 executing program 1: [ 295.780442] CPU: 1 PID: 12860 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 295.787318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 295.796680] Call Trace: [ 295.799289] dump_stack+0x1db/0x2d0 [ 295.802940] ? dump_stack_print_info.cold+0x20/0x20 [ 295.807977] ? percpu_ref_put_many+0x129/0x270 [ 295.812679] should_fail.cold+0xa/0x15 [ 295.816596] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 295.821939] ? ___might_sleep+0x1e7/0x310 [ 295.826103] ? arch_local_save_flags+0x50/0x50 [ 295.830803] __should_failslab+0x121/0x190 [ 295.835170] should_failslab+0x9/0x14 [ 295.839002] kmem_cache_alloc+0x2be/0x710 [ 295.843170] ? mark_held_locks+0xb1/0x100 [ 295.847344] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 295.852898] mmu_topup_memory_caches+0x97/0x490 [ 295.857587] kvm_mmu_load+0x21/0x1200 [ 295.861781] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 295.867336] ? check_preemption_disabled+0x48/0x290 [ 295.872376] vcpu_enter_guest+0x3f0e/0x6520 [ 295.876726] ? emulator_read_emulated+0x50/0x50 [ 295.881411] ? add_lock_to_list.isra.0+0x450/0x450 [ 295.886485] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.892032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.897583] ? check_preemption_disabled+0x48/0x290 [ 295.902623] ? __lock_is_held+0xb6/0x140 [ 295.906708] ? lock_acquire+0x1db/0x570 [ 295.910702] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 295.915741] ? lock_release+0xc40/0xc40 [ 295.919872] ? kvm_gen_update_masterclock+0x380/0x380 [ 295.925079] ? rcu_sync_dtor+0x170/0x170 [ 295.929218] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 295.934077] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 295.939125] kvm_vcpu_ioctl+0x558/0x12d0 [ 295.943218] ? kvm_vcpu_block+0x1010/0x1010 [ 295.947556] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 295.953113] ? lock_downgrade+0x910/0x910 [ 295.957279] ? kasan_check_read+0x11/0x20 [ 295.961443] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 295.966734] ? rcu_read_unlock_special+0x380/0x380 [ 295.971716] ? __fget+0x499/0x710 [ 295.975223] ? iterate_fd+0x4b0/0x4b0 [ 295.979062] ? kvm_vcpu_block+0x1010/0x1010 [ 295.983416] do_vfs_ioctl+0x107b/0x17d0 [ 295.987404] ? wait_for_completion+0x810/0x810 [ 295.991998] ? ioctl_preallocate+0x2f0/0x2f0 [ 295.992016] ? __fget_light+0x2db/0x420 [ 295.992032] ? fget_raw+0x20/0x20 [ 295.992049] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 295.992062] ? fput+0x128/0x1a0 [ 295.992079] ? do_syscall_64+0x8c/0x800 [ 296.000558] ? do_syscall_64+0x8c/0x800 [ 296.000573] ? lockdep_hardirqs_on+0x415/0x5d0 [ 296.000591] ? security_file_ioctl+0x93/0xc0 [ 296.000608] ksys_ioctl+0xab/0xd0 [ 296.033465] __x64_sys_ioctl+0x73/0xb0 [ 296.037370] do_syscall_64+0x1a3/0x800 [ 296.041265] ? syscall_return_slowpath+0x5f0/0x5f0 [ 296.046207] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 296.051226] ? __switch_to_asm+0x34/0x70 [ 296.055285] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.060139] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 296.065355] RIP: 0033:0x457ec9 [ 296.068579] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 296.087476] RSP: 002b:00007ff88cef3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.095193] RAX: ffffffffffffffda RBX: 00007ff88cef3c90 RCX: 0000000000457ec9 [ 296.102463] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 296.109786] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 296.117050] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cef46d4 [ 296.124322] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000007 19:59:04 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x40000000) 19:59:04 executing program 1: 19:59:04 executing program 3 (fault-call:10 fault-nth:9): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 19:59:04 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:04 executing program 1: 19:59:04 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:04 executing program 1: [ 296.348901] FAULT_INJECTION: forcing a failure. [ 296.348901] name failslab, interval 1, probability 0, space 0, times 0 [ 296.386589] CPU: 1 PID: 12887 Comm: syz-executor3 Not tainted 4.20.0+ #5 19:59:04 executing program 1: 19:59:04 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 296.393538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.393545] Call Trace: [ 296.393565] dump_stack+0x1db/0x2d0 [ 296.393586] ? dump_stack_print_info.cold+0x20/0x20 [ 296.414581] ? percpu_ref_put_many+0x129/0x270 [ 296.419275] should_fail.cold+0xa/0x15 [ 296.423201] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 296.428321] ? ___might_sleep+0x1e7/0x310 [ 296.432474] ? arch_local_save_flags+0x50/0x50 [ 296.432504] __should_failslab+0x121/0x190 [ 296.432521] should_failslab+0x9/0x14 [ 296.432535] kmem_cache_alloc+0x2be/0x710 [ 296.432549] ? __lock_acquire+0x572/0x4a30 [ 296.432565] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 296.432586] mmu_topup_memory_caches+0x97/0x490 [ 296.432605] kvm_mmu_load+0x21/0x1200 [ 296.432617] ? mark_held_locks+0x100/0x100 [ 296.432631] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 296.432645] ? __phys_addr+0xa4/0x120 [ 296.432665] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 296.459353] vcpu_enter_guest+0x3f0e/0x6520 [ 296.491409] ? emulator_read_emulated+0x50/0x50 19:59:04 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 296.496093] ? add_lock_to_list.isra.0+0x450/0x450 [ 296.501032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.506721] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.512386] ? check_preemption_disabled+0x48/0x290 [ 296.517526] ? __lock_is_held+0xb6/0x140 [ 296.521687] ? lock_acquire+0x1db/0x570 [ 296.525668] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 296.525688] ? lock_release+0xc40/0xc40 [ 296.525701] ? kvm_gen_update_masterclock+0x380/0x380 [ 296.525717] ? rcu_sync_dtor+0x170/0x170 [ 296.544059] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 296.548912] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 296.553959] kvm_vcpu_ioctl+0x558/0x12d0 [ 296.558040] ? kvm_vcpu_block+0x1010/0x1010 [ 296.562383] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 296.567970] ? lock_downgrade+0x910/0x910 [ 296.572155] ? kasan_check_read+0x11/0x20 [ 296.576322] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 296.581616] ? rcu_read_unlock_special+0x380/0x380 [ 296.586568] ? __fget+0x499/0x710 [ 296.586590] ? iterate_fd+0x4b0/0x4b0 [ 296.586611] ? kvm_vcpu_block+0x1010/0x1010 [ 296.586626] do_vfs_ioctl+0x107b/0x17d0 [ 296.586649] ? wait_for_completion+0x810/0x810 [ 296.593887] ? ioctl_preallocate+0x2f0/0x2f0 [ 296.593905] ? __fget_light+0x2db/0x420 [ 296.593922] ? fget_raw+0x20/0x20 [ 296.593939] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 296.593952] ? fput+0x128/0x1a0 [ 296.593969] ? do_syscall_64+0x8c/0x800 [ 296.631532] ? do_syscall_64+0x8c/0x800 [ 296.635523] ? lockdep_hardirqs_on+0x415/0x5d0 [ 296.640128] ? security_file_ioctl+0x93/0xc0 [ 296.644590] ksys_ioctl+0xab/0xd0 [ 296.648054] __x64_sys_ioctl+0x73/0xb0 [ 296.648073] do_syscall_64+0x1a3/0x800 [ 296.648092] ? syscall_return_slowpath+0x5f0/0x5f0 [ 296.655853] ? prepare_exit_to_usermode+0x232/0x3b0 [ 296.665868] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.670855] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 296.676086] RIP: 0033:0x457ec9 [ 296.679294] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 296.698396] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.706221] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 296.713651] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 296.720919] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 296.728188] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 296.735449] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:05 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x2, 0x0) 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:05 executing program 1: 19:59:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 19:59:05 executing program 3 (fault-call:10 fault-nth:10): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:05 executing program 1: 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r0 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:05 executing program 1: [ 297.185572] FAULT_INJECTION: forcing a failure. [ 297.185572] name failslab, interval 1, probability 0, space 0, times 0 [ 297.262405] CPU: 0 PID: 12936 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 297.269274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 297.278801] Call Trace: [ 297.278824] dump_stack+0x1db/0x2d0 [ 297.278845] ? dump_stack_print_info.cold+0x20/0x20 [ 297.278863] ? percpu_ref_put_many+0x129/0x270 [ 297.278890] should_fail.cold+0xa/0x15 [ 297.278907] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 297.278929] ? ___might_sleep+0x1e7/0x310 [ 297.278945] ? arch_local_save_flags+0x50/0x50 [ 297.278973] __should_failslab+0x121/0x190 [ 297.278990] should_failslab+0x9/0x14 [ 297.279006] kmem_cache_alloc+0x2be/0x710 [ 297.324896] ? mark_held_locks+0xb1/0x100 [ 297.329164] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 297.334716] mmu_topup_memory_caches+0x97/0x490 [ 297.339408] kvm_mmu_load+0x21/0x1200 [ 297.343226] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 297.348780] ? check_preemption_disabled+0x48/0x290 [ 297.353816] vcpu_enter_guest+0x3f0e/0x6520 [ 297.358251] ? emulator_read_emulated+0x50/0x50 [ 297.362936] ? add_lock_to_list.isra.0+0x450/0x450 [ 297.367877] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.373422] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.373439] ? check_preemption_disabled+0x48/0x290 [ 297.373462] ? __lock_is_held+0xb6/0x140 [ 297.373480] ? lock_acquire+0x1db/0x570 [ 297.373495] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 297.373514] ? lock_release+0xc40/0xc40 [ 297.373529] ? kvm_gen_update_masterclock+0x380/0x380 [ 297.373547] ? rcu_sync_dtor+0x170/0x170 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, 0x0, 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 297.388255] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 297.388268] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 297.388292] kvm_vcpu_ioctl+0x558/0x12d0 [ 297.424617] ? kvm_vcpu_block+0x1010/0x1010 [ 297.428953] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 297.434508] ? lock_downgrade+0x910/0x910 [ 297.438785] ? kasan_check_read+0x11/0x20 [ 297.442952] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 297.448251] ? rcu_read_unlock_special+0x380/0x380 [ 297.453203] ? __fget+0x499/0x710 [ 297.456670] ? iterate_fd+0x4b0/0x4b0 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 297.460595] ? kvm_vcpu_block+0x1010/0x1010 [ 297.464932] do_vfs_ioctl+0x107b/0x17d0 [ 297.469019] ? wait_for_completion+0x810/0x810 [ 297.473641] ? ioctl_preallocate+0x2f0/0x2f0 [ 297.473659] ? __fget_light+0x2db/0x420 [ 297.473675] ? fget_raw+0x20/0x20 [ 297.473691] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 297.473706] ? fput+0x128/0x1a0 [ 297.473722] ? do_syscall_64+0x8c/0x800 [ 297.473736] ? do_syscall_64+0x8c/0x800 [ 297.473751] ? lockdep_hardirqs_on+0x415/0x5d0 [ 297.473768] ? security_file_ioctl+0x93/0xc0 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, 0x0, 0x0) [ 297.511452] ksys_ioctl+0xab/0xd0 [ 297.515030] __x64_sys_ioctl+0x73/0xb0 [ 297.518962] do_syscall_64+0x1a3/0x800 [ 297.522970] ? syscall_return_slowpath+0x5f0/0x5f0 [ 297.527917] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 297.533034] ? __switch_to_asm+0x34/0x70 [ 297.537136] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.542000] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 297.547306] RIP: 0033:0x457ec9 [ 297.550551] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 297.569454] RSP: 002b:00007ff88cef3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 297.569470] RAX: ffffffffffffffda RBX: 00007ff88cef3c90 RCX: 0000000000457ec9 [ 297.569479] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 297.569489] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 297.569498] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cef46d4 [ 297.569508] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:05 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:05 executing program 1: 19:59:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xfffffdfd) 19:59:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x5452, 0x0) 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, 0x0, 0x0) 19:59:05 executing program 3 (fault-call:10 fault-nth:11): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:05 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, 0x0, 0x0) 19:59:06 executing program 1: [ 298.019606] FAULT_INJECTION: forcing a failure. [ 298.019606] name failslab, interval 1, probability 0, space 0, times 0 [ 298.059769] CPU: 0 PID: 12972 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 298.066631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.066637] Call Trace: [ 298.066658] dump_stack+0x1db/0x2d0 [ 298.066677] ? dump_stack_print_info.cold+0x20/0x20 [ 298.087253] ? percpu_ref_put_many+0x129/0x270 [ 298.091850] should_fail.cold+0xa/0x15 [ 298.095779] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 298.095802] ? ___might_sleep+0x1e7/0x310 [ 298.105062] ? arch_local_save_flags+0x50/0x50 19:59:06 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080), 0x0) [ 298.109657] __should_failslab+0x121/0x190 [ 298.109673] should_failslab+0x9/0x14 [ 298.109688] kmem_cache_alloc+0x2be/0x710 [ 298.122215] mmu_topup_memory_caches+0x97/0x490 [ 298.126907] kvm_mmu_load+0x21/0x1200 [ 298.130731] ? vcpu_enter_guest+0x3dad/0x6520 [ 298.135249] vcpu_enter_guest+0x3f0e/0x6520 [ 298.139599] ? emulator_read_emulated+0x50/0x50 [ 298.144282] ? add_lock_to_list.isra.0+0x450/0x450 [ 298.149223] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.154776] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.160322] ? check_preemption_disabled+0x48/0x290 [ 298.160343] ? __lock_is_held+0xb6/0x140 [ 298.160360] ? lock_acquire+0x1db/0x570 [ 298.173438] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 298.173458] ? lock_release+0xc40/0xc40 [ 298.173474] ? kvm_gen_update_masterclock+0x380/0x380 [ 298.173490] ? rcu_sync_dtor+0x170/0x170 [ 298.173510] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 298.173525] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 298.187886] kvm_vcpu_ioctl+0x558/0x12d0 [ 298.196773] ? kvm_vcpu_block+0x1010/0x1010 [ 298.196790] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.215825] ? lock_downgrade+0x910/0x910 [ 298.219990] ? kasan_check_read+0x11/0x20 [ 298.224184] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 298.229469] ? rcu_read_unlock_special+0x380/0x380 [ 298.234528] ? __fget+0x499/0x710 [ 298.238134] ? iterate_fd+0x4b0/0x4b0 [ 298.241958] ? kvm_vcpu_block+0x1010/0x1010 [ 298.246386] do_vfs_ioctl+0x107b/0x17d0 [ 298.250357] ? wait_for_completion+0x810/0x810 [ 298.254938] ? ioctl_preallocate+0x2f0/0x2f0 [ 298.259377] ? __fget_light+0x2db/0x420 [ 298.263351] ? fget_raw+0x20/0x20 [ 298.266802] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 298.272339] ? fput+0x128/0x1a0 [ 298.275616] ? do_syscall_64+0x8c/0x800 [ 298.279585] ? do_syscall_64+0x8c/0x800 [ 298.283557] ? lockdep_hardirqs_on+0x415/0x5d0 [ 298.288136] ? security_file_ioctl+0x93/0xc0 [ 298.292545] ksys_ioctl+0xab/0xd0 [ 298.295995] __x64_sys_ioctl+0x73/0xb0 [ 298.299889] do_syscall_64+0x1a3/0x800 [ 298.303807] ? syscall_return_slowpath+0x5f0/0x5f0 [ 298.308736] ? prepare_exit_to_usermode+0x232/0x3b0 [ 298.313754] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 298.318599] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 298.323780] RIP: 0033:0x457ec9 [ 298.326970] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 298.345899] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 298.353602] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 19:59:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 19:59:06 executing program 1: [ 298.360953] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 298.368218] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 298.375480] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 298.382740] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:06 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080), 0x0) 19:59:06 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) fchmod(r3, 0xa3) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:06 executing program 1: 19:59:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 19:59:06 executing program 3 (fault-call:10 fault-nth:12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:06 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080), 0x0) 19:59:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800000000000000) 19:59:06 executing program 1: 19:59:06 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x0, 'pids'}]}, 0x6) [ 298.885587] FAULT_INJECTION: forcing a failure. [ 298.885587] name failslab, interval 1, probability 0, space 0, times 0 [ 298.908331] CPU: 0 PID: 13017 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 298.915198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 298.924555] Call Trace: [ 298.924579] dump_stack+0x1db/0x2d0 [ 298.924598] ? dump_stack_print_info.cold+0x20/0x20 [ 298.924616] ? percpu_ref_put_many+0x129/0x270 [ 298.935872] should_fail.cold+0xa/0x15 [ 298.935894] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 298.935918] ? ___might_sleep+0x1e7/0x310 [ 298.935937] ? arch_local_save_flags+0x50/0x50 [ 298.935987] __should_failslab+0x121/0x190 [ 298.962723] should_failslab+0x9/0x14 [ 298.966541] kmem_cache_alloc+0x2be/0x710 [ 298.970705] ? __lock_acquire+0x572/0x4a30 [ 298.975066] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 298.980625] mmu_topup_memory_caches+0x97/0x490 [ 298.985311] kvm_mmu_load+0x21/0x1200 [ 298.989123] ? mark_held_locks+0x100/0x100 [ 298.993466] ? lock_release+0xc40/0xc40 [ 298.993480] ? mark_held_locks+0x100/0x100 [ 298.993495] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 298.993517] vcpu_enter_guest+0x3f0e/0x6520 [ 298.993544] ? emulator_read_emulated+0x50/0x50 [ 298.993557] ? add_lock_to_list.isra.0+0x450/0x450 [ 298.993572] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.993585] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 298.993600] ? check_preemption_disabled+0x48/0x290 [ 298.993620] ? __lock_is_held+0xb6/0x140 [ 299.001811] ? lock_acquire+0x1db/0x570 [ 299.001827] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 299.001847] ? lock_release+0xc40/0xc40 [ 299.001862] ? kvm_gen_update_masterclock+0x380/0x380 [ 299.001879] ? rcu_sync_dtor+0x170/0x170 [ 299.026846] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 299.026863] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 299.037421] kvm_vcpu_ioctl+0x558/0x12d0 [ 299.037443] ? kvm_vcpu_block+0x1010/0x1010 19:59:07 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x0, 'pids'}]}, 0x6) 19:59:07 executing program 1: r0 = syz_open_pts(0xffffffffffffffff, 0x0) fcntl$lock(r0, 0x400000009, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x101000000}) flock(r0, 0x40000002) mknod(&(0x7f0000000240)='./file0\x00', 0x8007, 0x16eb) r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x10, r1, 0x0) flock(r0, 0x2) flock(r0, 0x2) flock(r0, 0x2) sendmsg(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="9fe7d83781892488f55eb6a2c3c4bb0c4fec646cfc83ee1ae51de646bbb847d03701002e07979776b02d6f0707ad97e3b9676d4a63dab844250d8f38202a3ba0cbec74750cf6a340d78c8ac82b06fa", 0x4f}], 0x1, 0xfffffffffffffffe}, 0x0) 19:59:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) [ 299.037460] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.037476] ? lock_downgrade+0x910/0x910 [ 299.037491] ? kasan_check_read+0x11/0x20 [ 299.068602] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 299.068620] ? rcu_read_unlock_special+0x380/0x380 [ 299.068646] ? __fget+0x499/0x710 [ 299.068665] ? iterate_fd+0x4b0/0x4b0 [ 299.077730] ? kvm_vcpu_block+0x1010/0x1010 [ 299.077746] do_vfs_ioctl+0x107b/0x17d0 [ 299.077762] ? wait_for_completion+0x810/0x810 [ 299.077779] ? ioctl_preallocate+0x2f0/0x2f0 [ 299.077796] ? __fget_light+0x2db/0x420 [ 299.113336] ? fget_raw+0x20/0x20 [ 299.113353] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 299.113368] ? fput+0x128/0x1a0 [ 299.113384] ? do_syscall_64+0x8c/0x800 [ 299.113399] ? do_syscall_64+0x8c/0x800 [ 299.121676] ? lockdep_hardirqs_on+0x415/0x5d0 [ 299.121697] ? security_file_ioctl+0x93/0xc0 [ 299.121716] ksys_ioctl+0xab/0xd0 [ 299.121733] __x64_sys_ioctl+0x73/0xb0 [ 299.121751] do_syscall_64+0x1a3/0x800 [ 299.175323] ? syscall_return_slowpath+0x5f0/0x5f0 [ 299.175343] ? prepare_exit_to_usermode+0x232/0x3b0 [ 299.175365] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.175387] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 299.175401] RIP: 0033:0x457ec9 [ 299.185338] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 299.185347] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.185362] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 19:59:07 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x294) connect$inet6(r0, &(0x7f0000000340), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x131f64) clone(0x2102001ff7, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$sock_timeval(r1, 0x1, 0x14, &(0x7f0000000140), 0x10) pwritev(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd) write$P9_RRENAMEAT(r1, &(0x7f0000000400)={0x7, 0x4b, 0x2}, 0x7) [ 299.185372] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 299.185381] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 299.185391] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 299.185400] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:07 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000400)=[{0x0, 0xc0, 0x1800}, {0x7, 0xfffffffffffffffe}], 0x2) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:07 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x0, 'pids'}]}, 0x6) 19:59:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff00000000) 19:59:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:59:07 executing program 3 (fault-call:10 fault-nth:13): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:07 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) socket$bt_rfcomm(0x1f, 0x3, 0x3) ioctl$sock_FIOGETOWN(r0, 0x8903, 0x0) fchmod(r0, 0x0) setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0x4) connect$inet(r0, &(0x7f0000000440)={0x2, 0x0, @broadcast}, 0x10) madvise(&(0x7f0000623000/0x4000)=nil, 0x4000, 0x0) sendmmsg(r0, &(0x7f0000007fc0), 0x40000000000002f, 0x0) 19:59:07 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) listen(r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r1, &(0x7f0000000280), 0x0, 0x20000004, 0x0, 0x0) r2 = accept(r0, 0x0, &(0x7f0000000140)) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f00000000c0)) [ 299.787036] FAULT_INJECTION: forcing a failure. [ 299.787036] name failslab, interval 1, probability 0, space 0, times 0 [ 299.824133] CPU: 1 PID: 13068 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 299.831013] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.840371] Call Trace: [ 299.840395] dump_stack+0x1db/0x2d0 [ 299.840420] ? dump_stack_print_info.cold+0x20/0x20 [ 299.840439] ? percpu_ref_put_many+0x129/0x270 [ 299.846654] should_fail.cold+0xa/0x15 [ 299.846675] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 299.846699] ? ___might_sleep+0x1e7/0x310 [ 299.856273] ? arch_local_save_flags+0x50/0x50 [ 299.856303] __should_failslab+0x121/0x190 [ 299.856322] should_failslab+0x9/0x14 [ 299.856337] kmem_cache_alloc+0x2be/0x710 [ 299.856353] ? mark_held_locks+0xb1/0x100 [ 299.882690] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 299.896609] mmu_topup_memory_caches+0x97/0x490 [ 299.901295] kvm_mmu_load+0x21/0x1200 [ 299.905112] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 299.910658] ? check_preemption_disabled+0x48/0x290 [ 299.915690] vcpu_enter_guest+0x3f0e/0x6520 [ 299.915716] ? emulator_read_emulated+0x50/0x50 [ 299.915728] ? add_lock_to_list.isra.0+0x450/0x450 [ 299.915742] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.924824] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.924841] ? check_preemption_disabled+0x48/0x290 [ 299.924865] ? __lock_is_held+0xb6/0x140 [ 299.935440] ? lock_acquire+0x1db/0x570 [ 299.935457] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 299.935479] ? lock_release+0xc40/0xc40 [ 299.963051] ? kvm_gen_update_masterclock+0x380/0x380 [ 299.968255] ? rcu_sync_dtor+0x170/0x170 [ 299.972337] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 299.977192] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 299.982234] kvm_vcpu_ioctl+0x558/0x12d0 19:59:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) [ 299.986319] ? kvm_vcpu_block+0x1010/0x1010 [ 299.990678] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 299.996237] ? lock_downgrade+0x910/0x910 [ 300.000450] ? kasan_check_read+0x11/0x20 [ 300.004593] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 300.009873] ? rcu_read_unlock_special+0x380/0x380 [ 300.014816] ? __fget+0x499/0x710 [ 300.018267] ? iterate_fd+0x4b0/0x4b0 [ 300.022100] ? kvm_vcpu_block+0x1010/0x1010 [ 300.026527] do_vfs_ioctl+0x107b/0x17d0 [ 300.030498] ? wait_for_completion+0x810/0x810 [ 300.035125] ? ioctl_preallocate+0x2f0/0x2f0 [ 300.039528] ? __fget_light+0x2db/0x420 [ 300.043623] ? fget_raw+0x20/0x20 [ 300.047070] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 300.052600] ? fput+0x128/0x1a0 [ 300.055876] ? do_syscall_64+0x8c/0x800 [ 300.059865] ? do_syscall_64+0x8c/0x800 [ 300.063849] ? lockdep_hardirqs_on+0x415/0x5d0 [ 300.068425] ? security_file_ioctl+0x93/0xc0 [ 300.072827] ksys_ioctl+0xab/0xd0 [ 300.076275] __x64_sys_ioctl+0x73/0xb0 [ 300.080158] do_syscall_64+0x1a3/0x800 [ 300.084045] ? syscall_return_slowpath+0x5f0/0x5f0 [ 300.088971] ? prepare_exit_to_usermode+0x232/0x3b0 [ 300.093982] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.098823] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 300.104014] RIP: 0033:0x457ec9 [ 300.107214] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 300.126107] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 19:59:08 executing program 1: syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000300)={0x2, 0x70, 0x85a, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$mice(0x0, 0x0, 0x0) readv(r0, &(0x7f00000007c0)=[{&(0x7f0000000740)=""/114, 0x72}], 0x2000000000000145) tkill(0x0, 0x0) 19:59:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xec0f00) [ 300.133807] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 300.141066] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 300.148336] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 300.155607] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 300.162869] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:08 executing program 3 (fault-call:10 fault-nth:14): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) [ 300.400272] FAULT_INJECTION: forcing a failure. [ 300.400272] name failslab, interval 1, probability 0, space 0, times 0 [ 300.420966] CPU: 0 PID: 13115 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 300.427827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.437200] Call Trace: [ 300.439794] dump_stack+0x1db/0x2d0 [ 300.443441] ? dump_stack_print_info.cold+0x20/0x20 [ 300.448475] ? percpu_ref_put_many+0x129/0x270 [ 300.453085] should_fail.cold+0xa/0x15 [ 300.456993] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 300.462110] ? ___might_sleep+0x1e7/0x310 [ 300.466256] ? arch_local_save_flags+0x50/0x50 [ 300.470844] __should_failslab+0x121/0x190 [ 300.475106] should_failslab+0x9/0x14 [ 300.478903] kmem_cache_alloc+0x2be/0x710 [ 300.483046] ? __lock_acquire+0x572/0x4a30 [ 300.487275] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 300.492811] mmu_topup_memory_caches+0x97/0x490 [ 300.497477] kvm_mmu_load+0x21/0x1200 [ 300.501269] ? mark_held_locks+0x100/0x100 [ 300.505497] ? lock_release+0xc40/0xc40 [ 300.509462] ? mark_held_locks+0x100/0x100 [ 300.513692] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 300.519226] vcpu_enter_guest+0x3f0e/0x6520 [ 300.523550] ? emulator_read_emulated+0x50/0x50 [ 300.528209] ? add_lock_to_list.isra.0+0x450/0x450 [ 300.533137] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 300.538663] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 300.544199] ? check_preemption_disabled+0x48/0x290 [ 300.549217] ? __lock_is_held+0xb6/0x140 [ 300.553275] ? lock_acquire+0x1db/0x570 [ 300.557241] ? kvm_arch_vcpu_ioctl_run+0x240/0x16e0 [ 300.562253] ? lock_release+0xc40/0xc40 [ 300.566222] ? kvm_gen_update_masterclock+0x380/0x380 [ 300.571405] ? rcu_sync_dtor+0x170/0x170 [ 300.575465] kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 300.580301] ? kvm_arch_vcpu_ioctl_run+0x425/0x16e0 [ 300.585323] kvm_vcpu_ioctl+0x558/0x12d0 [ 300.589383] ? kvm_vcpu_block+0x1010/0x1010 [ 300.593698] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 300.599233] ? lock_downgrade+0x910/0x910 [ 300.603378] ? kasan_check_read+0x11/0x20 [ 300.607519] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 300.612898] ? rcu_read_unlock_special+0x380/0x380 [ 300.617829] ? __fget+0x499/0x710 [ 300.621297] ? iterate_fd+0x4b0/0x4b0 [ 300.625096] ? kvm_vcpu_block+0x1010/0x1010 [ 300.629411] do_vfs_ioctl+0x107b/0x17d0 [ 300.633384] ? wait_for_completion+0x810/0x810 [ 300.637961] ? ioctl_preallocate+0x2f0/0x2f0 [ 300.642397] ? __fget_light+0x2db/0x420 [ 300.646365] ? fget_raw+0x20/0x20 [ 300.649815] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 300.655361] ? fput+0x128/0x1a0 [ 300.658635] ? do_syscall_64+0x8c/0x800 [ 300.662602] ? do_syscall_64+0x8c/0x800 [ 300.666568] ? lockdep_hardirqs_on+0x415/0x5d0 [ 300.671149] ? security_file_ioctl+0x93/0xc0 [ 300.675559] ksys_ioctl+0xab/0xd0 [ 300.679007] __x64_sys_ioctl+0x73/0xb0 [ 300.682890] do_syscall_64+0x1a3/0x800 [ 300.686773] ? syscall_return_slowpath+0x5f0/0x5f0 [ 300.691696] ? prepare_exit_to_usermode+0x232/0x3b0 [ 300.696710] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 300.701556] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 300.706739] RIP: 0033:0x457ec9 [ 300.709930] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 300.728823] RSP: 002b:00007ff88cf14c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.736571] RAX: ffffffffffffffda RBX: 00007ff88cf14c90 RCX: 0000000000457ec9 [ 300.743847] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 300.751112] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 300.758463] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff88cf156d4 [ 300.765724] R13: 00000000004c0e36 R14: 00000000004d2758 R15: 0000000000000006 19:59:08 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000280)=[{0x0, 0x80000000, 0x800}, {0x7, 0xd4c8}, {0x0, 0x5, 0x1800}, {0x1, 0x4, 0x800}, {0x0, 0x3, 0x1000}, {0x2, 0x1, 0x1800}], 0x6) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8) 19:59:08 executing program 2 (fault-call:4 fault-nth:0): perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 19:59:08 executing program 3 (fault-call:10 fault-nth:15): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 300.916211] FAULT_INJECTION: forcing a failure. [ 300.916211] name failslab, interval 1, probability 0, space 0, times 0 [ 300.968239] CPU: 1 PID: 13134 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 300.975139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 300.975153] Call Trace: [ 300.975174] dump_stack+0x1db/0x2d0 [ 300.975195] ? dump_stack_print_info.cold+0x20/0x20 [ 300.995761] ? should_fail+0x1d5/0xd22 [ 300.999665] should_fail.cold+0xa/0x15 [ 300.999686] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 300.999707] ? retint_kernel+0x2d/0x2d [ 300.999733] ? __should_failslab+0x67/0x190 19:59:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe803000000000000) [ 301.016906] __should_failslab+0x121/0x190 [ 301.021161] should_failslab+0x9/0x14 [ 301.024972] __kmalloc+0x2dc/0x740 [ 301.028593] ? kernfs_fop_write+0x33d/0x480 [ 301.033046] kernfs_fop_write+0x33d/0x480 [ 301.037210] __vfs_write+0x116/0xb40 [ 301.040931] ? kernfs_fop_open+0x1030/0x1030 [ 301.040948] ? kernel_read+0x120/0x120 [ 301.040966] ? preempt_schedule+0x4b/0x60 [ 301.040981] ? preempt_schedule_common+0x4f/0xe0 [ 301.053411] ? preempt_schedule+0x4b/0x60 [ 301.053429] ? ___preempt_schedule+0x16/0x18 [ 301.053451] ? __sb_start_write+0x2ba/0x360 [ 301.053466] ? __sb_start_write+0x1ac/0x360 [ 301.053486] vfs_write+0x20c/0x580 [ 301.062403] ksys_write+0x105/0x260 [ 301.062422] ? __ia32_sys_read+0xb0/0xb0 [ 301.062460] ? trace_hardirqs_off_caller+0x300/0x300 [ 301.062477] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 301.062497] __x64_sys_write+0x73/0xb0 [ 301.079062] do_syscall_64+0x1a3/0x800 [ 301.079082] ? syscall_return_slowpath+0x5f0/0x5f0 [ 301.079099] ? prepare_exit_to_usermode+0x232/0x3b0 [ 301.079119] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 301.104591] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 301.104604] RIP: 0033:0x457ec9 [ 301.104620] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 301.104629] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 301.104644] RAX: ffffffffffffffda RBX: 00007f5442deac90 RCX: 0000000000457ec9 19:59:09 executing program 2 (fault-call:4 fault-nth:1): perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 301.104653] RDX: 0000000000000006 RSI: 0000000020000080 RDI: 0000000000000005 [ 301.104661] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 301.104670] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 301.104677] R13: 00000000004c6fe4 R14: 00000000004dc550 R15: 0000000000000006 19:59:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:09 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={r0}) r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0)='team\x00') accept4$packet(0xffffffffffffff9c, &(0x7f0000000100)={0x11, 0x0, 0x0}, &(0x7f0000000140)=0x14, 0x80000) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@initdev, @in6=@ipv4={[], [], @multicast2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @dev}}, 0x0, @in6=@local}}, &(0x7f0000000280)=0xe8) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in=@initdev}}, &(0x7f0000000300)=0xe8) getsockopt$inet6_mreq(r2, 0x29, 0x15, &(0x7f0000000340)={@dev, 0x0}, &(0x7f00000004c0)=0x14) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f00000007c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000780)={&(0x7f0000000500)={0x264, r4, 0x902, 0x70bd26, 0x25dfdbfb, {}, [{{0x8, 0x1, r5}, {0x74, 0x2, [{0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r6}, {0x1cc, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r7}}}, {0x54, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x24, 0x4, [{0x1, 0xe6, 0x28, 0x900000}, {0x1f59c984, 0x9, 0x0, 0x8}, {0x8, 0x5, 0x0, 0x400}, {0x3, 0xb5dd, 0x3, 0x8}]}}}, {0x4c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0x1c, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x20}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x800}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r8}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8}, {0x8, 0x4, 0x10001}}}]}}]}, 0x264}, 0x1, 0x0, 0x0, 0x20000080}, 0x40000) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00']}) close(r2) close(r1) 19:59:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 19:59:09 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) 19:59:09 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x5450, 0x0) 19:59:09 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0xd) 19:59:09 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x12, &(0x7f000002eff0)={0x0, 0x0}, 0x10) clone(0x100000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'\x00\x00\b', 0xffffffffffffffff, 0x4c00000000006800}, &(0x7f0000001fee)='R\trist\xe3cusgrVid:De', 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x10082, 0x0) ioctl$LOOP_SET_FD(r1, 0x4c00, r0) 19:59:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) 19:59:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf) 19:59:09 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x20000086) 19:59:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xec0f0000000000) 19:59:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x5421, 0x0) 19:59:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x5450, 0x0) 19:59:10 executing program 2: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_buf(r0, 0x0, 0x20, &(0x7f0000000400)=""/148, &(0x7f0000000080)=0x94) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x4) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0x8, &(0x7f0000000000)=0x1, 0x4) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x6) 19:59:10 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="04250a20"], 0x6) r2 = getpgid(0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) getsockopt$kcm_KCM_RECV_DISABLE(r3, 0x119, 0x1, &(0x7f0000000100), 0x4) fcntl$lock(r0, 0x27, &(0x7f0000000000)={0x3, 0x3, 0x0, 0x0, r2}) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r3, 0x894b, &(0x7f0000000140)) 19:59:10 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) 19:59:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000) 19:59:10 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x3, 0x2) ioctl$TCFLSH(r0, 0x540b, 0x3) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:10 executing program 1: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000583ffc)) r1 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x1, 0x2) write$UHID_CREATE(r1, &(0x7f00000003c0)={0x0, 'syz0\x00', 'syz0\x00', 'syz0\x00', 0x0}, 0x120) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000000)) ioctl$int_in(r1, 0x80000000005001, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0) prctl$PR_GET_SECCOMP(0x15) tkill(r0, 0x15) 19:59:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x40049409, 0x0) 19:59:10 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='\vpids '], 0x6) write$cgroup_subtree(r1, &(0x7f0000000000)={[{0x2f, 'memory'}]}, 0x8) 19:59:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) 19:59:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) 19:59:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc00000000000000) 19:59:10 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x1) ioctl$TUNGETIFF(r2, 0x800454d2, &(0x7f0000000040)) write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="3fc9b94a6dd9dff47817942445ef3bd94a1823ed6973bbbc7c041edbd4f9bfeb2606c0b1fbf734c7ae04aaea3588961ae6a125e21b67b9c11bdec97346da162b1864c653086eecc3537abd287a3f8f6d0b4c68ef5ab8627129b6d6ac3fcb9ca281b7980bfab3a5b4df1eb4f8a3a38471ca9ae5e908c7e9b3bf322eb3b42e5a32a3e49f6736e3cca835c463dcd5080906d6ca4b919900000000000000000000823af0e846157aafafcde5df504d73665bf26e33f957fdaeb96b01de5b1365cd58dd8c9b2da6aad772fe0d16422f1636726d4a48afd1f318cb390c9943835866265741fccf49fcbe1ab92fc28475a0156cf9ec4d00e1b201b666e0ddc219172f3de3be56d3bf9e2002d9d0fe499cf0abc4ff4900dae1dccd618783e7a410270e83acb1420496f7121f7900a2e51e4f3acf0acf0e7588722fb6ee096fea5ba7efbe6d562f4cdf391cbd28bf31b40ec1dcfe965cd02f005b22c0d2d47e7ac784"], 0x6) 19:59:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x5451, 0x0) 19:59:11 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x29000000) 19:59:11 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mincore(&(0x7f0000ffb000/0x4000)=nil, 0x4000, &(0x7f0000000300)=""/195) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$sock_inet6_tcp_SIOCATMARK(r0, 0x8905, &(0x7f0000000080)) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x8251, 0x80100) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000400)=ANY=[@ANYRES16=r2, @ANYBLOB="4cd7260a20f14d288af742c466b800320a801be2d434435b385f3fe4788904b37e2fef9908855723a4c5fd691d8942d4a6f430c5cef3c469c8b0ebf9ef9600f2f4bb898b23a14961d5bf0ff1d9bfd07f9ff97ef4f727904f4581b6514eda0fbe2e969fa659361a98304351d1f826438d3d75f257f49b916ffab2bcb253c69b280653039c297992da52896fb28c56ed057e7910b9848f2246eae613479d00efe7af1d4d25a3691330895496262c80c69b65d439f4f70716394a89c6204f4b", @ANYRES64=r3, @ANYRES32, @ANYRES32=r2], 0x3c) 19:59:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:59:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x5460, 0x0) 19:59:11 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x2, 0x1) ioctl$TUNGETIFF(r2, 0x800454d2, &(0x7f0000000040)) write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x6) 19:59:11 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000340)='/dev/audio\x00', 0x400, 0x0) getresuid(&(0x7f0000000380), &(0x7f00000003c0)=0x0, &(0x7f0000000400)) stat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x2000, &(0x7f0000000500)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@allow_other='allow_other'}, {@allow_other='allow_other'}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'keyring\\selinuxtrusted]wlan1!]]'}}, {@dont_measure='dont_measure'}, {@mask={'mask', 0x3d, '^MAY_READ'}}]}}) r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x3, 0x2) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r4, 0x4040534e, &(0x7f0000000140)={0x50, @tick=0x5, 0x0, {0x40, 0x3}, 0x2, 0x2, 0x4}) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(0xffffffffffffffff, 0x84, 0x4, &(0x7f0000000100), 0x4) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000000)=@broute={'broute\x00', 0x20, 0x1, 0x130, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200001c0], 0x0, 0x0, &(0x7f00000001c0)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x3, 0x0, 0x0, 'nr0\x00', 'yam0\x00', 'yam0\x00', 'veteam\x00\x00\x00)L\x00', @local, [], @dev, [], 0x70, 0x70, 0xa0}}, @common=@AUDIT={'AUDIT\x00', 0x8, {{0x4}}}}]}]}, 0x1a8) ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000680)=@get={0x1, &(0x7f0000000600)=""/68, 0x3}) ioctl$PERF_EVENT_IOC_DISABLE(r4, 0x2401, 0x3) 19:59:11 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x40000, 0x0) ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f0000000040)={0x57, 0xffffffff, 0x6, {0x8}, {0xfffffffffffff800, 0x47}, @cond=[{0x4, 0x7, 0x40, 0x5, 0x7fff, 0x7ff}, {0x2, 0xffffffffffffff00, 0x5365, 0x0, 0xffffffffffffffe0, 0x5}]}) ioctl$LOOP_SET_BLOCK_SIZE(r2, 0x4c09, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) [ 303.583159] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 303.597547] xt_AUDIT: Audit type out of range (valid range: 0..2) 19:59:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0x5451, 0x0) 19:59:11 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x805, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200, 0x0) ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000100)=0xffffffff80000001) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000340)={0x6c07, 0x3, 0x3ff, 0x5, 0x4}) futex(&(0x7f0000000080)=0x2, 0xf, 0x2, &(0x7f0000000380)={0x0, 0x989680}, &(0x7f00000003c0)=0x2, 0x0) flistxattr(r1, &(0x7f0000000400)=""/168, 0xfffffffffffffcc0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x24, r2, 0x2, 0x70bd26, 0x25dfdbfb, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x6}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x1) fremovexattr(r1, 0x0) unshare(0x40000000) perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000500)='/dev/null\x00', 0x80000000000, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net\x00\x00\x00\x00\x00\x00\x00\a/expire_nodest_conn\x00', 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$sock_bt_cmtp_CMTPCONNDEL(r3, 0x400443c9, &(0x7f00000004c0)={{0x9, 0x2, 0x1000, 0x8, 0x1ff, 0xfffffffffffffffd}, 0x7}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) getdents64(r4, &(0x7f00000000c0)=""/11, 0xeb) socket$inet_tcp(0x2, 0x1, 0x0) 19:59:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) 19:59:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffffffffffffffff) [ 303.728537] QAT: Invalid ioctl [ 303.853900] IPVS: ftp: loaded support on port[0] = 21 19:59:12 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000140)=[{0x9, 0x5, 0x1000}, {0x1, 0x1, 0x800}], 0x2aaaaaaaaaaaab84) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:12 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f0000000040)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="008000647320000000000000000000"], 0x6) delete_module(&(0x7f00000002c0)='./cgroup\x00', 0x200) r2 = fcntl$dupfd(r0, 0x406, r0) ioctl$TIOCMSET(r2, 0x5418, &(0x7f0000000280)=0x2) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KDDISABIO(r3, 0x4b37) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) utimensat(r4, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)={{r5, r6/1000+10000}, {r7, r8/1000+30000}}, 0x0) 19:59:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xfffffdfd) 19:59:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000) 19:59:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) [ 304.380688] QAT: Invalid ioctl 19:59:12 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ashmem\x00', 0x40, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x2, 0x2000) r3 = syz_genetlink_get_family_id$team(&(0x7f0000000140)='team\x00') getsockname$packet(0xffffffffffffff9c, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000280)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f0000003240)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @dev}}, 0x0, @in=@dev}}, &(0x7f0000003340)=0xe8) getsockname$packet(0xffffffffffffffff, &(0x7f0000003380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000033c0)=0x14) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000003440)={0x0, @multicast2, @remote}, &(0x7f0000003480)=0xc) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000003a80)={@dev, @broadcast, 0x0}, &(0x7f0000003ac0)=0xc) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000003bc0)={@rand_addr, @broadcast, 0x0}, &(0x7f0000003c00)=0xc) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000003c40)={@multicast2, @broadcast, 0x0}, &(0x7f0000003c80)=0xc) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000003d80)={@mcast2, 0x0}, &(0x7f0000003dc0)=0x14) r12 = accept4$packet(0xffffffffffffffff, &(0x7f0000003ec0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000003f00)=0x14, 0x800) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000004000)={'nlmon0\x00', 0x0}) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f00000041c0)={0x0, @dev, @loopback}, &(0x7f0000004200)=0xc) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000004300)={'bridge_slave_0\x00', 0x0}) setsockopt$packet_add_memb(r12, 0x107, 0x1, &(0x7f00000002c0)={r6, 0x1, 0x6, @remote}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000067c0)={{{@in=@broadcast, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in=@broadcast}}, &(0x7f00000068c0)=0xe8) getsockname$packet(0xffffffffffffffff, &(0x7f0000006900)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000006940)=0x14) getsockopt$inet6_mreq(0xffffffffffffff9c, 0x29, 0x14, &(0x7f0000006b00)={@mcast1, 0x0}, &(0x7f0000006b40)=0x14) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000006b80)={0x0, @empty, @initdev}, &(0x7f0000006bc0)=0xc) getpeername$packet(0xffffffffffffff9c, &(0x7f0000007040)={0x11, 0x0, 0x0}, &(0x7f0000007080)=0x14) accept4$packet(0xffffffffffffffff, &(0x7f00000070c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000007100)=0x14, 0x800) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000007800)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4040}, 0xc, &(0x7f00000077c0)={&(0x7f0000007140)={0x678, r3, 0x1, 0x70bd29, 0x25dfdbfe, {}, [{{0x8, 0x1, r4}, {0x170, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x3c, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8}, {0xc, 0x4, 'random\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8}, {0x8, 0x4, 0x81}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r7}}}]}}, {{0x8, 0x1, r8}, {0x74, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x1800000000000}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x44, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r10}}}]}}, {{0x8, 0x1, r11}, {0x16c, 0x2, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r13}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x10000}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x1000}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8}, {0x8, 0x4, 0x2}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8}, {0x8, 0x4, 0xfffffffffffffff7}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8}, {0x8, 0x4, r14}}}]}}, {{0x8, 0x1, r15}, {0x48, 0x2, [{0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x14, 0x4, [{0x370d, 0x2, 0xd4b, 0x4}, {0x1, 0x4, 0x3, 0x3}]}}}]}}, {{0x8, 0x1, r16}, {0x1f0, 0x2, [{0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r17}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8}, {0x8, 0x4, 0x4}}}, {0x3c, 0x1, @lb_tx_method={{0x24, 0x1, 'lb_tx_method\x00'}, {0x8}, {0xc, 0x4, 'hash\x00'}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r18}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r19}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8}, {0x8, 0x4, r20}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8}, {0x4}}, {0x8, 0x6, r21}}}]}}, {{0x8, 0x1, r22}, {0x60, 0x2, [{0x5c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8}, {0x2c, 0x4, [{0x1, 0x0, 0xffffffffffffffaa, 0xd9}, {0x8, 0x8, 0x7, 0x6}, {0x52, 0x7, 0x7, 0x80000000}, {0x0, 0x39, 0x3, 0x6}, {0x7, 0xdb9, 0x8, 0x7}]}}}]}}]}, 0x678}, 0x1, 0x0, 0x0, 0x80}, 0x44000) r23 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r23, &(0x7f0000000080)=ANY=[@ANYBLOB='+pi`s '], 0x6) [ 304.454087] IPVS: ftp: loaded support on port[0] = 21 19:59:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 19:59:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x4020940d, 0x0) 19:59:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1800) 19:59:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000) 19:59:12 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x101400, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f0000000100)=0x1e) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) 19:59:13 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = accept$inet(r2, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r3, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r4 = getpid() fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r4}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) fsync(r1) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7) 19:59:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x805, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x200, 0x0) ioctl$BLKBSZSET(r1, 0x40081271, &(0x7f0000000100)=0xffffffff80000001) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000340)={0x6c07, 0x3, 0x3ff, 0x5, 0x4}) futex(&(0x7f0000000080)=0x2, 0xf, 0x2, &(0x7f0000000380)={0x0, 0x989680}, &(0x7f00000003c0)=0x2, 0x0) flistxattr(r1, &(0x7f0000000400)=""/168, 0xfffffffffffffcc0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_NODE_ADDR(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x24, r2, 0x2, 0x70bd26, 0x25dfdbfb, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0x6}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x1) fremovexattr(r1, 0x0) unshare(0x40000000) perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000500)='/dev/null\x00', 0x80000000000, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net\x00\x00\x00\x00\x00\x00\x00\a/expire_nodest_conn\x00', 0x2, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$sock_bt_cmtp_CMTPCONNDEL(r3, 0x400443c9, &(0x7f00000004c0)={{0x9, 0x2, 0x1000, 0x8, 0x1ff, 0xfffffffffffffffd}, 0x7}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) getdents64(r4, &(0x7f00000000c0)=""/11, 0xeb) socket$inet_tcp(0x2, 0x1, 0x0) 19:59:13 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket(0x9, 0x7, 0x4) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffff9c, 0x84, 0x1d, &(0x7f0000000000)={0x4, [0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000040)=0x14) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000100)={r1, 0x1}, 0x8) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x20030, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000140)=0x10001, 0x4) r4 = msgget(0x3, 0x90) msgctl$MSG_INFO(r4, 0xc, &(0x7f0000000240)=""/172) write$cgroup_subtree(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x6) 19:59:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:59:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x11) [ 305.208001] QAT: Invalid ioctl 19:59:13 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x0, &(0x7f0000000000)) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = accept4$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000100)=0x1c, 0x800) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000140), &(0x7f0000000240)=0x4) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) getsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000004c0), &(0x7f0000000500)=0x4) write$input_event(r2, &(0x7f0000000680)={{0x77359400}, 0x14, 0x9, 0x6}, 0x18) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000580)='fou\x00') sendmsg$FOU_CMD_GET(r2, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x104000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, r4, 0x700, 0x70bd25, 0x25dfdbfe, {}, [@FOU_ATTR_REMCSUM_NOPARTIAL={0x4}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0x44080}, 0x1) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000280)={0x0, 0xb3, "0e014b18ec42781cb1c1eb7c34773a044ddc638054f122ba4a1db46d393717ee4c0599ac74c7ac2866dd255eb44da5486d565637822bfe3d5f020e0e6e832580e767dd03725bf68a84471c0c8b2cd95ba4e62cb07c10284f31062149b79d5a0d877d45f62cf269652164bac932c60d71d6c632e3ee601a8f10e0ef6ab0391231de619ef8a57f608c91180b6c5d9a1162e8780cf3238599e36d26dae3c646c1ecce3053ac52053d946a902f9869499e4a2e4145"}, &(0x7f0000000340)=0xbb) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000440)={r5, 0xc0, &(0x7f0000000380)=[@in={0x2, 0x4e24, @broadcast}, @in={0x2, 0x4e22, @rand_addr=0xffffffff}, @in6={0xa, 0x4e22, 0xffffffffffffff54, @mcast2, 0x5}, @in={0x2, 0x4e21, @local}, @in6={0xa, 0x4e22, 0x7fffffff, @loopback, 0x6}, @in6={0xa, 0x4e23, 0xffffffff, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x763f}, @in={0x2, 0x4e24, @loopback}, @in6={0xa, 0x4e24, 0x6, @mcast2, 0x1}, @in={0x2, 0x4e23, @rand_addr=0xffffffffffff7e5d}]}, &(0x7f0000000480)=0x10) write$cgroup_subtree(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="2b70d5f98f69"], 0x6) 19:59:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000) 19:59:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 19:59:13 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) creat(&(0x7f0000000000)='./file0\x00', 0x48) 19:59:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf72fbca77f0000) [ 305.569145] IPVS: ftp: loaded support on port[0] = 21 19:59:13 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x3, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) write$P9_RCLUNK(r0, &(0x7f0000000000)={0x7, 0x79, 0x1}, 0x7) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r3 = semget$private(0x0, 0x5, 0x140) write$P9_RMKDIR(r2, &(0x7f0000000040)={0x14, 0x49, 0x2, {0x29, 0x1, 0x8}}, 0x14) semctl$IPC_RMID(r3, 0x0, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:14 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r3 = getpid() fcntl$lock(r2, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r3}) syz_extract_tcp_res$synack(&(0x7f0000000040), 0x1, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) 19:59:14 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x2, 0x2) ioctl$DRM_IOCTL_MODESET_CTL(r1, 0x40086408, &(0x7f0000000080)={0x1ff, 0x9}) sendto$inet(r1, &(0x7f0000000140)="485c17618da705a9b30fa0b2f9a0bda0e86965ce1fc86137e88837f3cdab3102e99ad0aa6432effcbe770533b597bf0821c93a0fbff3cf08b8fd3896598d68000000000000823659c402ab086f010f", 0x4f, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x6d, &(0x7f0000000340), &(0x7f0000000000)=0x2c2) 19:59:14 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) 19:59:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000) 19:59:14 executing program 2: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x8000, 0x101002) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000100)={@empty, 0x41, r1}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000) 19:59:14 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f00000f0000/0x4000)=nil, 0x4000, 0x0, 0x31, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c832, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, &(0x7f00000000c0)) geteuid() fsetxattr$system_posix_acl(r2, 0x0, 0x0, 0x0, 0x0) r4 = getpgrp(0xffffffffffffffff) perf_event_open(0x0, r4, 0x0, r0, 0x0) pkey_mprotect(&(0x7f00009f3000/0x1000)=nil, 0x1000, 0x0, 0xffffffffffffffff) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, 0x0}], 0x1, 0x4000, &(0x7f0000000200), 0x1275) 19:59:14 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) r3 = getpid() fcntl$lock(r2, 0x7, &(0x7f0000000180)={0x2, 0x0, 0xffff, 0x9, r3}) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 19:59:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc) 19:59:14 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 19:59:14 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2900000000000000) 19:59:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x1100) 19:59:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 19:59:15 executing program 1: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x100, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @dev, @multicast2}, &(0x7f0000000080)=0xc) sendmmsg(0xffffffffffffffff, &(0x7f0000007e00)=[{{&(0x7f00000004c0)=@in6={0xa, 0x4e22, 0x0, @mcast2}, 0x80, &(0x7f00000001c0), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="140000000000f57892"], 0x14}}], 0x1, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) sendmmsg(r1, &(0x7f0000007d80), 0x6, 0x0) 19:59:15 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x1510c2, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f0000000040)={0x7, 0x3, 0x5, 0xa76e, 0xcc, 0x8001, 0x5c, 0x8, 0x0}, &(0x7f0000000100)=0x20) clock_gettime(0x0, &(0x7f0000000240)) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f0000000140)={r3, 0x4, 0x6e}, 0x8) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="2bbab58bbe6c92dd0600fcc32b302450bdf7129e7f1a1957000050467bec6d87e2dd1e5bf98959e5169be14382743750"], 0x6) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001180)=@nat={'nat\x00', 0x19, 0x4, 0xe68, [0x20000300, 0x0, 0x0, 0x200003d8, 0x20001060], 0x0, &(0x7f00000002c0), &(0x7f0000000300)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x40, 0x86dd, 'veth1_to_team\x00', 'bcsh0\x00', 'tunl0\x00', 'veth0\x00', @empty, [0xff, 0xff, 0xff, 0xff, 0x0, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0x70, 0x70, 0xa8}}, @snat={'snat\x00', 0x10, {{@broadcast, 0xfffffffffffffffe}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x2, [{{{0x7, 0x0, 0x886c, 'veth0_to_hsr\x00', 'hsr0\x00', 'bridge_slave_0\x00', 'veth1_to_hsr\x00', @dev={[], 0xf}, [0xff, 0x0, 0xff, 0x0, 0xff], @local, [0xff, 0x0, 0x0, 0x0, 0x0, 0xff], 0xa90, 0xac8, 0xb00, [@u32={'u32\x00', 0x7c0, {{[{[{0x8000, 0x3}, {}, {0x1, 0x3}, {0x7}, {0x6}, {0x9, 0x3}, {0x89d, 0x3}, {0xd9a2}, {0x0, 0x3}, {0x8}, {0xfaa, 0x2}], [{0xf265, 0x9}, {0x3a0, 0x9}, {0x9, 0x9}, {0x1d, 0xe25}, {0xfffffffffffffff7, 0x2}, {0x0, 0x2}, {0x80, 0x8}, {0x7ff}, {0x81, 0x7}, {0x1, 0x7}, {0x400}], 0x6, 0x6}, {[{0xff, 0x1}, {0x9, 0x3}, {0x3ff, 0x1}, {0x100000001}, {0xc7a, 0x1}, {0x7, 0x1}, {0x3, 0x1}, {0x3, 0x3}, {0xfffffffffffffffa, 0x3}, {0x5, 0x3}, {0x4, 0x2}], [{0xfffffffffffffffe, 0x1f}, {0x0, 0x6}, {0x7, 0x3}, {0xfffffffffffffff8, 0x3}, {0x61, 0x1}, {0x1, 0x3}, {0x7c00}, {0x4, 0x9}, {0x1000, 0x3a}, {0x0, 0x7}, {0x7, 0xfffffffffffffff9}], 0xa, 0x8}, {[{0x7, 0x3}, {0xc8, 0x3}, {}, {0x8}, {0x5, 0x3}, {0x7, 0x2}, {0xc0a}, {0x3, 0x3}, {0x128f, 0x2}, {0x4, 0x2}, {0xdda, 0x2}], [{0xfffffffffffffff7}, {0xcb1, 0x3}, {0x3}, {0x4, 0xfffffffffffffe01}, {0x660, 0x80000000}, {0x8, 0x1000}, {0x5, 0x400}, {0x3ff, 0x4}, {0x6, 0x6}, {0x10000, 0x8001}, {0x4, 0x5}], 0x0, 0x3}, {[{0xffff, 0x3}, {0x207}, {0x401, 0x3}, {0x6}, {0x7}, {0x401}, {0x8, 0x2}, {0xfb, 0x2}, {0x1000}, {0x9}], [{0x8, 0xfff}, {0x200, 0x7f}, {0x9, 0x2}, {0x0, 0xffffffff}, {0x7, 0xfffffffffffffffa}, {0x101, 0x9}, {0xda, 0x40}, {0x1, 0xffffffff80000001}, {0x4, 0xc2}, {0x7, 0x7f}, {0x3ff, 0x7ff}], 0x7, 0x8}, {[{0x9}, {0x1, 0x3}, {0x0, 0x2}, {0x1f, 0x2}, {0x7fffffff, 0x3}, {0x80000000, 0x3}, {0x400}, {0x339, 0x2}, {0x1f96, 0x3}, {0x5, 0x3}, {0x9, 0x3}], [{0x9d7, 0x8}, {0x1f, 0x5}, {0x3, 0x5}, {0x8}, {0xff}, {0x1, 0x2}, {0xf61, 0x5fe2}, {0x1ff}, {0xff, 0x8}, {0xfffffffffffffff9, 0x7ff}, {0x5dd, 0xffffffffffffffd2}], 0xb, 0x7}, {[{0x800, 0x3}, {0x7fffffff, 0x1}, {0x120000000000}, {0x7, 0x3}, {0xfffffffffffffff9, 0x3}, {0x7fff, 0x3}, {0x6, 0x1}, {0x9}, {0xfffffffffffffffd, 0x3}, {0x8, 0x3}, {0x4a2e, 0x3}], [{0x7}, {0xffffffff, 0x6}, {0x80, 0x3}, {0x4, 0x1}, {0x4000, 0x5}, {0x55b0104d, 0x2}, {0x9, 0x7}, {0xfffffffffffffff9, 0x101}, {0xffffffff, 0x9}, {0x7, 0x1}, {0xa9, 0xfffffffffffffff8}], 0x2, 0xb}, {[{0x4, 0x3}, {0x7f, 0x1}, {0x9, 0x3}, {0x8, 0x3}, {0x9, 0x3}, {0x4, 0x3}, {0xf2c, 0x3}, {0x5, 0x1}, {0x2, 0x2}, {0x1, 0x2}, {0xfffffffffffffffd, 0x3}], [{0x8001, 0x8}, {0xfff, 0xd29d}, {0xfffffffffffffc01, 0x7}, {0x5, 0x8}, {0xcec, 0xfffffffffffffffd}, {0x88ec, 0x10001}, {0x3, 0x3}, {0x100000000, 0x7f}, {0xffffffff, 0x4e}, {0x9, 0x6}, {0x8, 0x4}], 0x3, 0x2}, {[{0x2, 0x3}, {0x8, 0x3}, {0x80000001, 0x1}, {0x3}, {0x9}, {0x1f, 0x2}, {0x51f4, 0x3}, {0xa1, 0x1}, {0x8, 0x3}, {0xa76, 0x2}, {0x7c43}], [{0x10000, 0x2}, {0x80000001, 0x9}, {0x3, 0x7ff}, {0x4, 0x100000000000000}, {0x6, 0x9}, {0x5, 0xb3}, {0x4, 0x812}, {0x0, 0x100000001}, {0x5, 0x400}, {0xba0, 0x1f}, {0x2, 0x4e1ae353}], 0x6, 0x5}, {[{0x66, 0x1}, {0xffff, 0x1}, {0x4800000000000, 0x2}, {0x7, 0x3}, {0x3}, {0x100, 0x2}, {0x4, 0x1}, {0x1, 0x2}, {0x2, 0x3}, {0x400, 0x3}, {0x7cb59aa1, 0x3}], [{0x1, 0x3f}, {0x2, 0x4}, {0x3, 0x1}, {0x3, 0x80000000}, {0x3f, 0x1e000}, {0x0, 0x1}, {0xd0, 0x5}, {0x10000, 0x6}, {0xa4, 0x9}, {0x2, 0xffffffffffffffff}, {0x4260, 0x30d9}], 0x7, 0x1}, {[{0x6, 0x1}, {0x3, 0x2}, {0x2, 0x1}, {0x7fff}, {0x8}, {0xa, 0x3}, {0x1ff, 0x1}, {0xffff, 0x3}, {0x4, 0x3}, {0x1, 0x3}, {0x1, 0x3}], [{0x6, 0x1}, {0x7, 0x48000000}, {0x2, 0x101}, {0x1, 0x5}, {0x9, 0x9}, {0x41e, 0x9}, {0x6, 0x5}, {0x5, 0x7}, {0xe617, 0x5}, {0x10001, 0xfffffffffffffffb}, {0x4a, 0x3}], 0x7, 0x9}, {[{0x7d, 0x3}, {0x2}, {0xeaf8, 0x3}, {0x4, 0x2}, {0x9, 0x2}, {0x11}, {0x8}, {0xff, 0x3}, {0xf4, 0x2}, {0x1, 0x2}, {0x0, 0x2}], [{0x1ff, 0x5}, {0x2, 0xf087}, {0x0, 0x1}, {0x7, 0x10001}, {0xffff, 0x9}, {0x3, 0x1}, {0x4}, {0x0, 0x8}, {0x200, 0xffffffffffffffff}, {0x50, 0xa927}, {0x8}], 0x3, 0xb}], 0x9, 0x1}}}, @bpf0={'bpf\x00', 0x210, {{0x11, [{0x1, 0x0, 0xff, 0x5}, {0xffffffffffffffc1, 0x4, 0xc9, 0x7}, {0x1, 0x833, 0x3, 0xffff}, {0x0, 0x1, 0x100000000, 0x5}, {0x1, 0x9, 0x52}, {0x7f, 0x2, 0x4, 0x3}, {0x7, 0x0, 0xa, 0x8}, {0x3, 0x3, 0x9, 0xfffffffffffffc01}, {0x4, 0x6, 0x2, 0x8}, {0x8c92, 0x8, 0x7f, 0x7}, {0x6, 0x80, 0xfc3d}, {0x101, 0x7f, 0x800, 0x5}, {0x4, 0x7f, 0x1f, 0xffffffff80000001}, {0x4, 0x401, 0x6, 0x9}, {0x1, 0x3f, 0x7ff, 0x9}, {0x563, 0x800, 0x1, 0x10000}, {0x7, 0x4, 0x8, 0xda91}, {0x9b, 0x4, 0xee, 0x400}, {0x10000, 0xffffffffffff0001, 0xfff, 0x5}, {0xa21b, 0xfff, 0x2, 0x6}, {0x2, 0xffffffff, 0x1, 0x401}, {0x0, 0x100000001, 0x100000001, 0x2}, {0xff, 0xeb0b, 0x4, 0x6}, {0x8, 0x2, 0x2b0c, 0x2}, {0x3, 0x1, 0xffffffff, 0x1}, {0x9, 0x9, 0x7285644c}, {0x1ff, 0x10000}, {0x240000, 0x0, 0x411, 0x2}, {0x6, 0xb6, 0x10001, 0x9}, {0x8, 0x100000001, 0x7, 0x80}, {0x1, 0x9, 0x1c31, 0x4}, {0x2, 0x5a42, 0x3, 0xffffffff}, {0x3, 0x3, 0x9}, {0x4, 0xff, 0x4}, {0x7, 0x3, 0x7, 0x7}, {0x7fffffff, 0x83d, 0x0, 0xe8c}, {0xff, 0x6, 0x8, 0xffff}, {0x1, 0x8, 0x6}, {0xfff, 0xfffffffffffffffd, 0x8, 0x8}, {0x1, 0x3, 0x9, 0x8}, {0x1ff, 0x8, 0x4, 0x2}, {0xff, 0x3, 0x2, 0x81}, {0x9, 0x2, 0x9, 0x3f}, {0x0, 0x8, 0xb1, 0x4}, {0x80000000, 0x0, 0x20000000, 0x100000000000000}, {0x4, 0x401, 0x5, 0x4}, {0x0, 0x7ff, 0x3, 0x5}, {0x0, 0x4, 0x1, 0x3}, {0x81, 0x1, 0xe00000000000000, 0x7}, {0x9, 0xcc4, 0x7, 0x6}, {0x80, 0x9, 0x1, 0x2}, {0x1, 0x6, 0x8, 0x5}, {0x3, 0x1f, 0x7fffffff, 0x3a}, {0xe7fc, 0x4, 0x263, 0x101}, {0x8, 0x6, 0x6, 0x9}, {0x9, 0x1, 0xb95, 0x101}, {0xfffffffffffffffe, 0x7f, 0x6}, {0x1f, 0x5, 0x7f, 0x80}, {0x1c7, 0x8001, 0x400, 0x10001}, {0x6, 0x8, 0x80000000, 0x1}, {0x9, 0x3, 0x7a9483bc, 0x1}, {0x5f, 0x80, 0x2, 0x9}, {0xfffffffffffffff7, 0x400, 0x6133, 0x80000000}, {0xff, 0x40, 0x9, 0x9}], 0x101}}}]}, [@arpreply={'arpreply\x00', 0x10, {{@empty, 0xfffffffffffffffc}}}]}, @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xfffffffffffffffc}}}}, {{{0x1d, 0x4, 0x601f, 'bcsf0\x00', 'veth1_to_hsr\x00', 'team_slave_0\x00', 'veth1\x00', @broadcast, [0x0, 0x0, 0x0, 0xff, 0xff, 0xff], @empty, [0xff, 0xff, 0x0, 0xff], 0xc0, 0x128, 0x158, [@ipvs={'ipvs\x00', 0x28, {{@ipv6, [0xffffffff, 0xffffff00, 0xffffffff], 0x4e20, 0x11, 0x2, 0x4e23, 0x3, 0x2}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffff}}}, @snat={'snat\x00', 0x10, {{@empty, 0xfffffffffffffffd}}}]}, @common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x8}}}}]}, {0x0, '\x00', 0x3, 0xffffffffffffffff}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x1, [{{{0x11, 0x0, 0xe83f, 'hsr0\x00', 'ip6gretap0\x00', 'veth1_to_bridge\x00', 'eql\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @broadcast, [0xff, 0x0, 0x0, 0x0, 0xff], 0x70, 0x70, 0xa8}}, @snat={'snat\x00', 0x10, {{@local}}}}]}]}, 0xee0) 19:59:15 executing program 1: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x10100, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000100)={0x0, 0x9d, &(0x7f0000000040)="ac94d6443cfb7aae5fdc5c41291ee97048099ce5e7997a2751a7ee16c4bf717f74d23f75beb8df4af6b76ee57e2b2db7cdc2d67d9db15911bfe46d530f7ceb76c8ca9eee767215a71f1c36e2dc9aa565191dc1407e087ad978064661cd1176f074b8fa6795933623d13347742f4a21b420ceb83600baf0352cc87fa0f35df75403e4aea11a53cf7e2c7c30438fd710bb99ac4d335709d4db8b8725ee8a"}) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x4, 0x0, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r1, 0x29, 0x45, &(0x7f0000000140)={'HL\x00'}, &(0x7f0000000180)=0x1e) ioctl$VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f00000001c0)={0x7, 0x4, 0x7, 0x84800, r0}) socket$inet6(0xa, 0x0, 0x8) 19:59:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x18000000) 19:59:15 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) getpid() semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:15 executing program 2: r0 = fcntl$dupfd(0xffffffffffffff9c, 0x0, 0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000000)={0x9, 0x7f, 0x4, 0x3ff, 0x9, 0x39}) bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x7, 0xbeb0, 0x35f, 0xff, 0x4, r0}, 0x2c) r1 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000080)={'ip6_vti0\x00', 0x100}) openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={r0, 0x50, &(0x7f0000000100)={0x0, 0x0}}, 0x10) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000280)=r3, 0x4) 19:59:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 19:59:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x3) 19:59:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe803) 19:59:15 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/btrfs-control\x00', 0x1510c2, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f0000000040)={0x7, 0x3, 0x5, 0xa76e, 0xcc, 0x8001, 0x5c, 0x8, 0x0}, &(0x7f0000000100)=0x20) clock_gettime(0x0, &(0x7f0000000240)) setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f0000000140)={r3, 0x4, 0x6e}, 0x8) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="2bbab58bbe6c92dd0600fcc32b302450bdf7129e7f1a1957000050467bec6d87e2dd1e5bf98959e5169be14382743750"], 0x6) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000001180)=@nat={'nat\x00', 0x19, 0x4, 0xe68, [0x20000300, 0x0, 0x0, 0x200003d8, 0x20001060], 0x0, &(0x7f00000002c0), &(0x7f0000000300)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x40, 0x86dd, 'veth1_to_team\x00', 'bcsh0\x00', 'tunl0\x00', 'veth0\x00', @empty, [0xff, 0xff, 0xff, 0xff, 0x0, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, [0x0, 0xff, 0xff, 0xff, 0xff, 0xff], 0x70, 0x70, 0xa8}}, @snat={'snat\x00', 0x10, {{@broadcast, 0xfffffffffffffffe}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x2, [{{{0x7, 0x0, 0x886c, 'veth0_to_hsr\x00', 'hsr0\x00', 'bridge_slave_0\x00', 'veth1_to_hsr\x00', @dev={[], 0xf}, [0xff, 0x0, 0xff, 0x0, 0xff], @local, [0xff, 0x0, 0x0, 0x0, 0x0, 0xff], 0xa90, 0xac8, 0xb00, [@u32={'u32\x00', 0x7c0, {{[{[{0x8000, 0x3}, {}, {0x1, 0x3}, {0x7}, {0x6}, {0x9, 0x3}, {0x89d, 0x3}, {0xd9a2}, {0x0, 0x3}, {0x8}, {0xfaa, 0x2}], [{0xf265, 0x9}, {0x3a0, 0x9}, {0x9, 0x9}, {0x1d, 0xe25}, {0xfffffffffffffff7, 0x2}, {0x0, 0x2}, {0x80, 0x8}, {0x7ff}, {0x81, 0x7}, {0x1, 0x7}, {0x400}], 0x6, 0x6}, {[{0xff, 0x1}, {0x9, 0x3}, {0x3ff, 0x1}, {0x100000001}, {0xc7a, 0x1}, {0x7, 0x1}, {0x3, 0x1}, {0x3, 0x3}, {0xfffffffffffffffa, 0x3}, {0x5, 0x3}, {0x4, 0x2}], [{0xfffffffffffffffe, 0x1f}, {0x0, 0x6}, {0x7, 0x3}, {0xfffffffffffffff8, 0x3}, {0x61, 0x1}, {0x1, 0x3}, {0x7c00}, {0x4, 0x9}, {0x1000, 0x3a}, {0x0, 0x7}, {0x7, 0xfffffffffffffff9}], 0xa, 0x8}, {[{0x7, 0x3}, {0xc8, 0x3}, {}, {0x8}, {0x5, 0x3}, {0x7, 0x2}, {0xc0a}, {0x3, 0x3}, {0x128f, 0x2}, {0x4, 0x2}, {0xdda, 0x2}], [{0xfffffffffffffff7}, {0xcb1, 0x3}, {0x3}, {0x4, 0xfffffffffffffe01}, {0x660, 0x80000000}, {0x8, 0x1000}, {0x5, 0x400}, {0x3ff, 0x4}, {0x6, 0x6}, {0x10000, 0x8001}, {0x4, 0x5}], 0x0, 0x3}, {[{0xffff, 0x3}, {0x207}, {0x401, 0x3}, {0x6}, {0x7}, {0x401}, {0x8, 0x2}, {0xfb, 0x2}, {0x1000}, {0x9}], [{0x8, 0xfff}, {0x200, 0x7f}, {0x9, 0x2}, {0x0, 0xffffffff}, {0x7, 0xfffffffffffffffa}, {0x101, 0x9}, {0xda, 0x40}, {0x1, 0xffffffff80000001}, {0x4, 0xc2}, {0x7, 0x7f}, {0x3ff, 0x7ff}], 0x7, 0x8}, {[{0x9}, {0x1, 0x3}, {0x0, 0x2}, {0x1f, 0x2}, {0x7fffffff, 0x3}, {0x80000000, 0x3}, {0x400}, {0x339, 0x2}, {0x1f96, 0x3}, {0x5, 0x3}, {0x9, 0x3}], [{0x9d7, 0x8}, {0x1f, 0x5}, {0x3, 0x5}, {0x8}, {0xff}, {0x1, 0x2}, {0xf61, 0x5fe2}, {0x1ff}, {0xff, 0x8}, {0xfffffffffffffff9, 0x7ff}, {0x5dd, 0xffffffffffffffd2}], 0xb, 0x7}, {[{0x800, 0x3}, {0x7fffffff, 0x1}, {0x120000000000}, {0x7, 0x3}, {0xfffffffffffffff9, 0x3}, {0x7fff, 0x3}, {0x6, 0x1}, {0x9}, {0xfffffffffffffffd, 0x3}, {0x8, 0x3}, {0x4a2e, 0x3}], [{0x7}, {0xffffffff, 0x6}, {0x80, 0x3}, {0x4, 0x1}, {0x4000, 0x5}, {0x55b0104d, 0x2}, {0x9, 0x7}, {0xfffffffffffffff9, 0x101}, {0xffffffff, 0x9}, {0x7, 0x1}, {0xa9, 0xfffffffffffffff8}], 0x2, 0xb}, {[{0x4, 0x3}, {0x7f, 0x1}, {0x9, 0x3}, {0x8, 0x3}, {0x9, 0x3}, {0x4, 0x3}, {0xf2c, 0x3}, {0x5, 0x1}, {0x2, 0x2}, {0x1, 0x2}, {0xfffffffffffffffd, 0x3}], [{0x8001, 0x8}, {0xfff, 0xd29d}, {0xfffffffffffffc01, 0x7}, {0x5, 0x8}, {0xcec, 0xfffffffffffffffd}, {0x88ec, 0x10001}, {0x3, 0x3}, {0x100000000, 0x7f}, {0xffffffff, 0x4e}, {0x9, 0x6}, {0x8, 0x4}], 0x3, 0x2}, {[{0x2, 0x3}, {0x8, 0x3}, {0x80000001, 0x1}, {0x3}, {0x9}, {0x1f, 0x2}, {0x51f4, 0x3}, {0xa1, 0x1}, {0x8, 0x3}, {0xa76, 0x2}, {0x7c43}], [{0x10000, 0x2}, {0x80000001, 0x9}, {0x3, 0x7ff}, {0x4, 0x100000000000000}, {0x6, 0x9}, {0x5, 0xb3}, {0x4, 0x812}, {0x0, 0x100000001}, {0x5, 0x400}, {0xba0, 0x1f}, {0x2, 0x4e1ae353}], 0x6, 0x5}, {[{0x66, 0x1}, {0xffff, 0x1}, {0x4800000000000, 0x2}, {0x7, 0x3}, {0x3}, {0x100, 0x2}, {0x4, 0x1}, {0x1, 0x2}, {0x2, 0x3}, {0x400, 0x3}, {0x7cb59aa1, 0x3}], [{0x1, 0x3f}, {0x2, 0x4}, {0x3, 0x1}, {0x3, 0x80000000}, {0x3f, 0x1e000}, {0x0, 0x1}, {0xd0, 0x5}, {0x10000, 0x6}, {0xa4, 0x9}, {0x2, 0xffffffffffffffff}, {0x4260, 0x30d9}], 0x7, 0x1}, {[{0x6, 0x1}, {0x3, 0x2}, {0x2, 0x1}, {0x7fff}, {0x8}, {0xa, 0x3}, {0x1ff, 0x1}, {0xffff, 0x3}, {0x4, 0x3}, {0x1, 0x3}, {0x1, 0x3}], [{0x6, 0x1}, {0x7, 0x48000000}, {0x2, 0x101}, {0x1, 0x5}, {0x9, 0x9}, {0x41e, 0x9}, {0x6, 0x5}, {0x5, 0x7}, {0xe617, 0x5}, {0x10001, 0xfffffffffffffffb}, {0x4a, 0x3}], 0x7, 0x9}, {[{0x7d, 0x3}, {0x2}, {0xeaf8, 0x3}, {0x4, 0x2}, {0x9, 0x2}, {0x11}, {0x8}, {0xff, 0x3}, {0xf4, 0x2}, {0x1, 0x2}, {0x0, 0x2}], [{0x1ff, 0x5}, {0x2, 0xf087}, {0x0, 0x1}, {0x7, 0x10001}, {0xffff, 0x9}, {0x3, 0x1}, {0x4}, {0x0, 0x8}, {0x200, 0xffffffffffffffff}, {0x50, 0xa927}, {0x8}], 0x3, 0xb}], 0x9, 0x1}}}, @bpf0={'bpf\x00', 0x210, {{0x11, [{0x1, 0x0, 0xff, 0x5}, {0xffffffffffffffc1, 0x4, 0xc9, 0x7}, {0x1, 0x833, 0x3, 0xffff}, {0x0, 0x1, 0x100000000, 0x5}, {0x1, 0x9, 0x52}, {0x7f, 0x2, 0x4, 0x3}, {0x7, 0x0, 0xa, 0x8}, {0x3, 0x3, 0x9, 0xfffffffffffffc01}, {0x4, 0x6, 0x2, 0x8}, {0x8c92, 0x8, 0x7f, 0x7}, {0x6, 0x80, 0xfc3d}, {0x101, 0x7f, 0x800, 0x5}, {0x4, 0x7f, 0x1f, 0xffffffff80000001}, {0x4, 0x401, 0x6, 0x9}, {0x1, 0x3f, 0x7ff, 0x9}, {0x563, 0x800, 0x1, 0x10000}, {0x7, 0x4, 0x8, 0xda91}, {0x9b, 0x4, 0xee, 0x400}, {0x10000, 0xffffffffffff0001, 0xfff, 0x5}, {0xa21b, 0xfff, 0x2, 0x6}, {0x2, 0xffffffff, 0x1, 0x401}, {0x0, 0x100000001, 0x100000001, 0x2}, {0xff, 0xeb0b, 0x4, 0x6}, {0x8, 0x2, 0x2b0c, 0x2}, {0x3, 0x1, 0xffffffff, 0x1}, {0x9, 0x9, 0x7285644c}, {0x1ff, 0x10000}, {0x240000, 0x0, 0x411, 0x2}, {0x6, 0xb6, 0x10001, 0x9}, {0x8, 0x100000001, 0x7, 0x80}, {0x1, 0x9, 0x1c31, 0x4}, {0x2, 0x5a42, 0x3, 0xffffffff}, {0x3, 0x3, 0x9}, {0x4, 0xff, 0x4}, {0x7, 0x3, 0x7, 0x7}, {0x7fffffff, 0x83d, 0x0, 0xe8c}, {0xff, 0x6, 0x8, 0xffff}, {0x1, 0x8, 0x6}, {0xfff, 0xfffffffffffffffd, 0x8, 0x8}, {0x1, 0x3, 0x9, 0x8}, {0x1ff, 0x8, 0x4, 0x2}, {0xff, 0x3, 0x2, 0x81}, {0x9, 0x2, 0x9, 0x3f}, {0x0, 0x8, 0xb1, 0x4}, {0x80000000, 0x0, 0x20000000, 0x100000000000000}, {0x4, 0x401, 0x5, 0x4}, {0x0, 0x7ff, 0x3, 0x5}, {0x0, 0x4, 0x1, 0x3}, {0x81, 0x1, 0xe00000000000000, 0x7}, {0x9, 0xcc4, 0x7, 0x6}, {0x80, 0x9, 0x1, 0x2}, {0x1, 0x6, 0x8, 0x5}, {0x3, 0x1f, 0x7fffffff, 0x3a}, {0xe7fc, 0x4, 0x263, 0x101}, {0x8, 0x6, 0x6, 0x9}, {0x9, 0x1, 0xb95, 0x101}, {0xfffffffffffffffe, 0x7f, 0x6}, {0x1f, 0x5, 0x7f, 0x80}, {0x1c7, 0x8001, 0x400, 0x10001}, {0x6, 0x8, 0x80000000, 0x1}, {0x9, 0x3, 0x7a9483bc, 0x1}, {0x5f, 0x80, 0x2, 0x9}, {0xfffffffffffffff7, 0x400, 0x6133, 0x80000000}, {0xff, 0x40, 0x9, 0x9}], 0x101}}}]}, [@arpreply={'arpreply\x00', 0x10, {{@empty, 0xfffffffffffffffc}}}]}, @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xfffffffffffffffc}}}}, {{{0x1d, 0x4, 0x601f, 'bcsf0\x00', 'veth1_to_hsr\x00', 'team_slave_0\x00', 'veth1\x00', @broadcast, [0x0, 0x0, 0x0, 0xff, 0xff, 0xff], @empty, [0xff, 0xff, 0x0, 0xff], 0xc0, 0x128, 0x158, [@ipvs={'ipvs\x00', 0x28, {{@ipv6, [0xffffffff, 0xffffff00, 0xffffffff], 0x4e20, 0x11, 0x2, 0x4e23, 0x3, 0x2}}}]}, [@common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0xffffffff}}}, @snat={'snat\x00', 0x10, {{@empty, 0xfffffffffffffffd}}}]}, @common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x8}}}}]}, {0x0, '\x00', 0x3, 0xffffffffffffffff}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x1, [{{{0x11, 0x0, 0xe83f, 'hsr0\x00', 'ip6gretap0\x00', 'veth1_to_bridge\x00', 'eql\x00', @empty, [0x0, 0xff, 0x0, 0xff, 0xff], @broadcast, [0xff, 0x0, 0x0, 0x0, 0xff], 0x70, 0x70, 0xa8}}, @snat={'snat\x00', 0x10, {{@local}}}}]}]}, 0xee0) 19:59:15 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xf, 0x20040) ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000000040)={0x0, 0x1, 0xffffffffffff0001, 0x2, 'syz0\x00', 0xff}) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:16 executing program 1: r0 = socket(0x11, 0x2, 0x0) bind$inet6(0xffffffffffffffff, 0x0, 0x0) mount(&(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0) sched_setaffinity(0x0, 0x375, &(0x7f0000000140)=0x5) syz_genetlink_get_family_id$ipvs(&(0x7f00000003c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380), 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0) fstatfs(0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000540)='./file0\x00') getpeername$packet(r0, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000080)=0x14) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000001c0)={r2, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2}, 0xc) gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={0xffffffffffffffff, r1, 0x0, 0x1, &(0x7f00000000c0)='\x00', 0xffffffffffffffff}, 0x30) getpgrp(r3) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x208001, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) r5 = open(&(0x7f0000000180)='./file0\x00', 0x40, 0x1) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000240)={0xffffffffffffffff}, 0x13f, 0x6}}, 0x20) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000580)={{{@in6=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in6=@mcast2}}, &(0x7f0000000340)=0xe8) getgroups(0x5, &(0x7f0000000400)=[0xffffffffffffffff, 0xee01, 0xee00, 0xee01, 0xee01]) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000000680)={{{@in=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@mcast1}}, &(0x7f0000000480)=0xe8) stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r11 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) r12 = ioctl$KVM_CREATE_VCPU(r11, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r11, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000001000/0x2000)=nil}) ioctl$KVM_SET_REGS(r12, 0x4090ae82, &(0x7f0000000000)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000001380)=ANY=[@ANYBLOB="0000ffff"], 0x4) ioctl$KVM_NMI(r12, 0xae9a) ioctl$KVM_RUN(r5, 0xae80, 0x0) semctl$IPC_SET(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000800)={{0x8003, r7, r8, r9, r10, 0x4, 0x8}, 0x5, 0x81, 0x7f}) write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000300)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000200), r6, 0x0, 0x1, 0x4}}, 0x20) 19:59:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x200000003) 19:59:16 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x1000, 0x10000) ioctl$LOOP_CLR_FD(r0, 0x4c01) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='.{\x00\x00@o\xf5p\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 19:59:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xffff8000) 19:59:16 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000380)=[{0x5, 0x9, 0x1800}, {0x4, 0xd3, 0x1800}, {0x4, 0x1, 0x800}, {0x2, 0xfffffffffffffa72, 0x1000}], 0x4) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) 19:59:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000740)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-simd\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20) r2 = accept$alg(r1, 0x0, 0x0) write$binfmt_script(r2, &(0x7f0000000300)=ANY=[], 0xffffffaa) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) syz_genetlink_get_family_id$nbd(&(0x7f0000000000)='nbd\x00') write$binfmt_misc(r4, &(0x7f0000000140)=ANY=[], 0xfffffc8f) splice(r3, 0x0, r2, 0x0, 0x100000000000e, 0x0) 19:59:16 executing program 2: mq_unlink(&(0x7f0000000000)='pids') perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000040)={&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1}) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="0b8d00000001000000"], 0x6) 19:59:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x900000000000000) 19:59:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 19:59:16 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000340)='/dev/adsp#\x00', 0x4, 0x300) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000380)={0x8, 0x80000000}) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x800, 0x0) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r2, 0x40505412, &(0x7f0000000100)={0x4, 0x6, 0x488, 0x0, 0xa}) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB="2b706964732071ca3f50b8fd3f301cfdf29c7bfebc4370d3f7b3636ccbdb41ef00a5ca4571c2320379935c2af7ead8295f0e0000499517d80e12ae4123325c59d4660e45433e79f7f9cfec6bc05158af43d459597c3773756ee3c75de526712f3cf45eb4a5a0819a76960b5da39bf721e8a2591bf05981c1b0a5663c262124dc84776de9e0d6623e45609785eb57e9594a7ff2b6621b9a3aca3a5b9968f60da8b8c165b60c95b8c51947620eeee6dce49660484ffbc5b603b6363e035219ee1639e43f78347b53ba2edbd459a63572c15431cb95d2891e7fe9d6026e0475b5bcda4c869bbde177f8102302"], 0x6) getpeername$packet(r2, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f00000000c0)={@mcast1, 0x3d, r3}) 19:59:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 19:59:16 executing program 2: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x4, 0x1) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0xf8, r1, 0x0, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x28, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x64, 0x5, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xee7}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x27e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}]}, @TIPC_NLA_SOCK={0x14, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_NET={0x14, 0x7, [@TIPC_NLA_NET_ID={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x200}]}, @TIPC_NLA_MON={0x4}, @TIPC_NLA_NET={0x2c, 0x7, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x100}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x44000}, 0x8014) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000380)='/dev/sequencer\x00', 0x80, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f00000003c0)=0xfc) 19:59:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) 19:59:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xc020660b, 0x0) 19:59:17 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x8a, 0x0) sendmsg$inet_sctp(r2, &(0x7f0000000480)={&(0x7f0000000040)=@in={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000100)="0dc5887c85a2acdc6d03f7de5465a70853b526f56f", 0x15}, {&(0x7f0000000240)="c6bb3c83246b391d723d95fc9d79c91bfdf99f6ec461d99af18622b0a36a484039a58118b329a39998d6ba554215fa6a2d0481f7834b07281523cf68c47c335af89e78a1f34922c3467cfbb63d2f811abfc6e3ee9d", 0x55}, {&(0x7f0000000140)="d40adf383dcc594987e4fdb525028644d972948bd939d7d99adccf343d001a2182a9cd409b", 0x25}, {&(0x7f00000002c0)="bfdb0ecd0208cfffd8650bcc21", 0xd}, {&(0x7f0000000300)="f8c87e0e4c2cecd9c1778b1a6dcc565fa32cf923f29cfa06cd19ce4623b6f69deb7835e7403386b520754ea7fe9a986482944bd876f8a87044bc5d68499565d126becea1ce1445544a1c371c606e310ee3b3967b1168a21c7b40eb843ce09e6e068718a64d4eb26c39d52f4881965dc04399bdbce06f0cda4275ace3b2e000eec508d34d0ee76702b80208d209dc2a8f61bb09802dbf86798cb87fd5b4bda2c43345ed3e42b15e5a0f661a38cfc22929fafd12a26113a7c37e1f278576c193abc2226967a39d46f2757bbd9059e7fe3ec5cfd6ad27b67f6db07950a5e586e41628457c36003dd9ac59c87882641e", 0xee}], 0x5, 0x0, 0x0, 0x20000080}, 0x48000) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) ioctl$TIOCPKT(r2, 0x5420, &(0x7f00000004c0)=0x9af) 19:59:17 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f00000001c0)=[{0x4, 0x0, 0x800}, {0x4, 0x1f, 0x800}, {0x0, 0x7fffffff}, {0x4, 0x0, 0x1000}], 0x4) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xffff8000) 19:59:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) 19:59:17 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) pread64(r0, &(0x7f0000000240)=""/166, 0xa6, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x700) 19:59:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f00000000c0)={0x0, &(0x7f0000000080)}) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") r2 = socket$inet(0x10, 0x3, 0xc) sendmsg(r2, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000280)="24000000020307031dfffd946ff20c0020200a8009000500021d85680c1baba20400ff7e28000000110affff82aba0aa1c0009b356da5a80918b06b20cd37ed01cc000000000000000000000", 0x4c}], 0x1}, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r2, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'veth1_to_hsr\x00'}, 0x18) [ 309.569358] netlink: 'syz-executor1': attribute type 5 has an invalid length. 19:59:17 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='+8@ds '], 0x6) r2 = dup3(r1, r1, 0x80000) getsockname$tipc(r2, &(0x7f0000000100)=@id, &(0x7f0000000040)=0xf1) [ 309.622226] netlink: 20 bytes leftover after parsing attributes in process `syz-executor1'. 19:59:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x2, 0x0) 19:59:17 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000aefd, 0x0) r1 = eventfd2(0x200, 0x10800) r2 = syz_open_dev$mouse(0x0, 0x7, 0x0) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x3) ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af21, &(0x7f0000000000)={0x0, r1}) close(r0) 19:59:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x2) 19:59:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7f161db98700) 19:59:17 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$cec(&(0x7f0000000240)='/dev/cec#\x00', 0x2, 0x2) write$cgroup_int(r0, &(0x7f0000000040)=0x1, 0x12) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) setsockopt$inet_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000100)='tls\x00', 0x1) 19:59:18 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x20000, 0x95) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:18 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000580)='/dev/null\x00', 0x10000, 0x0) ioctl$UI_SET_PHYS(r1, 0x4008556c, &(0x7f00000005c0)='syz0\x00') perf_event_open(&(0x7f0000000700)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x200000, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x5, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x5, 0x20000) ioctl$GIO_SCRNMAP(r2, 0x4b40, &(0x7f0000000a00)=""/226) r3 = semget$private(0x0, 0x4, 0x4) semctl$SEM_STAT(r3, 0x2, 0x12, &(0x7f0000000300)=""/208) semctl$GETPID(r3, 0x0, 0xb, &(0x7f0000000080)=""/20) semtimedop(0x0, &(0x7f0000000140)=[{0x0, 0x9, 0x1800}], 0x1, &(0x7f0000000200)={0x0, 0x989680}) setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f00000000c0)=0xfff, 0x4) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000240)={[0x0, 0xc6, 0x7, 0x81, 0x3, 0x99, 0x7, 0x4, 0x81, 0x8, 0x7fff, 0x2, 0xff, 0xfffffffffffffff8, 0x101], 0xf000, 0x1000}) getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000000540)={0x0, 0x9, 0x100, 0xfffffffffffffffd, 0x2b}, &(0x7f0000000780)=0x14) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000400)={r4, @in={{0x2, 0x4e22}}, 0x1}, &(0x7f0000000100)=0x90) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x0) semctl$IPC_RMID(0x0, 0x0, 0x0) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r0, 0x12, 0x2, &(0x7f0000000100)=""/94, &(0x7f00000001c0)=0x5e) openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000840)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net\x00\x00\x00\x00\x00\x00\x00\a/expire_nodest_conn\x00', 0x2, 0x0) ioctl$KVM_SET_DEBUGREGS(r5, 0x4080aea2, &(0x7f0000000600)={[0xf000, 0x4, 0x2001, 0x3003], 0x0, 0xd8, 0x7}) mprotect(&(0x7f0000632000/0x3000)=nil, 0x3000, 0x9) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r5, 0x40a85321, &(0x7f00000002c0)={{0x1, 0x5}, 'port1\x00', 0x51, 0x16043c, 0x400000000001, 0x2, 0x4, 0x543, 0x1ff, 0x0, 0x7, 0x4b}) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000009c0)='/dev/ptmx\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) ioctl$KDGETKEYCODE(r5, 0x4b4c, &(0x7f0000000500)={0x2, 0x4}) rt_sigprocmask(0x4, &(0x7f0000000180)={0x4f123a47}, &(0x7f0000000280), 0x8) ioctl$EVIOCRMFF(0xffffffffffffffff, 0x40044581, &(0x7f0000000040)) getdents64(r6, &(0x7f00000000c0)=""/11, 0xffffffffffffff0f) ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000200)) ioctl$TIOCGSOFTCAR(r6, 0x5419, &(0x7f00000004c0)) 19:59:18 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="000000002bed1c61baadda0000b9300a785b0a2202fc37653e0200000000000000f40f2d70e4bbaa"], 0x6) 19:59:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x5452, 0x0) 19:59:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x7fa7bc2ff700) 19:59:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2) 19:59:18 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="2b706964775569c44c28f8a4c8efdbe7d57558147a02a1307da975cc525162a657fa4f51e589ee562a8ab0db90d15c72c91c82bcbc6a97099f23467c675a058c"], 0x6) 19:59:18 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000080)=[{0x3, 0x101, 0x1800}, {0x2, 0x100000000, 0x1800}, {0x7, 0x2, 0x1000}, {0x7, 0x9, 0x800}], 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x77040000000000) 19:59:18 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:18 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) getsockname$inet(r2, &(0x7f00000003c0), &(0x7f0000000200)=0xc) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000) 19:59:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0x40049409, 0x0) 19:59:19 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00') r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000700)=@sack_info={0x0, 0x1, 0x29bb}, &(0x7f0000000180)=0xc) recvfrom(r1, &(0x7f0000000440)=""/57, 0x39, 0x10002, &(0x7f0000000480)=@l2={0x1f, 0x6cc, {0x0, 0x100000001, 0x9, 0x6, 0x7, 0xfffffffffffffffe}, 0x0, 0x8}, 0x80) pwrite64(r1, 0x0, 0x0, 0x0) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000140)) listen(r1, 0x4) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0000070000000000520100000000000079000000000000000000000000001a00cb41ba143ecdbf35c6e47c06004ade381c3feb0dd1c2847e38"], 0x39) sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, 0x0, 0x0) write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x34000) r3 = openat$cgroup_ro(r0, &(0x7f0000000780)='cpu.stat\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000380)=0x0) r5 = fcntl$getown(r3, 0x9) tgkill(r4, r5, 0x12) r6 = accept4(r1, 0x0, &(0x7f0000000040), 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x8) sync_file_range(r0, 0x6, 0x0, 0x3) sendmsg$key(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x2}, 0xfffc}}, 0x0) ioctl$KVM_GET_SUPPORTED_CPUID(0xffffffffffffffff, 0xc008ae05, &(0x7f0000000540)=""/114) ioctl$DRM_IOCTL_AGP_RELEASE(r0, 0x6431) openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x40200, 0x0) ioctl$EVIOCGKEYCODE_V2(r3, 0x80284504, &(0x7f0000000240)=""/219) 19:59:19 executing program 2: request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000100)='cgroup.subtree_control\x00', 0xfffffffffffffffa) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f0000000140)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB='-io /pidr \x00cpu '], 0xf) 19:59:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x11000000) 19:59:19 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) accept$inet(r1, &(0x7f0000000300), &(0x7f0000000340)=0x3) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x1100) 19:59:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 19:59:19 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) pipe(&(0x7f0000000440)) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:19 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) recvmsg$kcm(0xffffffffffffff9c, &(0x7f0000000400)={&(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000300)=""/201, 0xc9}], 0x1, &(0x7f0000000100)=""/127, 0x7f}, 0x0) setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000440), 0x4) write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="2b7069647320c777fcc4db62394cb4763adf72bb38dc813734b264b740e66b5a957adc2972a8dfb1b2f2fa63a8e8a0e1bdfee6d89c4bed7ec18784b56d097d0d2d2faa0d44e6316e6dfb2917d4e6b2a985e97063d5bc4d422e00180fe3dfa3960441a08f8a39f5b76b1afd4c3d0530c766db151d14a17a09e77a32ccfaeb93797dda9ac1cf92d3e95e4d2eadc512"], 0x6) 19:59:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x1800000000000000) 19:59:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 19:59:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x300) 19:59:19 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:19 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/tcp6\x00') r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000700)=@sack_info={0x0, 0x1, 0x29bb}, &(0x7f0000000180)=0xc) recvfrom(r1, &(0x7f0000000440)=""/57, 0x39, 0x10002, &(0x7f0000000480)=@l2={0x1f, 0x6cc, {0x0, 0x100000001, 0x9, 0x6, 0x7, 0xfffffffffffffffe}, 0x0, 0x8}, 0x80) pwrite64(r1, 0x0, 0x0, 0x0) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000140)) listen(r1, 0x4) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0000070000000000520100000000000079000000000000000000000000001a00cb41ba143ecdbf35c6e47c06004ade381c3feb0dd1c2847e38"], 0x39) sendto$inet6(r2, &(0x7f0000e33fe0)='X', 0x1, 0x0, 0x0, 0x0) write$binfmt_misc(r2, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x34000) r3 = openat$cgroup_ro(r0, &(0x7f0000000780)='cpu.stat\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000380)=0x0) r5 = fcntl$getown(r3, 0x9) tgkill(r4, r5, 0x12) r6 = accept4(r1, 0x0, &(0x7f0000000040), 0x0) ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x8) sync_file_range(r0, 0x6, 0x0, 0x3) sendmsg$key(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x2}, 0xfffc}}, 0x0) ioctl$KVM_GET_SUPPORTED_CPUID(0xffffffffffffffff, 0xc008ae05, &(0x7f0000000540)=""/114) ioctl$DRM_IOCTL_AGP_RELEASE(r0, 0x6431) openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x40200, 0x0) ioctl$EVIOCGKEYCODE_V2(r3, 0x80284504, &(0x7f0000000240)=""/219) 19:59:19 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:19 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x600000000000000) 19:59:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff00000000) 19:59:20 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0) ioctl$VIDIOC_G_OUTPUT(r1, 0x8004562e, &(0x7f0000000040)) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 5: semop(0x0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(0x0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(0x0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 19:59:20 executing program 2: socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$clear(0x7, r1) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 5: semop(0x0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(0x0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(0x0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:20 executing program 2: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x201, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) fdatasync(r0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x4000000004004) ioctl$sock_bt_cmtp_CMTPGETCONNINFO(r0, 0x800443d3, &(0x7f00000002c0)={{0xfffffffffffeffff, 0x9, 0x7f, 0x4, 0x1000}, 0x265, 0xb749, 0x4}) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f0000000140)='cgroup.subtree_control\x00', 0x2, 0x0) r3 = shmget(0x2, 0x1000, 0x18, &(0x7f0000ffd000/0x1000)=nil) shmctl$IPC_INFO(r3, 0x3, &(0x7f0000000240)=""/111) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) getresgid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000100)) 19:59:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) 19:59:20 executing program 1: socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$clear(0x7, r1) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 5: semop(0x0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(0x0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(0x0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x7) 19:59:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3e8) 19:59:20 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 1: socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$clear(0x7, r1) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x3f000000) 19:59:20 executing program 2: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xaa79, 0xad399d29e670780e) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000040)=0x3) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:20 executing program 5: r0 = semget$private(0x0, 0x0, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:20 executing program 1: r0 = socket$inet6(0xa, 0x20800a2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000200)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000880)={@un=@abs={0x1, 0x0, 0x4e21}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/syz0\x00', 0x1ff) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7fc}) io_setup(0x3, &(0x7f0000000380)=0x0) io_destroy(r1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net//\t\x00\x00\x00\x00\x00\x00\x00\xb8*k,\x96\x104[\xf0\x84\x1fy{w\xc8\xc7w+oIJ\xa9\x9c\x02#\xea\x83\x17a\x83\xab\xb9\x9e\x90+\x8b\xbc\xf8\xcb-\xea\x94/\xa5\x03+\x81%\x15\x85\xb0J`@|\xd2\xf1i', 0x1ff) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) r4 = syz_open_dev$swradio(&(0x7f00000004c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$SG_GET_PACK_ID(r4, 0x227c, &(0x7f0000000100)) perf_event_open(&(0x7f0000000240)={0x3, 0x70, 0x9, 0x2, 0x11, 0xfffffffffffff722, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x64ca1839, 0x0, 0x8001, 0x7, 0x7fff, 0x80, 0x7f, 0x7, 0x20, 0x4, 0x7f, 0x9, 0x8, 0x0, 0x100000000, 0x0, 0x8, 0xffffffffffffd5c2, 0x4, 0x0, 0x9, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x8026, 0x5, 0x0, 0x1, 0x7, 0xfffffffffffffff8, 0x9}, 0x0, 0xc, 0xffffffffffffffff, 0x0) r5 = socket$inet6(0xa, 0x9, 0x8) ioctl(r5, 0x8912, &(0x7f0000000000)="0a5cc80700315f85715070") getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4) r6 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_ADD(r2, 0x4c80, r6) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket(0x1e, 0x805, 0x0) capset(&(0x7f0000000580)={0x19980330}, &(0x7f00000005c0)) r8 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r8, 0x0, 0x61, 0x0, 0x0) setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94) close(r7) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@ipv4={[], [], @empty}}, 0x20) getresuid(&(0x7f0000000140), &(0x7f00000003c0), &(0x7f0000000200)) 19:59:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4) 19:59:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3) 19:59:21 executing program 5: r0 = semget$private(0x0, 0x0, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:21 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x0, 0x2) ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f0000000080)={0xe2af, 0x6, 0x7fffffff}) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x840, 0x0) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="000000000000a8573e48163b295a7ac78a604d07f32d7ebb9bfe80ce4e6631e5af368d841c9849921a424c0955622411a86a6f5f1e725da5008a9e234daa256a879accd7ea52decc60289b7572d9f46ed7fa534acf4f8c1896b3905b8dd6471131dca9a994dfb7d72d357c20dad4eff4e9fb3b94f347d5fa09bbae1a35ef5a6f1286c70a0763cd2c20890a8425181b871c4f1f2167e34198bfc01afff0b20037b3c094ae78aa4239b32da436afe7b90e392b47d54a28a4059812cba1396605b477bb376b3ce6f346893b41d61266984d10270f98928721990e530d9fa1a8d5db48455ff4fb4914dd00000000000000000000000000"], 0x6) 19:59:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xffff8000) 19:59:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) 19:59:21 executing program 5: r0 = semget$private(0x0, 0x0, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:21 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_int(r0, &(0x7f0000000000)=0x8, 0x12) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf000000) 19:59:21 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:21 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x200000, 0x0) ioctl$VIDIOC_SUBDEV_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f0000000240)={0x0, @reserved}) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:21 executing program 1: r0 = socket$inet6(0xa, 0x20800a2, 0x0) ioctl(r0, 0x8912, &(0x7f0000000200)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(0xffffffffffffffff, 0x114, 0x7, &(0x7f0000000880)={@un=@abs={0x1, 0x0, 0x4e21}, {&(0x7f0000000680)=""/183, 0xb7}, &(0x7f0000000300)}, 0xa0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.cpu/syz0\x00', 0x1ff) ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000005c0)={0x0, 0x7fc}) io_setup(0x3, &(0x7f0000000380)=0x0) io_destroy(r1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net//\t\x00\x00\x00\x00\x00\x00\x00\xb8*k,\x96\x104[\xf0\x84\x1fy{w\xc8\xc7w+oIJ\xa9\x9c\x02#\xea\x83\x17a\x83\xab\xb9\x9e\x90+\x8b\xbc\xf8\xcb-\xea\x94/\xa5\x03+\x81%\x15\x85\xb0J`@|\xd2\xf1i', 0x1ff) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/loop-control\x00', 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r3) r4 = syz_open_dev$swradio(&(0x7f00000004c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$SG_GET_PACK_ID(r4, 0x227c, &(0x7f0000000100)) perf_event_open(&(0x7f0000000240)={0x3, 0x70, 0x9, 0x2, 0x11, 0xfffffffffffff722, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x64ca1839, 0x0, 0x8001, 0x7, 0x7fff, 0x80, 0x7f, 0x7, 0x20, 0x4, 0x7f, 0x9, 0x8, 0x0, 0x100000000, 0x0, 0x8, 0xffffffffffffd5c2, 0x4, 0x0, 0x9, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000040), 0x8}, 0x8026, 0x5, 0x0, 0x1, 0x7, 0xfffffffffffffff8, 0x9}, 0x0, 0xc, 0xffffffffffffffff, 0x0) r5 = socket$inet6(0xa, 0x9, 0x8) ioctl(r5, 0x8912, &(0x7f0000000000)="0a5cc80700315f85715070") getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4) r6 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) ioctl$LOOP_CTL_ADD(r2, 0x4c80, r6) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket(0x1e, 0x805, 0x0) capset(&(0x7f0000000580)={0x19980330}, &(0x7f00000005c0)) r8 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r8, 0x0, 0x61, 0x0, 0x0) setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0x94) close(r7) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@ipv4={[], [], @empty}}, 0x20) getresuid(&(0x7f0000000140), &(0x7f00000003c0), &(0x7f0000000200)) 19:59:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000) 19:59:21 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x10000, 0x124) write$apparmor_current(r0, &(0x7f0000000040)=@profile={'changeprofile ', 'cgroup.subtree_control\x00'}, 0x25) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="2b70694473203416426e6a5c51400ddfbe7688a1e071a289f82da36a7acf4c1b1c70bda1f8d5ebc233e1971917d2cb152b4921d11b4378ee3c80748d3d02cee575d3fb45f6c6c4a54d38a9a99b6c432bd01f7886c55cb5878385eee69fc4e6ea255766fd244a0113ef49ef2cee03f45cb5d9bb4fabda30be7e84ece3cb914c3a7203350273816a1cb07865d4cd1a98085db37e882a43"], 0x6) 19:59:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000) 19:59:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1100) 19:59:21 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = dup(r0) getsockopt$IP6T_SO_GET_ENTRIES(r2, 0x29, 0x41, &(0x7f0000000240)={'filter\x00', 0x68, "e5a28403d1d83e6883f8eef0cf80944c9fb61725099c2d4db1e01aed266d32a9978f663ae6e62cdc0c3319723122e24a6640fb95478dcdc4ada3feb57ea85db0b765a6a232f166e1f701ffe4002ff9b8428ec87a7186a30b8a78e228c98e9309338f8aabc0830244"}, &(0x7f0000000000)=0x8c) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000040)={0x4}) 19:59:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) 19:59:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x60182300) 19:59:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc00) 19:59:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x49, 0x200) ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f0000000240)=""/142) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) rseq(&(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x4, 0x44, 0x200, 0xfffffffffffffffd}, 0x1}, 0x20, 0x1, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = fcntl$dupfd(r1, 0x406, r1) ioctl$UI_SET_ABSBIT(r2, 0x40045567, 0x1) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000140)={0x2d, 0x6, 0x0, {0x5, 0x6, 0x4, 0x0, 'pids'}}, 0x2d) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x6) 19:59:22 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:22 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = dup(r0) getsockopt$IP6T_SO_GET_ENTRIES(r2, 0x29, 0x41, &(0x7f0000000240)={'filter\x00', 0x68, "e5a28403d1d83e6883f8eef0cf80944c9fb61725099c2d4db1e01aed266d32a9978f663ae6e62cdc0c3319723122e24a6640fb95478dcdc4ada3feb57ea85db0b765a6a232f166e1f701ffe4002ff9b8428ec87a7186a30b8a78e228c98e9309338f8aabc0830244"}, &(0x7f0000000000)=0x8c) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000040)={0x4}) 19:59:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x300) 19:59:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x3f00) 19:59:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000) 19:59:22 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0x0, 0x2) ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f0000000080)={0xe2af, 0x6, 0x7fffffff}) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x840, 0x0) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="000000000000a8573e48163b295a7ac78a604d07f32d7ebb9bfe80ce4e6631e5af368d841c9849921a424c0955622411a86a6f5f1e725da5008a9e234daa256a879accd7ea52decc60289b7572d9f46ed7fa534acf4f8c1896b3905b8dd6471131dca9a994dfb7d72d357c20dad4eff4e9fb3b94f347d5fa09bbae1a35ef5a6f1286c70a0763cd2c20890a8425181b871c4f1f2167e34198bfc01afff0b20037b3c094ae78aa4239b32da436afe7b90e392b47d54a28a4059812cba1396605b477bb376b3ce6f346893b41d61266984d10270f98928721990e530d9fa1a8d5db48455ff4fb4914dd00000000000000000000000000"], 0x6) 19:59:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="2b7069094442da13df6cc0755bdb853becb4a8647320"], 0x6) 19:59:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000) 19:59:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x300000002000000) 19:59:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x18) 19:59:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = socket$inet(0x2, 0xe, 0x6) ioctl$sock_inet_tcp_SIOCINQ(r2, 0x541b, &(0x7f0000000000)) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:23 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:23 executing program 1: prctl$PR_GET_FPEMU(0xd, &(0x7f0000000040)) 19:59:23 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) r2 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x1f, 0xa4e978502fd2293d) r3 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$set_timeout(0xf, r3, 0x3c) ioctl$sock_inet_tcp_SIOCATMARK(r2, 0x8905, &(0x7f0000000040)) 19:59:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x3f00000000000000) 19:59:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000) 19:59:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 19:59:23 executing program 1: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x8, 0x8000) ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f00000000c0)={0x0, 0x5, 0x105, [], &(0x7f0000000080)=0x5}) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vfio/vfio\x00', 0x20040, 0x0) r3 = socket$l2tp(0x18, 0x1, 0x1) connect$l2tp(r3, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @multicast2}, 0x4}}, 0x26) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f0000000140)={0x3f, 0xfff, 0x9aed, 0x401}, 0x10) flistxattr(r2, &(0x7f00000001c0)=""/27, 0x1b) ioctl$PPPIOCSMRU(r3, 0x40047452, &(0x7f0000000040)) 19:59:23 executing program 2: perf_event_open(&(0x7f0000000180)={0xfffffffffffffffd, 0x70, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x4, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x6) 19:59:23 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) tee(r0, r0, 0x5, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x2, 0x0) ioctl$EVIOCGEFFECTS(r1, 0x80044584, &(0x7f0000000100)=""/103) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="2b704da35420"], 0x6) 19:59:23 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f00000002c0)='/dev/usbmon#\x00', 0x20, 0x200000) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffff9c, 0xc018620b, &(0x7f0000000380)={0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000540)={0x4c, 0x0, &(0x7f0000000440)=[@transaction_sg={0x40486311, {{0x3, 0x0, 0x4, 0x0, 0x10, 0x0, 0x0, 0x18, 0x8, &(0x7f00000003c0)=[@flat={0x736a2a85, 0x0, r1, 0x4}], &(0x7f0000000400)=[0x20]}, 0x100000001}}], 0x47, 0x0, &(0x7f00000004c0)="d1c0e2f8f69b5b54940a5e5154df645968462bb88cd1c072b3c4bea83d60fff8f5eb342efe0018a6ea75bdd0bfe89405f9fb7d951643caece9a39c033629e56ffa55e81b142f49"}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dsp\x00', 0x0, 0x0) r3 = syz_open_dev$dspn(&(0x7f00000000c0)='/dev/dsp#\x00', 0x101, 0x82) ioctl$int_in(r2, 0x800000c004500a, &(0x7f0000000080)) getsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000180), &(0x7f00000001c0)=0x10) ioctl$int_in(r3, 0x800000c004500c, &(0x7f0000000100)=0x2) openat$tun(0xffffffffffffff9c, &(0x7f0000000240)='/dev/net/tun\x00', 0x101000, 0x0) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000280)={0xc, 0x8009, 0x4, 0x3ff, 0x0}, &(0x7f0000000200)=0x10) getsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000300)={r4, 0x100, 0x10001, 0xffffffffffffff80}, &(0x7f0000000340)=0x10) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x61, &(0x7f0000000000)={'filter\x00', 0x4}, 0x68) 19:59:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x11000000) 19:59:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000) 19:59:24 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, 0x0, 0x0) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x100008000000000) 19:59:24 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00009e3ff6)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00005befdc)) io_setup(0xfffffffffffffc00, &(0x7f0000000000)=0x0) io_pgetevents(r1, 0x3, 0x5, &(0x7f00000000c0)=[{}, {}, {}, {}, {}], &(0x7f0000000040), &(0x7f00000001c0)={&(0x7f0000000180)={0x400}, 0x8}) r2 = syz_open_pts(r0, 0x20201) fcntl$setstatus(r2, 0x4, 0x2800) ioctl$TCXONC(r2, 0x540a, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$sock_void(r3, 0x1, 0x0, 0x0, 0x0) write(r2, &(0x7f0000000080)='z', 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000001140)=0xd) ioctl$TCFLSH(r0, 0x540b, 0x0) 19:59:24 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$binfmt_misc(r0, &(0x7f0000000240)={'syz1', "34f32c9dd7a59c492e92afa6b3d8566dc8aa6a8f7f375c5fec5365abf6e7daa6032be50fded872db37fc709fa3ae01b7e926691769dddbc1f0c7d9b49004649225f72a9c63135333508aa0692a8693159e80897374bc9b5384ddc945fec368c46a8fd4034a459b9e3dccf0c9a9a7e81596019cf84e62826b0396831307759e7de436be19c2fd898687e28c6306dfbdf6b7d227e7802d29e87d4f500421985a3f3413b1da13a08a2bd258f119ce933ed21150b497b2e1a39dbac420d9271bfe4879d92f3af239696af91666f6f619c038b78d1161fb448c"}, 0xdb) write$cgroup_subtree(r1, &(0x7f0000000340)={[{0x0, 'pids\x80\xd5;\xacd9\xa8\xba\xddk\xff\xd9V\xc0j\xe2v^\x92\xaaL\xed\xc9\xdf\xc2\xcb\xe8\x12S\xcaT\x95\xd4x@E\x17B6\xd2i\xfe\xe6Mj5F\xc0\xbel:f\xce\x03~\x83\x85hp4q\xc0\xba7\xbc\xc8\xb4+T\xc6\xd8\x90;\x18\x86\x9f\xe6\xbc\xf3\xe4\x81\xc2\xf0\xbe,\x8ccU\xeaq\b\xe7\xc2\xd51\xf1\x9a\x90\xed{Db\x83\xf8\xdd\x80\xcc1e\xe0=4\xa5\x88\x8a\xcd\xb5N\xcfz\xbfES%!\x84\xffUy\x12s\x84\r?\xda\x12\v\v\x97`b\xdd\x98!\x8e\xdf\xeb\xe6\x87q\x9c2\x1f\xaf\x8aZ*\xe7\xbb{\xb9Z,\x9e\xc4'}]}, 0xab) 19:59:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 19:59:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 19:59:24 executing program 2: r0 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000240)="5c45f26d198752dfca0d99b94431c24a9c99436f77b4a8cd9b076d56ded911547cf30156269207c053262603bc65427be3dad0d486edd22a7b0312fcc99f0724955d4f7cdfd4d3db1295edd3a80f7394886238073b165788c1057c8a7fb0bb643fa7f53bdb91e5e88d95b846d81a12e51ce7c306ab0cf7b18204a14565c772b7f9ac8f56561aa00ae9537fc441aeef530501d23b78ac65e4c62ec421e0abb28b8c267f0abb", 0xa5, 0xfffffffffffffffd) keyctl$get_keyring_id(0x0, r0, 0x2) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:24 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, 0x0, 0x0) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:24 executing program 1: r0 = getpid() sched_setscheduler(r0, 0x0, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KDGKBSENT(r1, 0x4b48, &(0x7f0000000580)={0xed54, 0x4, 0x80000001}) sendmmsg(0xffffffffffffffff, &(0x7f00000075c0)=[{{&(0x7f0000001680)=@pppoe={0x18, 0x0, {0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, 'syzkaller0\x00'}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x40010}, 0xf17}, {{&(0x7f0000006280)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}, 0x0, 0x3}}, 0x80, 0x0, 0x0, &(0x7f00000063c0), 0x0, 0x4}}], 0x2, 0x20040004) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x1, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000180)={0x0, 0x7, 0x0, 0x0, 0xa, 0x0, 0x6, 0x20000000, 0x0, 0x9}) tee(r2, r2, 0x0, 0x8) ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000000)={0x0, 0x8d8c}) syz_open_pts(r2, 0x0) write(r2, &(0x7f0000c34fff), 0xffffff0b) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000280)={0x2, [0x0, 0x0]}, &(0x7f00000004c0)=0xc) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000500)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000005, 0x5c831, 0xffffffffffffffff, 0x0) 19:59:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf00) 19:59:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f00000000000000) 19:59:24 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, 0x0, 0x0) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:24 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x200, 0x0) ioctl$VIDIOC_G_AUDIO(r2, 0x80345621, &(0x7f0000000100)) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r2, 0x40045731, &(0x7f0000000240)=0xe0) write$cgroup_subtree(r1, &(0x7f0000000000)={[{0x2b, 'cpu'}, {0x2f, 'io'}, {0x2d, 'pids'}, {0x2d, 'io'}, {0x2f, 'cpu'}, {0x2d, 'io'}, {0x2b, 'memory'}, {0x2f, 'io'}, {0x2f, 'io'}, {0x0, 'cpu'}]}, 0x31) ioctl$sock_inet6_tcp_SIOCINQ(r2, 0x541b, &(0x7f0000000140)) sendfile(r1, r0, 0x0, 0x8) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x2) 19:59:24 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000), 0x0) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:24 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x6, 0x4000) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000040), &(0x7f0000000100)=0x14) openat$cgroup_subtree(r1, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="2b7012088afa9a2200c0175b3e8474eb91a3ba908775e9da33d409e575b416d4d7f55d928ccced2f69dbee1fa5deb6d203"], 0x6) 19:59:24 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000), 0x0) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff00000000) 19:59:24 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000) 19:59:24 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xc) 19:59:25 executing program 1: r0 = add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000240)="5c45f26d198752dfca0d99b94431c24a9c99436f77b4a8cd9b076d56ded911547cf30156269207c053262603bc65427be3dad0d486edd22a7b0312fcc99f0724955d4f7cdfd4d3db1295edd3a80f7394886238073b165788c1057c8a7fb0bb643fa7f53bdb91e5e88d95b846d81a12e51ce7c306ab0cf7b18204a14565c772b7f9ac8f56561aa00ae9537fc441aeef530501d23b78ac65e4c62ec421e0abb28b8c267f0abb", 0xa5, 0xfffffffffffffffd) keyctl$get_keyring_id(0x0, r0, 0x2) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:25 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000), 0x0) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:25 executing program 2: r0 = syz_open_dev$mouse(&(0x7f0000000240)='/dev/input/mouse#\x00', 0x4, 0x0) r1 = add_key$user(&(0x7f00000002c0)='user\x00', &(0x7f0000000300)={'syz', 0x3}, &(0x7f0000000340)="e2d222ec2a4df99dc580cf0bf3343e3f61a1ab9f1e958d53e40992fd739049100db61037db9ef2cd0718baa407cc57ff5da4233eeecf06714168eb0779de9929b0bb777641b735c250db9b0fddf03a4c61598ee7a968e3efbd08d0ff2b337bf5443b3b064ee2249514a3948a66487b01b4f91d742090b4e79642e3a196c5b61217535768156c4635659907d2", 0x8c, 0xfffffffffffffffa) keyctl$assume_authority(0x10, r1) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000280)={0x3, 0x2, 0x2002, 0x2000, &(0x7f0000ffc000/0x2000)=nil}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x222000, 0x0) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffff9c, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x8}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000140)={r5}, 0x8) write$cgroup_subtree(r3, &(0x7f0000000400)=ANY=[@ANYBLOB="01a8c94fd72471f8000000000000ffff647320"], 0x6) 19:59:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000) 19:59:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000) 19:59:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xe8030000) 19:59:25 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:25 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x121) connect$inet(r1, &(0x7f0000000100)={0x2, 0x0, @multicast2}, 0x10) r2 = socket(0xa, 0x1, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f00000001c0)={0x2, {{0x2, 0x0, @multicast2}}}, 0xcf) setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000040)={@empty, @local}, 0xfe) 19:59:25 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x82, 0x0) ioctl$VIDIOC_ENUM_DV_TIMINGS(r1, 0xc0945662, &(0x7f0000000240)={0xffffffff, 0x0, [], {0x0, @reserved}}) r2 = openat$cgroup_subtree(r0, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="2b706964732082c8947fafc1db8839683495491ca62d8718de6f0ce6d50d40154c59cc941f55c8212aae03f935265d9e34f840d8a4c380d60000000000000000000040"], 0x6) 19:59:25 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x700) 19:59:25 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x801) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f00000001c0)={{0x80}, 'por\xff\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\xff\xff\xff\x03\x00\x00\x00\xef\x00\x00\x03\xff\x02\x00\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x06\x00', 0xc7, 0x80003}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x2000000080003, 0x0) close(r0) llistxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/129, 0x81) 19:59:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000) 19:59:25 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000100)=0x0) fcntl$lock(r0, 0x27, &(0x7f0000000140)={0x1, 0x3, 0x5, 0xb23, r1}) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="2b01000000000000004b5db0f7163bfd45da42433aac3fb865f9a582a6113f929e"], 0x6) 19:59:25 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x40000000) 19:59:25 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x801) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f00000001c0)={{0x80}, 'por\xff\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\v\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1f\x00\x00\xff\xff\xff\x03\x00\x00\x00\xef\x00\x00\x03\xff\x02\x00\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x06\x00', 0xc7, 0x80003}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x2000000080003, 0x0) close(r0) llistxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/129, 0x81) 19:59:25 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x109000, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000140)={'nr0\x00', 0x200}) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgrmup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) ioctl$BLKRAGET(r1, 0x1263, &(0x7f0000000000)) write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="3070696473203cacaab8c192c16e86250de0a4b6913a50d16ff2bc72d06fb8d98d2aa768af8588c3ac4367d90a90e37dacccfc0914ab3913936e75"], 0x6) 19:59:25 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(0x0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xfffffdfd) 19:59:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x9000000) 19:59:25 executing program 1: r0 = socket$inet(0x10, 0x3, 0xc) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='security.ima\x00', &(0x7f00000000c0)=@ng={0x4, 0x7, "587fa9ecb544d255c766"}, 0xc, 0x2) ioctl(r1, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") sendmsg(r0, &(0x7f000001d000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)="24000000100007031dff22946fa2830020200a0009000300001d85687f0000000400ff7e28000000050a43ba5d806055b6fdd80b40000000060008000029ec2400020cd37e99d69cda45a95e", 0x4c}], 0x1}, 0x0) 19:59:25 executing program 2: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf000000) 19:59:25 executing program 1: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) chdir(&(0x7f0000000200)='./file0\x00') clone(0x1000000000001fd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) stat(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$security_capability(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='security.capability\x00', &(0x7f0000000180)=@v3={0x3000000, [{0xffffffffffff0000, 0x9}, {0x5, 0x5}], r0}, 0x18, 0x2) r1 = open(&(0x7f0000000380)='./bus\x00', 0x47f, 0x40) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f00000001c0)=0x6a8fd55de11979bc, 0x4) execve(&(0x7f0000000280)='./bus\x00', 0x0, 0x0) 19:59:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x9) 19:59:25 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1000000000002, 0x0) madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup2(r2, r0) sendmsg$netlink(r3, &(0x7f0000028fc8)={0x0, 0x0, &(0x7f0000019000)=[{&(0x7f00000001c0)=ANY=[@ANYRES64], 0x1}], 0xb3, &(0x7f0000000040)=[@rights={0x18, 0x1, 0x1, [r1]}], 0x18}, 0x0) recvmmsg(r1, &(0x7f0000000b80)=[{{&(0x7f0000000200)=@l2, 0x80, &(0x7f00000005c0), 0x0, &(0x7f0000000600)=""/84, 0x54}}, {{&(0x7f0000000680)=@l2, 0x80, &(0x7f0000000a40), 0x0, &(0x7f0000000ac0)=""/147, 0x93}}], 0x4000000000002ce, 0x62, 0x0) ioctl$RNDGETENTCNT(r3, 0x80045200, &(0x7f0000000000)) 19:59:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x1100000000000000) 19:59:25 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) finit_module(r0, &(0x7f0000000000)='posix_acl_access+][.ppp0!-/\x00', 0x2) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="0000000000002be11305f6d979cd56db6f5eac5bd2c5652db440c0c28671be98c93645367afa80a00b3afbefbc5de426944360b72c7dace0e9e606ef77eab47c4e752529ad0f2d6e834518795e629ea99ff7c3a7f1305338f32600cf3bade5567d9544d264bb1ef510b2a7a5e65c313c69119e167e1416d60c6e25adabcba1cb85"], 0x6) 19:59:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4000) 19:59:26 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(0x0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000) 19:59:26 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="dd351eb4fb51588e3aa323cea9dcbc7ab74fd7086804e8f9e89d6424a6b3f7f718e5ede1f4ddb32f5f6d95c2edb686870142811847edcd735082833f477bd62bdbd767ed6128ed9b1274bd3e700eb11b35be0353fbd44d11c58a19bd82fac7e1c590080376ca6a82f73ac90b0c5736532b9edb2497e973648246e8a86174c59a8f2bcdd5807245d883bab149f9c4996354d6d10ccdd73c6757e2404d2ac95de1a3ef4fbd79a623aaafe106f81f85d80988c5a3f7e2fbe3f959"], 0x6) 19:59:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 19:59:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x300000002000000) 19:59:26 executing program 1: perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:26 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x0}) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_dgram(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x0}, 0x10) r2 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000000000)) syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, &(0x7f0000040000)) tkill(r2, 0x1004000000016) 19:59:26 executing program 2: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r0, 0x0) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x4001f, r0, 0x0) r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[], 0xffffffffffffff20) 19:59:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff) 19:59:26 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f00) 19:59:26 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x18000000) 19:59:26 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) sync_file_range(r0, 0x7fff, 0x0, 0x2) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$cgroup_subtree(r1, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1, 0x800) getsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f0000000040), &(0x7f0000000100)=0x4) r3 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000140)=ANY=[@ANYRESDEC=r3, @ANYRES64=r3, @ANYRES32=r0], 0xffffffffffffff03) ioctl$VT_DISALLOCATE(r2, 0x5608) 19:59:27 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(0x0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:27 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x4800, 0x0) write$cgroup_subtree(r0, &(0x7f0000000080)={[{0x2b, 'io'}, {0x2f, 'rdma'}, {0x2b, 'pids'}, {0x2b, 'memory'}]}, 0x18) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="2b708de500009e756c60b18dc53cb3eed8a855a1f6dc10907338dd3377a8a2514063f361ffa4c39b3564b6a4789564040000009ca60a3264e812264b49ce790ef8581eecce5cdedc5704b823b7ba398cb1ba1360f6cbc5a7f7316002e744d7cb4d6690b18add66f142fd0d2e485a05c59b83b3b2405840089ba6f898ebad7d789791fefb52d2424f892c6043c240739f1eac3ce4e5608f4473ea5d781cbd911c911d70bd4b88821bba275d2d8ee7a96a44897ac57963c8722a87"], 0x6) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000200)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000140)={0xffffffffffffffff}, 0x113, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000400)={0xf, 0x8, 0xfa00, {r3, 0x5}}, 0x10) write$binfmt_misc(r2, &(0x7f0000000440)={'syz1', "c01b9d5f1164b4e08f392e726d24996dd30338baaef9bc4c5f93d42e27c45ca03dc9e158a053ee40f707220626a9d859c7507868ff051bef381638ec436681a0c507360766d850e13e7c595e0d401eee13450e0adaa3810252ced1ab412e985f8d0e73ff25b9390b399404b82847cfb0ed8f353f61a5a0484f69a7bc4fe8d815d8b42a7134c79fa43fd6c0dbe7527ea114d0ef75f01398b42e9798fb2e175e651f096662e4d9a17e9f0de9c0b1a1e55eb2fa9bafa041e18927f5bb194424ece53216e5e5b19be53eed5a9a6c1002c37ba09628c363dd953d757cbc1cc431be0bb84815beafcf"}, 0xea) getsockopt$inet_buf(r0, 0x0, 0x2b, &(0x7f0000000340)=""/190, &(0x7f0000000100)=0xbe) 19:59:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf) 19:59:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x1000080) 19:59:27 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000) 19:59:27 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:29 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() process_vm_readv(r0, &(0x7f00000016c0)=[{&(0x7f0000000500)=""/236, 0xec}, {&(0x7f0000000600)=""/58, 0x3a}, {&(0x7f0000000640)=""/126, 0x7e}, {&(0x7f00000006c0)=""/4096, 0x1000}], 0x4, &(0x7f0000fcafa0)=[{&(0x7f0000309fb2)=""/145, 0x91}], 0x1, 0x0) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = dup(r1) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000000)=0x81, 0x4) getsockopt$inet6_udp_int(r1, 0x11, 0x0, &(0x7f00000001c0), &(0x7f0000000200)=0x4) fcntl$setstatus(r2, 0x4, 0x800) bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e20}, 0x1c) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000080)={'lo\x00'}) sendto$inet6(r1, &(0x7f0000e77fff), 0x2bd, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000380)={0x0, @in={{0x2, 0x4e24, @multicast2}}, 0x6, 0x4}, &(0x7f0000000240)=0x90) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000440)={r3, 0x6}, 0x8) setsockopt$inet6_int(r2, 0x29, 0xb, &(0x7f0000000280)=0x2, 0x4) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f00000002c0)={0x0, @in={{0x2, 0x4e21, @multicast1}}, 0x8, 0x81, 0xab89, 0x200, 0x8}, &(0x7f0000000140)=0x98) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000180)={r4}, 0x8) openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) ftruncate(r5, 0x7fff) sendfile(r2, r5, &(0x7f0000d83ff8), 0x8000fffffffe) 19:59:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x700) 19:59:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500000000000000) 19:59:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x4000) 19:59:29 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000040)={[{0x2d, 'io'}, {0x2d, 'pids'}, {0x0, 'pids'}, {0x2d, 'pids'}, {0x2f, 'rdma'}, {0x2d, 'rdma'}]}, 0x22) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0) ioctl$VIDIOC_CREATE_BUFS(r2, 0xc100565c, &(0x7f0000000240)={0x4, 0x5, 0x2, {0xb, @vbi={0x8, 0x2c220c08, 0x5, 0x34325241, [0xd72, 0x80000001], [0xcc98, 0x7], 0x109}}}) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) socket$packet(0x11, 0x3, 0x300) 19:59:29 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, 0x0, 0x0) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:29 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x80ffff00000000) 19:59:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="2b706954cf000000007db67320"], 0x6) 19:59:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) ioctl$TIOCLINUX4(r3, 0x541c, &(0x7f0000000180)) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x770400) 19:59:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x22000, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000240)={0x0, 0x4, 0x100, 'queue0\x00', 0x41}) 19:59:30 executing program 1: r0 = socket$packet(0x11, 0x40800000000003, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000002180)=0x100, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'team0\x00', 0x0}) bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14) getcwd(&(0x7f0000000000)=""/56, 0x38) sendto$inet6(r0, &(0x7f00000000c0)="020400000300600000000000fff55b4202938207d9fb3780398d537500002f007929301ee616d5c01843e06590080053c0e385472da7222a2bb401000000c3b5", 0x40, 0x0, 0x0, 0x0) 19:59:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x18) 19:59:30 executing program 2: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x88800, 0x0) pread64(r0, &(0x7f0000000240)=""/60, 0x3c, 0x0) ioctl$KVM_GET_CPUID2(r0, 0xc008ae91, &(0x7f0000000340)={0x7, 0x0, [{}, {}, {}, {}, {}, {}, {}]}) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ubi_ctrl\x00', 0x1ffd, 0x0) ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000100)={&(0x7f0000000040)=[0x1], 0x1, 0xffff, 0x8000, 0x9, 0xad84, 0x7, {0x8450, 0x1, 0x9c9, 0x4, 0x80, 0x2, 0x400, 0x1, 0x81, 0x1, 0x8001, 0x2377, 0x1, 0xfffffffffffffff9, "746de498114315859279dee89fd1b333f52c9d4eeae5c996b1d3d97461928b38"}}) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0xfff, 0x7}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="e373564034c153e22230fbbaf1254c8d86b76093ea89cd2ef0b9168f92e88d6743081270627b5bed5da900de2bea4d5f8f1db5e026a02b944b1b321f323df17deb2419820162e4fbcbfa15f2febca4fd199f33a573de2c29b7337973c16b3c78edebf2439f01"], 0x6) 19:59:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x2, 0x2) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000000040), &(0x7f0000000100)=0x4) r2 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) fcntl$getownex(r1, 0x10, &(0x7f0000000240)={0x0, 0x0}) ptrace$poke(0x5, r3, &(0x7f0000000280), 0xffffffffffffffff) lsetxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='trusted.overlay.origin\x00', &(0x7f0000000180)='y\x00', 0x2, 0x2) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:30 executing program 1: r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x0, 0x11}, 0xc) r1 = socket$inet6(0xa, 0x1, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000001c0)={0x0, r0, 0x0, 0x1, &(0x7f0000000180)='\x00', 0xffffffffffffffff}, 0x30) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ubi_ctrl\x00', 0x800, 0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x70, 0x3, 0x8, 0xffffffff, 0x8, 0x0, 0x6, 0x80080, 0x3, 0x3, 0x87, 0xe92, 0x1, 0x800, 0xffff, 0x4, 0x80000000, 0xffff, 0x6, 0x2, 0x0, 0x2, 0x6, 0x1, 0x7, 0x40, 0x0, 0x9, 0x9, 0x1f, 0x5, 0x6, 0x3, 0x100, 0xd78c, 0xfff, 0x8, 0x0, 0x4, 0x3, @perf_config_ext={0x7fff, 0x6}, 0x10000, 0x401, 0xffffffff, 0x9, 0x4, 0x0, 0x400}, r2, 0x2, r3, 0x3) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x6360}, 0x1c) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, &(0x7f0000000640), 0xffffffffffffffff) getpid() sched_setscheduler(0x0, 0x5, &(0x7f0000000140)) setsockopt$inet6_buf(r1, 0x29, 0x32, &(0x7f0000000040)="e08ca3a187b7978c316e9248c2cf546bb5e25904", 0x14) r4 = msgget$private(0x0, 0x4) msgsnd(r4, &(0x7f0000000240)={0x3, "68d45637c5"}, 0xd, 0x800) 19:59:30 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, 0x0, 0x0) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xc000000) 19:59:30 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000000)=0x9, 0x4) r2 = syz_open_dev$swradio(&(0x7f0000000040)='/dev/swradio#\x00', 0x1, 0x2) write$vnet(r2, &(0x7f00000011c0)={0x1, {&(0x7f00000000c0)=""/198, 0xc6, &(0x7f00000001c0)=""/4096, 0x3, 0x3}}, 0x68) 19:59:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x6018230000000000) 19:59:30 executing program 2: r0 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0xfffffffffffffffa, 0x2000) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f0000000100)={{0xffffffffffffffff, 0x0, 0x800, 0x3, 0xc80}, 0x9, 0x1441587f, 0x2}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00'], 0x6) 19:59:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:30 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000001c0)={0x2, 0x0, [0x2ff, 0x3f]}) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000240)=""/4096) 19:59:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080), 0x0) 19:59:30 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x0, 0x2000) ioctl$DRM_IOCTL_SET_MASTER(r1, 0x641e) sendmsg$nl_xfrm(r0, &(0x7f0000000d00)={&(0x7f0000000000), 0xc, &(0x7f0000000cc0)={&(0x7f0000000800)=@acquire={0x2ec, 0x17, 0x3, 0x0, 0x0, {{@in6}, @in=@broadcast, {@in6=@local, @in6=@dev}, {{@in=@multicast2, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, [@tmpl={0x1c4, 0x5, [{{@in=@multicast2}, 0x0, @in=@broadcast}, {{@in6}, 0x0, @in6=@loopback}, {{@in=@loopback}, 0x0, @in=@multicast2}, {{@in=@broadcast}, 0x0, @in6}, {{@in6=@mcast2}, 0x0, @in=@multicast2}, {{@in6}, 0x0, @in=@local}, {{@in6=@dev}, 0x0, @in=@remote}]}]}, 0x2ec}}, 0x0) 19:59:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000000)) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:30 executing program 1: r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x7ff, 0x42) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000040), &(0x7f0000000080)=0x4) r1 = socket$inet6(0xa, 0x80a, 0x200000004) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f00000001c0)=0xc) getgroups(0x2, &(0x7f0000000200)=[0xee00, 0x0]) write$P9_RGETATTR(r0, &(0x7f0000000240)={0xa0, 0x19, 0x2, {0x800, {0x57, 0x3, 0x3}, 0x100, r2, r3, 0x400, 0xa5, 0x40, 0xb209, 0x4, 0x3, 0x4, 0x8001000, 0x2, 0x7, 0x1ada2efd, 0x80000000, 0x4, 0xfdd, 0x8}}, 0xa0) sendmsg(r1, &(0x7f00000003c0)={&(0x7f0000000100)=@caif=@dbg={0x25, 0x8001, 0xaaa}, 0x80, 0x0, 0xfffffffffffffebd, &(0x7f0000000180)=ANY=[@ANYBLOB="12000000000000001100000067000000bbde"], 0x12}, 0x8045) ioctl$NBD_CLEAR_QUE(r0, 0xab05) 19:59:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xc00000000000000) 19:59:31 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, 0x0, 0x0) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1c2, 0x20) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000180), &(0x7f0000000240)=0x14) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x0, 0x9, 0xa22, 0x200}) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3f000000) 19:59:31 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x1) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_DMA(r1, 0xc0406429, &(0x7f00000002c0)={r2, 0x5, &(0x7f0000000100)=[0x5, 0xfffffffffffeffff, 0xffffffffffffff7e, 0x4a, 0xffd2], &(0x7f0000000140)=[0xffffffff, 0x2, 0x7, 0xfffffffffffffff9], 0x0, 0x1, 0x1, &(0x7f0000000240)=[0x3], &(0x7f0000000280)=[0x5]}) r3 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 19:59:31 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000000)) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:31 executing program 1: r0 = socket$inet_dccp(0x2, 0x6, 0x0) syz_open_dev$radio(&(0x7f0000000040)='/dev/radio#\x00', 0xffffffffffffffff, 0x2) getsockopt$inet_int(r0, 0x10d, 0x2, &(0x7f0000000000), &(0x7f0000000080)=0x4) 19:59:31 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000240)={[{0x2b, 'pi\x80\xb1\xa4\x15g\x8b\xb5\xbb\x94\xc0N\xfd\xf5\x8cX\x04\x00\x00j\x87\x05\x0e\x18@`\x10\xc1\xfbT\xf91\x9fb\x18\xb5\xd2r\xf8\xfa^g\r\xe1\xc90\xe1&l\xc9\xec\x9aEY\xae\x90\x94\xe2t\xab\xe9\xfa?\xc5vn\x00\x1f4\x9b\x8d\xf9\xbej.\x98\xfe\xfb5\rU\xc6\xe1\xb8\xc7q\xaa\xdd\x9dVL\xa8\xb7\x8b.F\x7f\x01\x9b(\x15zn\xc6\x9d\xee+Yc\x10Y\xcby\x93\x02xV\"0\x81\xe6\x8e\xb1*x/\x1f\xaa\xd6\x96'}]}, 0x19d) 19:59:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x11) 19:59:31 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) pwritev(r0, &(0x7f00000000c0)=[{&(0x7f0000000300)='K', 0x1}], 0x1, 0x0) r1 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x4, 0x42000) ioctl$DRM_IOCTL_INFO_BUFS(r1, 0xc0106418, &(0x7f0000000040)={0xfff, 0x7fffffff, 0x0, 0x9, 0x4, 0x401}) r2 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x5, 0x400) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r2, 0xc0305615, &(0x7f0000000140)={0x0, {0x1000, 0x1}}) 19:59:31 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xf) 19:59:31 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x8c000, 0x0) setsockopt$RDS_GET_MR(r0, 0x114, 0x2, &(0x7f00000002c0)={{&(0x7f0000000240)=""/106, 0x6a}, &(0x7f0000000140), 0x42}, 0x20) r1 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x2, 0x2) setsockopt$inet_tcp_int(r1, 0x6, 0x26, &(0x7f0000000040)=0x8c, 0x4) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r3 = openat$cgroup_subtree(r2, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:32 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240), 0x0) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:32 executing program 1: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000c40)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x0, 0x0) write$cgroup_int(r2, &(0x7f0000000080)=0x9, 0x12) ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f00000000c0)) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, 0x0, 0x84) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) socketpair(0x2, 0x2, 0x1ff, &(0x7f0000000000)={0xffffffffffffffff}) setsockopt$ARPT_SO_SET_REPLACE(r6, 0x0, 0x60, &(0x7f0000000480)=ANY=[@ANYBLOB="66696c74657200000000000000000000000000000000000000000000000000000700000004000000a8040000000000000000000000000000c0030000c0030000c003000004000000", @ANYPTR=&(0x7f0000000140)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000031a7cf2e685a67f4e54508ee96a70183fe20155d63afeedd8e9feadf7f7888ad8f2280fe09c664026b00d4a1b19e685c16856c274f9542dc8ad19d64e104182f9cbdf2fa448cb8764032d39eb13296117d92a494327c671a9c6989ecae6b433c5e0b48921f23f22889972820259fa61ca269055142d5895494e09d779dfaaabf5df811e76b9f150ba8e854ac5631cdcbb59b54b5bdeac9a8e34783faf810367d5c8935b45d2d227ae59868a8"], @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f0004001000000000000000000000000000000000000000000000000000050006d616e676c65000000000000000000000000000000000000000000000000000000000000000000000000000000000233bbb12a4200000000000000000000e0000001e000000202000000010000000000008100000000ff000000cc4e0585ffffffffffff000000000000000000000000000000000000ffff0000ff0000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000008ffff00080006000801ff6270713000000000000000000000000069705f7674693000000000000000000000000000000000000000ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000120000000000000000000000f0004001000000000000000000000000000000000000000000000000000050006d616e676c6500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f000001000000000d000000ffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f0004001000000000000000000000000000000000000000000000000000050006d616e676c650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100007f00000102000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c000e8000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000"], 0x4f8) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 19:59:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000040)='tls\x00', 0x4) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) 19:59:32 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000) 19:59:32 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x100, 0x800) write$UHID_INPUT2(r0, &(0x7f0000000240)={0xc, 0xb0, "d086bf0ba2f3a5de6f3e2a48b42ec64cb9d3d12d38cde71c92a5b72699d4198f561104f9f5e5edd77e7db3b1083651deb74fe106e813c006726ae7e35ffe41826c41c8ff1380d15b35d2771df944b11faea8a804f3f03f22ec098dd26a92e847a8ee719028521b63efeff555a046995095a3a00bbbea05a06b778fd573fd7100fecc49479b97e5cbdd387e94a3b9582f54df701154a6b19aef3e660f0717d8dd50596c6be400aba2b6e4080e96bd85fb"}, 0xb6) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:32 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000240)={0x0, 0x0, 0x0, &(0x7f0000000540)=""/246, 0x0}) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/audio\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) write$sndseq(r1, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, @time={0x77359400}, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x5, 0x1, @time={r2, r3+10000000}, {0x4ed9, 0x3f}, {0x400, 0x8}, @result={0x80000001, 0x4}}], 0x60) close(0xffffffffffffffff) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r4, 0x6, 0x10000000013, &(0x7f0000000100)=0x1, 0xfb) setsockopt$inet_tcp_int(r4, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0x4) bind$inet(r4, &(0x7f0000738ff0)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21}, 0x10) sendto$inet(r4, &(0x7f0000000000)='\'', 0x1, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000080)={0x0, 0x40004007fff, 0x80000001}, 0x14) shutdown(r4, 0x1) 19:59:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x87b91d167f0000) 19:59:32 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x300) 19:59:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000080)="66b9d20b00000f320fc7afa800660f380b6fd8440f20c0663507000000440f22c00fc76863f20f7cdd65360f01df360f38034200ba200066edd9e4"}], 0x1, 0x0, 0x0, 0xfffffed8) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x100}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:32 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x12800, 0x0) sendmsg(r0, &(0x7f0000001800)={&(0x7f0000000100)=@pppoe={0x18, 0x0, {0x0, @local, 'lo\x00'}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000240)="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", 0x1000}], 0x1, &(0x7f0000001540)=[{0x50, 0x1ff, 0x14, "d3b55847b1d58efb86993a91bbad0bfcdb770015579f5c7260570cf08495f5d47220418882089e501b35f6ffb5bb198c917d1fa5390f4f1a58d0a798da"}, {0xffffffffffffff4f, 0x108, 0x3, "f98cbe6e"}, {0xfffffffffffffe48, 0x13f, 0x2, "6ec4cdc9a30be25925a352527861a400301c152c71731afa50b073e579d68aa393b78f07b053410eaa0d1bf8ee3fafad50aa5b17ad418e31cb916dee8567acd856593eb92e39484d60901b0037cb1d4a19e8e9a639eb0a7347b6d62620bb7055efbd722086bbdbe5a236ed14d7e70336ce3df10cb4acb8acd932a98e9f2786819c408b1b874c91918f35af3ec6a374ce9fc9dbf65b94f5da17898508e6905805540f2891d1e035ab0cbf0ca28057a9f8179f6d9c705997a76046230ac42954ac6a8f96b255169caa"}, {0xb0, 0x29, 0x101, "90087a600944bf4335a72b49ecba20a88618db287f9c4003aacb717bf53a79de82ad5e748370318901223a01bda7bdd572ad2f760dd0c22ecb1deccd490429b2c55bd7e765ddb4c6d3bacc701eebb2989c1b816c287c5042cbc70dbde49efc0703a0639cd04da97686450ea2e431a01118e85526d427a636076899e9d7b9cbebdaf9cdc24688d63dea135a92e7eefb656a27bb075ef3d20dfb89"}, {0x90, 0x10c, 0x6, "95346f85239d4bd52dcb8a41b8d14f304d3671dc05bf89d867d327dad5544a3f7046bc2fb29959d7fe7b20f566ef056bf1856ddfc5ce6c42195ae9494019460c983dacdc4b5cc5dfed9c4397ad6741d97d41454fb69d9d414db066c4e309e7d8742fc91e66098d2de298a4c5428d5651cdeca8e0bdef1f8af126e7e15ad3"}, {0x18, 0x110, 0x5, "fbeace"}], 0x298}, 0x400d1) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:33 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240), 0x0) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:33 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB="2b700500000097052761579b9a030328d7dd41b5580f66b887d2134fe1b76df89af6cb5e458cb12c5dc5d34a9c7f88e2378347f51bc1bb25f743b198df31a68d56141da1abcf8c47f3fbcfe473bfe72259e170634d22c8ab8e35245cff8c7a6f041cfee943865284c34f92931cdea8f74466131a0b27cfe4"], 0x6) acct(&(0x7f0000000340)='./file0\x00') 19:59:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xf00) 19:59:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x800000000000000) 19:59:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$pptp(0x18, 0x1, 0x2) accept4$packet(0xffffffffffffff9c, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000340)=0x14, 0x0) recvfrom(r1, &(0x7f0000000280)=""/90, 0x5a, 0x100, &(0x7f0000000380)=@xdp={0x2c, 0x7, r2, 0x40}, 0x80) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) setxattr(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=@random={'btrfs.', '/dev/vfio/vfio\x00'}, &(0x7f0000000480)='lo\'%\x00', 0x5, 0x1) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r3, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r3, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) fcntl$getflags(r0, 0xb) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80003, 0x40) r6 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vfio/vfio\x00', 0x101000, 0x0) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f0000000180)={r5, 0x7, 0x5, r6}) ioctl$BLKSECDISCARD(r5, 0x127d, &(0x7f0000000240)) 19:59:33 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0x12800, 0x0) sendmsg(r0, &(0x7f0000001800)={&(0x7f0000000100)=@pppoe={0x18, 0x0, {0x0, @local, 'lo\x00'}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000240)="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", 0x1000}], 0x1, &(0x7f0000001540)=[{0x50, 0x1ff, 0x14, "d3b55847b1d58efb86993a91bbad0bfcdb770015579f5c7260570cf08495f5d47220418882089e501b35f6ffb5bb198c917d1fa5390f4f1a58d0a798da"}, {0xffffffffffffff4f, 0x108, 0x3, "f98cbe6e"}, {0xfffffffffffffe48, 0x13f, 0x2, "6ec4cdc9a30be25925a352527861a400301c152c71731afa50b073e579d68aa393b78f07b053410eaa0d1bf8ee3fafad50aa5b17ad418e31cb916dee8567acd856593eb92e39484d60901b0037cb1d4a19e8e9a639eb0a7347b6d62620bb7055efbd722086bbdbe5a236ed14d7e70336ce3df10cb4acb8acd932a98e9f2786819c408b1b874c91918f35af3ec6a374ce9fc9dbf65b94f5da17898508e6905805540f2891d1e035ab0cbf0ca28057a9f8179f6d9c705997a76046230ac42954ac6a8f96b255169caa"}, {0xb0, 0x29, 0x101, "90087a600944bf4335a72b49ecba20a88618db287f9c4003aacb717bf53a79de82ad5e748370318901223a01bda7bdd572ad2f760dd0c22ecb1deccd490429b2c55bd7e765ddb4c6d3bacc701eebb2989c1b816c287c5042cbc70dbde49efc0703a0639cd04da97686450ea2e431a01118e85526d427a636076899e9d7b9cbebdaf9cdc24688d63dea135a92e7eefb656a27bb075ef3d20dfb89"}, {0x90, 0x10c, 0x6, "95346f85239d4bd52dcb8a41b8d14f304d3671dc05bf89d867d327dad5544a3f7046bc2fb29959d7fe7b20f566ef056bf1856ddfc5ce6c42195ae9494019460c983dacdc4b5cc5dfed9c4397ad6741d97d41454fb69d9d414db066c4e309e7d8742fc91e66098d2de298a4c5428d5651cdeca8e0bdef1f8af126e7e15ad3"}, {0x18, 0x110, 0x5, "fbeace"}], 0x298}, 0x400d1) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:33 executing program 1: r0 = syz_open_dev$video(&(0x7f0000000000)='/dev/video#\x00', 0x43, 0x0) ioctl$VIDIOC_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f00000001c0)={0x0, @reserved}) 19:59:33 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x20002, 0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ff9000/0x3000)=nil, 0x3000}, 0x2}) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f0000000280)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:33 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4) 19:59:33 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r3 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r4 = socket$inet_dccp(0x2, 0x6, 0x0) socket$inet_udp(0x2, 0x2, 0x0) listen(r3, 0x6) setsockopt(r4, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r5 = accept(r3, 0x0, &(0x7f0000000080)=0xfe0f) sendmsg$alg(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000980)="3cf5048e7163ea27da961b58abc6fdd726a3e3c95cad1de31c363355c8e1713e51fe7f59651cc3ac45abe4d057f5137c675ed1994a77351dee893cd34df281c9a23f002a9478039ed67f7b156245f27916f826813ec250d85c0192c16f21dd81efe95b0b969ce99dbf198ee2555098027269016440658583e3662d46fe23e2f3d45c0bc9e61731c225d30af8b12b7608313d88f7a0bdcc6fbdb3c103d6c7ecb56197a96d2c5bdeb8105bab16f495a2016c4eac846d256f43ecfe3604edd6e6c3166a78125ac00878f6e74eebf28e9f31e2eea3ae45c16456ddee6203708bad5a11d90a06dad500942c3c7de6c7e2e6ea754ffce452d745214d4e010f4be714a9ece73e14d28ed7cf52fcebaf48deff2638488d1eddcbdc9aea0d5750bc0b88a8ee86f08747e8817fd62d0c5dccd4006c529949725bbfcca2686601f5d220eb6312ee9b5a4550ad2b7e635cc741cf3981965a252825924fd94f0f0f187653512e74217df2d079465950ab782c00861fd93814a32b59cb33213e2e12f790a331a8cc402208b9da2079efa3e880f69c2836b713245e3c4d0aa7c241469ae701e88c3db83f24a7fe1af322f8821fb3fec1497fb9c6f1ea1c0732d8d9f7c6e1e671a7f4eecc4391bb1d4cbaed353d3e56d6ffd2f21b8bc5368bb85ec382ce13f92aa9f1b242a19db0ce84c822a246a949156187fe0176c3d58f8e012aa17fa0988cbcd85e8d928a3f491e81e2f943f2dad5c1f5c9a7890bf05d78a2be476c52aa75569f28c1144a7bac3465cba51b81b034fca3a9034c64ded7615e8a3a0712c45e0eb0f936ea6bbe35deae994ca8a5e48d74520900e295e55af7c5f893249a230a76779ae8978b10ba296f6a68bbdf732b77d258ebda9fed5d628f8401400e72c471d8b76e08471c7778cc22ff69eca42099069eda6d80eff70e032c7735727866ca75b83db9d740ece0263d56a9dfda7bff84643a7de6f7d677f5b5baf1409080b132dac45d8dd4b9c64b66bc4d177ae8e311f6520ca8173e01b3e8343461214aaa5cddbc01a3f6f9b18c68bb33f98a025ce67aaae25e69208b378925780d96fe76f8306b2dd1a28ea0eaad4095144399f80a85e2fbb8f982361cb7e7e61ad89deb2c6ddc014a14685360f1aa39fbf2dc574543d606d6afd18922c8cf16a62e0a45d6adafde216473039edc7001e9f8aed45eaddd89c2b1df832dafa9988fba8e795c911ed2706db4adf3b1a7db02994a43be04b9c66268aba436c6ba24c6671b19fec3e032c2216d33909ce1cd140fde160a222acac813bfdfdecd18d289d8073287a2f920bd2e1a75725ff4b805acf9fc249be0634c26193bf03555ccfc3008ef2001570bf72d5127236de2bb776069b9c5d6051e28c0f5f7f55d5e4cf04822b52434ff0ce7c9912ea49b692bd1895701be813cf94fad9dbbf3d303a234e2164014259e51e1795d4383baa8d977cfe07e2fbf215549d9d4667ae273227b85ea8de7d7c874b6d5463d2451f4253df0d86fde47f8a138d6cdc616e2bfbd32269bcd0a87e473b7a4349aacc40e795fbc909143d72472b4b1f3742e3f5b119a75b48632eb3f67c90bcf606526f39b72647c8343031b29c2cde6576c3a1dfa8677efea6c7f1904410f9c1170dce23bd4fb64bec2010f44109a83cbbdcaa3f391731e8e0f410c9588fef26e792b76beb6174d5a3b87848f051825e06d06838edc102271970d326c74065089a658f0354027a8da470bdcf7f9548fe1ab24adf12d3bd1427134de4c3aa039c11af4c74bf111e12953ffa17ffbded8945b1cd1dba33753cdb9fc3a14393b8ec4f8497ce27cafe19ba44fa38549b8f052f83dace969f7801358f41caf2a02a01fcd362f8a9c6469fb843ae4718cf5d7f92558865546879b344d9a489c983187592fd116b94835828247b46a43ddd8306c23d23c1b0f5e3388c1af04f5144252dd216fd56f54336ebf0c15e6f7614c42eb184c0d0e741050a8f01f05663e2b214649167419ec62cf342d4286f0b31398bfd93ff2896ade403a6b72e031a9839d21a82ecc8cec3f477c3cedcacf466881201d22c305794491a9ec595af5fcbac6189114e285282753e17651d395d51fab8750607db79c5b41a69d273d9f186688207e8cf1c2000b52db649bfea760fa80178f33c65123f84369cb4c1f5ead16544af44fd5d7889d347868995f873b53777ff94e167813859f019cfb5a9bb29bdf14bfdbf82349d2b146e95e1245701ffa957d2b8320d3bf198e2f8346cb3a1d237c958f8357df9e8859b68a94974a36ed7b2c32744b9b5e7597a7e5064bbd3a1bb326ccabb4ebefdd6348e3054dcfe9a8ccbf959151f43fc15697d4899dcda889663d0d724afe4c802ff0e9c13d3c0bf2372909d4a640882fd9bc12b63d94e7ad4583e8b95245fa7084118fe594e39cf8cb61033f6602a1c679687b5594db16c9e74611be366af5c8d4ad07831dc3e2123253af0f68fd1711bf608f5515a471301b64329c51b2011a03a8ad6c4e399b3245eb218083351e9a621d713187a65368f94205f17d6870527ff14fdc2577d2f6c15077deb2e7ab0ecc869a05d48d8cdc1dd7ea8456a0bb60e70d78f253ef417d8a386dcc255f1b14227ac7ab4de5a9e0158945767431b5e86c8dd00342aa12b27f98676a278f326b4256f19ecdd3d8fae6c4a815f1fb7df919e74b6a5003ae8d14f1d2b614ac6b02355765922f506f097602ee202eb55e3b45907b461692a4a1afbec463b9d19a81cdc93885596ec465220840c21cdbc30a778e26569416c454d117c003c8b0788332341685fad7357a1a3a3672949a7161d28f4f73b7e01d01e133541f3246bb9eb8f4b26dc149e4295b49c7c8fbcacd4c3e02e77f08283d310a5b56bc0630f33b857589de15d2d6bdda73b7ae6dc37d9bd64fe84178f02873861b060b6ac2f91a3ed84c44d8e03deb87d632fd06d93b8c841d5a2fdaf338142d7e54a120b2e162fe0e4b170bb97762fb172a30cc31b1f679be796f0b4865c0704850969a6c741eb3b9ad2fb059fe5da6cf6d3ef3c4c4aad4dbb578da214a57f334db2128769a7f961542e61cece3c24cefe9f6ffe75db1ec936aaa034e4a0486a1850ff4edceed6ac9d6468033b620373e421b42575af337585ed0d08f5b3f91557c8b5e7b515bb15c957213ce31787a9ec274eeb88ddbcc15396355e37f0239b0cc8867d35bc7f8a719ec415f69833feea59e1d7ec6ea8ea2b5efaacd3b1b53651e6e0983faa60950b92514f0d582b4f214a80101a0784d155b1dc2b2cba21fddb31eb10e8af70352a47c1c8eb90fba97d93d75608acdc8465c6907bbf36f3f36e59bfb1eeafbed14726fd34c2354785f1aa65422cce50bac7a9a51a7ecbd4d1d97ae65ebcc1414eaf000165fb15e037539cdfe0bbff3100395d2a6834fbfae1dad1f269ed290316ee18a0666fe682fdeb832c2e4d7818c0f0896d55e696dfababb0f561afc802cb43fb88fac2f5f8ecc18fa40a9d53b7a3bcc19f193e535b89ea96aab74c39c4928f72ba3a88941043a6a6e87db746b42fcc7e575c25c45694d54d6205abbc33331a869b4c4ecf50528d0fa3dc50ea15873ed2f7ee500194203525f70b70094b4c7280e5e6e325d2493273b4acc8d71352fa64d3bd944a79975f5dd597a85d2ad639b55f5f72ce6dd554f48b9236f5d8652c65b5c3a909b420eb60b8330fe43c17ab31eb2ebe54fb906ffe166c86b29fed4947a97117d2eafce1b20d6485d525b948a906c2864c63005cc0571e386a263fc2b68f03ed2377a0a81a48ff726fecc5c476eb3e36fd796e11bb4f8612b57ad8b9ebc7d3e7a2be68380d9e4a447d590d82713504dc0658525ea88400811753fa6234a01f46d9fa7df62b266b5c889f5286b7c72eff18b0425dd9c2e6f1f9778ffa1d14ceeff7d76e05c93e5215a0b8084e2e4d25984a835534453bd7e0ca7579edbabb8fec973978b37c4e70cb2796a2fba6e6235063857851f94b7cbab38ec1297f89dbaaec4b3a11f86b69b273fcecaa1ba1c6c52bf455be9e495e75651e8e6c7f03874f96596a9deb61c14eb68049f3f07bac5becf8ae8add48a4a1b8ce5776a5debee0738b4d7750865606e747ab7f9a86b6d933220c4771d2277c1ab68b6b24d4238ca83a3e4247d13fcda8af5087848f7aa4d8ccf5347f7041ac5ee4429c64f2aa653ae0e7b7c16d2e35d186b20fa7109a193f38a002ad5fbb18a52810b7278ba3c0a0d831dd350730c1c255f2fa639aab2537115e1ac60be26a9d88c8bfa1100c2ae9fa9b245033b010050065a89a7384a572f5b2f121e77bca3e71a881ab8433bc77f63f0629a6eb9ff395b96576a57e75e583fb085786ebd482db53648ab02486abfd600efca097a68f561e43d3ba027fcb2fe1d0fa6612b066a3c95b0177c78b2bb0c99310a3f51ab8a8290507bb5256afe8e67a31b7c2bb643dbf2cfbeedbbde00d3dc481d8c8bdfcf540e85c9cc1d4c2bccdb13bfd5f3d2a4a320043582af152ca716a1d097a7496e0e040ba7446e1ea8d9f22cdda1835960ddbc64d4828745909b865fcb28025d8769f847783b10f50db50e5de2de3e0c5bedff9b928387cf43c1a621001d5903e5e60c9bdfa01f023b134f224533faaf7f218b9797787ceacd7b96853c58e4247634d4faadf56f9a4480c4673d656758aedca41707e6b3753db3db09f7c3be9233bf429c6a0603a14ca44d78a3a3802e3edf7fe1595fc5870637a262eb2e36473e5520b3ba9af4d46fe5b49d1e3a2812e1f502b58a2aa0a472925ab1f4c8bc3687ef1f7a82700021e70f50edef894bf902285e3c087a7f980289c62c8b282fa52072966131f3f3f33686f270ffe938c3cce1eb0623837ae1ffcceb62c95bfc33a06e45db21a2d46e5a8891fa37b8edf93255", 0xd90}], 0x1, &(0x7f0000000440), 0x0, 0x20000000}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000004c0)={@dev={0xfe, 0x80, [], 0xe}, 0x31, r6}) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000280)='tls\x00', 0x150838432f021f79) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x2710}, 0x10) r7 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x0, 0x0) fcntl$getown(r0, 0x9) getpgid(0xffffffffffffffff) ioctl$RTC_AIE_OFF(r7, 0x7002) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000002240)) fcntl$getownex(r1, 0x10, &(0x7f0000000300)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000940), &(0x7f00000022c0)=0xc) ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000002300)) fstat(r4, &(0x7f00000000c0)) fcntl$getown(r1, 0x9) sendmmsg(r4, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) sendfile(r5, r2, &(0x7f0000000180), 0x10000014e) 19:59:33 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x4) 19:59:33 executing program 4: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x208000, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000240)={'raw\x00', 0x80, "b18507101347a6bf218202f72f4fcec8a4021ca537e2b1189402d11dff2a56914115a0bac29a802e5eb759468eb254e5daac627ed706647f89251c3d760e54befec18231514105877bc48a881a5841b561de0ae340d22ccaf5652e1637633eb8403cb410abe6bed4550c3538a4a412f8add572d7d5c83d85848b59056d9328fa"}, &(0x7f0000000180)=0xa4) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000300)=ANY=[@ANYBLOB="0600002641"], 0x10) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) io_setup(0x2, &(0x7f0000000040)) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x7) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000340)={0xf000, 0x100000, 0x3f, 0x101, 0xe145}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:34 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240), 0x0) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r3 = socket$inet(0x2, 0x0, 0x1) r4 = getpid() getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000240)={{{@in6, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4}, 0x0, @in6}}, &(0x7f0000000040)=0xe8) r6 = getegid() setsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000100)={r4, r5, r6}, 0xc) r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCGSTAMP(r7, 0x8906, &(0x7f0000000000)) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x29) 19:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x11) 19:59:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_S390_UCAS_MAP(r2, 0x4018ae50, &(0x7f0000000040)={0x4, 0x200}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x11, 0x30, r0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x10000, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x40000, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r2, 0xc0945662, &(0x7f0000000240)={0x65, 0x0, [], {0x0, @reserved}}) r3 = openat$cgroup_subtree(r1, &(0x7f0000000100)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r4, 0xc0405519, &(0x7f0000000040)={0x0, 0x5, 0xfff, 0x1, 'syz0\x00', 0x8}) 19:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 19:59:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff) 19:59:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000040)="def730020f326564f2df3f66b874ca00000f23d80f21f86635000000500f23f80f01bd8689baf80c66b8ace7578366efbafc0cedf210d30f300f22db", 0x3c}], 0x1, 0x61, &(0x7f0000000180)=[@dstype0={0x6, 0x4}, @cstype3={0x5, 0x4}], 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 326.368282] dccp_close: ABORT with 105872 bytes unread 19:59:34 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='+pzds '], 0x6) 19:59:34 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r3 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r4 = socket$inet_dccp(0x2, 0x6, 0x0) socket$inet_udp(0x2, 0x2, 0x0) listen(r3, 0x6) setsockopt(r4, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r5 = accept(r3, 0x0, &(0x7f0000000080)=0xfe0f) sendmsg$alg(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000980)="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", 0xd90}], 0x1, &(0x7f0000000440), 0x0, 0x20000000}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000004c0)={@dev={0xfe, 0x80, [], 0xe}, 0x31, r6}) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000280)='tls\x00', 0x150838432f021f79) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x2710}, 0x10) r7 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x0, 0x0) fcntl$getown(r0, 0x9) getpgid(0xffffffffffffffff) ioctl$RTC_AIE_OFF(r7, 0x7002) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000002240)) fcntl$getownex(r1, 0x10, &(0x7f0000000300)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000940), &(0x7f00000022c0)=0xc) ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000002300)) fstat(r4, &(0x7f00000000c0)) fcntl$getown(r1, 0x9) sendmmsg(r4, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) sendfile(r5, r2, &(0x7f0000000180), 0x10000014e) 19:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xf000000) 19:59:34 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x0, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200000000000) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x2, 0x0, 0x1f}, {0x0, 0x0, 0xfffffffffffffffd}, {0x400000000003, 0x4000000000}]}) fcntl$setstatus(r0, 0x4, 0x40000) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) 19:59:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x47700) 19:59:34 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1100200}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x234, r3, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x4c, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x401}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xddd600000000000}]}]}, @TIPC_NLA_BEARER={0xd8, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x100000000}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e24, @multicast2}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x3, @ipv4={[], [], @multicast2}}}, {0x14, 0x2, @in={0x2, 0x4e22, @remote}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x92}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @multicast2}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x8000, @dev={0xfe, 0x80, [], 0xe}, 0x6}}}}]}, @TIPC_NLA_LINK={0x6c, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x636}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}]}]}, @TIPC_NLA_BEARER={0x80, 0x1, [@TIPC_NLA_BEARER_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x1b, @mcast2, 0x1ff}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x9, @empty, 0xfffffffffffffc00}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x180000000}]}]}, @TIPC_NLA_SOCK={0x10, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x234}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:34 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x1800) 19:59:35 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0xa7ee, 0x640001) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x40000, 0x0) renameat2(r0, &(0x7f0000000140)='./file0\x00', r1, &(0x7f0000000280)='./file0\x00', 0x1) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x20c000, 0x0) setsockopt$TIPC_IMPORTANCE(r2, 0x10f, 0x7f, &(0x7f0000000040)=0xe1c, 0x4) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r4 = openat$cgroup_subtree(r3, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x231860) 19:59:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x5000000) 19:59:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)={0x200104}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="00000000009d4418e58c67f50bbe1b2a036b27af3c8d75d42a0c2f90a054a9ff1cf7b877f0d629000529b3bffa94e1a8bbf7f8368ece1466a7aa7b1b9a7f12f4cdc7f11dcf58a27cec5359aef3d5ab0c6a6b776e"], 0x6) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x800, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000140)={'IDLETIMER\x00'}, &(0x7f0000000240)=0x1e) r3 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x3ff, 0x18000) ioctl$KVM_ASSIGN_SET_MSIX_NR(r3, 0x4008ae73, &(0x7f0000000040)={0x1, 0x800}) 19:59:35 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r3 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r4 = socket$inet_dccp(0x2, 0x6, 0x0) socket$inet_udp(0x2, 0x2, 0x0) listen(r3, 0x6) setsockopt(r4, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r5 = accept(r3, 0x0, &(0x7f0000000080)=0xfe0f) sendmsg$alg(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000980)="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", 0xd90}], 0x1, &(0x7f0000000440), 0x0, 0x20000000}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000004c0)={@dev={0xfe, 0x80, [], 0xe}, 0x31, r6}) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000280)='tls\x00', 0x150838432f021f79) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x2710}, 0x10) r7 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x0, 0x0) fcntl$getown(r0, 0x9) getpgid(0xffffffffffffffff) ioctl$RTC_AIE_OFF(r7, 0x7002) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000002240)) fcntl$getownex(r1, 0x10, &(0x7f0000000300)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000940), &(0x7f00000022c0)=0xc) ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000002300)) fstat(r4, &(0x7f00000000c0)) fcntl$getown(r1, 0x9) sendmmsg(r4, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) sendfile(r5, r2, &(0x7f0000000180), 0x10000014e) 19:59:35 executing program 2: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) name_to_handle_at(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x21, 0x65ad, "9e9188b62d25388711257f0fc9a7e7bba0f5f578e891cc3469"}, &(0x7f0000000100), 0x400) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="28422191b263ac3da4884b9cfc34e341414c694ee9c0c5d53e3c5da2b746a6604b4ba6d030f996147ec5b18a21a8e19b14048d829dc8b07500f088c0f2821f785f8a465ced68c534d366793bfcfb59ffe0d2c546c622fe6ad1e20b2713c2decbf8391451323623ae0539e694c8a53af643e14ffdaa8c01204926bcb96ecac0994f5da4f5bb2d70ebbc9850a94556fff5a15b12"], 0x6) 19:59:35 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x0, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x7ff88cef4700) 19:59:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2900) 19:59:35 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x10000, 0x121480) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 19:59:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x200000, 0x42) ioctl$LOOP_CLR_FD(r1, 0x4c01) r2 = openat$cgroup_ro(r0, &(0x7f0000000000)='cpu.stat\x00', 0x0, 0x0) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000080)={0x0, @broadcast, @multicast2}, &(0x7f0000000100)=0xc) sendmsg$xdp(r2, &(0x7f0000000440)={&(0x7f00000002c0)={0x2c, 0x6, r3, 0x38}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000300)="cec41510f9f872", 0x7}, {&(0x7f0000000340)="8a8ea27349cd68a9a088444f546cfc7f1eb93897c622be6d9941d552e6827e067237dbcbaf21b84debb5bda01cf88d4b7c3a3609e3eaed87d4fdd7d16000cbd4b4c5be19f0ed0195ed9a45e8aa59daaf78ffdcf254a3f1dd548e51f4b51cd72efed93fb00c2d57bde9adbd04a570f93f93cae925a5de8c2d81a585a57a39df8d1e856e1ff06cf016acb4f92f8882fd76292cbd7cc5126f3a4529b7e8a829fe6990ecb423181ed9f12169b9104a166405e40ba76c85f5cc4b58fcda489466377a", 0xc0}], 0x2, 0x0, 0x0, 0x40}, 0x2000c040) r4 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000480)=ANY=[@ANYBLOB="c5ce20aebe340832e21fc22a2a1aba526131b95a649575bf05c7bf5a19e07263dd115e150b75234dfc27eeb0f3b19495be2c226674be326a854a07ecc6d78dc7e4e47f12a745659f7c67ccb0b6b07605b05d81f87696095036d61d3727465bbcc3d9c424d67c7a3bbce32129a3b601b696de1ce260f4cc43c6fc0df18dfec1cf9c440d"], 0x6) 19:59:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x9, 0x38000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x9}}, 0x20) write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000140)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e22, 0x5, @empty, 0xffffffff}, r2}}, 0x30) r3 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r3, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:35 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000) 19:59:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000) 19:59:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000000)={0x0, 0x1, 0x5, 0x1000, 0x7}) 19:59:35 executing program 4: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x40, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000600)="b9800000c00f3235000800000f30f436660f38820437360f01cfc7442400b7000000c744240200000000c7442406000000000f011424c4c17f709800000000008fc978e35dfc0f21920f6a566e0f614900", 0x51}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000240)={0x5}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000}]}) r3 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_GET_SREGS(r3, 0x8138ae83, &(0x7f0000000140)) r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f00000002c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0xc2b8, @in={0x2, 0x0, @loopback}}}, 0x90) r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) semget$private(0x0, 0x3, 0x200) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f00000005c0)={0x2, &(0x7f0000000580)=[{0x6, 0xffff}, {0xd2e8, 0x1}]}) mkdir(&(0x7f0000000240)='./file0\x00', 0x0) r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280)='/dev/sequencer\x00', 0x0, 0x0) setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000300)={{{@in6=@mcast1, @in6=@loopback}}, {{@in=@dev}, 0x0, @in=@dev}}, 0xe8) r7 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0xe440, 0x1) write$cgroup_type(r7, &(0x7f00000000c0)='threaded\x00', 0xff4c) ioctl$KDMKTONE(r6, 0x4b30, 0x81) sendmsg(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000380)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, &(0x7f0000002880)=[{&(0x7f0000000680)="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", 0x1aa}], 0x1}, 0xfffffffffffffffc) mount(&(0x7f0000000880)=ANY=[@ANYBLOB="0d266b08b883560fb0e75e131ab9a6c43581af5100000000000000"], &(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='proc\x00', 0x0, &(0x7f00000001c0)) ioctl$sock_inet6_tcp_SIOCINQ(r5, 0x541b, &(0x7f00000001c0)) mount(&(0x7f0000000480)=ANY=[@ANYBLOB="27c86c8e41c6d152a3cba5c489db66b0de36e7d6144c2e0a12dfadc5a9083372fa"], &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='securityfs\x00', 0x100021, &(0x7f0000000480)) r8 = syz_open_dev$sndpcmc(&(0x7f0000000540)='/dev/snd/pcmC#D#c\x00', 0x3, 0x7ffff) r9 = mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000000, 0x10, r8, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r8, 0xc018620b, &(0x7f0000000000)={r9}) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000500)='/dev/rfkill\x00', 0x2000, 0x0) setxattr(&(0x7f0000000840)='./file0\x00', &(0x7f0000000440)=@known='system.posix_acl_default\x00', &(0x7f00000004c0)='proc\x00', 0x5, 0xffffffffffffffff) socket$xdp(0x2c, 0x3, 0x0) syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x3, 0x4000) 19:59:36 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r3 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r4 = socket$inet_dccp(0x2, 0x6, 0x0) socket$inet_udp(0x2, 0x2, 0x0) listen(r3, 0x6) setsockopt(r4, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r5 = accept(r3, 0x0, &(0x7f0000000080)=0xfe0f) sendmsg$alg(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000980)="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", 0xd90}], 0x1, &(0x7f0000000440), 0x0, 0x20000000}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000004c0)={@dev={0xfe, 0x80, [], 0xe}, 0x31, r6}) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000280)='tls\x00', 0x150838432f021f79) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x2710}, 0x10) r7 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x0, 0x0) fcntl$getown(r0, 0x9) getpgid(0xffffffffffffffff) ioctl$RTC_AIE_OFF(r7, 0x7002) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000002240)) fcntl$getownex(r1, 0x10, &(0x7f0000000300)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000940), &(0x7f00000022c0)=0xc) ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000002300)) fstat(r4, &(0x7f00000000c0)) fcntl$getown(r1, 0x9) sendmmsg(r4, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) sendfile(r5, r2, &(0x7f0000000180), 0x10000014e) 19:59:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x11000000) 19:59:36 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x0, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x5) 19:59:36 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="2baac5eeb3a45c69d869d355ed893362a0c216e90c1332c3d8da7f8a9bb7affc33a5711201b72debdfd95bf5ea3625d06772a0732eac6fc591d3334d4663e4c221ce3214094e8d6423"], 0x6) 19:59:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff) 19:59:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000140)={0xd000, &(0x7f0000000040), 0x5, r0, 0x2}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:36 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x200000003) 19:59:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff00000000) 19:59:36 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x6, 0x0) ioctl$VIDIOC_G_FREQUENCY(r2, 0xc02c5638, &(0x7f0000000040)={0x101, 0x1, 0x7ff}) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:36 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x47ef8cf87f0000) 19:59:37 executing program 1: r0 = socket$inet6(0xa, 0x1000000000002, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB="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"], 0x1}}, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xdau\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r3 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r4 = socket$inet_dccp(0x2, 0x6, 0x0) socket$inet_udp(0x2, 0x2, 0x0) listen(r3, 0x6) setsockopt(r4, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1) connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r5 = accept(r3, 0x0, &(0x7f0000000080)=0xfe0f) sendmsg$alg(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000980)="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", 0xd90}], 0x1, &(0x7f0000000440), 0x0, 0x20000000}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'vcan0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f00000004c0)={@dev={0xfe, 0x80, [], 0xe}, 0x31, r6}) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000280)='tls\x00', 0x150838432f021f79) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000040)={0x0, 0x2710}, 0x10) r7 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x0, 0x0) fcntl$getown(r0, 0x9) getpgid(0xffffffffffffffff) ioctl$RTC_AIE_OFF(r7, 0x7002) lstat(&(0x7f00000005c0)='./file0\x00', &(0x7f0000002240)) fcntl$getownex(r1, 0x10, &(0x7f0000000300)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000940), &(0x7f00000022c0)=0xc) ioctl$TIOCGPGRP(r7, 0x540f, &(0x7f0000002300)) fstat(r4, &(0x7f00000000c0)) fcntl$getown(r1, 0x9) sendmmsg(r4, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) sendfile(r5, r2, &(0x7f0000000180), 0x10000014e) 19:59:37 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpgid(0x0) syz_open_procfs$namespace(r0, &(0x7f0000000000)='ns/pid\x00') mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) shmget(0x3, 0x2000, 0x0, &(0x7f0000ffc000/0x2000)=nil) r2 = openat$cgroup_subtree(r1, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r2, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:37 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = syz_open_dev$adsp(&(0x7f0000000300)='/dev/adsp#\x00', 0x6518d07c, 0x80000) r4 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x3, 0x2) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x2c, &(0x7f0000000140)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x4e20, 0x7fff, @mcast2, 0x1}]}, &(0x7f0000000240)=0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x66, &(0x7f0000000280)={r5, 0x251c}, &(0x7f00000002c0)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000340)={r5, 0x5}, &(0x7f0000000380)=0x8) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/hwrng\x00', 0x40000, 0x0) 19:59:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 19:59:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff00000000) 19:59:37 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000e400"], 0x6) 19:59:37 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x8000, 0x0) ioctl$EVIOCGSND(r2, 0x8040451a, &(0x7f0000000240)=""/130) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x2b, 'pids'}]}, 0x6) 19:59:37 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x6000000) 19:59:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x500) 19:59:37 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:37 executing program 1: socketpair(0x22, 0x3, 0x0, &(0x7f0000000000)) r0 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0x101, 0x4401) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000080)={0xff, 0x4}) 19:59:37 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x80000000) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f0000000000)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='+4ids '], 0x6) 19:59:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$UFFDIO_WAKE(r1, 0x8010aa02, &(0x7f0000000140)={&(0x7f0000ff7000/0x4000)=nil, 0x4000}) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_FPU(r3, 0x81a0ae8c, &(0x7f0000000240)) 19:59:37 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(0x0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xf00) 19:59:37 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x1000000) 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(0x0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:38 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000000c0)='cgroup.subtree_control\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x200002, 0x0) write$cgroup_subtree(r1, &(0x7f0000000240)=ANY=[@ANYBLOB="2fa54eb149e4c4bd48a9ab9fd24e5ee49191c13ddee0ecb772c201c520d036bf5fcdfe9b851f05f07731992cfad8c4212fcb59928e6627d6479f322d481f7f71db614a546b4063a9ee9846f7d644fc7e848a179d6597fe5f6b5e5b02dcb46efebed11f68c13ccfa3664eec178b5524a61997bae26ebb9047da54174b9701e91c58083448746b91978de59b0b76148eb4b278ee04783d08a762e0bc1d2c8ede16b5b8bcd0b585ffda16ebc342cf132d"], 0x6) 19:59:38 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x80000000) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f0000000000)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='+4ids '], 0x6) 19:59:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x900) 19:59:38 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000000080)='/dev/dri/card#\x00', 0x0, 0x0) write$nbd(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="67449b00010000000100030001"], 0x1) ioctl(r0, 0xffffffffffffff41, &(0x7f0000000000)) lsetxattr$trusted_overlay_nlink(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='trusted.overlay.nlink\x00', &(0x7f0000000100)={'U+', 0x2}, 0x28, 0x1) 19:59:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xc000000) 19:59:38 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = dup(r0) r2 = socket$inet(0x10, 0x4000000002, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) sendmsg(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)="24000000220007031dfffd946f610500000000000000fd21fe1c4095421ba3a20400ff7e280000001100ffffba16a0aa1ce208b3ef090000000000008e3141eff24d8238cfa47e23f7efbf54", 0x4c}], 0x1}, 0x0) 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(0x0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}, {0x7, 0x80000000, 0x800}], 0xa) 19:59:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x400) ioctl$DMA_BUF_IOCTL_SYNC(r3, 0x40086200, &(0x7f0000000140)=0x4) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2) 19:59:38 executing program 2: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x200, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23}, 0x10) open$dir(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000100)={0x50}, 0x50) open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) statx(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f00000006c0)) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000f56000)={0x17, 0x0, &(0x7f00008feff0)={&(0x7f0000000000)={0x2, 0x18, 0x0, 0x0, 0x2}, 0x10}}, 0x0) write$FUSE_DIRENT(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYRES64=0x0], 0x8) [ 330.220647] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. [ 330.259159] netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'. 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, 0x0, 0x0) 19:59:38 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x40000fffff3, 0x0) preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000040)=""/15, 0xf}], 0x1, 0x0) ioctl$FITRIM(r0, 0xc0185879, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 19:59:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0xfec00) 19:59:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x6) 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, 0x0, 0x0) 19:59:38 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x1db}}, 0x10) r1 = syz_open_dev$vbi(&(0x7f0000000280)='/dev/vbi#\x00', 0x2, 0x2) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f00000002c0)) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200aa0802000000000000000000000105000600200000000a00000000000000000500e50000070000001f000000000000250000000000000200010000000000000000020000627c05000500000000000a00000000000000ff1700000000000000000000000001170000000000000000"], 0x80}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="020a00000700000028bd70170080000005001a0000000000000000000000eaffac1414aa0000000040000000113c04a23743f008499547b5"], 0x38}}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x400000000000117, 0x0) ioctl$DRM_IOCTL_RM_MAP(r0, 0x4028641b, &(0x7f0000000240)={0x0, 0x4, 0x7, 0x8, &(0x7f0000fff000/0x1000)=nil}) 19:59:38 executing program 2: r0 = syz_open_dev$video4linux(&(0x7f0000000040)='/dev/v4l-subdev#\x00', 0x20000080005, 0x0) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc040564a, &(0x7f0000000180)={0x0, 0x0, 0x0, [], &(0x7f0000000100)={0x0, 0xfffffffffffffffe, [], @p_u32=&(0x7f0000000140)}}) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x80000, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000000080)={0xffff, 0x0, 0x0, 0x7}) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f00000002c0), &(0x7f0000000300)=0x4) ioctl$DRM_IOCTL_SG_ALLOC(r1, 0xc0106438, &(0x7f00000000c0)={0xc728e45, r2}) fcntl$F_GET_RW_HINT(r1, 0x40b, &(0x7f0000000340)) ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f00000001c0)=""/211) 19:59:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x10000, 0x0) setsockopt$MISDN_TIME_STAMP(r2, 0x0, 0x1, &(0x7f0000000140)=0x1, 0x4) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000240)="9aaf0066000fc72e78cdba2100b88c00ef642e2664f30f5341006766c7442400000000006766c7442402a69b00006766c744240600000000670f011c24d8e3afe12666b9800000c00f326635000100000f30660f73f9c6"}], 0x1, 0x0, 0x0, 0xffffffffffffff55) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, 0x0, 0x0) 19:59:38 executing program 1: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000240)='/dev/snapshot\x00', 0x2000, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x4, 0x200002) openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x101000, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000280)='/dev/vcsa#\x00', 0xeba6, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x80000002) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000140)=""/177) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000040)={&(0x7f0000ffd000/0x1000)=nil, 0x1000}, &(0x7f0000000100)=0x10) 19:59:38 executing program 2: r0 = syz_open_dev$dri(&(0x7f0000001100)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000200)={r0}) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000240), 0x2) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000002c0)='memory.events\x00', 0x0, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x3b, &(0x7f0000002140)=""/4096, &(0x7f0000000300)=0x1000) ioctl(r0, 0xffdffffffdffffb8, &(0x7f0000000000)="3b2af2ad0fbe8a92368bce60c3ec762712") r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x40, 0x0) ioctl$RTC_PLL_SET(r3, 0x40207012, &(0x7f0000000100)={0x7, 0x101, 0x81, 0x8001, 0x5, 0x1, 0x8001}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 19:59:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) 19:59:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/mixer\x00', 0x20000000000886, 0x0) ioctl$RTC_AIE_OFF(r3, 0x7002) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}, {0x2, 0x1, 0x1000}], 0x9) 19:59:38 executing program 2: ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(0xffffffffffffffff, 0xc10c5541, &(0x7f00000009c0)={0x7f, 0x9, 0x5, 0x0, 0x0, [], [], [], 0x4000001, 0x7f}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/attr/current\x00', 0x2, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380), 0x0, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) ioctl$PPPIOCSFLAGS(0xffffffffffffffff, 0x40047459, &(0x7f0000000080)=0x10800) fcntl$setlease(0xffffffffffffffff, 0x400, 0x2) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000700)={0x0, @in={{0x2, 0x0, @rand_addr=0xb23}}}, &(0x7f00000004c0)=0x84) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f00000007c0), 0x4) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0x0) openat$uhid(0xffffffffffffff9c, &(0x7f0000000380)='/dev/uhid\x00', 0x0, 0x0) listen(r0, 0x4) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) write$binfmt_aout(r1, &(0x7f0000000b00)=ANY=[], 0xfffffffffffffe23) openat$random(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0x0, 0x0) sendto$inet6(r1, &(0x7f0000e33fe0)='X', 0x1, 0x0, 0x0, 0x0) write$binfmt_misc(r1, &(0x7f0000000240)=ANY=[@ANYBLOB], 0x34000) r2 = accept4(r0, 0x0, &(0x7f0000000040), 0x0) setsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x1) sendmsg$key(r2, &(0x7f0000000200)={0x0, 0xffc8, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00'], 0x3}}, 0x0) ioctl$PPPIOCGFLAGS(0xffffffffffffffff, 0x8004745a, &(0x7f0000000340)) sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2005000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="000026bd7000fcdbdf2509000000040002"], 0x1}, 0x1, 0x0, 0x0, 0x12}, 0x0) 19:59:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) getrusage(0xffffffffffffffff, &(0x7f0000000240)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000140)="0f20d86635200000000f22d86d440f20c066350a000000440f22c0440f20c0663508000000440f22c0f27c9dba4200ec66b9900200000f320fc7a8f34dd2be5c00f0828d008014", 0x47}], 0x1, 0x0, 0x0, 0x236) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:38 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x40000000) 19:59:38 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}, {0x0, 0x7, 0x1000}], 0x8) 19:59:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x8, 0x444700) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0xb, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:38 executing program 1: r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000240)='/dev/nullb0\x00', 0x2, 0x0) write$binfmt_aout(r0, &(0x7f0000000800)=ANY=[], 0xfffffd5b) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000080)={0x600, 0x80000}) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x49, 0x14000) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000040)={0x4000, 0x10000, 0x1, 0x40, 0xffffffff7fffffff}) 19:59:39 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) prctl$PR_SET_THP_DISABLE(0x29, 0x0) close(r0) r1 = fcntl$getown(r0, 0x9) syz_open_procfs(r1, &(0x7f0000000000)='net/xfrm_stat\x00') 19:59:39 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}, {0x7, 0xffffffff, 0xba20980c22dc5e0e}], 0x7) 19:59:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x600) 19:59:39 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) fanotify_init(0x8, 0x149000) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 19:59:39 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}, {0x0, 0x5, 0x800}], 0x6) 19:59:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000900)='/dev/zero\x00', 0x40100, 0x0) ioctl$KVM_GET_CLOCK(r1, 0x8030ae7c, &(0x7f0000000940)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000500)=0x8, 0x4) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) r4 = msgget$private(0x0, 0x42) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000240)={{{@in6=@mcast2, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000140)=0xe8) lstat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) r8 = getgid() r9 = syz_open_dev$audion(&(0x7f0000000540)='/dev/audio#\x00', 0x9, 0x0) r10 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0)='TIPCv2\x00') sendmsg$TIPC_NL_PEER_REMOVE(r9, &(0x7f00000008c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000600)={0x24c, r10, 0x721, 0x70bd25, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x78, 0x5, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}]}]}, @TIPC_NLA_LINK={0x40, 0x4, [@TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}]}, @TIPC_NLA_NET={0x54, 0x7, [@TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x10001}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x679}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfff}]}, @TIPC_NLA_NODE={0xc, 0x6, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_SOCK={0x1c, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x10000}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1c}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}]}, @TIPC_NLA_LINK={0x48, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}, @TIPC_NLA_LINK={0x9c, 0x4, [@TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb7d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffffff3c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}]}, @TIPC_NLA_NODE={0x20, 0x6, [@TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_NODE_UP={0x4}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) r11 = getpgrp(0xffffffffffffffff) r12 = getpid() msgctl$IPC_SET(r4, 0x1, &(0x7f0000000480)={{0x8, r5, r6, r7, r8, 0x4a, 0x3}, 0x7, 0x4, 0x80000000, 0x5, 0x3, 0x8, r11, r12}) ioctl$IMGETCOUNT(r3, 0x80044943, &(0x7f0000000040)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000140)='%\'\x00', 0xffffffffffffffff}, 0x30) rt_tgsigqueueinfo(r3, r4, 0x3, &(0x7f0000000240)={0xd, 0x6, 0x5faf51ea}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:39 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) prctl$PR_SET_THP_DISABLE(0x29, 0x0) close(r0) r1 = fcntl$getown(r0, 0x9) syz_open_procfs(r1, &(0x7f0000000000)='net/xfrm_stat\x00') 19:59:39 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7, 0x1000}], 0x5) 19:59:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x7) 19:59:39 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) prctl$PR_SET_THP_DISABLE(0x29, 0x0) close(r0) r1 = fcntl$getown(r0, 0x9) syz_open_procfs(r1, &(0x7f0000000000)='net/xfrm_stat\x00') 19:59:39 executing program 1: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet6(0xa, 0x1, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x800) getsockopt$inet_int(r2, 0x0, 0x27, &(0x7f0000000080), &(0x7f0000000100)=0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000040)={@mcast1={0xff, 0x1, [0x0, 0x500]}, 0x0, 0x0, 0x3, 0x3}, 0x2e) close(r1) 19:59:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$vbi(&(0x7f0000000140)='/dev/vbi#\x00', 0x1, 0x2) ioctl$GIO_FONT(r3, 0x4b60, &(0x7f0000000240)=""/71) arch_prctl$ARCH_GET_FS(0x1003, &(0x7f0000000040)) 19:59:39 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}], 0x4) 19:59:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000040)={0x0, 0x81}) 19:59:39 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) prctl$PR_SET_THP_DISABLE(0x29, 0x0) close(r0) r1 = fcntl$getown(r0, 0x9) syz_open_procfs(r1, &(0x7f0000000000)='net/xfrm_stat\x00') 19:59:39 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x3) 19:59:39 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}], 0x4) 19:59:39 executing program 1: r0 = syz_open_dev$usb(&(0x7f0000000340)='/dev/bus/usb/00#/00#\x00', 0x3, 0x90000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000480)={0xffffffffffffffff}, 0x0, 0xb}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000640)={0xb, 0x10, 0xfa00, {&(0x7f0000000500), r1, 0x5ce5}}, 0x18) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000900)=ANY=[], 0x0) fanotify_init(0x0, 0x0) r4 = socket$inet(0x2b, 0x1, 0x0) r5 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0x100, 0x0) bind$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10) openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x80000, 0x0) ioctl$TIOCGSID(r5, 0x5429, &(0x7f0000000300)) connect$inet(r4, &(0x7f00000001c0)={0x2, 0x4e23}, 0x7) setsockopt$inet_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000000)='tls\x00', 0x4) openat$null(0xffffffffffffff9c, &(0x7f0000000200)='/dev/null\x00', 0x8000, 0x0) setsockopt$inet_mreqsrc(r4, 0x11a, 0x2, &(0x7f0000000140)={@rand_addr=0x3033300, @multicast2, @loopback}, 0x28) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffff9c, 0x84, 0x7c, &(0x7f0000000440), &(0x7f0000000080)=0xffffffffffffff89) getsockopt$inet_sctp_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000100), &(0x7f0000000140)=0x8) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f0000000240)={0x0, @aes256}) syz_genetlink_get_family_id$nbd(&(0x7f0000000780)='nbd\x00') sendmsg$NBD_CMD_STATUS(r5, &(0x7f00000009c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xa00}, 0xc, &(0x7f00000004c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x800}, 0x800) setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000180)={0x3b, @broadcast, 0x4e22, 0x4, 'ovf\x00', 0xc, 0x0, 0x61}, 0x2c) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[], 0xfffffffffffffffe) ioctl$PERF_EVENT_IOC_ID(r3, 0x80082407, &(0x7f00000002c0)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001e000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, &(0x7f0000000040)="660f3a177c564b0f019a27dbbaa000ec66b9800000c00f326635000400000f30360f01dfba6100b81bffef66b9910300000f3236876a0066b9800000c00f326635002000000f30f226260f01df", 0x4d}], 0x1, 0x0, &(0x7f00000000c0), 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000980)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000940)}}, 0x20) r6 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x7, 0x2000) ioctl$VT_WAITACTIVE(r6, 0x5607) syz_open_dev$ndb(&(0x7f0000000000)='/dev/nbd#\x00', 0xffffffffffffffff, 0x0) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0) 19:59:40 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) prctl$PR_SET_THP_DISABLE(0x29, 0x0) close(r0) fcntl$getown(r0, 0x9) 19:59:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 19:59:40 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) prctl$PR_SET_THP_DISABLE(0x29, 0x0) close(r0) 19:59:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x88002, 0x0) setsockopt$l2tp_PPPOL2TP_SO_REORDERTO(r3, 0x111, 0x5, 0x3, 0x4) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000140)={0xffffffffffffffff}, 0x0, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_REJECT(r3, &(0x7f0000000240)={0x9, 0x108, 0xfa00, {r4, 0x1f, "61d3e7", "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"}}, 0x110) 19:59:40 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}], 0x4) 19:59:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$DRM_IOCTL_ADD_BUFS(r3, 0xc0206416, &(0x7f0000000040)={0x7fffffff, 0x9, 0x4, 0x9, 0x0, 0x7}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:40 executing program 1: syz_emit_ethernet(0xffffffb8, &(0x7f00000002c0)={@local, @empty, [{[{0x9100, 0x0, 0x3, 0x100000000000003}], {0x8100, 0x9f5, 0x1, 0x4}}], {@llc={0x4, {@snap={0xaa, 0xaa, '{T', "414a1d", 0xe884, "efa816b3f3cc483fd9071b25fd73dd20c20a36ebc11f76826af06e73055d0cd51ada0740bc9e4428a89f97d02dbc11d961d4a0380ba6da785384c01f02d1a5b9e6ee0d65df4c6f04f33cc88a076c121d9aebb910287d924a40634cd969736af27cd8f6bcc860f2682b5649bc66795991656c15fb999f82b9d038e080b211a7303180a749f2ad468612d28a123dedda2d1a29001ecc36baf784e7aba65254"}}}}}, 0x0) r0 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2) ioctl$KVM_GET_EMULATED_CPUID(r0, 0xc008ae09, &(0x7f00000000c0)=""/43) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000100)) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000140)=""/94) 19:59:40 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x0, 0x1000}], 0x5) 19:59:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 19:59:40 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:40 executing program 1: ioctl$KDSETMODE(0xffffffffffffffff, 0x4b3a, 0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) sigaltstack(&(0x7f0000ffb000/0x4000)=nil, 0x0) recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0xdbbddc0b46fd6ee1, &(0x7f0000000340)={0x2, 0x0, @multicast2}, 0x10) r1 = accept4(r0, 0x0, &(0x7f0000000000), 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000240)="2ad4d425e960468d16ca8e57f705264ce0555c7a2da8c1", 0x17) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000940)={0x0, @in={{0x2, 0x0, @multicast2}}}, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x115001, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') sendfile(r1, r3, &(0x7f0000000040), 0x10000000000443) writev(r1, &(0x7f00000006c0)=[{&(0x7f0000000600), 0x60020}], 0x1) openat$cgroup_ro(r2, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) read(r1, &(0x7f00000003c0)=""/72, 0x100000104) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000000c0)=0x0) sched_setscheduler(r4, 0x7, &(0x7f0000000200)=0xffffffff) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000001380)=ANY=[@ANYBLOB="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"], 0x0) lseek(r1, 0x0, 0x7) 19:59:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000040)="81160a00c44985a700000f01cfbaf80c66b830a5e98d66efbafc0cec85790cd8f436f2670f01c90f6e4907660f3a15d5710f01c8", 0x34}], 0xaaaaaaaaaaaac35, 0xfffffffffffffffd, 0x0, 0xfffffffffffffe6b) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:40 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) close(r0) 19:59:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0x0, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000140)={0xffffffffffffffff}, 0x2, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_DISCONNECT(r3, &(0x7f0000000300)={0xa, 0x4, 0xfa00, {r4}}, 0xc) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r5 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000240)={0x0, @dev}, &(0x7f0000000280)=0xc) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f00000002c0)={r6, 0x1, 0x6, @remote}, 0x10) 19:59:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0xc00) 19:59:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x200000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) fcntl$getownex(r2, 0x10, &(0x7f0000000140)={0x0, 0x0}) sched_setaffinity(r3, 0x8, &(0x7f0000000180)=0x2) 19:59:40 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) close(r0) 19:59:40 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)={0xc65}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) r3 = accept$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, &(0x7f0000000140)=0x10) setsockopt$IP_VS_SO_SET_EDIT(r3, 0x0, 0x483, &(0x7f0000000180)={0x3f, @local, 0x4e22, 0x2, 'none\x00', 0x2d, 0x3, 0x17}, 0x2c) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x6000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:41 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x0, 0x1000}], 0x5) 19:59:41 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) close(r0) 19:59:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000480)={0xffffffffffffffff}, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r1, &(0x7f0000000500)={0x5, 0x10, 0xfa00, {&(0x7f0000000280), r3, 0x2}}, 0x18) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vcs\x00', 0x92400, 0x0) epoll_create(0x3) setsockopt$RXRPC_SECURITY_KEYRING(r4, 0x110, 0x2, &(0x7f0000000240)='/dev/usbmon#\x00', 0xd) r5 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x6, 0x305000) ioctl$VIDIOC_STREAMON(r5, 0x40045612, &(0x7f0000000140)=0x2) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:41 executing program 1: ioctl$KDSETMODE(0xffffffffffffffff, 0x4b3a, 0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58) sigaltstack(&(0x7f0000ffb000/0x4000)=nil, 0x0) recvfrom$inet(0xffffffffffffffff, 0x0, 0x0, 0xdbbddc0b46fd6ee1, &(0x7f0000000340)={0x2, 0x0, @multicast2}, 0x10) r1 = accept4(r0, 0x0, &(0x7f0000000000), 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000240)="2ad4d425e960468d16ca8e57f705264ce0555c7a2da8c1", 0x17) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000940)={0x0, @in={{0x2, 0x0, @multicast2}}}, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x115001, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='pagemap\x00') sendfile(r1, r3, &(0x7f0000000040), 0x10000000000443) writev(r1, &(0x7f00000006c0)=[{&(0x7f0000000600), 0x60020}], 0x1) openat$cgroup_ro(r2, &(0x7f0000000100)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) read(r1, &(0x7f00000003c0)=""/72, 0x100000104) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000000c0)=0x0) sched_setscheduler(r4, 0x7, &(0x7f0000000200)=0xffffffff) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r2, 0x84, 0x1a, &(0x7f0000001380)=ANY=[@ANYBLOB="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"], 0x0) lseek(r1, 0x0, 0x7) 19:59:41 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 19:59:41 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x8800, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0, 0x0], 0x2}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r4 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:41 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:41 executing program 4: r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x9, 0x200000) ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000140)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) fanotify_mark(r0, 0x80, 0x48000023, r0, &(0x7f0000000180)='./file0\x00') ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:41 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x20000000000004, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000080)=0xf73, 0x4) write$binfmt_elf32(r0, &(0x7f0000000380)={{0x7f, 0x45, 0x4c, 0x46, 0xffffffff, 0x9e52, 0x9, 0xa9, 0x1, 0x2, 0x6, 0x20, 0x18d, 0x38, 0x346, 0x6, 0x55, 0x20, 0x1, 0x9, 0x7a}, [{0x7, 0x3, 0xfc16, 0x7, 0xfffffffffffffff8, 0x3f39, 0x0, 0x80}, {0x7, 0xff, 0x5, 0xc5c, 0x7, 0x2, 0x7, 0x10000}], "e6b224e8bc49c6388c30c8b70ec72b68dbddeafc675bd708796260b555ebaa70a1de431c7f3e17faa42d5b242a5eb606dfce5c4ffd858ea461c5708a16928420", [[]]}, 0x1b8) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x4}]}) r2 = openat$dsp(0xffffffffffffff9c, 0x0, 0x121002, 0x0) ioctl$KVM_SET_XCRS(r2, 0x4188aea7, &(0x7f0000000040)=ANY=[]) ioctl$KVM_RUN(r1, 0xae80, 0x0) 19:59:41 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f0000000240)) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r3, 0x84, 0x78, &(0x7f0000000180)=r4, 0x4) 19:59:41 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:41 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x0, 0x1000}], 0x5) 19:59:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:41 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) r3 = dup2(r2, r2) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x1}, &(0x7f0000000140)=0x8) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rtc0\x00', 0x2, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x1f, &(0x7f0000000240)={r4, @in6={{0xa, 0x4e21, 0x401, @mcast2, 0x5}}, 0x1, 0xfffffffffffeffff}, 0x90) ioctl$KVM_SET_ONE_REG(r5, 0x4010aeac, &(0x7f0000000300)={0x7, 0xec1}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 2: ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x339) close(0xffffffffffffffff) 19:59:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs\x00', 0x40000, 0x0) ioctl$SNDRV_TIMER_IOCTL_STATUS(r3, 0x80605414, &(0x7f0000000140)=""/97) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) io_setup(0x2, &(0x7f0000000040)=0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x400, 0x0) io_cancel(r3, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3, 0xfffffffffffffeff, r0, &(0x7f0000000240)="776e361a74a79b3e8f46e29595e386862114bef90a9155dc734863a56437cf578357e1da9b7d955ac8ff702d0ea27c3588abd8467734d027427e965e29370e36fe3b39e6ae7c2f8e181fc84fb5a2122cc67bc0ab55a4552af59628805590d7bed92c91470d711a657fc9f5b2a90d32ff76d8ab4c5e5f531c00a204223c845ce1e799634d08ad3439abab48df9b0af5442b", 0x91, 0x1, 0x0, 0x1, r4}, &(0x7f0000000300)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 2: r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) r3 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x6, 0x80) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000140)={0xffffffffffffffff}, 0x117, 0x100b}}, 0x20) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r3, &(0x7f0000000440)={0x5, 0x10, 0xfa00, {&(0x7f0000000240), r4, 0x1}}, 0x18) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:42 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:42 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7}], 0x5) 19:59:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x80) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000340)={@broadcast, @loopback, 0x0}, &(0x7f0000000380)=0xc) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'vlan0\x00', r3}) getsockopt$IP_VS_SO_GET_SERVICE(r2, 0x0, 0x483, &(0x7f00000001c0), &(0x7f0000000240)=0x68) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000280)={0x3b, @empty, 0x4e24, 0x3, 'wlc\x00', 0x2c, 0x6, 0x37}, 0x2c) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000140)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x34) 19:59:42 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000240)={r0, 0x0, 0x40, 0x6, 0x4}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$sock_SIOCGPGRP(0xffffffffffffff9c, 0x8904, &(0x7f0000000040)=0x0) waitid(0x2, r3, &(0x7f0000000140), 0x80000000, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:42 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:42 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7}], 0x5) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x7, 0x4, 0x1000}, {0x0, 0x7}], 0x5) 19:59:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2) write$FUSE_NOTIFY_INVAL_ENTRY(r2, &(0x7f0000000140)={0x30, 0x3, 0x0, {0x4, 0xf, 0x0, 'vmnet0em0\\:bdev'}}, 0x30) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KDSKBLED(r3, 0x4b65, 0x41) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000040)="c48179d27af6c42201bcca3e262e410f23bdb8010000000f01d9c421315f94380e000000f3400faedf440f20060feaa91090000040a9f8e900000f08", 0x3c}], 0x1, 0x4, &(0x7f0000000180)=[@cr4={0x1, 0x100}, @dstype0={0x6, 0x1}], 0x2) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 19:59:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00'}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x7, 0x1000}], 0x4) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00'}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r1 = syz_open_dev$radio(&(0x7f0000000240)='/dev/radio#\x00', 0x2, 0x2) accept$unix(r1, 0x0, &(0x7f0000000280)) r2 = openat$dsp(0xffffffffffffff9c, 0x0, 0x808400, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) fcntl$getown(r0, 0x9) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000040)={0x0, 0x7}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000180)={r3, 0x2}, 0x8) 19:59:43 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x0, 0x1000}], 0x4) 19:59:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r4, 0x320, 0x70bd2c, 0x25dfdbff, {{}, 0x0, 0x4107, 0x0, {0x14, 0x18, {0x3ff, @bearer=@udp='udp:syz0\x00'}}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x4040040}, 0x80) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00'}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000240)={r0, 0x50, &(0x7f0000000140)}, 0x10) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1fe, 0x3, 0x1effd, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x181000, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000140)={'mangle\x00', 0x25, "b11882937eecfbaa20c7aefc8b68ef15745011d0dcff483ee6406dc00b44e81936d9ddd379"}, &(0x7f0000000240)=0x49) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x4}]}) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffff9c, 0x84, 0x6, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e23, 0x9, @local, 0x800}}}, &(0x7f0000000080)=0x84) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000300)={r2, @in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x7f, 0x200, 0xde4, 0x0, 0x84}, &(0x7f0000000140)=0x98) readv(r0, &(0x7f0000001940)=[{&(0x7f0000000180)}, {&(0x7f00000003c0)=""/210, 0xd2}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/136, 0x88}, {&(0x7f0000000580)=""/124, 0x7c}, {&(0x7f0000000600)=""/83, 0x53}], 0x6) syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0xff, 0x24a000) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000680)=ANY=[@ANYBLOB="00000000000000000700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c6800000080000000000000000000000ffff0000000000000400000000000000ff7f0000000000000000000000000000000000000000000000000000000000000300000007000000090000000000000009000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004684db000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a100000000"]) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:59:43 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x339) close(r0) 19:59:43 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) signalfd(r2, &(0x7f0000000040)={0x1191}, 0x8) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x2a280, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r3, 0x80dc5521, &(0x7f0000000240)=""/203) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:44 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x0, 0x1000}], 0x4) 19:59:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:44 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x339) close(r0) 19:59:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:44 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x2, 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000240)={0xa0e, {{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x14}}}, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xe}}}}, 0x108) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x810c5701, &(0x7f0000000380)) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) prctl$PR_GET_THP_DISABLE(0x2a) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() getsockopt$inet_tcp_buf(r3, 0x6, 0x0, &(0x7f0000000240)=""/4096, &(0x7f0000000040)=0x1000) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:44 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) close(r0) 19:59:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getsockname(0xffffffffffffffff, &(0x7f0000000140)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000240)=0x80) ioctl$PPPIOCSFLAGS(r3, 0x40047459, &(0x7f0000000280)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) getsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000040), 0x10) openat$dsp(0xffffffffffffff9c, 0x0, 0x8003, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:44 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) close(r0) 19:59:44 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000002c0)={0x1}) dup(r2) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) getsockopt$inet6_dccp_int(r3, 0x21, 0x17, &(0x7f0000000240), &(0x7f0000000280)=0x4) fstat(0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vga_arbiter\x00', 0x101000, 0x0) getuid() openat$cgroup_int(r3, &(0x7f0000000140)='memory.max\x00', 0x2, 0x0) ioctl$IMGETVERSION(r2, 0x80044942, &(0x7f0000000040)) 19:59:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x0, 0x1000}], 0x4) 19:59:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$amidi(&(0x7f0000000300)='/dev/amidi#\x00', 0x7f, 0x0) bind(r3, &(0x7f0000000340)=@isdn={0x22, 0x3ff, 0xff, 0x5, 0x9}, 0x80) setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0) fsetxattr$security_smack_transmute(r1, &(0x7f0000000280)='security.SMACK64TRANSMUTE\x00', &(0x7f00000002c0)='TRUE', 0x4, 0x1) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0xffffffffffffffff}) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x8000, 0x0) getsockopt$inet6_dccp_buf(r4, 0x21, 0x8c, &(0x7f0000000140)=""/24, &(0x7f0000000180)=0x18) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x480203, 0x0) 19:59:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$audion(&(0x7f0000000240)='/dev/audio#\x00', 0x0, 0x401c0) accept4$packet(0xffffffffffffff9c, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000300)=0x14, 0x80000) sendmsg$nl_route_sched(r3, &(0x7f00000006c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000680)={&(0x7f0000000700)=ANY=[@ANYBLOB="24030000300000002bbd7000f5dddb2d00000000540101005001060000001000010074756e6e656c5f6b657900005c00020008000400ac1414aa08000a00010000001c00020002000000c0ffffff02000010ff03000009000040010000001c00020001f60100b10000000000001042a2fe670200000001000000080007007f0000000800040000000001dc0006005d3c7e97a3873491841a70ae68f04d0c458d6a3928db39530a9d799cfadaa50beeb828bed5d347cc56d6c1ae90758de49f13017ed9a35de6cc99d6fc0a8b2f8ad4e12bb66891675061d48e95dc888a32f94365591d6b7ecb4c18aae73230b6717d9130f2fb4efd84cfc7fd5599fae686990ce2a3892dc0a70964edf1955d29e395c07f3ab7bef305180308ac70d33a5eab80cf8cca292f76104a6f9ce0c5a483ad4e0ed4ef844fde323311492480a8f04cf22930e23d78124607f7ea2c8bd165bad4e41e94c4133ec20d9f6f6bc31a4c5c7efc2906a2989800007400010070001f0000000c0001006d69727265640000240002002000020001000000ffffffff050000000200000001000080010000005026de9adba984f56701636ce01498b71b59313924b440f1380b9cc9c0d188ba5a875a1733d2759abb5a8261ea0b56", @ANYRES32=r4, @ANYBLOB="380006005a365e3c1fc4e66c354b3ea4836052f5f2510a2ce8b465afce8b9736f43ef34a67c65222946dc6f01f7bd7478be321226698ac190000480101004401070000000c000100706f6c69636500007c0002003c0001000600000000000020020000000900000000020000000307000700001040000000c100000408001f00ff0f0000fff4ffff09000000070000003c00010001000000ffffffffe2239c67010001000100000080010000faff090001000000000200010500000003000000010100000900000005000000b4000600aeb7096941fbd3a1d8d9cfa16e685fd41bc729f863b75a293214d19ede4412334a7f4a9b9e067c3883ddb16c22c6214c77a9e77452f37c88477717e39dafc7d60eb937291cb170e05d6cfb45ced907604052b10466272348ad1582373c021e020d7282c648d5100d00397371421e7df767458e436809d0682371cc7c570bcb3acf3ae97d3d14abc8c215206fcf4f3ca005a6ae9f39b9516f3457322d312c49b6631719db13ce39fea95450ae21ae9be70000"], 0x324}, 0x1, 0x0, 0x0, 0x800}, 0x40000) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r5 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r5, 0xc0086420, &(0x7f0000000040)={0x0}) ioctl$DRM_IOCTL_NEW_CTX(r5, 0x40086425, &(0x7f0000000140)={r6, 0x2}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x10203, 0x0, 0x0, 0x1000, &(0x7f0000fee000/0x1000)=nil}) 19:59:45 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) close(r0) 19:59:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(0xffffffffffffffff) 19:59:45 executing program 0: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x1, 0x0) bind$rds(r0, &(0x7f0000000140)={0x2, 0x4e23, @multicast2}, 0x10) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240)='TIPC\x00') sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r4, 0x2, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x1c}}, 0x4) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$cec(&(0x7f0000000040)='/dev/cec#\x00', 0x1, 0x2) r4 = mmap$binder(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x6, 0x11010, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x3c, 0x0, &(0x7f0000000140)=[@request_death={0x400c630e, 0x3, 0x1}, @increfs_done={0x40106308, r4, 0x4}, @decrefs={0x40046307, 0x2}, @request_death={0x400c630e, 0x3, 0x2}], 0xbc, 0x0, &(0x7f0000000240)="80a029e9fcc86efc9a99609afb7912d038631a87e0279bcc09f3822a76f297e80d397a0ace6086a5202c4811703236a05a19543c995addfa076aae23849eae6b5c2d7dd2093dc8a0090968069d0e47d54c140ef4c43f0b876f7fc3ad5bdb562a0869d17b202fddf1476fad9dc076d6c2aa9a91f0d19145f331d845e790766192d50483d2f16d17ba7610b895377357cfb927aa27546389cdd19bcc504e9fc50cc169be4b154a5ca8200364ef4c78b2a3a4d32dfc37e7363882eddb82"}) 19:59:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x260080, 0x0) ioctl$ASHMEM_GET_NAME(r2, 0x81007702, &(0x7f0000000240)=""/248) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x7}], 0x4) 19:59:45 executing program 2 (fault-call:3 fault-nth:0): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) r3 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x8, 0x200000) write$FUSE_DIRENT(r3, &(0x7f0000000140)={0x58, 0x0, 0x5, [{0x4, 0x4fdd, 0x5, 0x1, ')bdev'}, {0x1, 0x6, 0x9, 0x3, '/dev/kvm\x00'}]}, 0x58) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0x80000001}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) 19:59:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:45 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 338.043965] FAULT_INJECTION: forcing a failure. [ 338.043965] name failslab, interval 1, probability 0, space 0, times 0 [ 338.075792] CPU: 1 PID: 15868 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 338.082723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.082729] Call Trace: [ 338.082748] dump_stack+0x1db/0x2d0 [ 338.082765] ? dump_stack_print_info.cold+0x20/0x20 [ 338.082845] ? kernel_text_address+0x73/0xf0 [ 338.082866] should_fail.cold+0xa/0x15 [ 338.107796] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 338.107814] ? ___might_sleep+0x1e7/0x310 [ 338.116767] ? arch_local_save_flags+0x50/0x50 [ 338.116782] ? __kasan_slab_free+0x102/0x150 [ 338.116791] ? kasan_slab_free+0xe/0x10 [ 338.116803] ? kfree+0xcf/0x230 [ 338.125559] ? inetdev_event+0xa2c/0x1330 [ 338.125579] ? notifier_call_chain+0x179/0x380 [ 338.133922] __should_failslab+0x121/0x190 [ 338.141322] should_failslab+0x9/0x14 [ 338.150107] kmem_cache_alloc_node+0x265/0x710 [ 338.158447] ? do_raw_spin_trylock+0x270/0x270 [ 338.163089] __alloc_skb+0xf4/0x730 [ 338.166716] ? trace_hardirqs_on_caller+0x310/0x310 [ 338.171732] ? skb_scrub_packet+0x440/0x440 [ 338.171747] ? trace_hardirqs_on+0xbd/0x310 [ 338.171760] ? __devinet_sysctl_unregister.isra.0+0x6b/0xb0 [ 338.171772] ? trace_hardirqs_off_caller+0x300/0x300 [ 338.191201] inet_netconf_notify_devconf+0xea/0x260 [ 338.196215] __devinet_sysctl_unregister.isra.0+0x85/0xb0 [ 338.196230] devinet_sysctl_unregister+0x92/0xf0 [ 338.196243] inetdev_event+0xa2c/0x1330 [ 338.206505] ? skb_dequeue+0x12e/0x180 [ 338.206583] ? cfg802154_netdev_notifier_call+0x3d8/0x8b0 [ 338.206600] ? inetdev_init+0x5d0/0x5d0 [ 338.214435] ? up_read_non_owner+0x100/0x100 [ 338.214471] ? netlbl_unlhsh_netdev_handler+0xb9/0x3c0 [ 338.214486] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 338.233595] ? netlbl_unlhsh_free_iface+0x540/0x540 [ 338.233609] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 338.233626] notifier_call_chain+0x179/0x380 [ 338.248889] ? notifier_call_chain+0x179/0x380 [ 338.248908] ? unregister_die_notifier+0x30/0x30 [ 338.248921] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 338.257912] ? rtnl_is_locked+0xb8/0xf0 [ 338.257924] ? rtnl_trylock+0x20/0x20 [ 338.268180] raw_notifier_call_chain+0x2e/0x40 [ 338.268206] call_netdevice_notifiers_info+0x3f/0x90 [ 338.268253] ? tun_show_group+0x180/0x180 [ 338.275949] rollback_registered_many+0xc50/0x1370 [ 338.275970] ? generic_xdp_install+0x4e0/0x4e0 [ 338.275984] ? finish_wait+0x490/0x490 [ 338.303114] ? print_usage_bug+0xd0/0xd0 [ 338.307170] ? skb_dequeue+0x12e/0x180 [ 338.311064] ? mark_held_locks+0xb1/0x100 [ 338.315208] ? queue_delayed_work_on+0xe6/0x200 [ 338.319862] ? queue_delayed_work_on+0xe6/0x200 [ 338.324516] ? lockdep_hardirqs_on+0x415/0x5d0 [ 338.329175] rollback_registered+0x1c9/0x410 [ 338.333654] ? rollback_registered_many+0x1370/0x1370 [ 338.338824] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 338.344345] ? rtnl_trylock+0x20/0x20 [ 338.348142] ? queue_delayed_work_on+0x127/0x200 [ 338.352882] unregister_netdevice_queue+0x30e/0x660 [ 338.357974] ? rollback_registered+0x410/0x410 [ 338.362536] ? tun_setup+0x2d0/0x2d0 [ 338.366235] ? check_preemption_disabled+0x48/0x290 [ 338.371251] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 338.376602] ? __tun_detach+0x6b8/0x1600 [ 338.380649] __tun_detach+0x11ae/0x1600 [ 338.384611] ? tun_attach+0x1950/0x1950 [ 338.388568] ? add_lock_to_list.isra.0+0x450/0x450 [ 338.393502] ? fsnotify+0x4f5/0xed0 [ 338.397118] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 338.402638] ? __lock_is_held+0xb6/0x140 [ 338.406790] tun_chr_close+0xe0/0x180 [ 338.410577] __fput+0x3c5/0xb10 [ 338.413846] ? __tun_detach+0x1600/0x1600 [ 338.417973] ? get_max_files+0x20/0x20 [ 338.421843] ? task_work_run+0x1bb/0x2b0 [ 338.425890] ? trace_hardirqs_off_caller+0x300/0x300 [ 338.430974] ? do_raw_spin_trylock+0x270/0x270 [ 338.435540] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.441070] ____fput+0x16/0x20 [ 338.444333] task_work_run+0x1f4/0x2b0 [ 338.448221] ? task_work_cancel+0x2c0/0x2c0 [ 338.452545] ? __close_fd+0x25f/0x3d0 [ 338.456345] ? do_syscall_64+0x8c/0x800 [ 338.460305] exit_to_usermode_loop+0x32a/0x3b0 [ 338.464868] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.470212] ? syscall_trace_enter+0x12a0/0x12a0 [ 338.475062] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 338.479801] do_syscall_64+0x696/0x800 [ 338.483702] ? syscall_return_slowpath+0x5f0/0x5f0 [ 338.488614] ? prepare_exit_to_usermode+0x232/0x3b0 [ 338.493615] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.498442] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.503610] RIP: 0033:0x457ec9 [ 338.506786] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 338.525665] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 338.533371] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 19:59:46 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000180)='/dev/snd/pcmC#D#c\x00', 0x20, 0x101000) ioctl$VIDIOC_SUBDEV_G_FMT(r3, 0xc0585604, &(0x7f0000000240)={0x0, 0x0, {0x3, 0x5, 0x2015, 0x1, 0xd, 0x2, 0x0, 0x4}}) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) r5 = openat$cgroup_ro(r4, &(0x7f0000000140)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f00000002c0)={0x0, 0x5, 0x30}, &(0x7f0000000300)=0xc) setsockopt$inet_sctp_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000340)={r6, 0x8, 0x3, 0x8000, 0x6, 0x4}, 0x14) ioctl$KVM_PPC_GET_PVINFO(r5, 0x4080aea1, &(0x7f0000000380)=""/100) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 338.540621] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 338.547969] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 338.555216] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 338.562466] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:46 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x7}], 0x4) 19:59:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:46 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x2, 0x3a}, {0x0, 0x7}], 0x4) 19:59:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x401, 0x0) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000000380)=0x0) lstat(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x7, &(0x7f0000000480)=[0x0, 0xee01, 0xffffffffffffffff, 0xee01, 0xffffffffffffffff, 0xee01, 0xee01]) r7 = getpgid(0xffffffffffffffff) stat(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0}) r9 = getegid() sendmmsg$unix(r3, &(0x7f0000000940)=[{&(0x7f0000000140)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000340)=[{&(0x7f0000000240)="864a5cf4a540ca00f7f8e08cb9ab64bfd34a3be7af2e45b4dfd011f139bd79ba90cf9c8cffbc1ba1cc5afa703a9c3f6bf82b888518da72d91c43e41883a4e6fd99de70f089c020eb67d16a2d6b1203840c36bc0bdc092f58b91db6b43372bdc6af270aa057ac6ddeba3aa16c832d11d82e7d79e9a9879d2e5093b4bc7423a1fdbd41267f4d76a2cc52271916aca98dfc0fae57da38a97b6b4bbbe534e12c72af217ca6fc90e6724ecb55f569aefe6f243d1a706da6a63a0a1377932c14a8a07d62b4a7d367d78ad7771c21ff936f2538d5f633", 0xd3}], 0x1, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="20000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r9, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="000000001000000000000000010000000100000028000000000000000100000001000000", @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r2, @ANYRES32=r2, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="42007f6656f0a3dd6c7f478f69d466092462d5242cf729b7cf6e3de99268e0037bb1cf514b0a8700034005db375a4090ba715c383e1becec1a552f1c5a404e4c1f21cb0fd1df82b1237bb933c1f6adf67be7d870ff44124b03ef7c3b7c40caaecaa82ad66bb2c26007d7ed21ffd7f23c06863d5ea59c1d63a3be2f59f2ffdbe7e2ac75f0f334ca501b5e824e5d245d5f4c3f490a12d5f6b328a3cd8d054ee4cea96bf4c636590936f8c8e46a"], 0xe8, 0x400c0}, {&(0x7f0000000680)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000900)=[{&(0x7f0000000700)="9b94345fba403265c3ea84769bcec95220cbf350e942f21af2ed25d71668d9115a0b00fa3c0d6bb8c46e89d9b4596ee709b3de7e7dc1f4d37ccb8cbc1f96f528a4bd37065e27884d0a4eb331ce8597a360223a6af4a3cd6d872ce1cdbce56106add9a63e394f22d03b748cf46088f81f537e5ee7c28688eacef8a2f4bc541f2070658606f0a38805c23f9dd8b01dab8110dc77eb48b443855d3e3bafda45b265a9aa9ef79e3bfa349864f957fdc73e87e507180359b91283a1ae350e1ece4f019da7cfafa08a601faa", 0xc9}, {&(0x7f0000000800)="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", 0xff}], 0x2, 0x0, 0x0, 0x40000}], 0x2, 0x400c891) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x38a) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:46 executing program 2 (fault-call:3 fault-nth:1): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:46 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:59:46 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x7, 0x1000}], 0x3) [ 338.798300] FAULT_INJECTION: forcing a failure. [ 338.798300] name failslab, interval 1, probability 0, space 0, times 0 [ 338.837872] CPU: 0 PID: 15908 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 338.844720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.844726] Call Trace: [ 338.844744] dump_stack+0x1db/0x2d0 [ 338.844763] ? dump_stack_print_info.cold+0x20/0x20 [ 338.865274] ? save_stack+0x45/0xd0 [ 338.865287] ? kasan_kmalloc+0xcf/0xe0 [ 338.865298] ? kasan_slab_alloc+0xf/0x20 [ 338.865310] ? kmem_cache_alloc_node+0x144/0x710 [ 338.865321] ? __alloc_skb+0xf4/0x730 [ 338.865335] ? __devinet_sysctl_unregister.isra.0+0x85/0xb0 [ 338.872824] should_fail.cold+0xa/0x15 [ 338.872841] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 338.872861] ? ___might_sleep+0x1e7/0x310 [ 338.872875] ? arch_local_save_flags+0x50/0x50 [ 338.872888] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.872900] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.872921] __should_failslab+0x121/0x190 [ 338.872938] should_failslab+0x9/0x14 [ 338.885578] kmem_cache_alloc_node_trace+0x270/0x720 [ 338.885594] ? __alloc_skb+0xf4/0x730 [ 338.885614] __kmalloc_node_track_caller+0x3d/0x70 [ 338.885628] __kmalloc_reserve.isra.0+0x40/0xe0 [ 338.885642] __alloc_skb+0x12d/0x730 [ 338.950365] ? trace_hardirqs_on_caller+0x310/0x310 [ 338.955365] ? skb_scrub_packet+0x440/0x440 [ 338.959669] ? trace_hardirqs_on+0xbd/0x310 [ 338.963976] ? __devinet_sysctl_unregister.isra.0+0x6b/0xb0 [ 338.969752] ? trace_hardirqs_off_caller+0x300/0x300 [ 338.974839] inet_netconf_notify_devconf+0xea/0x260 [ 338.979858] __devinet_sysctl_unregister.isra.0+0x85/0xb0 [ 338.985376] devinet_sysctl_unregister+0x92/0xf0 [ 338.990206] inetdev_event+0xa2c/0x1330 [ 338.994178] ? skb_dequeue+0x12e/0x180 [ 338.998051] ? cfg802154_netdev_notifier_call+0x3d8/0x8b0 [ 339.003746] ? inetdev_init+0x5d0/0x5d0 [ 339.007715] ? up_read_non_owner+0x100/0x100 [ 339.012112] ? netlbl_unlhsh_netdev_handler+0xb9/0x3c0 [ 339.017375] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 339.022461] ? netlbl_unlhsh_free_iface+0x540/0x540 [ 339.027458] ? __sanitizer_cov_trace_switch+0x49/0x80 [ 339.032631] notifier_call_chain+0x179/0x380 [ 339.037030] ? notifier_call_chain+0x179/0x380 [ 339.041598] ? unregister_die_notifier+0x30/0x30 [ 339.046335] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.051851] ? rtnl_is_locked+0xb8/0xf0 [ 339.055806] ? rtnl_trylock+0x20/0x20 [ 339.059600] raw_notifier_call_chain+0x2e/0x40 [ 339.064165] call_netdevice_notifiers_info+0x3f/0x90 [ 339.069255] ? tun_show_group+0x180/0x180 [ 339.073398] rollback_registered_many+0xc50/0x1370 [ 339.078315] ? generic_xdp_install+0x4e0/0x4e0 [ 339.082875] ? finish_wait+0x490/0x490 [ 339.086743] ? print_usage_bug+0xd0/0xd0 [ 339.090798] ? skb_dequeue+0x12e/0x180 [ 339.094675] ? mark_held_locks+0xb1/0x100 [ 339.098808] ? queue_delayed_work_on+0xe6/0x200 [ 339.103457] ? queue_delayed_work_on+0xe6/0x200 [ 339.108106] ? lockdep_hardirqs_on+0x415/0x5d0 [ 339.112672] rollback_registered+0x1c9/0x410 [ 339.117069] ? rollback_registered_many+0x1370/0x1370 [ 339.122242] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.127762] ? rtnl_trylock+0x20/0x20 [ 339.131540] ? queue_delayed_work_on+0x127/0x200 [ 339.136299] unregister_netdevice_queue+0x30e/0x660 [ 339.141304] ? rollback_registered+0x410/0x410 [ 339.145867] ? tun_setup+0x2d0/0x2d0 [ 339.149566] ? check_preemption_disabled+0x48/0x290 [ 339.154576] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 339.159919] ? __tun_detach+0x6b8/0x1600 [ 339.163983] __tun_detach+0x11ae/0x1600 [ 339.167957] ? tun_attach+0x1950/0x1950 [ 339.171914] ? add_lock_to_list.isra.0+0x450/0x450 [ 339.176826] ? fsnotify+0x4f5/0xed0 [ 339.180439] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.185970] ? __lock_is_held+0xb6/0x140 [ 339.190030] tun_chr_close+0xe0/0x180 [ 339.193902] __fput+0x3c5/0xb10 [ 339.197167] ? __tun_detach+0x1600/0x1600 [ 339.201293] ? get_max_files+0x20/0x20 [ 339.205247] ? task_work_run+0x1bb/0x2b0 [ 339.209287] ? trace_hardirqs_off_caller+0x300/0x300 [ 339.214369] ? do_raw_spin_trylock+0x270/0x270 [ 339.218936] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 339.224460] ____fput+0x16/0x20 [ 339.227740] task_work_run+0x1f4/0x2b0 [ 339.231615] ? task_work_cancel+0x2c0/0x2c0 [ 339.235950] ? __close_fd+0x25f/0x3d0 [ 339.239736] ? do_syscall_64+0x8c/0x800 [ 339.243696] exit_to_usermode_loop+0x32a/0x3b0 [ 339.248260] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 339.253608] ? syscall_trace_enter+0x12a0/0x12a0 [ 339.258344] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 339.263083] do_syscall_64+0x696/0x800 [ 339.266951] ? syscall_return_slowpath+0x5f0/0x5f0 [ 339.271859] ? prepare_exit_to_usermode+0x232/0x3b0 [ 339.276947] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.281777] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 339.286945] RIP: 0033:0x457ec9 [ 339.290120] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 339.309008] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 339.316696] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 [ 339.324064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 339.331431] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 339.338693] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 339.345942] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$admmidi(&(0x7f0000000140)='/dev/admmidi#\x00', 0x2, 0x3a000) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f0000000180)="ab867414a776c724b30c4025ecbaa71541da1a117ba299") ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r4 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r4, 0xc0045520, &(0x7f0000000040)=0x5) fstat(0xffffffffffffffff, 0x0) ioctl$VIDIOC_DBG_G_CHIP_INFO(r4, 0xc0c85666, &(0x7f0000000240)={{0x0, @name="e4d611575b197553dafd369debd1aa994366c1b9923dd65f23cde037333df8ce"}, "648b7069143debe71448828c1821f95d6f86cd908f765fdf0681269f04fcc747"}) getuid() ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:47 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x0, 0x1000}], 0x3) 19:59:47 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 19:59:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000040)={0x4, 0x0, [0x0, 0x0, 0x0, 0x0]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:47 executing program 2 (fault-call:3 fault-nth:2): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:47 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:47 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 339.608465] FAULT_INJECTION: forcing a failure. [ 339.608465] name failslab, interval 1, probability 0, space 0, times 0 [ 339.666662] CPU: 1 PID: 15941 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 339.673532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.682879] Call Trace: [ 339.682900] dump_stack+0x1db/0x2d0 [ 339.682917] ? dump_stack_print_info.cold+0x20/0x20 [ 339.682934] ? kernel_text_address+0x73/0xf0 [ 339.682962] should_fail.cold+0xa/0x15 [ 339.682977] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 339.682998] ? ___might_sleep+0x1e7/0x310 [ 339.689181] ? arch_local_save_flags+0x50/0x50 [ 339.689198] ? __kasan_slab_free+0x102/0x150 [ 339.689211] ? kasan_slab_free+0xe/0x10 [ 339.689222] ? kfree+0xcf/0x230 [ 339.689307] ? addrconf_ifdown+0xff9/0x15e0 [ 339.689322] ? addrconf_notify+0x629/0x25f0 [ 339.708177] __should_failslab+0x121/0x190 [ 339.708194] should_failslab+0x9/0x14 [ 339.708207] kmem_cache_alloc_node+0x265/0x710 [ 339.708220] ? do_raw_spin_trylock+0x270/0x270 [ 339.708241] __alloc_skb+0xf4/0x730 [ 339.717017] ? trace_hardirqs_on_caller+0x310/0x310 [ 339.717035] ? skb_scrub_packet+0x440/0x440 [ 339.717049] ? trace_hardirqs_on+0xbd/0x310 [ 339.717066] ? __addrconf_sysctl_unregister.isra.0+0x92/0xe0 [ 339.717079] ? trace_hardirqs_off_caller+0x300/0x300 [ 339.717100] inet6_netconf_notify_devconf+0xab/0x1f0 [ 339.725523] __addrconf_sysctl_unregister.isra.0+0xa7/0xe0 [ 339.725541] addrconf_sysctl_unregister+0x91/0xf0 [ 339.725556] addrconf_ifdown+0xff9/0x15e0 [ 339.725580] ? inet6_rtm_newaddr+0x1bb0/0x1bb0 [ 339.725594] ? add_lock_to_list.isra.0+0x450/0x450 [ 339.725617] ? __lock_is_held+0xb6/0x140 19:59:47 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0xc, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) r3 = getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r2, r3, r4) [ 339.745562] addrconf_notify+0x629/0x25f0 [ 339.745578] ? do_raw_spin_unlock+0xa0/0x330 [ 339.745590] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 339.745604] ? check_preemption_disabled+0x48/0x290 [ 339.745617] ? do_raw_spin_trylock+0x270/0x270 [ 339.793746] ? clusterip_netdev_event+0x603/0x860 [ 339.793758] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.793789] ? tls_dev_event+0x136/0xc30 [ 339.802754] ? inet6_ifinfo_notify+0x150/0x150 [ 339.802770] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 19:59:47 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 339.802812] ? ip6mr_device_event+0x2ac/0x380 [ 339.802829] ? mif6_delete+0xb10/0xb10 [ 339.802884] ? tee_tg4+0x160/0x160 [ 339.850371] ? team_port_get_rtnl.isra.0+0xb1/0x120 [ 339.850394] notifier_call_chain+0x179/0x380 [ 339.859466] ? notifier_call_chain+0x179/0x380 [ 339.859485] ? unregister_die_notifier+0x30/0x30 [ 339.859500] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.859513] ? rtnl_is_locked+0xb8/0xf0 [ 339.859525] ? rtnl_trylock+0x20/0x20 [ 339.859542] raw_notifier_call_chain+0x2e/0x40 19:59:47 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 339.859557] call_netdevice_notifiers_info+0x3f/0x90 [ 339.918788] ? tun_show_group+0x180/0x180 [ 339.922944] rollback_registered_many+0xc50/0x1370 [ 339.927978] ? generic_xdp_install+0x4e0/0x4e0 [ 339.932562] ? print_usage_bug+0xd0/0xd0 [ 339.936630] ? skb_dequeue+0x12e/0x180 [ 339.940511] ? mark_held_locks+0xb1/0x100 [ 339.944652] ? queue_delayed_work_on+0xe6/0x200 [ 339.949319] ? queue_delayed_work_on+0xe6/0x200 [ 339.953969] ? lockdep_hardirqs_on+0x415/0x5d0 [ 339.958534] rollback_registered+0x1c9/0x410 [ 339.962924] ? rollback_registered_many+0x1370/0x1370 [ 339.968186] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.973717] ? rtnl_trylock+0x20/0x20 [ 339.977496] ? queue_delayed_work_on+0x127/0x200 [ 339.982237] unregister_netdevice_queue+0x30e/0x660 [ 339.987232] ? rollback_registered+0x410/0x410 [ 339.991801] ? tun_setup+0x2d0/0x2d0 [ 339.995502] ? ___preempt_schedule+0x16/0x18 [ 339.999892] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 340.005238] __tun_detach+0x11ae/0x1600 [ 340.009200] ? tun_attach+0x1950/0x1950 [ 340.013159] ? add_lock_to_list.isra.0+0x450/0x450 [ 340.018071] ? fsnotify+0x4f5/0xed0 [ 340.021696] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.027247] ? __lock_is_held+0xb6/0x140 [ 340.031319] tun_chr_close+0xe0/0x180 [ 340.035134] __fput+0x3c5/0xb10 [ 340.038399] ? __tun_detach+0x1600/0x1600 [ 340.042534] ? get_max_files+0x20/0x20 [ 340.046403] ? task_work_run+0x1bb/0x2b0 [ 340.050448] ? trace_hardirqs_off_caller+0x300/0x300 [ 340.055573] ? do_raw_spin_trylock+0x270/0x270 [ 340.060141] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.065666] ____fput+0x16/0x20 [ 340.068930] task_work_run+0x1f4/0x2b0 [ 340.072906] ? task_work_cancel+0x2c0/0x2c0 [ 340.077232] ? __close_fd+0x25f/0x3d0 [ 340.081119] ? do_syscall_64+0x8c/0x800 [ 340.085085] exit_to_usermode_loop+0x32a/0x3b0 [ 340.089660] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.095009] ? syscall_trace_enter+0x12a0/0x12a0 [ 340.099752] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 340.104576] do_syscall_64+0x696/0x800 [ 340.108447] ? syscall_return_slowpath+0x5f0/0x5f0 [ 340.113354] ? prepare_exit_to_usermode+0x232/0x3b0 [ 340.118351] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.123262] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.128434] RIP: 0033:0x457ec9 [ 340.131607] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 340.150614] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 340.158315] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 19:59:48 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r0, 0xae80, 0x0) [ 340.165577] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 340.172831] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 340.180092] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 340.187342] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_open_dev$evdev(&(0x7f0000000280)='/dev/input/event#\x00', 0x2, 0x20000) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(r2, 0xc0106426, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{0x0}]}) ioctl$DRM_IOCTL_SWITCH_CTX(r3, 0x40086424, &(0x7f0000000240)={r4, 0x3}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x101000, 0x0) ioctl$RTC_IRQP_READ(r1, 0x8008700b, &(0x7f0000000140)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f0000000180)="640f080f01d40f0766b9420800000f320f01cbbaf80c66b8ca209c8966efbafc0cedf0f756090fc71f26650f01cf8fe91801160700"}], 0x1, 0x0, 0x0, 0x22e) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 19:59:48 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x0, 0x1000}], 0x3) 19:59:48 executing program 2 (fault-call:3 fault-nth:3): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:48 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 19:59:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) syz_open_dev$rtc(&(0x7f0000000040)='/dev/rtc#\x00', 0x1000, 0x4000) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:48 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 340.435853] FAULT_INJECTION: forcing a failure. [ 340.435853] name failslab, interval 1, probability 0, space 0, times 0 [ 340.471495] CPU: 1 PID: 15982 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 340.478346] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.487695] Call Trace: [ 340.490289] dump_stack+0x1db/0x2d0 [ 340.493946] ? dump_stack_print_info.cold+0x20/0x20 [ 340.498957] ? save_stack+0x45/0xd0 [ 340.502574] ? kasan_kmalloc+0xcf/0xe0 [ 340.506454] ? kasan_slab_alloc+0xf/0x20 [ 340.510505] ? kmem_cache_alloc_node+0x144/0x710 [ 340.515267] ? __alloc_skb+0xf4/0x730 [ 340.519065] ? __addrconf_sysctl_unregister.isra.0+0xa7/0xe0 [ 340.519085] should_fail.cold+0xa/0x15 [ 340.519101] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 340.519120] ? ___might_sleep+0x1e7/0x310 [ 340.533854] ? arch_local_save_flags+0x50/0x50 [ 340.542559] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.548094] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.553641] __should_failslab+0x121/0x190 [ 340.557993] should_failslab+0x9/0x14 [ 340.561793] kmem_cache_alloc_node_trace+0x270/0x720 [ 340.566920] ? __alloc_skb+0xf4/0x730 [ 340.566941] __kmalloc_node_track_caller+0x3d/0x70 [ 340.566955] __kmalloc_reserve.isra.0+0x40/0xe0 [ 340.575651] __alloc_skb+0x12d/0x730 19:59:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x40, 0x0) [ 340.584014] ? trace_hardirqs_on_caller+0x310/0x310 [ 340.589032] ? skb_scrub_packet+0x440/0x440 [ 340.593346] ? trace_hardirqs_on+0xbd/0x310 [ 340.597771] ? __addrconf_sysctl_unregister.isra.0+0x92/0xe0 [ 340.603566] ? trace_hardirqs_off_caller+0x300/0x300 [ 340.608676] inet6_netconf_notify_devconf+0xab/0x1f0 [ 340.613786] __addrconf_sysctl_unregister.isra.0+0xa7/0xe0 [ 340.619409] addrconf_sysctl_unregister+0x91/0xf0 [ 340.624355] addrconf_ifdown+0xff9/0x15e0 [ 340.628593] ? inet6_rtm_newaddr+0x1bb0/0x1bb0 [ 340.633257] ? add_lock_to_list.isra.0+0x450/0x450 [ 340.638209] ? __lock_is_held+0xb6/0x140 [ 340.642281] addrconf_notify+0x629/0x25f0 [ 340.642294] ? do_raw_spin_unlock+0xa0/0x330 [ 340.642308] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.650821] ? check_preemption_disabled+0x48/0x290 [ 340.650835] ? do_raw_spin_trylock+0x270/0x270 [ 340.650850] ? clusterip_netdev_event+0x603/0x860 [ 340.650864] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.670800] ? tls_dev_event+0x136/0xc30 [ 340.670819] ? inet6_ifinfo_notify+0x150/0x150 [ 340.670834] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.690470] ? ip6mr_device_event+0x2ac/0x380 [ 340.694966] ? mif6_delete+0xb10/0xb10 [ 340.694982] ? tee_tg4+0x160/0x160 [ 340.694998] ? team_port_get_rtnl.isra.0+0xb1/0x120 [ 340.695016] notifier_call_chain+0x179/0x380 [ 340.712014] ? notifier_call_chain+0x179/0x380 [ 340.712033] ? unregister_die_notifier+0x30/0x30 [ 340.712047] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.712060] ? rtnl_is_locked+0xb8/0xf0 [ 340.712072] ? rtnl_trylock+0x20/0x20 19:59:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$DRM_IOCTL_FREE_BUFS(r3, 0x4010641a, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[0x3]}) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000240)={0x0, 0x5}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f00000002c0)={r4, 0xfffffffffffffffc}, &(0x7f0000000300)=0x8) write$FUSE_OPEN(r3, &(0x7f0000000040)={0x20, 0x0, 0x1, {0x0, 0x4}}, 0x20) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 340.721392] raw_notifier_call_chain+0x2e/0x40 [ 340.721409] call_netdevice_notifiers_info+0x3f/0x90 [ 340.721424] ? tun_show_group+0x180/0x180 [ 340.748573] rollback_registered_many+0xc50/0x1370 [ 340.753512] ? generic_xdp_install+0x4e0/0x4e0 [ 340.758089] ? finish_wait+0x490/0x490 [ 340.761978] ? print_usage_bug+0xd0/0xd0 [ 340.766188] ? skb_dequeue+0x12e/0x180 [ 340.770167] ? mark_held_locks+0xb1/0x100 [ 340.774318] ? queue_delayed_work_on+0xe6/0x200 [ 340.778985] ? queue_delayed_work_on+0xe6/0x200 [ 340.779000] ? lockdep_hardirqs_on+0x415/0x5d0 [ 340.779019] rollback_registered+0x1c9/0x410 [ 340.788246] ? rollback_registered_many+0x1370/0x1370 [ 340.788261] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.788274] ? rtnl_trylock+0x20/0x20 [ 340.788285] ? queue_delayed_work_on+0x127/0x200 [ 340.788304] unregister_netdevice_queue+0x30e/0x660 [ 340.803401] ? rollback_registered+0x410/0x410 [ 340.803416] ? tun_setup+0x2d0/0x2d0 [ 340.803428] ? check_preemption_disabled+0x48/0x290 [ 340.803442] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 340.812165] ? __tun_detach+0x6b8/0x1600 [ 340.812185] __tun_detach+0x11ae/0x1600 [ 340.812205] ? tun_attach+0x1950/0x1950 [ 340.812214] ? add_lock_to_list.isra.0+0x450/0x450 [ 340.812228] ? fsnotify+0x4f5/0xed0 [ 340.844170] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.853221] ? __lock_is_held+0xb6/0x140 [ 340.853246] tun_chr_close+0xe0/0x180 [ 340.853262] __fput+0x3c5/0xb10 [ 340.853285] ? __tun_detach+0x1600/0x1600 [ 340.877952] ? get_max_files+0x20/0x20 [ 340.881831] ? task_work_run+0x1bb/0x2b0 [ 340.885879] ? trace_hardirqs_off_caller+0x300/0x300 [ 340.890963] ? do_raw_spin_trylock+0x270/0x270 [ 340.895528] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.901048] ____fput+0x16/0x20 [ 340.904307] task_work_run+0x1f4/0x2b0 [ 340.908179] ? task_work_cancel+0x2c0/0x2c0 [ 340.912488] ? __close_fd+0x25f/0x3d0 [ 340.916277] ? do_syscall_64+0x8c/0x800 [ 340.920237] exit_to_usermode_loop+0x32a/0x3b0 [ 340.924925] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.930289] ? syscall_trace_enter+0x12a0/0x12a0 [ 340.935123] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 340.939869] do_syscall_64+0x696/0x800 [ 340.943745] ? syscall_return_slowpath+0x5f0/0x5f0 [ 340.948660] ? prepare_exit_to_usermode+0x232/0x3b0 [ 340.953657] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.958485] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.963666] RIP: 0033:0x457ec9 [ 340.966956] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 19:59:49 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 340.985834] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 340.993522] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 [ 341.000768] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 341.008019] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 341.015276] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 341.022611] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:49 executing program 2 (fault-call:3 fault-nth:4): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:49 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x0, 0x1000}], 0x3) 19:59:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) setsockopt$sock_void(r0, 0x1, 0x1b, 0x0, 0x0) r3 = syz_open_dev$dspn(&(0x7f0000000280)='/dev/dsp#\x00', 0xb388, 0x100) accept4$unix(r3, &(0x7f00000002c0)=@abs, &(0x7f0000000340)=0x6e, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r4 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/autofs\x00', 0x8000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000140)={0xffffffffffffffff}, 0x106, 0x1000}}, 0x20) write$RDMA_USER_CM_CMD_NOTIFY(r4, &(0x7f0000000240)={0xf, 0x8, 0xfa00, {r5, 0x11}}, 0x10) getpeername$packet(r4, &(0x7f0000000440)={0x11, 0x0, 0x0}, &(0x7f0000000480)=0x14) connect$can_bcm(r4, &(0x7f00000004c0)={0x1d, r6}, 0x10) ioctl$IMADDTIMER(r4, 0x80044940, &(0x7f0000000400)=0xffffffffffffffff) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000380)={0x3, 0x2, 0x1f002, 0x1000, &(0x7f0000ff4000/0x1000)=nil}) syz_genetlink_get_family_id$team(&(0x7f0000000040)='team\x00') 19:59:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x6, 0xa0040) setns(r3, 0x4a000000) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 341.233825] FAULT_INJECTION: forcing a failure. [ 341.233825] name failslab, interval 1, probability 0, space 0, times 0 [ 341.275144] CPU: 1 PID: 16023 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 341.282083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.291428] Call Trace: [ 341.294019] dump_stack+0x1db/0x2d0 [ 341.297649] ? dump_stack_print_info.cold+0x20/0x20 [ 341.302749] ? kernel_text_address+0x73/0xf0 [ 341.302765] ? __kernel_text_address+0xd/0x40 [ 341.302783] should_fail.cold+0xa/0x15 [ 341.302797] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 341.302813] ? ___might_sleep+0x1e7/0x310 [ 341.311673] ? arch_local_save_flags+0x50/0x50 [ 341.311688] ? kasan_slab_free+0xe/0x10 [ 341.311698] ? kfree+0xcf/0x230 [ 341.311710] ? mpls_dev_sysctl_unregister+0x8d/0xc0 [ 341.311725] ? raw_notifier_call_chain+0x2e/0x40 [ 341.346454] ? call_netdevice_notifiers_info+0x3f/0x90 [ 341.351720] __should_failslab+0x121/0x190 [ 341.355959] should_failslab+0x9/0x14 [ 341.359739] kmem_cache_alloc_node+0x265/0x710 [ 341.364306] __alloc_skb+0xf4/0x730 [ 341.367914] ? skb_scrub_packet+0x440/0x440 [ 341.372216] ? trace_hardirqs_on+0xbd/0x310 [ 341.376544] ? mpls_dev_sysctl_unregister+0x8d/0xc0 [ 341.381551] ? trace_hardirqs_off_caller+0x300/0x300 [ 341.386646] mpls_netconf_notify_devconf+0x57/0x120 [ 341.391671] mpls_dev_sysctl_unregister+0x9f/0xc0 [ 341.396494] mpls_dev_notify+0x8c8/0xb70 [ 341.400542] ? ovs_netdev_get_vport+0x12a/0x210 [ 341.405192] ? mpls_forward+0x1f40/0x1f40 [ 341.409323] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 341.414874] ? dp_device_event+0xa1/0x420 [ 341.419022] ? ovs_flow_cmd_set.cold+0x21/0x21 [ 341.423587] ? team_port_get_rtnl.isra.0+0xb1/0x120 [ 341.428598] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 341.434121] notifier_call_chain+0x179/0x380 [ 341.438513] ? unregister_die_notifier+0x30/0x30 [ 341.443250] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 341.448766] ? rtnl_is_locked+0xb8/0xf0 [ 341.452732] ? rtnl_trylock+0x20/0x20 [ 341.456534] raw_notifier_call_chain+0x2e/0x40 [ 341.461098] call_netdevice_notifiers_info+0x3f/0x90 [ 341.466184] ? tun_show_group+0x180/0x180 [ 341.470313] rollback_registered_many+0xc50/0x1370 [ 341.475238] ? generic_xdp_install+0x4e0/0x4e0 [ 341.479812] ? finish_wait+0x490/0x490 [ 341.483705] ? print_usage_bug+0xd0/0xd0 [ 341.487747] ? skb_dequeue+0x12e/0x180 [ 341.491621] ? mark_held_locks+0xb1/0x100 [ 341.495749] ? queue_delayed_work_on+0xe6/0x200 [ 341.500407] ? queue_delayed_work_on+0xe6/0x200 [ 341.505059] ? lockdep_hardirqs_on+0x415/0x5d0 [ 341.509623] rollback_registered+0x1c9/0x410 [ 341.514013] ? rollback_registered_many+0x1370/0x1370 [ 341.519184] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 341.524705] ? rtnl_trylock+0x20/0x20 [ 341.528503] ? queue_delayed_work_on+0x127/0x200 [ 341.533243] unregister_netdevice_queue+0x30e/0x660 [ 341.538260] ? rollback_registered+0x410/0x410 [ 341.542834] ? tun_setup+0x2d0/0x2d0 [ 341.546531] ? check_preemption_disabled+0x48/0x290 [ 341.551526] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 341.556870] ? __tun_detach+0x6b8/0x1600 [ 341.560914] __tun_detach+0x11ae/0x1600 [ 341.564888] ? tun_attach+0x1950/0x1950 [ 341.568840] ? add_lock_to_list.isra.0+0x450/0x450 [ 341.573750] ? fsnotify+0x4f5/0xed0 [ 341.577360] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 341.582896] ? __lock_is_held+0xb6/0x140 [ 341.586945] tun_chr_close+0xe0/0x180 [ 341.590748] __fput+0x3c5/0xb10 [ 341.594013] ? __tun_detach+0x1600/0x1600 [ 341.598179] ? get_max_files+0x20/0x20 [ 341.602047] ? task_work_run+0x1bb/0x2b0 [ 341.606087] ? trace_hardirqs_off_caller+0x300/0x300 [ 341.611168] ? do_raw_spin_trylock+0x270/0x270 [ 341.615735] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 341.621253] ____fput+0x16/0x20 [ 341.624512] task_work_run+0x1f4/0x2b0 [ 341.628394] ? task_work_cancel+0x2c0/0x2c0 [ 341.632698] ? __close_fd+0x25f/0x3d0 [ 341.636479] ? do_syscall_64+0x8c/0x800 [ 341.640440] exit_to_usermode_loop+0x32a/0x3b0 [ 341.645007] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 341.650356] ? syscall_trace_enter+0x12a0/0x12a0 [ 341.655093] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 341.659833] do_syscall_64+0x696/0x800 [ 341.663703] ? syscall_return_slowpath+0x5f0/0x5f0 [ 341.668613] ? prepare_exit_to_usermode+0x232/0x3b0 [ 341.673610] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 341.678437] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 341.683604] RIP: 0033:0x457ec9 [ 341.686817] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 341.705966] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 341.713657] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 19:59:49 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 341.720905] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 341.728152] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 341.735507] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 341.742757] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:49 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 19:59:49 executing program 2 (fault-call:3 fault-nth:5): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:49 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r0, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 19:59:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000340)='oom_score\x00') ioctl$sock_inet6_udp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000380)) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x400, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) name_to_handle_at(r3, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)={0xd3, 0x1, "0c91dd1710e019c1a5640531b816d5f94ea7035422772ed05a54c53f3cbb5fb24aef74a227b2fae3184c6deeed12700fe67ea52737d788205e069c7db2641eee95f8fe191015dc743e7fd9f251da1e505cb340009f16fd8a599b71a9c664a6f5a923d98186f8a97497affaa7c424909f4fd8de683c5be6cb3e69944045e46bd856c80340efb508ff2b58236bb61444f9825edc5113adaf92abf4bd958e4b44f1455add04aa1731789d192f22263de81d1f161b78e0560f684975d3fe062949005b94c2986b7eea1cf3e192"}, &(0x7f0000000180), 0x1000) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x9) 19:59:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) r3 = syz_open_dev$mice(&(0x7f0000000240)='/dev/input/mice\x00', 0x0, 0x200000) r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r3, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x820000}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2800000048ba91f12d02934fae08ad142c21da34dbce024bddad0e6695cc5556e6125206dc80f6c7dac44f751419fa30518bc7398c96e7eb3544cb2382798c6a89bf5c6092e6", @ANYRES16=r4, @ANYBLOB="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"], 0x68}, 0x1, 0x0, 0x0, 0x8800}, 0x20000044) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 341.943123] FAULT_INJECTION: forcing a failure. [ 341.943123] name failslab, interval 1, probability 0, space 0, times 0 [ 341.962979] CPU: 0 PID: 16053 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 341.969935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.979288] Call Trace: [ 341.981911] dump_stack+0x1db/0x2d0 [ 341.985545] ? dump_stack_print_info.cold+0x20/0x20 [ 341.990586] ? save_stack+0x45/0xd0 [ 341.994210] ? kasan_kmalloc+0xcf/0xe0 [ 341.998085] ? kasan_slab_alloc+0xf/0x20 [ 341.998097] ? kmem_cache_alloc_node+0x144/0x710 [ 341.998109] ? __alloc_skb+0xf4/0x730 [ 341.998125] ? mpls_dev_sysctl_unregister+0x9f/0xc0 [ 341.998141] should_fail.cold+0xa/0x15 [ 341.998155] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 342.006937] ? ___might_sleep+0x1e7/0x310 [ 342.006952] ? arch_local_save_flags+0x50/0x50 [ 342.006966] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.006978] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.007000] __should_failslab+0x121/0x190 [ 342.007018] should_failslab+0x9/0x14 [ 342.052638] kmem_cache_alloc_node_trace+0x270/0x720 [ 342.057836] ? __alloc_skb+0xf4/0x730 [ 342.061628] __kmalloc_node_track_caller+0x3d/0x70 [ 342.061644] __kmalloc_reserve.isra.0+0x40/0xe0 [ 342.071296] __alloc_skb+0x12d/0x730 [ 342.071313] ? skb_scrub_packet+0x440/0x440 [ 342.071327] ? trace_hardirqs_on+0xbd/0x310 [ 342.071344] ? mpls_dev_sysctl_unregister+0x8d/0xc0 [ 342.071354] ? trace_hardirqs_off_caller+0x300/0x300 [ 342.071374] mpls_netconf_notify_devconf+0x57/0x120 [ 342.093746] mpls_dev_sysctl_unregister+0x9f/0xc0 [ 342.093761] mpls_dev_notify+0x8c8/0xb70 [ 342.093785] ? ovs_netdev_get_vport+0x12a/0x210 [ 342.093800] ? mpls_forward+0x1f40/0x1f40 [ 342.093814] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.093833] ? dp_device_event+0xa1/0x420 [ 342.093846] ? ovs_flow_cmd_set.cold+0x21/0x21 [ 342.093863] ? team_port_get_rtnl.isra.0+0xb1/0x120 [ 342.103685] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 342.103704] notifier_call_chain+0x179/0x380 [ 342.103723] ? unregister_die_notifier+0x30/0x30 [ 342.103738] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.103750] ? rtnl_is_locked+0xb8/0xf0 [ 342.103761] ? rtnl_trylock+0x20/0x20 [ 342.103792] raw_notifier_call_chain+0x2e/0x40 [ 342.103807] call_netdevice_notifiers_info+0x3f/0x90 [ 342.103823] ? tun_show_group+0x180/0x180 [ 342.150810] rollback_registered_many+0xc50/0x1370 [ 342.150833] ? generic_xdp_install+0x4e0/0x4e0 [ 342.150846] ? finish_wait+0x490/0x490 [ 342.150862] ? print_usage_bug+0xd0/0xd0 [ 342.150875] ? skb_dequeue+0x12e/0x180 [ 342.160362] ? mark_held_locks+0xb1/0x100 [ 342.160378] ? queue_delayed_work_on+0xe6/0x200 [ 342.160391] ? queue_delayed_work_on+0xe6/0x200 [ 342.160404] ? lockdep_hardirqs_on+0x415/0x5d0 [ 342.160421] rollback_registered+0x1c9/0x410 [ 342.182913] ? rollback_registered_many+0x1370/0x1370 [ 342.182928] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.182942] ? rtnl_trylock+0x20/0x20 [ 342.182955] ? queue_delayed_work_on+0x127/0x200 [ 342.182975] unregister_netdevice_queue+0x30e/0x660 [ 342.182990] ? rollback_registered+0x410/0x410 [ 342.183002] ? tun_setup+0x2d0/0x2d0 [ 342.183014] ? check_preemption_disabled+0x48/0x290 [ 342.183029] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 342.191452] ? __tun_detach+0x6b8/0x1600 [ 342.191472] __tun_detach+0x11ae/0x1600 [ 342.191493] ? tun_attach+0x1950/0x1950 [ 342.191503] ? add_lock_to_list.isra.0+0x450/0x450 [ 342.191516] ? fsnotify+0x4f5/0xed0 [ 342.199432] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.199448] ? __lock_is_held+0xb6/0x140 [ 342.208239] tun_chr_close+0xe0/0x180 [ 342.208256] __fput+0x3c5/0xb10 [ 342.208272] ? __tun_detach+0x1600/0x1600 [ 342.208283] ? get_max_files+0x20/0x20 [ 342.208298] ? task_work_run+0x1bb/0x2b0 [ 342.241202] ? trace_hardirqs_off_caller+0x300/0x300 [ 342.241216] ? do_raw_spin_trylock+0x270/0x270 [ 342.241230] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.241247] ____fput+0x16/0x20 [ 342.250807] task_work_run+0x1f4/0x2b0 [ 342.250826] ? task_work_cancel+0x2c0/0x2c0 [ 342.250842] ? __close_fd+0x25f/0x3d0 [ 342.250854] ? do_syscall_64+0x8c/0x800 [ 342.250870] exit_to_usermode_loop+0x32a/0x3b0 [ 342.353970] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 342.353986] ? syscall_trace_enter+0x12a0/0x12a0 [ 342.364078] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 342.368837] do_syscall_64+0x696/0x800 [ 342.372717] ? syscall_return_slowpath+0x5f0/0x5f0 [ 342.377672] ? prepare_exit_to_usermode+0x232/0x3b0 [ 342.382695] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.387540] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 342.392727] RIP: 0033:0x457ec9 [ 342.395900] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 342.414779] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 342.422578] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 [ 342.429824] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 342.437073] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 19:59:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f0000000140)={0x8, 0x1, 0x1f}) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x80000, 0x0) ioctl$ASHMEM_PURGE_ALL_CACHES(r3, 0x770a, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = syz_open_dev$audion(&(0x7f0000000240)='/dev/audio#\x00', 0x1f, 0x0) ioctl$BLKRAGET(r3, 0x1263, &(0x7f0000000280)) r4 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$inet_mreqn(r4, 0x0, 0x24, &(0x7f0000000040)={@dev, @multicast2}, &(0x7f0000000140)=0xc) syz_genetlink_get_family_id$fou(&(0x7f0000000180)='fou\x00') 19:59:50 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x7}], 0x3) 19:59:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) getuid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 342.444346] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 342.451611] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:50 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x7}], 0x3) 19:59:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:50 executing program 2 (fault-call:3 fault-nth:6): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:50 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x3, 0x9, 0x1800}, {0x0, 0x7}], 0x3) [ 342.703421] FAULT_INJECTION: forcing a failure. [ 342.703421] name failslab, interval 1, probability 0, space 0, times 0 [ 342.753873] CPU: 0 PID: 16099 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 342.760829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.770176] Call Trace: [ 342.772773] dump_stack+0x1db/0x2d0 [ 342.776493] ? dump_stack_print_info.cold+0x20/0x20 [ 342.781506] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.787049] should_fail.cold+0xa/0x15 [ 342.790934] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 342.796035] ? ___might_sleep+0x1e7/0x310 [ 342.800171] ? arch_local_save_flags+0x50/0x50 [ 342.804770] __should_failslab+0x121/0x190 [ 342.809005] should_failslab+0x9/0x14 [ 342.812802] kmem_cache_alloc_node+0x265/0x710 [ 342.817416] ? rcu_read_unlock_special+0x380/0x380 [ 342.823054] __alloc_skb+0xf4/0x730 [ 342.826684] ? skb_scrub_packet+0x440/0x440 [ 342.831005] ? nla_put_ifalias+0x180/0x180 [ 342.835237] ? unregister_die_notifier+0x30/0x30 [ 342.839992] ? rtnl_is_locked+0xb8/0xf0 [ 342.843957] ? rtnl_trylock+0x20/0x20 [ 342.844026] rtmsg_ifinfo_build_skb+0x74/0x1a0 19:59:50 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x7, 0x1000}], 0x2) [ 342.844046] rollback_registered_many+0xcf1/0x1370 [ 342.844068] ? generic_xdp_install+0x4e0/0x4e0 [ 342.844079] ? finish_wait+0x490/0x490 [ 342.844093] ? print_usage_bug+0xd0/0xd0 [ 342.852448] ? skb_dequeue+0x12e/0x180 [ 342.873736] ? mark_held_locks+0xb1/0x100 [ 342.877917] ? queue_delayed_work_on+0xe6/0x200 [ 342.882595] ? queue_delayed_work_on+0xe6/0x200 [ 342.887260] ? lockdep_hardirqs_on+0x415/0x5d0 [ 342.891837] rollback_registered+0x1c9/0x410 [ 342.896257] ? rollback_registered_many+0x1370/0x1370 19:59:50 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x7, 0x1000}], 0x2) [ 342.901426] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.906943] ? rtnl_trylock+0x20/0x20 [ 342.910738] ? queue_delayed_work_on+0x127/0x200 [ 342.915494] unregister_netdevice_queue+0x30e/0x660 [ 342.920492] ? rollback_registered+0x410/0x410 [ 342.925063] ? tun_setup+0x2d0/0x2d0 [ 342.928784] ? check_preemption_disabled+0x48/0x290 [ 342.933799] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 342.939151] ? __tun_detach+0x6b8/0x1600 [ 342.943204] __tun_detach+0x11ae/0x1600 [ 342.943224] ? tun_attach+0x1950/0x1950 [ 342.943236] ? add_lock_to_list.isra.0+0x450/0x450 [ 342.943249] ? fsnotify+0x4f5/0xed0 [ 342.943266] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.943281] ? __lock_is_held+0xb6/0x140 [ 342.943302] tun_chr_close+0xe0/0x180 [ 342.951213] __fput+0x3c5/0xb10 [ 342.951229] ? __tun_detach+0x1600/0x1600 [ 342.951242] ? get_max_files+0x20/0x20 [ 342.951252] ? task_work_run+0x1bb/0x2b0 [ 342.951266] ? trace_hardirqs_off_caller+0x300/0x300 [ 342.993668] ? do_raw_spin_trylock+0x270/0x270 [ 342.998253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 19:59:51 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x7, 0x1000}], 0x2) [ 343.003771] ____fput+0x16/0x20 [ 343.007043] task_work_run+0x1f4/0x2b0 [ 343.010929] ? task_work_cancel+0x2c0/0x2c0 [ 343.015248] ? __close_fd+0x25f/0x3d0 [ 343.019037] ? do_syscall_64+0x8c/0x800 [ 343.023004] exit_to_usermode_loop+0x32a/0x3b0 [ 343.027573] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.032933] ? syscall_trace_enter+0x12a0/0x12a0 [ 343.037691] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 343.042463] do_syscall_64+0x696/0x800 [ 343.046353] ? syscall_return_slowpath+0x5f0/0x5f0 [ 343.046368] ? prepare_exit_to_usermode+0x232/0x3b0 [ 343.046385] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.056291] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.056301] RIP: 0033:0x457ec9 [ 343.056315] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 343.056322] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 343.056334] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 19:59:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x1ffffffdfff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x200, 0x0) ioctl$CAPI_SET_FLAGS(r3, 0x80044324, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) fchmod(r2, 0x5) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) setsockopt$RXRPC_MIN_SECURITY_LEVEL(r3, 0x110, 0x4, &(0x7f0000000180)=0x1, 0x4) r4 = syz_open_dev$dspn(&(0x7f0000000240)='/dev/dsp#\x00', 0x4, 0x20000) setsockopt$inet_MCAST_MSFILTER(r4, 0x0, 0x30, &(0x7f0000000280)=ANY=[@ANYBLOB="000000000000000002004e24ffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000700000002004e247f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ffffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e21ac1414bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e217f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e20ac1414aa00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002004e23e0000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x410) 19:59:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x101000, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) r4 = add_key(&(0x7f0000000040)='user\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000240)="376c23570145db8801f7a265c5becb7692ce58ff05b3ff8575717af27a4b270290090fd47c093e7aec9dce88c4166fbe9fd5160a5edeae97234e36a782e5c0a4502340523c6c374c57cd26e950287cebfd62618c8d3e8e0e0431b7a8a243c695336749c06adc21712f", 0x69, 0xfffffffffffffff9) r5 = add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$negate(0xd, r4, 0x6, r5) fstat(0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) getuid() setsockopt$TIPC_MCAST_BROADCAST(r3, 0x10f, 0x85) ioctl$KVM_RUN(r2, 0xae80, 0x0) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f00000001c0)=0x5, 0x4) [ 343.056341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 343.056349] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 343.056357] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 343.056364] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) 19:59:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:51 executing program 2 (fault-call:3 fault-nth:7): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:51 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x9, 0x1800}, {0x0, 0x7, 0x1000}], 0x3) 19:59:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) clock_gettime(0x3, &(0x7f0000000040)) ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 343.313384] FAULT_INJECTION: forcing a failure. [ 343.313384] name failslab, interval 1, probability 0, space 0, times 0 19:59:51 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x0, 0x1800}, {0x0, 0x7, 0x1000}], 0x3) 19:59:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 343.393347] CPU: 1 PID: 16138 Comm: syz-executor2 Not tainted 4.20.0+ #5 [ 343.400210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.409563] Call Trace: [ 343.409585] dump_stack+0x1db/0x2d0 [ 343.409604] ? dump_stack_print_info.cold+0x20/0x20 [ 343.409618] ? save_stack+0x45/0xd0 [ 343.409632] ? kasan_kmalloc+0xcf/0xe0 [ 343.428288] ? kasan_slab_alloc+0xf/0x20 [ 343.432354] ? kmem_cache_alloc_node+0x144/0x710 [ 343.437106] ? __alloc_skb+0xf4/0x730 [ 343.440907] ? rollback_registered_many+0xcf1/0x1370 [ 343.446012] should_fail.cold+0xa/0x15 [ 343.446027] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 343.454979] ? ___might_sleep+0x1e7/0x310 [ 343.454994] ? arch_local_save_flags+0x50/0x50 [ 343.455008] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.455019] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.455038] __should_failslab+0x121/0x190 [ 343.455053] should_failslab+0x9/0x14 [ 343.463752] kmem_cache_alloc_node_trace+0x270/0x720 [ 343.463766] ? __alloc_skb+0xf4/0x730 19:59:51 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x0, 0x1800}, {0x0, 0x7, 0x1000}], 0x3) 19:59:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x13fffffffffffd) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000040)) ioctl$VIDIOC_G_SELECTION(r3, 0xc040565e, &(0x7f0000000180)={0x7, 0x103, 0x1, {0x20, 0x4, 0x40, 0x8}}) getuid() setsockopt$IP_VS_SO_SET_EDIT(r3, 0x0, 0x483, &(0x7f0000000140)={0x3c, @multicast2, 0x4e21, 0x0, 'none\x00', 0x2b, 0xfffffffffffffffb, 0x1d}, 0x2c) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000140)={0x1f}) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x10000, 0x0) ioctl$BLKTRACETEARDOWN(r3, 0x1276, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 343.463786] __kmalloc_node_track_caller+0x3d/0x70 [ 343.463817] __kmalloc_reserve.isra.0+0x40/0xe0 [ 343.463831] __alloc_skb+0x12d/0x730 [ 343.463846] ? skb_scrub_packet+0x440/0x440 [ 343.509415] ? nla_put_ifalias+0x180/0x180 [ 343.513646] ? unregister_die_notifier+0x30/0x30 [ 343.518507] ? rtnl_is_locked+0xb8/0xf0 [ 343.522473] ? rtnl_trylock+0x20/0x20 [ 343.526280] rtmsg_ifinfo_build_skb+0x74/0x1a0 [ 343.530935] ? hidpp_populate_input+0x4e0/0x540 [ 343.535608] rollback_registered_many+0xcf1/0x1370 19:59:51 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x0, 0x1800}, {0x0, 0x7, 0x1000}], 0x3) [ 343.540545] ? generic_xdp_install+0x4e0/0x4e0 [ 343.545132] ? finish_wait+0x490/0x490 [ 343.549030] ? print_usage_bug+0xd0/0xd0 [ 343.553087] ? skb_dequeue+0x12e/0x180 [ 343.553108] ? mark_held_locks+0xb1/0x100 [ 343.553124] ? queue_delayed_work_on+0xe6/0x200 [ 343.553136] ? queue_delayed_work_on+0xe6/0x200 [ 343.553147] ? lockdep_hardirqs_on+0x415/0x5d0 [ 343.553162] rollback_registered+0x1c9/0x410 [ 343.561159] ? rollback_registered_many+0x1370/0x1370 [ 343.561179] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 343.561193] ? rtnl_trylock+0x20/0x20 [ 343.561204] ? queue_delayed_work_on+0x127/0x200 [ 343.561223] unregister_netdevice_queue+0x30e/0x660 [ 343.603704] ? rollback_registered+0x410/0x410 [ 343.608453] ? tun_setup+0x2d0/0x2d0 [ 343.608468] ? check_preemption_disabled+0x48/0x290 [ 343.608484] ? netif_set_real_num_tx_queues+0x10c/0x720 [ 343.608497] ? __tun_detach+0x6b8/0x1600 [ 343.608515] __tun_detach+0x11ae/0x1600 [ 343.608534] ? tun_attach+0x1950/0x1950 [ 343.622597] ? add_lock_to_list.isra.0+0x450/0x450 [ 343.622612] ? fsnotify+0x4f5/0xed0 19:59:51 executing program 5: r0 = semget$private(0x0, 0x8, 0x0) semop(r0, &(0x7f0000000000)=[{0x0, 0x8002}], 0x1) semop(r0, &(0x7f0000000240)=[{0x0, 0x7fff, 0x1000}], 0x1) semop(r0, &(0x7f0000000100)=[{0x3, 0x26, 0x1800}, {0x0, 0x9}, {0x0, 0x7, 0x1000}], 0x3) [ 343.622630] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 343.622646] ? __lock_is_held+0xb6/0x140 [ 343.622676] tun_chr_close+0xe0/0x180 [ 343.622690] __fput+0x3c5/0xb10 [ 343.622704] ? __tun_detach+0x1600/0x1600 [ 343.652761] ? get_max_files+0x20/0x20 [ 343.652775] ? task_work_run+0x1bb/0x2b0 [ 343.652789] ? trace_hardirqs_off_caller+0x300/0x300 [ 343.652801] ? do_raw_spin_trylock+0x270/0x270 [ 343.652814] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.652829] ____fput+0x16/0x20 [ 343.659871] task_work_run+0x1f4/0x2b0 [ 343.659890] ? task_work_cancel+0x2c0/0x2c0 [ 343.659906] ? __close_fd+0x25f/0x3d0 [ 343.659920] ? do_syscall_64+0x8c/0x800 [ 343.659937] exit_to_usermode_loop+0x32a/0x3b0 [ 343.694484] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.694501] ? syscall_trace_enter+0x12a0/0x12a0 [ 343.694516] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 343.694537] do_syscall_64+0x696/0x800 [ 343.694553] ? syscall_return_slowpath+0x5f0/0x5f0 [ 343.694568] ? prepare_exit_to_usermode+0x232/0x3b0 [ 343.702691] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.702712] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.702723] RIP: 0033:0x457ec9 [ 343.702735] Code: 6d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 3b b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 343.702742] RSP: 002b:00007f5442deac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 343.702754] RAX: 0000000000000000 RBX: 00007f5442deac90 RCX: 0000000000457ec9 [ 343.702760] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 343.702769] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 343.801645] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5442deb6d4 [ 343.808913] R13: 00000000004f4352 R14: 00000000004ce498 R15: 0000000000000004 19:59:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f00000002c0)={0x1}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f0000000240), &(0x7f0000000280)=0x4) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000140)={[{0x10000, 0x2, 0x7ff, 0x3, 0x2, 0x1, 0x3, 0x701ae696, 0x6, 0x8, 0x7, 0x3, 0x400}, {0xfffffffffffffffa, 0x4, 0x0, 0x4, 0x4, 0x800, 0x3302, 0x59c3cdaa, 0x8000, 0x7ff, 0x9, 0x8001, 0x7}, {0x5, 0x7ff, 0x3, 0x7fffffff, 0x8, 0x8, 0xf17, 0x10001, 0x9, 0x8, 0x0, 0x3, 0x80}], 0x5}) getuid() syz_open_dev$vivid(&(0x7f0000000040)='/dev/video#\x00', 0x1, 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:52 executing program 2 (fault-call:3 fault-nth:8): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00\x10\x00', 0x4002}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) close(r0) 19:59:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0xffffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) r3 = fcntl$getown(r2, 0x9) waitid(0x1, r3, &(0x7f0000000140), 0x1000002, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) fstat(r2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setgid(r4) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000340)='/dev/null\x00', 0x44000, 0x0) ioctl$VIDIOC_DBG_S_REGISTER(r5, 0x4038564f, &(0x7f0000000380)={{0x1}, 0x8, 0x5, 0x6}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000300)={0x11e9}) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000240)=0xc) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000040)={0x6, 0x8, 0x80000000, 0x0, 0x7, 0x7, 0x5, 0xfffffffffffffff8, 0x80000001, 0x6, 0xfc3f, 0x3f, 0x0, 0xe2, 0x6, 0x10001, 0x7, 0x7f, 0x8000}) 19:59:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f00000000c0)="c4c379146600006543a02d0000000000000064670f01cab8010000000f01d946d8f1e1b066ba400066edb9f60800000f32f2400f0964460f35", 0x39}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]}) r3 = dup2(r1, r1) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f0000000240)={{0x0, 0x5, 0x0, 0xf800000, '\x00', 0x5}, 0x5, 0x31, 0x6, r4, 0x5, 0x2, 'syz0\x00', &(0x7f0000000140)=['self@:ppp0\x00', '/dev/kvm\x00', '/dev/kvm\x00', '/dev/kvm\x00', 'vboxnet0-\x8b#G-\x00'], 0x34, [], [0x6af, 0x814a, 0xc47, 0x5]}) openat$dsp(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 19:59:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 344.274185] BUG: unable to handle kernel paging request at ffff88809fc73000 [ 344.280297] kobject: 'kvm' (000000009d849edb): kobject_uevent_env [ 344.281290] #PF error: [PROT] [WRITE] [RSVD] [ 344.281296] PGD c201067 P4D c201067 PUD 21ffff067 PMD 97ca0063 PTE 800000009fc73163 [ 344.299676] Oops: 000b [#1] PREEMPT SMP KASAN [ 344.304249] CPU: 0 PID: 16190 Comm: syz-executor3 Not tainted 4.20.0+ #5 [ 344.305810] kobject: 'kvm' (000000009d849edb): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 344.311070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.311089] RIP: 0010:mmu_page_zap_pte+0x2b8/0x3b0 [ 344.311101] Code: 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 d1 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 c1 eb 03 <49> c7 04 24 00 00 00 00 c6 04 03 f8 b8 01 00 00 00 e9 2d fe ff ff [ 344.311108] RSP: 0018:ffff888093b0f518 EFLAGS: 00010a06 [ 344.311116] RAX: dffffc0000000000 RBX: 1ffff11012761ea9 RCX: ffffffff81113f2b [ 344.311130] RDX: 1ffff11013f8e600 RSI: ffffffff81113f54 RDI: 0000000000000007 [ 344.351760] kobject: 'kvm' (000000009d849edb): kobject_uevent_env [ 344.353408] RBP: ffff888093b0f5d0 R08: ffff888094908640 R09: ffffed1015cc5b90 [ 344.353415] R10: ffffed1015cc5b8f R11: ffff8880ae62dc7b R12: ffff88809fc73000 [ 344.353423] R13: 1ffff11012761ea5 R14: 0000000000000000 R15: ffff888093b0f5a8 [ 344.353433] FS: 0000000002462940(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 344.353440] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 344.353447] CR2: ffff88809fc73000 CR3: 00000000a9378000 CR4: 00000000001426f0 [ 344.353455] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 344.353461] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 344.353465] Call Trace: [ 344.353478] ? drop_spte+0x220/0x220 [ 344.353489] ? __lock_is_held+0xb6/0x140 [ 344.361057] kobject: 'kvm' (000000009d849edb): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 344.366124] kvm_mmu_prepare_zap_page+0x19d/0x1440 [ 344.366137] ? debug_check_no_obj_freed+0x2f8/0x588 [ 344.366149] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.366160] ? check_preemption_disabled+0x48/0x290 [ 344.366174] ? kvm_handle_hva_range+0x730/0x730 [ 344.366184] ? kvm_make_vcpus_request_mask+0x481/0x5a0 [ 344.366197] ? gfn_to_pfn_atomic+0x6c0/0x6c0 [ 344.366205] ? add_lock_to_list.isra.0+0x450/0x450 [ 344.366217] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.501662] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.507280] ? check_preemption_disabled+0x48/0x290 [ 344.512303] ? kvm_make_all_cpus_request+0x9d/0xe0 [ 344.517239] ? kvm_make_vcpus_request_mask+0x5a0/0x5a0 19:59:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000001c0)={[{0x0, 0x0, 0x0, 0x100000001, 0x0, 0x2}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 344.522513] kvm_mmu_invalidate_zap_all_pages+0x53e/0x710 [ 344.528041] ? kvm_mmu_zap_collapsible_sptes+0x830/0x830 [ 344.533486] ? lock_release+0xc40/0xc40 [ 344.534295] kobject: 'kvm' (000000009d849edb): kobject_uevent_env [ 344.537544] ? rcu_sync_dtor+0x170/0x170 [ 344.537559] kvm_arch_flush_shadow_all+0x16/0x20 [ 344.537572] kvm_mmu_notifier_release+0x5c/0x90 [ 344.537580] ? kvm_vcpu_on_spin+0x800/0x800 [ 344.537654] mmu_notifier_unregister+0x1dd/0x5e0 [ 344.557145] kobject: 'kvm' (000000009d849edb): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 344.557316] ? kvm_vcpu_on_spin+0x800/0x800 [ 344.579649] ? __mmu_notifier_register+0x30/0x30 [ 344.584542] ? free_pages+0x46/0x50 [ 344.588163] kvm_put_kvm+0x6aa/0xff0 [ 344.591867] ? kvm_write_guest_cached+0x40/0x40 [ 344.596569] ? ima_file_free+0x128/0x630 [ 344.600653] ? debugfs_remove+0x130/0x130 [ 344.604793] kvm_vcpu_release+0x7b/0xa0 [ 344.608756] __fput+0x3c5/0xb10 [ 344.612025] ? kvm_vm_release+0x60/0x60 [ 344.615990] ? get_max_files+0x20/0x20 [ 344.619951] ? task_work_run+0x1bb/0x2b0 [ 344.624180] ? trace_hardirqs_off_caller+0x300/0x300 [ 344.629278] ? do_raw_spin_trylock+0x270/0x270 [ 344.633850] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.639374] ____fput+0x16/0x20 [ 344.642644] task_work_run+0x1f4/0x2b0 [ 344.646534] ? task_work_cancel+0x2c0/0x2c0 [ 344.647409] kobject: 'kvm' (000000009d849edb): kobject_uevent_env [ 344.650856] ? __close_fd+0x25f/0x3d0 [ 344.650869] ? do_syscall_64+0x8c/0x800 [ 344.650883] exit_to_usermode_loop+0x32a/0x3b0 [ 344.650895] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 344.650907] ? syscall_trace_enter+0x12a0/0x12a0 [ 344.663601] kobject: 'kvm' (000000009d849edb): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 344.664935] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 344.664951] do_syscall_64+0x696/0x800 [ 344.664965] ? syscall_return_slowpath+0x5f0/0x5f0 [ 344.702708] ? prepare_exit_to_usermode+0x232/0x3b0 [ 344.707712] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 344.712551] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 344.717729] RIP: 0033:0x411c91 [ 344.720909] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 94 19 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 344.739805] RSP: 002b:0000000000a4fd90 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 344.747494] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 0000000000411c91 [ 344.754745] RDX: 0000000000000000 RSI: 0000000000741ac0 RDI: 0000000000000005 [ 344.761998] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 344.769255] R10: 0000000000a4fcc0 R11: 0000000000000293 R12: 0000000000000000 [ 344.776509] R13: 0000000000000001 R14: 0000000000000126 R15: 0000000000000003 [ 344.783852] Modules linked in: [ 344.787026] CR2: ffff88809fc73000 [ 344.790462] ---[ end trace 7f61f3d84e2b3910 ]--- [ 344.795310] RIP: 0010:mmu_page_zap_pte+0x2b8/0x3b0 [ 344.800223] Code: 00 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 d1 00 00 00 48 b8 00 00 00 00 00 fc ff df 48 c1 eb 03 <49> c7 04 24 00 00 00 00 c6 04 03 f8 b8 01 00 00 00 e9 2d fe ff ff [ 344.819105] RSP: 0018:ffff888093b0f518 EFLAGS: 00010a06 [ 344.824451] RAX: dffffc0000000000 RBX: 1ffff11012761ea9 RCX: ffffffff81113f2b [ 344.831704] RDX: 1ffff11013f8e600 RSI: ffffffff81113f54 RDI: 0000000000000007 [ 344.838959] RBP: ffff888093b0f5d0 R08: ffff888094908640 R09: ffffed1015cc5b90 [ 344.846210] R10: ffffed1015cc5b8f R11: ffff8880ae62dc7b R12: ffff88809fc73000 [ 344.853483] R13: 1ffff11012761ea5 R14: 0000000000000000 R15: ffff888093b0f5a8 [ 344.860738] FS: 0000000002462940(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 344.868945] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 344.874934] CR2: ffff88809fc73000 CR3: 00000000a9378000 CR4: 00000000001426f0 [ 344.882198] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 344.889447] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 344.896697] Kernel panic - not syncing: Fatal exception [ 344.903280] Kernel Offset: disabled [ 344.906898] Rebooting in 86400 seconds..