MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  260.765565] Virtual processor ID = 0x0007
23:37:15 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x0, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

23:37:15 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
read(0xffffffffffffffff, 0x0, 0x0)

[  260.849228] *** Guest State ***
[  260.865193] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  260.952782] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  261.034347] CR3 = 0x0000000000000000
[  261.038301] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
23:37:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

23:37:15 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  261.192421] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  261.198982] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  261.244777] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  261.251717] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  261.280518] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:15 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

23:37:15 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  261.295207] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  261.304403] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  261.319820] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  261.328101] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  261.348273] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

[  261.407327] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  261.466699] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:16 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  261.524229] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  261.547067] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  261.567622] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  261.602402] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:37:16 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, 0x0, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  261.666073] Interruptibility = 00000000  ActivityState = 00000000
[  261.692051] *** Host State ***
[  261.741812] RIP = 0xffffffff811c9a16  RSP = 0xffff8880519df8c0
[  261.790133] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  261.826470] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  261.888639] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  261.936975] CR0=0000000080050033 CR3=00000000997b3000 CR4=00000000001426e0
[  261.960354] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  261.976338] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  261.997019] *** Control State ***
[  262.001583] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  262.018745] EntryControls=0000d1ff ExitControls=002fefff
[  262.025290] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  262.032676] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  262.039489] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
23:37:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

23:37:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:16 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

23:37:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

23:37:16 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, 0x0, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  262.046671]         reason=80000021 qualification=0000000000000000
[  262.053314] IDTVectoring: info=00000000 errcode=00000000
[  262.058953] TSC Offset = 0xffffff7275e03e0e
[  262.063893] EPT pointer = 0x000000008653d01e
[  262.068735] Virtual processor ID = 0x0005
23:37:16 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, 0x0, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  262.244102] *** Guest State ***
[  262.285301] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:16 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  262.326982] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:16 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  262.450648] CR3 = 0x0000000000000000
[  262.475756] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  262.509781] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  262.542479] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  262.548696] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  262.555025] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  262.561974] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.570329] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.578808] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:17 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  262.587971] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.596294] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.604598] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.613028] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  262.621453] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.634784] IDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:17 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  262.658752] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  262.678290] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  262.707243] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  262.729501] Interruptibility = 00000000  ActivityState = 00000000
[  262.739961] *** Host State ***
[  262.746769] RIP = 0xffffffff811c9a16  RSP = 0xffff8880585878c0
23:37:17 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  262.756126] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  262.766105] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  262.781816] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  262.795938] CR0=0000000080050033 CR3=00000000a0cb6000 CR4=00000000001426e0
[  262.806233] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  262.814165] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  262.825288] *** Control State ***
[  262.833683] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  262.848556] EntryControls=0000d1ff ExitControls=002fefff
[  262.854691] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  262.861894] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  262.869295] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  262.876580]         reason=80000021 qualification=0000000000000000
[  262.883915] IDTVectoring: info=00000000 errcode=00000000
[  262.889734] TSC Offset = 0xffffff71b54401db
[  262.894697] EPT pointer = 0x000000009535901e
[  262.899420] Virtual processor ID = 0x0008
23:37:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:17 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

23:37:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

23:37:17 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  263.107243] *** Guest State ***
[  263.136460] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  263.188132] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  263.222255] CR3 = 0x0000000000000000
[  263.231944] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
23:37:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

[  263.247875] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  263.276152] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:37:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:17 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  263.300313] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  263.327063] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  263.356962] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.391253] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.412042] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.430874] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.440780] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:18 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  263.456859] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.467480] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  263.481499] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.492076] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  263.513465] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  263.523382] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  263.539068] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:37:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  263.566799] Interruptibility = 00000000  ActivityState = 00000000
[  263.575214] *** Host State ***
[  263.578702] RIP = 0xffffffff811c9a16  RSP = 0xffff88804f8e78c0
[  263.598772] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  263.608877] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  263.631319] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  263.657135] CR0=0000000080050033 CR3=000000008fa39000 CR4=00000000001426e0
[  263.669466] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  263.679585] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  263.697083] *** Control State ***
[  263.718818] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
23:37:18 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  263.748463] EntryControls=0000d1ff ExitControls=002fefff
[  263.758181] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  263.775974] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  263.783725] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  263.801431]         reason=80000021 qualification=0000000000000000
[  263.810030] IDTVectoring: info=00000000 errcode=00000000
[  263.816194] TSC Offset = 0xffffff7140b38eb0
[  263.820770] EPT pointer = 0x0000000091e7301e
[  263.825735] Virtual processor ID = 0x0008
23:37:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:18 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  264.047210] *** Guest State ***
23:37:18 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))

[  264.076240] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  264.199005] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:18 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  264.315258] CR3 = 0x0000000000000000
23:37:18 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  264.361340] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  264.381544] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  264.388645] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  264.395332] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  264.403082] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:37:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  264.410011] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  264.419202] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  264.486036] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  264.543427] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  264.582607] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  264.632595] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  264.712306] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  264.761347] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  264.862034] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  264.875902] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  264.885969] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  264.893510] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  264.901176] Interruptibility = 00000000  ActivityState = 00000000
[  264.908180] *** Host State ***
[  264.911694] RIP = 0xffffffff811c9a16  RSP = 0xffff888052dcf8c0
[  264.918570] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  264.929266] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  264.938331] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  264.944575] CR0=0000000080050033 CR3=000000008efec000 CR4=00000000001426e0
[  264.952372] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  264.959277] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  264.970359] *** Control State ***
[  264.976496] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  264.987515] EntryControls=0000d1ff ExitControls=002fefff
[  264.993246] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  265.000518] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
23:37:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, 0x0, 0x0)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

23:37:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  265.007378] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  265.014736]         reason=80000021 qualification=0000000000000000
[  265.021072] IDTVectoring: info=00000000 errcode=00000000
[  265.026687] TSC Offset = 0xffffff70be1f3851
[  265.031030] EPT pointer = 0x0000000093aa101e
[  265.035599] Virtual processor ID = 0x0008
23:37:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  265.188318] *** Guest State ***
[  265.191661] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  265.249112] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  265.270853] CR3 = 0x0000000000000000
[  265.330433] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  265.350315] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  265.360848] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  265.367557] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  265.373794] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  265.381089] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.389612] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.399687] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.408294] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.416866] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:19 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  265.425994] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.434802] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  265.443079] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.443094] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  265.460761] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  265.469138] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  265.476022] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  265.489348] Interruptibility = 00000000  ActivityState = 00000000
[  265.518036] *** Host State ***
[  265.541888] RIP = 0xffffffff811c9a16  RSP = 0xffff88805b7af8c0
[  265.571613] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
23:37:20 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:20 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  265.589498] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  265.608050] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  265.638929] CR0=0000000080050033 CR3=000000005e9b3000 CR4=00000000001426e0
[  265.683703] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  265.700747] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  265.708343] *** Control State ***
[  265.712064] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  265.727058] EntryControls=0000d1ff ExitControls=002fefff
23:37:20 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  265.735053] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  265.748472] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  265.758181] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  265.765326]         reason=80000021 qualification=0000000000000000
[  265.776965] IDTVectoring: info=00000000 errcode=00000000
23:37:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  265.791038] TSC Offset = 0xffffff7021afb5ca
[  265.795770] EPT pointer = 0x0000000083a2f01e
[  265.800448] Virtual processor ID = 0x0007
23:37:20 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

23:37:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  265.921993] *** Guest State ***
23:37:20 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  265.945525] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  265.986952] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  266.028347] CR3 = 0x0000000000000000
[  266.035585] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  266.045959] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:20 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  266.077491] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  266.103980] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)

23:37:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  266.146745] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  266.177125] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  266.205452] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:20 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0xffffffffffffffff, 0x0, 0x0)

[  266.251189] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  266.265977] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  266.288648] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  266.297097] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  266.332079] GDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:20 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)

[  266.399159] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  266.442850] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  266.476121] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:21 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)

23:37:21 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

[  266.551340] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  266.596572] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  266.649760] Interruptibility = 00000000  ActivityState = 00000000
[  266.667062] *** Host State ***
[  266.670440] RIP = 0xffffffff811c9a16  RSP = 0xffff8880a97478c0
[  266.679030] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  266.694711] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  266.727186] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  266.750375] CR0=0000000080050033 CR3=000000008a6c5000 CR4=00000000001426f0
[  266.758843] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  266.766917] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  266.773097] *** Control State ***
[  266.776563] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  266.783379] EntryControls=0000d1ff ExitControls=002fefff
[  266.788839] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  266.795901] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  266.802723] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  266.809313]         reason=80000021 qualification=0000000000000000
[  266.815752] IDTVectoring: info=00000000 errcode=00000000
[  266.821212] TSC Offset = 0xffffff6fbcc3b03b
23:37:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:21 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

23:37:21 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  266.825626] EPT pointer = 0x00000000a46c201e
[  266.830045] Virtual processor ID = 0x0005
23:37:21 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0)

[  266.949759] *** Guest State ***
[  266.959337] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  266.973940] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  266.983214] CR3 = 0x0000000000000000
[  266.987775] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  266.995359] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  267.011181] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:37:21 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  267.054259] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  267.061958] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  267.079991] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.099140] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:21 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0)

[  267.132875] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.151501] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.164255] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.181316] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.221419] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  267.230161] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.245944] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  267.257858] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  267.269599] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  267.279886] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  267.291917] Interruptibility = 00000000  ActivityState = 00000000
[  267.318631] *** Host State ***
[  267.333376] RIP = 0xffffffff811c9a16  RSP = 0xffff8880528178c0
23:37:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)

23:37:21 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)

[  267.378651] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  267.435328] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  267.461707] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  267.473903] CR0=0000000080050033 CR3=0000000092cde000 CR4=00000000001426f0
23:37:22 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0)

[  267.496575] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  267.512325] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  267.523530] *** Control State ***
[  267.527318] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  267.534480] EntryControls=0000d1ff ExitControls=002fefff
[  267.540225] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  267.547526] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  267.554964] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  267.561829]         reason=80000021 qualification=0000000000000000
[  267.568498] IDTVectoring: info=00000000 errcode=00000000
[  267.575396] TSC Offset = 0xffffff6f304161d7
[  267.580050] EPT pointer = 0x000000009637f01e
[  267.584806] Virtual processor ID = 0x0008
23:37:22 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  267.778385] *** Guest State ***
[  267.792024] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  267.882569] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:22 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  267.968588] CR3 = 0x0000000000000000
[  267.973913] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  267.988460] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  268.010572] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:37:22 executing program 3:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x50, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, r0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x10000200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0)

[  268.019198] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  268.028379] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  268.036777] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  268.045334] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  268.063221] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  268.074062] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  268.082641] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  268.090839] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  268.110466] GDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  268.154284] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:22 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  268.204137] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  268.228286] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:22 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)

[  268.336090] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:22 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  268.382805] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:37:23 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  268.482523] Interruptibility = 00000000  ActivityState = 00000000
[  268.565692] *** Host State ***
[  268.583790] RIP = 0xffffffff811c9a16  RSP = 0xffff8880a39978c0
23:37:23 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  268.611077] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  268.650580] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
23:37:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  268.720171] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  268.757661] CR0=0000000080050033 CR3=0000000087514000 CR4=00000000001426e0
[  268.795450] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  268.835946] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  268.878489] *** Control State ***
[  268.902057] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  268.911280] EntryControls=0000d1ff ExitControls=002fefff
[  268.922998] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  268.931108] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  268.938481] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  268.945576]         reason=80000021 qualification=0000000000000000
23:37:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:23 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:23 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:23 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  268.952655] IDTVectoring: info=00000000 errcode=00000000
[  268.958296] TSC Offset = 0xffffff6ebf7a94b9
[  268.963175] EPT pointer = 0x000000009421501e
[  268.967764] Virtual processor ID = 0x0005
23:37:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.101956] *** Guest State ***
[  269.128524] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  269.144386] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.199738] CR3 = 0x0000000000000000
[  269.210015] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  269.216837] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.245406] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  269.279597] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:23 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.336044] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  269.336061] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.364025] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.409044] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.436292] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.483767] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.521842] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.533035] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  269.541308] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.550229] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  269.558832] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  269.568318] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.577121] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  269.584928] Interruptibility = 00000000  ActivityState = 00000000
[  269.605667] *** Host State ***
[  269.612937] RIP = 0xffffffff811c9a16  RSP = 0xffff888053c8f8c0
[  269.619183] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  269.636318] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  269.644614] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  269.650804] CR0=0000000080050033 CR3=0000000092cde000 CR4=00000000001426e0
[  269.658305] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  269.665757] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  269.672258] *** Control State ***
[  269.676016] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
23:37:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  269.683080] EntryControls=0000d1ff ExitControls=002fefff
[  269.688832] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  269.696184] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  269.703298] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  269.710197]         reason=80000021 qualification=0000000000000000
[  269.716898] IDTVectoring: info=00000000 errcode=00000000
[  269.723054] TSC Offset = 0xffffff6e0b54de04
[  269.727681] EPT pointer = 0x0000000090bbc01e
[  269.732451] Virtual processor ID = 0x0005
23:37:24 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:24 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:24 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  270.019008] *** Guest State ***
[  270.025823] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  270.038355] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  270.047649] CR3 = 0x0000000000000000
[  270.052292] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  270.058825] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  270.065978] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  270.072069] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  270.080583] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  270.091964] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.101282] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.109357] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.117647] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.125910] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.133963] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.133978] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  270.133996] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.134007] IDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  270.134024] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  270.134036] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  270.134047] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  270.134057] Interruptibility = 00000000  ActivityState = 00000000
[  270.134062] *** Host State ***
[  270.134073] RIP = 0xffffffff811c9a16  RSP = 0xffff88805506f8c0
[  270.134093] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  270.159165] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  270.219290] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  270.230443] CR0=0000000080050033 CR3=00000000a7d24000 CR4=00000000001426e0
[  270.239126] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  270.246176] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  270.253780] *** Control State ***
[  270.257507] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  270.264497] EntryControls=0000d1ff ExitControls=002fefff
[  270.276904] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  270.284465] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  270.299100] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  270.318362]         reason=80000021 qualification=0000000000000000
23:37:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  270.327227] IDTVectoring: info=00000000 errcode=00000000
[  270.334163] TSC Offset = 0xffffff6d8ba6e75d
[  270.338733] EPT pointer = 0x00000000a914701e
[  270.343901] Virtual processor ID = 0x0006
23:37:25 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:25 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:25 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  270.917604] *** Guest State ***
[  270.920947] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  270.932290] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  270.941541] CR3 = 0x0000000000000000
[  270.945656] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  270.953143] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  270.959883] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  270.966791] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  270.980860] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  270.988401] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.009519] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.018036] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.027151] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.035270] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.043316] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.051315] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  271.059382] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  271.067396] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  271.076182] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.093999] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  271.100564] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  271.114184] Interruptibility = 00000000  ActivityState = 00000000
[  271.120584] *** Host State ***
[  271.130542] RIP = 0xffffffff811c9a16  RSP = 0xffff8880589678c0
[  271.139933] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  271.158136] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
23:37:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  271.169186] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  271.177161] CR0=0000000080050033 CR3=00000000a0069000 CR4=00000000001426e0
[  271.188661] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  271.197490] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  271.215806] *** Control State ***
[  271.238667] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  271.264418] EntryControls=0000d1ff ExitControls=002fefff
[  271.270033] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  271.277330] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  271.284244] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  271.290941]         reason=80000021 qualification=0000000000000000
[  271.297427] IDTVectoring: info=00000000 errcode=00000000
[  271.303164] TSC Offset = 0xffffff6d0fbc2139
[  271.307592] EPT pointer = 0x00000000946d101e
[  271.314774] Virtual processor ID = 0x0006
23:37:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:26 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:26 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  271.773663] *** Guest State ***
[  271.777981] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  271.788516] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  271.797846] CR3 = 0x0000000000000000
[  271.801604] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  271.808393] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  271.815028] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  271.821584] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  271.834933] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  271.841660] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.850424] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.860019] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.868906] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.884538] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.893212] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.901387] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  271.910059] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.918334] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  271.926609] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  271.935062] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  271.941583] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  271.949325] Interruptibility = 00000000  ActivityState = 00000000
[  271.955700] *** Host State ***
[  271.958996] RIP = 0xffffffff811c9a16  RSP = 0xffff88805584f8c0
[  271.959021] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  271.971640] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  271.979802] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  271.986091] CR0=0000000080050033 CR3=0000000096138000 CR4=00000000001426f0
[  271.997961] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  272.004978] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  272.011545] *** Control State ***
[  272.015296] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
23:37:26 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  272.022208] EntryControls=0000d1ff ExitControls=002fefff
[  272.027861] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  272.035471] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  272.050530] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  272.059025]         reason=80000021 qualification=0000000000000000
23:37:26 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  272.070197] IDTVectoring: info=00000000 errcode=00000000
[  272.076593] TSC Offset = 0xffffff6c9a940031
[  272.081148] EPT pointer = 0x00000000a519b01e
[  272.085917] Virtual processor ID = 0x0006
23:37:26 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  272.240489] *** Guest State ***
[  272.245399] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  272.258312] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  272.268075] CR3 = 0x0000000000000000
[  272.272797] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  272.279568] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  272.286891] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  272.293316] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  272.299481] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  272.306412] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.314749] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.322986] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.331160] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.339551] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.347745] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.355931] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  272.364105] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.372274] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  272.380372] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:26 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  272.399387] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  272.406331] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  272.427237] Interruptibility = 00000000  ActivityState = 00000000
[  272.444115] *** Host State ***
23:37:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  272.472535] RIP = 0xffffffff811c9a16  RSP = 0xffff88808c6678c0
[  272.481216] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  272.498800] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  272.508748] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
23:37:27 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  272.522816] CR0=0000000080050033 CR3=00000000821e0000 CR4=00000000001426e0
[  272.536183] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  272.561731] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  272.583794] *** Control State ***
[  272.604610] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  272.621376] EntryControls=0000d1ff ExitControls=002fefff
[  272.627208] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  272.638424] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  272.646366] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
23:37:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  272.657423]         reason=80000021 qualification=0000000000000000
[  272.663821] IDTVectoring: info=00000000 errcode=00000000
[  272.669294] TSC Offset = 0xffffff6c5a4f50a6
[  272.678543] EPT pointer = 0x00000000a81ae01e
[  272.683943] Virtual processor ID = 0x0008
[  272.757018] *** Guest State ***
[  272.760631] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  272.771177] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  272.782856] CR3 = 0x0000000000000000
[  272.786894] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  272.793838] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  272.800519] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  272.807441] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  272.813985] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  272.820875] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.829556] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.837891] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.846243] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:27 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  272.854586] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.862894] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.884126] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  272.908191] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.920047] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  272.938384] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  272.946878] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  272.953962] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  272.974257] Interruptibility = 00000000  ActivityState = 00000000
[  272.980719] *** Host State ***
[  272.984572] RIP = 0xffffffff811c9a16  RSP = 0xffff88808c6678c0
[  272.993408] *** Guest State ***
23:37:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  273.003437] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  273.018243] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  273.027501] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  273.040093] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  273.056127] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  273.068957] CR0=0000000080050033 CR3=0000000082770000 CR4=00000000001426e0
[  273.079988] CR3 = 0x0000000000000000
[  273.083887] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  273.083900] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  273.083905] *** Control State ***
[  273.083914] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  273.083922] EntryControls=0000d1ff ExitControls=002fefff
[  273.083937] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  273.123312] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  273.137110] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  273.144937] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  273.151363] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  273.158038] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  273.165577] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  273.173025]         reason=80000021 qualification=0000000000000000
[  273.174859] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  273.179885] IDTVectoring: info=00000000 errcode=00000000
[  273.191958] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.193595] TSC Offset = 0xffffff6c13849d7c
[  273.201081] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.205217] EPT pointer = 0x000000008dec401e
[  273.217851] Virtual processor ID = 0x0008
[  273.218388] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.237766] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.251269] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:27 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  273.281476] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.301047] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  273.310220] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.327453] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  273.344631] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.352973] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  273.359541] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  273.367243] Interruptibility = 00000000  ActivityState = 00000000
[  273.374067] *** Host State ***
23:37:27 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  273.377400] RIP = 0xffffffff811c9a16  RSP = 0xffff88805a8a78c0
[  273.390864] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  273.423951] FSBase=00007f23a4563700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  273.460074] *** Guest State ***
23:37:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  273.479865] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  273.487750] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  273.493507] *** Guest State ***
[  273.497130] CR0=0000000080050033 CR3=00000000914a5000 CR4=00000000001426f0
[  273.513266] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  273.521354] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  273.527599] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  273.553776] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  273.559172] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  273.568094] CR3 = 0x0000000000000000
[  273.585173] *** Control State ***
[  273.588843] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  273.603815] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  273.616070] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  273.623025] EntryControls=0000d1ff ExitControls=002fefff
[  273.629039] CR3 = 0x0000000000000000
[  273.629481] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  273.639032] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  273.644152] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  273.646188] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  273.658410] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  273.658874] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  273.666956] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  273.672671] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  273.686073] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  273.686519] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  273.693925] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.706233] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  273.707389]         reason=80000021 qualification=0000000000000000
[  273.717317] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.720915] IDTVectoring: info=00000000 errcode=00000000
[  273.735036] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.736491] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.743639] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.759562] TSC Offset = 0xffffff6bf4837ae6
[  273.759573] EPT pointer = 0x00000000945c201e
[  273.759592] Virtual processor ID = 0x0006
[  273.777782] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.778687] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.786315] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.800369] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.802570] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.810804] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.820057] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  273.835284] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.839765] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.849275] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  273.860122] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  273.860133] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.860147] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:28 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  273.876596] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  273.890817] Interruptibility = 00000000  ActivityState = 00000000
[  273.896577] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.897532] *** Host State ***
[  273.908838] RIP = 0xffffffff811c9a16  RSP = 0xffff88805506f8c0
[  273.915229] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  273.917919] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  273.936944] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  273.951949] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  273.960620] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  273.977547] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  273.979741] CR0=0000000080050033 CR3=0000000080e4d000 CR4=00000000001426f0
[  273.996524] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  274.014309] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  274.029383] Interruptibility = 00000000  ActivityState = 00000000
[  274.039426] *** Host State ***
[  274.042914] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  274.051586] *** Guest State ***
[  274.055303] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  274.059079] RIP = 0xffffffff811c9a16  RSP = 0xffff888054fe78c0
[  274.064931] *** Control State ***
[  274.075454] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  274.081263] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  274.092482] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  274.103168] EntryControls=0000d1ff ExitControls=002fefff
[  274.109408] CR3 = 0x0000000000000000
[  274.113477] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  274.118189] FSBase=00007efd98fef700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  274.120959] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  274.135308] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  274.142623] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  274.150001] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  274.150700]         reason=80000021 qualification=0000000000000000
[  274.159370] CR0=0000000080050033 CR3=00000000911cb000 CR4=00000000001426e0
[  274.175952] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  274.182140] IDTVectoring: info=00000000 errcode=00000000
[  274.185091] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  274.191565] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  274.199960] *** Control State ***
[  274.206838] TSC Offset = 0xffffff6bb46aca67
[  274.209022] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  274.214966] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  274.238379] EntryControls=0000d1ff ExitControls=002fefff
[  274.244484] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  274.245711] EPT pointer = 0x000000009280201e
[  274.260508] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  274.268142] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  274.271288] Virtual processor ID = 0x0008
[  274.281616] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:28 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  274.288261]         reason=80000021 qualification=0000000000000000
[  274.308062] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  274.318492] IDTVectoring: info=00000000 errcode=00000000
[  274.331906] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.351292] TSC Offset = 0xffffff6bafd715ab
23:37:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  274.371848] EPT pointer = 0x0000000096ba301e
[  274.389777] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.401031] Virtual processor ID = 0x0009
[  274.413784] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:29 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  274.459511] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.461468] *** Guest State ***
[  274.481887] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  274.495557] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.518229] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  274.527806] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.559770] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  274.576587] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.587777] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  274.599561] CR3 = 0x0000000000000000
[  274.601105] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.608854] *** Guest State ***
[  274.617832] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  274.617911] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  274.630024] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  274.638248] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  274.645028] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:29 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  274.658536] Interruptibility = 00000000  ActivityState = 00000000
[  274.661692] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  274.674380] *** Host State ***
[  274.677807] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  274.684064] RIP = 0xffffffff811c9a16  RSP = 0xffff88805a8a78c0
[  274.690265] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  274.696652] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  274.704616] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  274.711802] CR3 = 0x0000000000000000
[  274.717389] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.726312] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  274.737138] FSBase=00007f23a4563700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  274.746127] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.760815] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  274.768647] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.787486] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.796965] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  274.804333] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  274.815430] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.824430] CR0=0000000080050033 CR3=0000000093eea000 CR4=00000000001426f0
[  274.825855] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  274.832008] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.845637] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  274.848185] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  274.857521] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.868349] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  274.871600] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.877048] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  274.894871] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.903140] *** Control State ***
[  274.906826] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  274.908401] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.915340] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  274.930268] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.939287] EntryControls=0000d1ff ExitControls=002fefff
[  274.941201] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.945061] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  274.959588] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  274.960277] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.967285] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  274.981477] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  274.985906] Interruptibility = 00000000  ActivityState = 00000000
[  275.002340] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  275.011681] *** Host State ***
[  275.015342] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  275.018451] RIP = 0xffffffff811c9a16  RSP = 0xffff88805506f8c0
[  275.028321] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.035972] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  275.040090] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  275.049833] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  275.059981]         reason=80000021 qualification=0000000000000000
[  275.070585] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  275.071509] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  275.085046] IDTVectoring: info=00000000 errcode=00000000
[  275.097702] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.101418] TSC Offset = 0xffffff6b63958c55
[  275.109476] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  275.112487] EPT pointer = 0x000000009103a01e
[  275.120544] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  275.121553] CR0=0000000080050033 CR3=000000009a20f000 CR4=00000000001426f0
[  275.135677] Interruptibility = 00000000  ActivityState = 00000000
[  275.136395] Virtual processor ID = 0x0006
[  275.148258] *** Host State ***
[  275.148505] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  275.151767] RIP = 0xffffffff811c9a16  RSP = 0xffff88805510f8c0
[  275.164985] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
23:37:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  275.183376] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  275.185730] *** Control State ***
[  275.202066] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  275.205175] FSBase=00007efd98fef700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  275.214526] EntryControls=0000d1ff ExitControls=002fefff
23:37:29 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  275.235503] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  275.249786] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  275.252001] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  275.281626] CR0=0000000080050033 CR3=00000000911cb000 CR4=00000000001426f0
[  275.296161] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  275.309867] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  275.315361]         reason=80000021 qualification=0000000000000000
[  275.323718] IDTVectoring: info=00000000 errcode=00000000
[  275.329689] TSC Offset = 0xffffff6b2a3996c2
[  275.334595] EPT pointer = 0x000000009416c01e
[  275.337922] *** Guest State ***
[  275.347216] Virtual processor ID = 0x0008
[  275.361921] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:29 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  275.383216] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  275.389762] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  275.411192] *** Control State ***
[  275.420621] CR3 = 0x0000000000000000
[  275.436904] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  275.441182] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  275.454138] *** Guest State ***
[  275.457718] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  275.466924] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  275.471564] EntryControls=0000d1ff ExitControls=002fefff
[  275.474703] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  275.485475] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  275.488603] CR3 = 0x0000000000000000
[  275.499404] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  275.509354] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  275.518732] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  275.524805] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  275.540509] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  275.547571] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  275.551071] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  275.554769] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  275.566824] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  275.571946]         reason=80000021 qualification=0000000000000000
[  275.578636] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:37:30 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  275.580865] IDTVectoring: info=00000000 errcode=00000000
[  275.597030] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.609610] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.622646] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.629976] TSC Offset = 0xffffff6b16f4527b
[  275.633276] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.647182] EPT pointer = 0x000000009fd3001e
[  275.650422] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.661488] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.669921] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.670988] Virtual processor ID = 0x0009
[  275.678662] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:30 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  275.691641] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.700286] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.708723] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.717056] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.725509] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  275.733893] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  275.742404] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.750825] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.760912] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  275.769918] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  275.778463] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.786845] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  275.799758] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  275.806601] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  275.807163] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  275.821862] Interruptibility = 00000000  ActivityState = 00000000
[  275.828741] *** Host State ***
[  275.830754] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:37:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  275.849652] RIP = 0xffffffff811c9a16  RSP = 0xffff888054fe78c0
[  275.851390] Interruptibility = 00000000  ActivityState = 00000000
[  275.862553] *** Host State ***
[  275.866012] RIP = 0xffffffff811c9a16  RSP = 0xffff8880531df8c0
[  275.869904] *** Guest State ***
[  275.875240] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  275.881805] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  275.891186] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  275.905154] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  275.912703] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  275.922636] CR0=0000000080050033 CR3=000000009a20f000 CR4=00000000001426f0
[  275.927174] FSBase=00007f23a4563700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  275.938226] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  275.947733] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  275.974786] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  275.975521] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  275.985615] *** Control State ***
[  275.990589] CR3 = 0x0000000000000000
[  275.994762] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  276.002206] EntryControls=0000d1ff ExitControls=002fefff
[  276.008090] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  276.014496] CR0=0000000080050033 CR3=00000000956d6000 CR4=00000000001426e0
[  276.015517] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  276.027304] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  276.029038] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  276.037251] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  276.043384] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  276.055803] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  276.055862] *** Control State ***
[  276.062667]         reason=80000021 qualification=0000000000000000
[  276.070160] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  276.072680] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  276.085866] EntryControls=0000d1ff ExitControls=002fefff
[  276.091558] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  276.093200] IDTVectoring: info=00000000 errcode=00000000
[  276.101194] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  276.104447] TSC Offset = 0xffffff6aa1e50e4f
[  276.116903] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  276.120295] EPT pointer = 0x000000008fa3601e
[  276.124628]         reason=80000021 qualification=0000000000000000
[  276.138729] Virtual processor ID = 0x0008
[  276.143224] IDTVectoring: info=00000000 errcode=00000000
23:37:30 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  276.151485] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  276.166828] TSC Offset = 0xffffff6ab1f1b15b
[  276.171551] EPT pointer = 0x0000000091fc001e
[  276.187157] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  276.200941] Virtual processor ID = 0x0005
23:37:30 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  276.205343] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.236877] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:30 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  276.273371] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.343307] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.351356] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:30 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  276.398942] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.421988] *** Guest State ***
[  276.432316] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:31 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  276.451910] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  276.465163] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  276.486789] CR3 = 0x0000000000000000
[  276.492296] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.509087] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  276.531096] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.539682] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  276.550494] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  276.559104] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  276.573568] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  276.575412] Interruptibility = 00000000  ActivityState = 00000000
[  276.598015] *** Host State ***
[  276.615766] RIP = 0xffffffff811c9a16  RSP = 0xffff8880571ef8c0
[  276.622020] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  276.635493] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  276.646639] FSBase=00007efd98fef700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  276.650177] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  276.666210] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  276.668804] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  276.680247] CR0=0000000080050033 CR3=000000009f5ac000 CR4=00000000001426e0
[  276.700244] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  276.700776] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.729433] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  276.739754] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.753615] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.761958] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.771629] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.775045] *** Control State ***
[  276.780325] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.792258] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  276.799592] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  276.808029] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.817886] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  276.826235] EntryControls=0000d1ff ExitControls=002fefff
[  276.832544] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  276.841443] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  276.848961] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  276.849776] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  276.856101] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  276.869503]         reason=80000021 qualification=0000000000000000
[  276.871951] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  276.876258] IDTVectoring: info=00000000 errcode=00000000
[  276.889446] Interruptibility = 00000000  ActivityState = 00000000
[  276.890603] TSC Offset = 0xffffff6a6c880a0d
[  276.896023] *** Host State ***
[  276.902312] EPT pointer = 0x0000000092d7c01e
[  276.908086] Virtual processor ID = 0x0009
[  276.909206] RIP = 0xffffffff811c9a16  RSP = 0xffff8880575df8c0
[  276.918612] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
23:37:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:31 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:31 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  276.936816] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  276.964285] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  276.979917] CR0=0000000080050033 CR3=0000000082f62000 CR4=00000000001426f0
[  277.013254] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  277.055139] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  277.087389] *** Control State ***
[  277.097724] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
23:37:31 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  277.115040] EntryControls=0000d1ff ExitControls=002fefff
[  277.124129] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  277.154531] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
23:37:31 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  277.182301] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  277.201088]         reason=80000021 qualification=0000000000000000
[  277.208980] IDTVectoring: info=00000000 errcode=00000000
[  277.224186] TSC Offset = 0xffffff6a1dce5603
[  277.228860] EPT pointer = 0x000000009828d01e
[  277.249336] Virtual processor ID = 0x0006
23:37:31 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:31 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:32 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  277.450220] *** Guest State ***
[  277.455399] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  277.469340] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  277.480454] CR3 = 0x0000000000000000
[  277.489288] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  277.517317] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  277.605320] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:37:32 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:32 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  277.652385] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  277.672600] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  277.704947] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.746627] *** Guest State ***
[  277.747315] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.759769] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:32 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:32 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  277.795375] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.810990] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  277.833595] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.861524] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.872281] CR3 = 0x0000000000000000
[  277.886880] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  277.894088] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.916418] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  277.955595] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.968288] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  277.975336] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  277.983753] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  277.992042] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  278.003862] EFER =     0x0000000000000000  PAT = 0x0007040600070406
23:37:32 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:32 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  278.013655] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  278.021511] Interruptibility = 00000000  ActivityState = 00000000
[  278.028226] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  278.034563] *** Host State ***
[  278.038011] RIP = 0xffffffff811c9a16  RSP = 0xffff88805846f8c0
[  278.050552] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  278.057563] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  278.064300] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  278.064314] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  278.064328] CR0=0000000080050033 CR3=000000009792f000 CR4=00000000001426e0
[  278.064342] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  278.064354] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  278.064366] *** Control State ***
[  278.088199] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  278.094840] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.103127] EntryControls=0000d1ff ExitControls=002fefff
[  278.124694] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.133051] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.142395] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  278.150991] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
23:37:32 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  278.175381] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.183635] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  278.191023]         reason=80000021 qualification=0000000000000000
[  278.203267] IDTVectoring: info=00000000 errcode=00000000
[  278.208895] TSC Offset = 0xffffff6990336750
[  278.217383] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.245078] EPT pointer = 0x00000000950d201e
[  278.249682] Virtual processor ID = 0x0008
23:37:32 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  278.275917] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.295113] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  278.310933] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.319647] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  278.328026] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.336352] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  278.343105] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  278.350792] Interruptibility = 00000000  ActivityState = 00000000
[  278.359662] *** Host State ***
[  278.363181] RIP = 0xffffffff811c9a16  RSP = 0xffff88805801f8c0
[  278.369438] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  278.376273] FSBase=00007efd98fef700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  278.384411] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  278.390579] CR0=0000000080050033 CR3=0000000082d47000 CR4=00000000001426f0
[  278.398032] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  278.405124] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  278.411443] *** Control State ***
[  278.415119] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
23:37:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  278.421935] EntryControls=0000d1ff ExitControls=002fefff
[  278.427670] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  278.434764] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  278.441548] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  278.448294]         reason=80000021 qualification=0000000000000000
[  278.454831] IDTVectoring: info=00000000 errcode=00000000
[  278.460298] TSC Offset = 0xffffff696883ba01
[  278.464935] EPT pointer = 0x00000000a7a0701e
[  278.469374] Virtual processor ID = 0x0006
[  278.539092] *** Guest State ***
[  278.542555] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  278.551506] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  278.560589] CR3 = 0x0000000000000000
[  278.564407] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  278.570914] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  278.577838] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  278.584685] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  278.590901] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  278.597985] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.607690] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.616312] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.627402] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.638099] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.646518] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.654915] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  278.663288] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.671294] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  278.679726] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  278.688461] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  278.695614] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  278.703488] Interruptibility = 00000000  ActivityState = 00000000
[  278.710054] *** Host State ***
[  278.713605] RIP = 0xffffffff811c9a16  RSP = 0xffff888094cc78c0
[  278.720083] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
23:37:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  278.739056] FSBase=00007efd98fef700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  278.762655] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  278.780922] CR0=0000000080050033 CR3=0000000082d47000 CR4=00000000001426e0
[  278.798063] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  278.805108] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  278.811671] *** Control State ***
[  278.815372] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  278.822342] EntryControls=0000d1ff ExitControls=002fefff
[  278.827844] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  278.834882] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  278.841600] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
23:37:33 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  278.848650]         reason=80000021 qualification=0000000000000000
[  278.870689] IDTVectoring: info=00000000 errcode=00000000
[  278.879277] TSC Offset = 0xffffff68faf47447
23:37:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  278.896770] EPT pointer = 0x0000000085cce01e
[  278.911903] Virtual processor ID = 0x0005
23:37:33 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:33 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:33 executing program 3:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:33 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:33 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.269259] *** Guest State ***
[  279.285460] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:33 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.319414] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  279.346637] CR3 = 0x0000000000000000
[  279.359843] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  279.418389] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  279.438793] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  279.445335] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  279.451562] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:37:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.465340] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.474367] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.483018] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.502418] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.515152] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.534638] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.556733] GDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.574471] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.607753] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  279.623167] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  279.645859] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  279.660914] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:37:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.682432] Interruptibility = 00000000  ActivityState = 00000000
[  279.702523] *** Host State ***
[  279.708279] RIP = 0xffffffff811c9a16  RSP = 0xffff888052a378c0
[  279.722488] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
23:37:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:34 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  279.739061] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  279.750771] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  279.761520] CR0=0000000080050033 CR3=0000000098e71000 CR4=00000000001426e0
[  279.790387] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  279.818831] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  279.860486] *** Control State ***
[  279.872478] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  279.892958] EntryControls=0000d1ff ExitControls=002fefff
23:37:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.926358] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  279.935391] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  279.957527] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  279.964967]         reason=80000021 qualification=0000000000000000
23:37:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  279.979873] IDTVectoring: info=00000000 errcode=00000000
[  279.995741] TSC Offset = 0xffffff68991849c7
[  280.001295] EPT pointer = 0x000000008e41901e
[  280.007413] Virtual processor ID = 0x0007
23:37:34 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:34 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:34 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  280.213783] *** Guest State ***
[  280.236309] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  280.248759] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  280.269983] CR3 = 0x0000000000000000
[  280.322521] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  280.352420] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  280.365833] *** Guest State ***
23:37:34 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  280.369153] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  280.369166] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  280.369181] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  280.369194] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.369212] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.369232] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.404236] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.404256] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.404274] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.404287] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  280.404304] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.404316] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  280.404333] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.404344] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  280.404355] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  280.404365] Interruptibility = 00000000  ActivityState = 00000000
[  280.404370] *** Host State ***
[  280.404381] RIP = 0xffffffff811c9a16  RSP = 0xffff8880520178c0
[  280.404402] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  280.404414] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  280.404427] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  280.404441] CR0=0000000080050033 CR3=00000000964f4000 CR4=00000000001426f0
[  280.404461] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  280.423172] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  280.527339] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  280.579479] *** Control State ***
[  280.586185] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  280.598388] EntryControls=0000d1ff ExitControls=002fefff
[  280.618316] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
23:37:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r3, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  280.627645] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  280.639505] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  280.646641] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  280.667635] CR3 = 0x0000000000000000
23:37:35 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  280.687647] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  280.691664]         reason=80000021 qualification=0000000000000000
[  280.713741] IDTVectoring: info=00000000 errcode=00000000
[  280.722628] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  280.754397] TSC Offset = 0xffffff681667a96d
[  280.766711] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  280.780013] EPT pointer = 0x000000009f24b01e
[  280.791116] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  280.799792] Virtual processor ID = 0x0005
23:37:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  280.826677] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  280.864554] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:35 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:35 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  280.888146] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.905384] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  280.960164] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.011183] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.041263] *** Guest State ***
[  281.045465] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:35 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  281.058539] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  281.091562] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  281.100156] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  281.121906] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.172716] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  281.209694] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.227467] CR3 = 0x0000000000000000
[  281.247786] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  281.254710] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  281.260838] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  281.286431] Interruptibility = 00000000  ActivityState = 00000000
[  281.293573] *** Host State ***
[  281.297003] RIP = 0xffffffff811c9a16  RSP = 0xffff8880525b78c0
[  281.298361] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  281.303589] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  281.318000] FSBase=00007f23a4563700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  281.331625] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  281.340740] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  281.342676] CR0=0000000080050033 CR3=00000000a0ba1000 CR4=00000000001426e0
[  281.354472] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  281.361236] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  281.361540] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  281.374295] *** Control State ***
[  281.376168] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  281.393315] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.396636] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  281.401477] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.417429] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.425805] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.431174] EntryControls=0000d1ff ExitControls=002fefff
[  281.434065] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.445815] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  281.447761] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.456761] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  281.463340] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  281.476101] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  281.478134] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.484768]         reason=80000021 qualification=0000000000000000
[  281.500266] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  281.504392] IDTVectoring: info=00000000 errcode=00000000
[  281.510049] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.518127] TSC Offset = 0xffffff6801229bc9
[  281.522825] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  281.529899] EPT pointer = 0x000000009d5b001e
[  281.533946] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  281.540945] Virtual processor ID = 0x0006
23:37:36 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  281.545936] Interruptibility = 00000000  ActivityState = 00000000
[  281.557499] *** Host State ***
[  281.560914] RIP = 0xffffffff811c9a16  RSP = 0xffff8880544378c0
[  281.569412] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  281.580911] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
23:37:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  281.597523] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  281.618707] CR0=0000000080050033 CR3=000000008681e000 CR4=00000000001426f0
[  281.651783] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  281.685971] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  281.690834] *** Guest State ***
[  281.702527] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  281.711662] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  281.713477] *** Control State ***
[  281.730860] CR3 = 0x0000000000000000
[  281.731530] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  281.736639] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
23:37:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  281.745820] EntryControls=0000d1ff ExitControls=002fefff
[  281.762288] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  281.773038] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  281.790681] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
23:37:36 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  281.810760] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  281.814813]         reason=80000021 qualification=0000000000000000
[  281.837806] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:37:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  281.857974] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  281.864497] IDTVectoring: info=00000000 errcode=00000000
[  281.870034] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  281.886763] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.898750] TSC Offset = 0xffffff67a48e543d
[  281.915346] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.918233] EPT pointer = 0x000000008a77801e
[  281.937851] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  281.956861] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:36 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:36 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  281.965484] Virtual processor ID = 0x0005
[  281.994135] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.008581] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.030215] GDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:36 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:36 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  282.061084] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.151250] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  282.182385] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:36 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  282.204178] *** Guest State ***
[  282.219556] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  282.233201] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:36 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  282.309106] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  282.331984] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  282.365342] Interruptibility = 00000000  ActivityState = 00000000
[  282.377532] *** Host State ***
[  282.381746] CR3 = 0x0000000000000000
[  282.387871] RIP = 0xffffffff811c9a16  RSP = 0xffff888050ec78c0
[  282.398578] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  282.407237] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  282.418015] FSBase=00007f23a4563700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  282.426206] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  282.432950] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  282.432965] CR0=0000000080050033 CR3=0000000082ef8000 CR4=00000000001426e0
[  282.446177] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  282.456214] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  282.466201] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  282.474619] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  282.485884] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  282.493347] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.507424] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.515969] *** Control State ***
[  282.519624] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  282.526581] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.541042] EntryControls=0000d1ff ExitControls=002fefff
[  282.546943] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.546960] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.546975] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.546986] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  282.547001] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.547013] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  282.547031] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  282.547042] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  282.547053] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  282.547063] Interruptibility = 00000000  ActivityState = 00000000
[  282.547067] *** Host State ***
[  282.547079] RIP = 0xffffffff811c9a16  RSP = 0xffff888050c3f8c0
[  282.547099] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  282.557093] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  282.568540] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  282.576990] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  282.579666] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  282.593522] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  282.596178] CR0=0000000080050033 CR3=000000008080b000 CR4=00000000001426e0
[  282.604343]         reason=80000021 qualification=0000000000000000
[  282.610790] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  282.624993] IDTVectoring: info=00000000 errcode=00000000
[  282.627903] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  282.634436] TSC Offset = 0xffffff674affaf19
[  282.641175] *** Control State ***
23:37:37 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  282.653941] EPT pointer = 0x000000008e73b01e
[  282.656227] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  282.663245] Virtual processor ID = 0x0009
[  282.669109] EntryControls=0000d1ff ExitControls=002fefff
[  282.682992] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  282.696168] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  282.750958] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  282.757843]         reason=80000021 qualification=0000000000000000
[  282.768410] IDTVectoring: info=00000000 errcode=00000000
[  282.789228] TSC Offset = 0xffffff6707c015af
[  282.814555] EPT pointer = 0x000000008c63301e
[  282.838604] Virtual processor ID = 0x0006
23:37:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  282.905870] *** Guest State ***
[  282.917557] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  282.937571] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  282.962208] CR3 = 0x0000000000000000
23:37:37 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  282.996721] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
23:37:37 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  283.097372] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  283.144082] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  283.166806] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  283.190858] *** Guest State ***
[  283.207092] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  283.222906] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  283.246630] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:37 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  283.256806] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  283.279255] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.304838] CR3 = 0x0000000000000000
[  283.317760] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  283.337541] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.352339] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.383793] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  283.399030] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.414783] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  283.421155] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.429899] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  283.436555] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  283.445662] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  283.453055] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.463386] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.471917] IDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  283.479971] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.479991] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.480013] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.480030] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.480047] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.490449] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.514208] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  283.529400] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  283.548809] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  283.558371] Interruptibility = 00000000  ActivityState = 00000000
[  283.573271] *** Host State ***
[  283.576896] RIP = 0xffffffff811c9a16  RSP = 0xffff888053abf8c0
[  283.583580] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  283.587306] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.590291] FSBase=00007f23a4563700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  283.606883] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  283.613480] CR0=0000000080050033 CR3=0000000098454000 CR4=00000000001426f0
[  283.620875] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  283.628290] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  283.634981] *** Control State ***
[  283.638965] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  283.646366] EntryControls=0000d1ff ExitControls=002fefff
[  283.652492] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  283.659773] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  283.667100] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  283.674579]         reason=80000021 qualification=0000000000000000
[  283.679555] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  283.681236] IDTVectoring: info=00000000 errcode=00000000
[  283.689940] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  283.703806] TSC Offset = 0xffffff66a76a279e
[  283.708469] EPT pointer = 0x000000008662401e
[  283.708572] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  283.719922] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  283.728275] Virtual processor ID = 0x0009
[  283.733784] Interruptibility = 00000000  ActivityState = 00000000
[  283.740220] *** Host State ***
[  283.752407] RIP = 0xffffffff811c9a16  RSP = 0xffff8880552c78c0
[  283.759846] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  283.767974] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  283.776432] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
23:37:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  283.790742] CR0=0000000080050033 CR3=0000000088457000 CR4=00000000001426e0
[  283.799592] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  283.822925] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  283.856873] *** Control State ***
[  283.860594] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  283.868197] EntryControls=0000d1ff ExitControls=002fefff
[  283.891016] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
23:37:38 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:38 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  283.945682] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  283.959048] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  283.980650]         reason=80000021 qualification=0000000000000000
[  284.012949] IDTVectoring: info=00000000 errcode=00000000
[  284.018761] TSC Offset = 0xffffff667d702f2c
[  284.029359] EPT pointer = 0x000000009904001e
[  284.034127] Virtual processor ID = 0x0005
23:37:38 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:38 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  284.162868] *** Guest State ***
[  284.170985] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  284.191117] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  284.213297] CR3 = 0x0000000000000000
[  284.260816] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  284.271700] *** Guest State ***
[  284.290085] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:38 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  284.338204] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  284.347088] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  284.358267] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  284.368585] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  284.370185] CR3 = 0x0000000000000000
[  284.380318] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  284.399973] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  284.407294] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.437174] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.443393] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  284.454827] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.459614] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  284.464455] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.477176] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  284.477191] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  284.477204] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.477222] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.477239] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.477258] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.485237] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.500961] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.506444] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.514953] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.529124] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  284.531359] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  284.539376] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.547692] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.561582] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  284.563913] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  284.571864] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.580124] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  284.594991] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  284.596370] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  284.610861] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  284.612550] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  284.623537] Interruptibility = 00000000  ActivityState = 00000000
[  284.627125] Interruptibility = 00000000  ActivityState = 00000000
[  284.639327] *** Host State ***
[  284.641154] *** Host State ***
[  284.648618] RIP = 0xffffffff811c9a16  RSP = 0xffff888052d878c0
[  284.655123] RIP = 0xffffffff811c9a16  RSP = 0xffff888050ed78c0
[  284.664904] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  284.674053] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  284.680178] FSBase=00007efd98fef700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
23:37:39 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  284.693260] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  284.710944] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  284.720543] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  284.726944] CR0=0000000080050033 CR3=000000009850a000 CR4=00000000001426e0
[  284.734570] CR0=0000000080050033 CR3=0000000082f07000 CR4=00000000001426e0
[  284.741894] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  284.757263] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  284.762398] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  284.770552] *** Control State ***
[  284.778060] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  284.786947] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  284.789717] *** Control State ***
[  284.800351] EntryControls=0000d1ff ExitControls=002fefff
[  284.806617] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  284.808348] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  284.820573] EntryControls=0000d1ff ExitControls=002fefff
[  284.824513] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  284.843238] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  284.846616] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
23:37:39 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  284.850306]         reason=80000021 qualification=0000000000000000
[  284.869372] IDTVectoring: info=00000000 errcode=00000000
[  284.875367] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  284.875987] TSC Offset = 0xffffff65ecdbcffd
[  284.896826] EPT pointer = 0x0000000092ca901e
[  284.898049] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  284.908622] Virtual processor ID = 0x0007
[  284.932812]         reason=80000021 qualification=0000000000000000
[  284.942634] IDTVectoring: info=00000000 errcode=00000000
[  284.955668] TSC Offset = 0xffffff65f80b5bc2
[  284.962560] EPT pointer = 0x00000000899e701e
[  284.975094] Virtual processor ID = 0x0006
23:37:39 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:39 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:39 executing program 5:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  285.129451] *** Guest State ***
[  285.139424] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  285.169030] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:39 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  285.229477] CR3 = 0x0000000000000000
23:37:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  285.267260] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  285.278175] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  285.290316] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  285.310211] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  285.318092] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  285.333755] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.345232] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.354044] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:39 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  285.363833] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.381005] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.399967] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:40 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  285.424448] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  285.450034] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.471665] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  285.494021] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.503130] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  285.509846] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  285.518040] Interruptibility = 00000000  ActivityState = 00000000
[  285.525061] *** Host State ***
[  285.528554] RIP = 0xffffffff811c9a16  RSP = 0xffff8880552c78c0
[  285.539827] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  285.547007] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  285.556161] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  285.564030] CR0=0000000080050033 CR3=000000008ebec000 CR4=00000000001426e0
[  285.571431] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  285.587738] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  285.594422] *** Control State ***
[  285.598382] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  285.616864] EntryControls=0000d1ff ExitControls=002fefff
23:37:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  285.626222] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  285.648333] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  285.661127] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  285.675124]         reason=80000021 qualification=0000000000000000
[  285.688224] IDTVectoring: info=00000000 errcode=00000000
[  285.710210] TSC Offset = 0xffffff6573f6da38
[  285.718319] *** Guest State ***
[  285.720085] EPT pointer = 0x00000000855ff01e
[  285.727546] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  285.739779] Virtual processor ID = 0x0006
[  285.747209] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  285.762995] CR3 = 0x0000000000000000
23:37:40 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  285.772076] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  285.783889] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  285.790559] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  285.801078] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  285.817990] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:37:40 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  285.831598] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.845533] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.853895] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.878142] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:40 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  285.915988] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.924415] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  285.951437] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  285.991919] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.007676] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  286.016037] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.016883] *** Guest State ***
[  286.025844] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  286.031877] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  286.034624] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  286.049368] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  286.050798] Interruptibility = 00000000  ActivityState = 00000000
[  286.060185] CR3 = 0x0000000000000000
[  286.066334] *** Host State ***
[  286.074420] RIP = 0xffffffff811c9a16  RSP = 0xffff8880560cf8c0
[  286.076964] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  286.088830] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  286.091135] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  286.100599] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  286.105920] FSBase=00007efd98fef700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  286.109675] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  286.129547] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  286.129900] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:37:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  286.142312] CR0=0000000080050033 CR3=0000000096121000 CR4=00000000001426f0
[  286.149703] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.157577] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  286.159213] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.167861] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  286.191643] *** Control State ***
[  286.195611] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  286.197437] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.209637] EntryControls=0000d1ff ExitControls=002fefff
[  286.225606] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  286.233019] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.241288] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  286.252700] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  286.259561] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.268020]         reason=80000021 qualification=0000000000000000
[  286.274474] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.274487] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  286.274511] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.274524] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  286.274541] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  286.274552] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  286.274563] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  286.274576] Interruptibility = 00000000  ActivityState = 00000000
[  286.282781] IDTVectoring: info=00000000 errcode=00000000
[  286.298105] *** Host State ***
[  286.299065] TSC Offset = 0xffffff6522d0562a
[  286.309095] RIP = 0xffffffff811c9a16  RSP = 0xffff888052a378c0
[  286.315215] EPT pointer = 0x0000000095a9001e
[  286.328730] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  286.329326] Virtual processor ID = 0x0005
[  286.335742] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  286.371582] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
23:37:40 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='status\x00B#g9\xc1m\x17\xf9\r\xc2#\"\xc9O\x135 x^\x91\xea\x85\xae\x10|\xc3\x81\x98\x19\xc2cT\v\x1d\xe1\xba \x1em\xe4\xb7ZP\x11P\x91\xee\xd50\xaaH.6YF\x01\xce\xb5\xd1i\xc5\xba\xf4\x1b5\xd8\xa5\xa0\x9a\x82If\x13\xd8`#\x86[W\xef&\x9f\x90\xd3\x04\x96\x9fh}\xf5;a\x1b@\xa4B\x91\xb5\xa8\x82 \x8f\xbb\x83^T\xa4\x13\x10\xa3\xb4\x81\xd5\xbd\xbb\t\x81t)\t\xa6;|\xd1\xa1\x8d@^[\x01\x1b\xfb\xe5\xa4\xd5\xbf)\x94G\xe4\xc0\xddKc\xa3g!\x1c\x00x#\x8bP\x9daA\x00\xd3:U\x84\xaa;<\xb9\xb9\x9en_\x84q\x92\x94\xd4\x1b\'\x11|G\xfbO++\xe4u\xeb%\xd5\x01\x00\x00\x00\xcf\x84\"\xca\xdeW\f\b{\x03\xf6\xb1\x81\x8b\xc9pw\xdb#')
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000180)=[&(0x7f0000000600)='status\x00B#g9\xc1m\x17\xf9\r\xc2#\"\xc9O\x135 x^\x91\xea\x85\xae\x10|\xc3\x81\x98\x19\xc2cT\v\x1d\xe1\xba \x1em\xe4\xb7ZP\x11P\x91\xee\xd50\xaaH.6YF\x01\xce\xb5\xd1i\xc5\xba\xf4\x1b5\xd8\xa5\xa0\x9a\x82If\x13\xd8`#\x86[W\xef&\x9f\x90\xd3\x04\x96\x9fh}\xf5;a\x1b@\xa4B\x91\xb5\xa8\x82 \x8f\xbb\x83^T\xa4\x13\x10\xa3\xb4\x81\xd5\xbd\xbb\t\x81t)\t\xa6;|\xd1\xa1\x8d@^[\x01\x1b\xfb\xe5\xa4\xd5\xbf)\x94G\xe4\xc0\xddKc\xa3g!\x1c\x00x#\x8bP\x9daA\x00\xd3:U\x84\xaa;<\xb9\xb9\x9en_\x84q\x92\x94\xd4\x1b\'\x11|G\xfbO++\xe4u\xeb%\xd5\x01\x00\x00\x00\xcf\x84\"\xca\xdeW\f\b{\x03\xf6\xb1\x81\x8b\xc9pw\xdb#'], 0x0)
setgroups(0x3e3, &(0x7f0000000000))
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

[  286.389808] CR0=0000000080050033 CR3=000000008ebec000 CR4=00000000001426e0
[  286.397293] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  286.410486] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  286.419935] *** Control State ***
[  286.429948] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  286.438347] EntryControls=0000d1ff ExitControls=002fefff
[  286.455209] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  286.465703] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  286.476011] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  286.486045]         reason=80000021 qualification=0000000000000000
[  286.496356] IDTVectoring: info=00000000 errcode=00000000
23:37:41 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000080)=[0x200])
semtimedop(0x0, &(0x7f0000000040)=[{}, {0x0, 0x7e}], 0x2, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000140))

23:37:41 executing program 3:
syz_mount_image$hfsplus(&(0x7f0000000000)='hfsplus\x00', &(0x7f0000000040)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[  286.502081] TSC Offset = 0xffffff64fa2cf000
[  286.511202] EPT pointer = 0x000000009763001e
[  286.519261] Virtual processor ID = 0x0008
23:37:41 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
r3 = dup(r2)
recvfrom$unix(r0, 0x0, 0x7ffffffff000, 0x0, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  286.592839] hfsplus: unable to find HFS+ superblock
23:37:41 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  286.664431] hfsplus: unable to find HFS+ superblock
23:37:41 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
semtimedop(0x0, &(0x7f0000000040)=[{}, {0x0, 0x7e}], 0x2, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000140))

23:37:41 executing program 5:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='status\x00B#g9\xc1m\x17\xf9\r\xc2#\"\xc9O\x135 x^\x91\xea\x85\xae\x10|\xc3\x81\x98\x19\xc2cT\v\x1d\xe1\xba \x1em\xe4\xb7ZP\x11P\x91\xee\xd50\xaaH.6YF\x01\xce\xb5\xd1i\xc5\xba\xf4\x1b5\xd8\xa5\xa0\x9a\x82If\x13\xd8`#\x86[W\xef&\x9f\x90\xd3\x04\x96\x9fh}\xf5;a\x1b@\xa4B\x91\xb5\xa8\x82 \x8f\xbb\x83^T\xa4\x13\x10\xa3\xb4\x81\xd5\xbd\xbb\t\x81t)\t\xa6;|\xd1\xa1\x8d@^[\x01\x1b\xfb\xe5\xa4\xd5\xbf)\x94G\xe4\xc0\xddKc\xa3g!\x1c\x00x#\x8bP\x9daA\x00\xd3:U\x84\xaa;<\xb9\xb9\x9en_\x84q\x92\x94\xd4\x1b\'\x11|G\xfbO++\xe4u\xeb%\xd5\x01\x00\x00\x00\xcf\x84\"\xca\xdeW\f\b{\x03\xf6\xb1\x81\x8b\xc9pw\xdb#')
setxattr$security_capability(&(0x7f00000003c0)='./file0\x00', 0x0, &(0x7f0000000400)=@v3, 0x18, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000180)=[&(0x7f0000000500)='status\x00B#g9\xc1m\x17\xf9\r\xc2#\"\xc9O\x135 x^\x91\xea\x85\xae\x10|\xc3\x81\x98\x19\xc2cT\v\x1d\xe1\xba \x1em\xe4\xb7ZP\x11P\x91\xee\xd50\xaaH.6YF\x01\xce\xb5\xd1i\xc5\xba\xf4\x1b5\xd8\xa5\xa0\x9a\x82If\x13\xd8`#\x86[W\xef&\x9f\x90\xd3\x04\x96\x9fh}\xf5;a\x1b@\xa4B\x91\xb5\xa8\x82 \x8f\xbb\x83^T\xa4\x13\x10\xa3\xb4\x81\xd5\xbd\xbb\t\x81t)\t\xa6;|\xd1\xa1\x8d@^[\x01\x1b\xfb\xe5\xa4\xd5\xbf)\x94G\xe4\xc0\xddKc\xa3g!\x1c\x00x#\x8bP\x9daA\x00\xd3:U\x84\xaa;<\xb9\xb9\x9en_\x84q\x92\x94\xd4\x1b\'\x11|G\xfbO++\xe4u\xeb%\xd5\x01\x00\x00\x00\xcf\x84\"\xca\xdeW\f\b{\x03\xf6\xb1\x81\x8b\xc9pw\xdb#', &(0x7f0000000600)='status\x00B#g9\xc1m\x17\xf9\r\xc2#\"\xc9O\x135 x^\x91\xea\x85\xae\x10|\xc3\x81\x98\x19\xc2cT\v\x1d\xe1\xba \x1em\xe4\xb7ZP\x11P\x91\xee\xd50\xaaH.6YF\x01\xce\xb5\xd1i\xc5\xba\xf4\x1b5\xd8\xa5\xa0\x9a\x82If\x13\xd8`#\x86[W\xef&\x9f\x90\xd3\x04\x96\x9fh}\xf5;a\x1b@\xa4B\x91\xb5\xa8\x82 \x8f\xbb\x83^T\xa4\x13\x10\xa3\xb4\x81\xd5\xbd\xbb\t\x81t)\t\xa6;|\xd1\xa1\x8d@^[\x01\x1b\xfb\xe5\xa4\xd5\xbf)\x94G\xe4\xc0\xddKc\xa3g!\x1c\x00x#\x8bP\x9daA\x00\xd3:U\x84\xaa;<\xb9\xb9\x9en_\x84q\x92\x94\xd4\x1b\'\x11|G\xfbO++\xe4u\xeb%\xd5\x01\x00\x00\x00\xcf\x84\"\xca\xdeW\f\b{\x03\xf6\xb1\x81\x8b\xc9pw\xdb#'], 0x0)
setgroups(0x3e3, &(0x7f0000000000))
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

23:37:41 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:41 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:41 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  286.984191] *** Guest State ***
[  287.002305] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:41 executing program 3:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$binfmt_aout(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="00fd"], 0x2)
fcntl$getownex(r0, 0x10, &(0x7f0000000180))
unlink(&(0x7f0000000040)='./bus\x00')
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
mkdir(&(0x7f0000000740)='./file0\x00', 0x4000000000000)

23:37:41 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  287.070089] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:41 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:41 executing program 5:
r0 = socket$inet6(0xa, 0x2, 0x0)
ioctl(r0, 0x1000008912, &(0x7f00000000c0)="11dc86055e0bceec7be070")
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="02120000020000000a000097d3d34473"], 0x10}}, 0x0)

23:37:41 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  287.228413] CR3 = 0x0000000000000000
[  287.242416] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  287.277745] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  287.319924] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  287.358363] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:41 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl(r0, 0x1000008912, &(0x7f0000000040)="11dca5055e0bcfec7be070")
r1 = socket$inet(0x10, 0x3, 0xc)
sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="2400000002031f001cfffd946fa2830020200a000900010001e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0)

[  287.378247] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  287.396804] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.420530] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.435950] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.439108] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  287.444237] audit: type=1400 audit(1560469061.974:56): avc:  denied  { write } for  pid=11697 comm="syz-executor.5" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1
23:37:42 executing program 5:
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000002180)=0xfc, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000500)={'syz_tun\x00', <r2=>0x0})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000100)="c0dca5055e0bcfec7be070")
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
sendto$inet6(r0, &(0x7f0000000340)="030400000300600000000000fff55b4202938207d9fb3780398d537500e50600591f301ee616d5c0184374a7ffe4ec55e0650053c0e385472da70100935ba514d40000efa000801600002fd08d49a47eff71bc4131fe4c1f99bf00a900000000d1843e770afd6e9ef5837dbd", 0x6c, 0x0, 0x0, 0x0)

[  287.482334] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.488563] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  287.490913] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.508801] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.520883] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  287.530741] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.539905] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  287.549521] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.561593] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  287.569187] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  287.580694] Interruptibility = 00000000  ActivityState = 00000000
[  287.587750] *** Host State ***
[  287.591655] RIP = 0xffffffff811c9a16  RSP = 0xffff88805d04f8c0
[  287.598951] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  287.606821] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  287.615623] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  287.623543] CR0=0000000080050033 CR3=00000000a9bbb000 CR4=00000000001426f0
[  287.631121] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  287.638469] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  287.645112] *** Control State ***
[  287.648689] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  287.652253] protocol 88fb is buggy, dev hsr_slave_0
[  287.657735] EntryControls=0000d1ff ExitControls=002fefff
[  287.661116] protocol 88fb is buggy, dev hsr_slave_1
[  287.667533] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  287.671800] protocol 88fb is buggy, dev hsr_slave_0
23:37:42 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  287.671872] protocol 88fb is buggy, dev hsr_slave_1
[  287.680083] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  287.696636] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  287.704147]         reason=80000021 qualification=0000000000000000
[  287.711400] IDTVectoring: info=00000000 errcode=00000000
[  287.717457] TSC Offset = 0xffffff6479ea5d8d
[  287.721949] EPT pointer = 0x000000008ebec01e
[  287.726843] Virtual processor ID = 0x0005
[  287.799232] *** Guest State ***
[  287.803236] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  287.812993] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  287.823074] CR3 = 0x0000000000000000
[  287.826960] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  287.834072] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  287.840698] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  287.848947] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  287.856492] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  287.866915] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.875276] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.889895] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:42 executing program 5:
r0 = socket(0x1e, 0x4, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x2}, 0x10)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendmmsg(r0, &(0x7f0000000a40), 0x8000000000000b0, 0x101d0)

[  287.900654] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.917203] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.928224] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  287.951905] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  287.991577] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:42 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:42 executing program 5:
r0 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
listen(r0, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
connect(r1, &(0x7f0000931ff4)=@un=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)

[  288.022990] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  288.051884] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:42 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  288.101071] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  288.123743] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  288.144292] Interruptibility = 00000000  ActivityState = 00000000
23:37:42 executing program 3:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$binfmt_aout(r1, &(0x7f0000000680)=ANY=[@ANYBLOB="00fd"], 0x2)
fcntl$getownex(r0, 0x10, &(0x7f0000000180))
unlink(&(0x7f0000000040)='./bus\x00')
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
mkdir(&(0x7f0000000740)='./file0\x00', 0x4000000000000)

23:37:42 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  288.162962] *** Host State ***
[  288.173199] RIP = 0xffffffff811c9a16  RSP = 0xffff88805b6278c0
[  288.187061] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  288.203828] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
23:37:42 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getpeername$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000200)=0x78, 0x4)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
keyctl$update(0x2, 0x0, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001800)=""/4096, 0x1000}], 0x1}, 0x100)
setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x20}, 0x4)
write$binfmt_elf64(r0, &(0x7f0000001640)=ANY=[], 0xf5aab446)

[  288.243393] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  288.272288] CR0=0000000080050033 CR3=00000000a9bbb000 CR4=00000000001426f0
[  288.317325] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  288.352192] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  288.378844] *** Control State ***
[  288.392323] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  288.402669] EntryControls=0000d1ff ExitControls=002fefff
[  288.414510] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  288.427977] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  288.439535] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  288.456111]         reason=80000021 qualification=0000000000000000
[  288.469397] IDTVectoring: info=00000000 errcode=00000000
[  288.477229] TSC Offset = 0xffffff64057e128d
[  288.482541] EPT pointer = 0x000000008eae501e
[  288.487841] Virtual processor ID = 0x0005
[  288.506584] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0)
23:37:43 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  288.584029] FAT-fs (loop3): Filesystem has been set read-only
[  288.694863] *** Guest State ***
[  288.698869] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  288.719905] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  288.743040] CR3 = 0x0000000000000000
[  288.747184] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  288.833030] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:37:43 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  288.932396] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  289.012726] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:43 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:43 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  289.054584] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  289.093126] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.137299] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.172804] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.186801] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.196649] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.206723] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.225272] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  289.234951] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.244568] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  289.253571] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.271140] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  289.278328] FAT-fs (loop3): error, invalid access to FAT (entry 0x00006500)
[  289.294164] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  289.332292] Interruptibility = 00000000  ActivityState = 00000000
[  289.339647] *** Host State ***
23:37:43 executing program 5:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getpeername$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000200)=0x78, 0x4)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
keyctl$update(0x2, 0x0, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001800)=""/4096, 0x1000}], 0x1}, 0x100)
setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x20}, 0x4)
write$binfmt_elf64(r0, &(0x7f0000001640)=ANY=[], 0xf5aab446)

23:37:43 executing program 3:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getpeername$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000200)=0x78, 0x4)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
keyctl$update(0x2, 0x0, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10)
recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000001800)=""/4096, 0x1000}], 0x1}, 0x100)
setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000000)={0x20}, 0x4)
write$binfmt_elf64(r0, &(0x7f0000001640)=ANY=[], 0xf5aab446)

[  289.344531] RIP = 0xffffffff811c9a16  RSP = 0xffff88805b6278c0
[  289.350844] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  289.361768] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  289.379211] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  289.386194] CR0=0000000080050033 CR3=000000009bd5d000 CR4=00000000001426f0
[  289.402635] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  289.410924] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  289.428333] *** Control State ***
[  289.431812] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  289.438651] EntryControls=0000d1ff ExitControls=002fefff
[  289.445197] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  289.471410] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  289.509141] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  289.533372]         reason=80000021 qualification=0000000000000000
[  289.543818] IDTVectoring: info=00000000 errcode=00000000
[  289.549437] TSC Offset = 0xffffff638b5e2ec5
[  289.554594] EPT pointer = 0x000000008eae501e
23:37:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  289.559153] Virtual processor ID = 0x0005
[  289.636332] *** Guest State ***
[  289.639860] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  289.649507] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  289.664780] CR3 = 0x0000000000000000
[  289.668681] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  289.676664] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  289.689661] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  289.696141] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  289.738681] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  289.780121] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  289.847131] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.861119] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.925895] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.935406] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.943816] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.951890] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  289.960323] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.968769] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  289.977877] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  289.986943] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  289.993783] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  290.001328] Interruptibility = 00000000  ActivityState = 00000000
[  290.007952] *** Host State ***
[  290.011185] RIP = 0xffffffff811c9a16  RSP = 0xffff888051aef8c0
[  290.017292] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  290.023866] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  290.023879] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  290.023896] CR0=0000000080050033 CR3=0000000087fd7000 CR4=00000000001426e0
[  290.023911] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  290.023922] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  290.023927] *** Control State ***
[  290.023937] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  290.023945] EntryControls=0000d1ff ExitControls=002fefff
23:37:44 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:44 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  290.023958] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  290.023973] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  290.044907] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  290.044916]         reason=80000021 qualification=0000000000000000
[  290.044923] IDTVectoring: info=00000000 errcode=00000000
[  290.044930] TSC Offset = 0xffffff6309b6404b
[  290.044939] EPT pointer = 0x00000000817b701e
[  290.044948] Virtual processor ID = 0x0005
23:37:44 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:44 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:44 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  290.275700] *** Guest State ***
[  290.284803] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
23:37:44 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070")
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080), 0x1c)
r2 = dup2(r1, r1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000440), 0x132224)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = gettid()
setsockopt$inet6_buf(r2, 0x29, 0x2, 0x0, 0x0)
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(0x0, 0x2b)
ioctl$sock_TIOCINQ(r2, 0x541b, &(0x7f0000000040))

[  290.352685] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  290.417352] CR3 = 0x0000000000000000
[  290.426606] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  290.442485] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  290.458462] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:37:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  290.468151] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  290.481948] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  290.495372] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.509896] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.518598] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.527264] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.536122] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.544737] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.554568] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  290.563307] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.571589] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  290.580209] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  290.605976] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  290.631224] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  290.652037] Interruptibility = 00000000  ActivityState = 00000000
[  290.665194] *** Host State ***
[  290.668626] RIP = 0xffffffff811c9a16  RSP = 0xffff888058d778c0
23:37:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  290.682787] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  290.689527] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  290.699612] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  290.718514] CR0=0000000080050033 CR3=00000000aa199000 CR4=00000000001426f0
23:37:45 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  290.739704] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  290.749102] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  290.762775] *** Control State ***
[  290.773341] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  290.807764] EntryControls=0000d1ff ExitControls=002fefff
[  290.830627] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  290.844892] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  290.857632] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  290.866592]         reason=80000021 qualification=0000000000000000
[  290.877235] IDTVectoring: info=00000000 errcode=00000000
[  290.885053] TSC Offset = 0xffffff62b2eaa922
[  290.889620] EPT pointer = 0x00000000a1b3101e
[  290.898743] Virtual processor ID = 0x0005
23:37:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:45 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:45 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  291.048980] *** Guest State ***
[  291.067786] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  291.137786] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
23:37:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  291.189053] CR3 = 0x0000000000000000
23:37:45 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:45 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  291.211311] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
23:37:45 executing program 3:
syz_genetlink_get_family_id$tipc(0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0xe3b, 0x0, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)

[  291.252765] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  291.292613] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  291.322222] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  291.356830] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  291.368939] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:45 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:45 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x0, 0x0)
socket$inet6(0xa, 0x400000000001, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, 0x0, 0x0)
open(0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)

[  291.402072] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  291.430809] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  291.452786] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  291.493140] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  291.527776] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_TIMEOUT(0xffffffffffffffff, 0x0, 0x486, 0x0, 0x0)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  291.574237] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  291.598099] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:37:46 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:46 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x0, 0x0)
socket$inet6(0xa, 0x400000000001, 0x0)
dup(0xffffffffffffffff)
getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, 0x0, 0x0)
open(0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)
ioctl$sock_inet6_udp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)

[  291.623902] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  291.657050] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  291.712582] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  291.753951] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:37:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  291.801721] Interruptibility = 00000000  ActivityState = 00000000
[  291.826234] *** Host State ***
[  291.829506] RIP = 0xffffffff811c9a16  RSP = 0xffff888058d778c0
[  291.860414] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  291.869290] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  291.881350] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  291.889430] CR0=0000000080050033 CR3=00000000a5562000 CR4=00000000001426e0
[  291.913767] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  291.923474] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  291.937263] *** Control State ***
[  291.941173] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  291.958395] EntryControls=0000d1ff ExitControls=002fefff
[  291.965379] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  291.973988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  291.981718] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  291.992169]         reason=80000021 qualification=0000000000000000
[  292.000707] IDTVectoring: info=00000000 errcode=00000000
[  292.007427] TSC Offset = 0xffffff62485562af
23:37:46 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:46 executing program 3:
mlockall(0x1)
r0 = socket(0x10, 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
syz_genetlink_get_family_id$SEG6(0x0)
sendfile(r0, r1, 0x0, 0x2007ffffffe)

23:37:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  292.012093] EPT pointer = 0x0000000098be901e
[  292.017129] Virtual processor ID = 0x0005
23:37:46 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r1 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r1, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  292.120476] *** Guest State ***
23:37:46 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  292.172838] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  292.242603] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  292.312526] CR3 = 0x0000000000000000
[  292.316680] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  292.330394] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  292.340015] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  292.350942] RFLAGS=0x00000002         DR7 = 0x0000000000000400
23:37:46 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  292.360028] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  292.410697] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.434933] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12336 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.446644] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.453961] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12336 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.465100] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.476335] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.485182] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.493682] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.502027] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  292.508869] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8224 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.529944] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27990 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.544475] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.553030] IDTR:                           limit=0x00000000, base=0x0000000000000000
23:37:47 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  292.575029] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=13665 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.577458] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  292.592061] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12345 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
23:37:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  292.616574] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=25978 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.635856] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12320 sclass=netlink_route_socket pig=11878 comm=syz-executor.3
[  292.669776] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  292.690726] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  292.707783] Interruptibility = 00000000  ActivityState = 00000000
[  292.773687] *** Host State ***
[  292.776945] RIP = 0xffffffff811c9a16  RSP = 0xffff88805636f8c0
[  292.788870] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12336 sclass=netlink_route_socket pig=11895 comm=syz-executor.3
[  292.807708] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=12336 sclass=netlink_route_socket pig=11895 comm=syz-executor.3
23:37:47 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

[  292.810805] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  292.839454] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  292.848121] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  292.854402] CR0=0000000080050033 CR3=00000000856eb000 CR4=00000000001426e0
[  292.861527] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  292.868700] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  292.875153] *** Control State ***
[  292.878819] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  292.885899] EntryControls=0000d1ff ExitControls=002fefff
[  292.891457] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  292.898997] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  292.910351] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  292.917978]         reason=80000021 qualification=0000000000000000
[  292.924809] IDTVectoring: info=00000000 errcode=00000000
[  292.930424] TSC Offset = 0xffffff61b5d128e0
[  292.935225] EPT pointer = 0x0000000096ba101e
[  292.939730] Virtual processor ID = 0x0005
23:37:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:47 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:47 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:47 executing program 3:
perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xee6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
write$P9_RAUTH(0xffffffffffffffff, 0x0, 0x0)
close(r0)

23:37:47 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:47 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:47 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:48 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:48 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:48 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:48 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:48 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000)

23:37:48 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:49 executing program 5:
r0 = syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:49 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:49 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:49 executing program 5:
r0 = syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:49 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:49 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:49 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:49 executing program 5:
r0 = syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:49 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:50 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:50 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:50 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:50 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:50 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:50 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:51 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:51 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
lseek(r0, 0x0, 0x4)

23:37:51 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:51 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:51 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:51 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:51 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)

23:37:51 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:51 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000)

23:37:51 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:51 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000)

23:37:51 executing program 5:
syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(0xffffffffffffffff, &(0x7f0000000140)=""/4096, 0x1000)

23:37:52 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:52 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
lseek(r0, 0x0, 0x4)

23:37:52 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, 0x0, 0x0)

23:37:52 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:52 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
lseek(r0, 0x0, 0x4)

23:37:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, 0x0, 0x0)

23:37:52 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:52 executing program 5:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='fd\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
dup(0xffffffffffffffff)
dup(0xffffffffffffffff)
getdents(r0, 0x0, 0x0)

23:37:52 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:52 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:52 executing program 5:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getresuid(&(0x7f0000000280), 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000000)={'nat\x00\x06\x00\x00\x00\x01\xfc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'}, &(0x7f0000000140)=0x54)

[  298.286076] IPVS: ftp: loaded support on port[0] = 21
23:37:52 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:52 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:53 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:53 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:53 executing program 3:
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)

23:37:53 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:53 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:53 executing program 3:
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)

23:37:53 executing program 5:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getresuid(&(0x7f0000000280), 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000000)={'nat\x00\x06\x00\x00\x00\x01\xfc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'}, &(0x7f0000000140)=0x54)

23:37:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:53 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:53 executing program 3:
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)

[  299.078554] IPVS: ftp: loaded support on port[0] = 21
23:37:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(0xffffffffffffffff, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:53 executing program 3:
r0 = memfd_create(0x0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:53 executing program 3:
r0 = memfd_create(0x0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:53 executing program 3:
r0 = memfd_create(0x0, 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:53 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:54 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:54 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:54 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:54 executing program 5:
unshare(0x6c060000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getresuid(&(0x7f0000000280), 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
semctl$SETALL(0x0, 0x0, 0x11, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, &(0x7f0000000000)={'nat\x00\x06\x00\x00\x00\x01\xfc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\b\x00'}, &(0x7f0000000140)=0x54)

23:37:54 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:54 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:54 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:54 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:54 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r0, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r0, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  299.921761] IPVS: ftp: loaded support on port[0] = 21
23:37:54 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:54 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:54 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:55 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:55 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:55 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:55 executing program 5:
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)=[{0x0, 0xffffff74}], 0x1}, 0x0)
r0 = socket(0x10, 0x10000000080002, 0x0)
perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x5c64, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f0000000080)="290000001800190000003fffffffda0602007a00fde80001084000040d0005000005000000060000ff", 0x29}], 0x1)
sendmmsg$alg(r0, &(0x7f0000000140)=[{0x2, 0x0, &(0x7f00000000c0), 0x0, &(0x7f0000000100)}], 0x4924924924925d3, 0x0)

23:37:55 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:55 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:55 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:55 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:55 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:55 executing program 5:
r0 = syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r0, 0x80085617, 0x0)

23:37:55 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:55 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:56 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, 0x0, 0x0)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:56 executing program 5:
syz_emit_ethernet(0x140, &(0x7f0000000080)={@random="cd390b081bf2", @empty, [], {@ipv6={0x86dd, {0x0, 0x6, "a2fbe8", 0x30, 0x11, 0x0, @ipv4={[], [], @multicast2}, @mcast2, {[], @icmpv6=@pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "9433df", 0x0, 0x0, 0x0, @mcast2, @loopback}}}}}}}, 0x0)

23:37:56 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[], 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:56 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:56 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[], 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000040))
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000280)='overlay\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='upperdir=./'])

23:37:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:56 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[], 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:56 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  301.801832] overlayfs: missing 'lowerdir'
23:37:56 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

[  301.886606] overlayfs: missing 'lowerdir'
23:37:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:56 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, 0x0, 0x0)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:56 executing program 5:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000040))
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000280)='overlay\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='upperdir=./'])

23:37:56 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:56 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:56 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:56 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:57 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:57 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  302.579673] overlayfs: missing 'lowerdir'
23:37:57 executing program 5:

23:37:57 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:57 executing program 5:

23:37:57 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:57 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, 0x0, 0x0)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:57 executing program 5:

23:37:57 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:57 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:57 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:57 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:57 executing program 5:

23:37:57 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:58 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r1, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:58 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:58 executing program 5:

23:37:58 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:58 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:58 executing program 5:

23:37:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:58 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:58 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:58 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:58 executing program 5:

23:37:58 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:58 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 5:

23:37:59 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:59 executing program 5:

23:37:59 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:37:59 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:37:59 executing program 5:

23:37:59 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:37:59 executing program 5:

23:38:00 executing program 5:

23:38:00 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:00 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:00 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:00 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:00 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:00 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:00 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:00 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:01 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:01 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:01 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:01 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:01 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:01 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:01 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:01 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:01 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:01 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)

23:38:01 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:01 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:02 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:02 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:02 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:02 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:02 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:02 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:02 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)

23:38:02 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:03 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:03 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:03 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:03 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:03 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:03 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)

23:38:03 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x4)

23:38:04 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)

23:38:04 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:04 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)

23:38:04 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x0, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:04 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:04 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:04 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x4)

23:38:04 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:04 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
socket$inet_udplite(0x2, 0x2, 0x88)
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:04 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x0)

23:38:04 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:04 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:05 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:05 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:05 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x0)

23:38:05 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:05 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:05 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:05 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:05 executing program 3:
r0 = memfd_create(&(0x7f0000000680)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>\x9b\x94a\xac\xf8R?\x1c\xe2\xb5!\xfa\xcb\xd4\xb6\xe1_\xb4d>\xf6\xb7h\xb9Uql\b<zP\xf5\x96\xb0*5\xa2\xd6\xf2Ym\x13\xf1qj\x14\x9e\x9d\xee\xd9X\xf7{b\xab\a6m\xd2%\xebL\x1f\xb3m\xde\xddUC\x984ZZ\xc4\n\t\xd3\x0eO\xa1\xbc)\xb0n\xe85\xa0\x95\t8\x95\f\xa3\xca\xea\xe8^\xcbj\x1d\xc5\x17!\xf0`\xefHz\xddl\xa7\xc3\xcb\xcfM\xc9\xde\xechl\x11\x81\xca2\xe4\x1e\x006\xc61\xda\xa8\x87PQ5,\xba\x87\xda,\xc3\xf3-Xl\x12\x8aY\xa7\x9f\xa2-3\xe9\x1a6\xecj\xa3\x12\xea4\xbb\x99\'|9I\x9e\x05u\xe5\b\xd8\x1a_\xd3\xbaRY\xfbgp\xf62\x8a\xd9\x8c\xd8\xb4\xa1\x1fr ', 0x0)
write$binfmt_misc(r0, &(0x7f0000000c40)=ANY=[@ANYRES32], 0x1000000d8)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x120a9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
lseek(r0, 0x0, 0x0)

23:38:05 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:05 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:05 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:05 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000000)={0xf}, 0xf)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:06 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, 0x0, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:06 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:06 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:06 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:06 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000000)={0xf}, 0xf)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:06 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0x10}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:06 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:07 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:07 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000000)={0xf}, 0xf)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r2, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:07 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0x10}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:07 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:09 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:09 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:09 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:09 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0x10}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:09 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:09 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:09 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:09 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:09 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:09 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(0xffffffffffffffff)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:09 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:12 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:12 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f00000000c0)=""/128, 0x0, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:12 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:12 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:12 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(0xffffffffffffffff)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:12 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:12 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:12 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:12 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  318.033797] *** Guest State ***
[  318.037439] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7
[  318.046699] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  318.059382] CR3 = 0x0000000000000000
[  318.073560] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  318.091901] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  318.108830] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  318.115223] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  318.121767] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:38:12 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, 0x0, 0x26, 0x0, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  318.135897] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.150969] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.187092] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.203610] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.211835] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.223905] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.234384] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  318.243000] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.252886] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  318.261029] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.269185] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  318.275737] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  318.283372] Interruptibility = 00000000  ActivityState = 00000000
[  318.289698] *** Host State ***
[  318.293090] RIP = 0xffffffff811c9a16  RSP = 0xffff8880573878c0
[  318.299176] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  318.305745] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  318.313758] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  318.319748] CR0=0000000080050033 CR3=0000000090ba3000 CR4=00000000001426f0
[  318.326930] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  318.333870] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  318.339978] *** Control State ***
[  318.343527] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  318.350206] EntryControls=0000d1ff ExitControls=002fefff
[  318.355730] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  318.362710] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  318.369389] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  318.376181]         reason=80000021 qualification=0000000000000000
[  318.382572] IDTVectoring: info=00000000 errcode=00000000
[  318.388033] TSC Offset = 0xffffff53d4d31402
[  318.392423] EPT pointer = 0x0000000095ba101e
[  318.396841] Virtual processor ID = 0x0005
23:38:13 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:13 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:13 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(0xffffffffffffffff)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  318.547242] *** Guest State ***
[  318.560942] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7
23:38:13 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  318.607782] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  318.678462] CR3 = 0x0000000000000000
[  318.710352] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  318.747002] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  318.766259] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  318.776032] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  318.784510] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  318.791198] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.801600] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.811711] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.821834] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.832289] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.840609] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.848912] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  318.857416] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.866396] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  318.874777] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  318.882860] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  318.889298] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  318.897367] Interruptibility = 00000000  ActivityState = 00000000
[  318.903688] *** Host State ***
[  318.906887] RIP = 0xffffffff811c9a16  RSP = 0xffff888050e278c0
[  318.912930] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  318.919363] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  318.927243] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  318.933282] CR0=0000000080050033 CR3=0000000094d52000 CR4=00000000001426e0
[  318.940332] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  318.947190] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  318.953316] *** Control State ***
[  318.956789] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  318.963545] EntryControls=0000d1ff ExitControls=002fefff
[  318.969025] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  318.976059] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  318.982768] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  318.989350]         reason=80000021 qualification=0000000000000000
[  318.995792] IDTVectoring: info=00000000 errcode=00000000
[  319.001417] TSC Offset = 0xffffff5390b29798
[  319.006226] EPT pointer = 0x00000000910c701e
[  319.010661] Virtual processor ID = 0x0005
23:38:15 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:15 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:15 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:15 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:15 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:15 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:15 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:16 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, 0x0}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:16 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:16 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  321.833810] *** Guest State ***
[  321.837946] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  321.848459] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  321.858293] CR3 = 0x0000000000000000
[  321.862473] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  321.868600] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  321.874788] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:38:16 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, 0x0}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  321.881926] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  321.943520] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  321.966063] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  321.977689] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  321.986479] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  321.994572] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  322.003326] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  322.011817] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  322.020783] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  322.028943] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  322.037013] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  322.043580] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  322.051044] Interruptibility = 00000000  ActivityState = 00000000
[  322.057375] *** Host State ***
[  322.060578] RIP = 0xffffffff811c9a16  RSP = 0xffff88805265f8c0
[  322.066682] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  322.073225] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  322.081040] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  322.087276] CR0=0000000080050033 CR3=00000000960e8000 CR4=00000000001426f0
[  322.105115] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  322.121076] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  322.127345] *** Control State ***
[  322.130820] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  322.137643] EntryControls=0000d1ff ExitControls=002fefff
[  322.147522] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  322.154797] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  322.161477] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  322.168177]         reason=80000021 qualification=0000000000000000
[  322.174918] IDTVectoring: info=00000000 errcode=00000000
[  322.180379] TSC Offset = 0xffffff51cbe11766
[  322.184759] EPT pointer = 0x0000000082f2d01e
[  322.189265] Virtual processor ID = 0x0005
23:38:18 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:18 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:18 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:18 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:18 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, 0x0}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  324.107822] *** Guest State ***
[  324.111452] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  324.129002] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  324.139869] CR3 = 0x0000000000000000
[  324.147059] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
23:38:18 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  324.153736] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  324.173792] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  324.201318] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.209709] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.217885] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.226124] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.234300] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.242371] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.251438] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  324.259604] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.268382] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  324.276445] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.284542] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  324.290957] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  324.298470] Interruptibility = 00000000  ActivityState = 00000000
[  324.304909] *** Host State ***
[  324.308119] RIP = 0xffffffff811c9a16  RSP = 0xffff888055b9f8c0
[  324.314215] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  324.320654] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000
[  324.328531] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  324.334586] CR0=0000000080050033 CR3=0000000096b5a000 CR4=00000000001426e0
[  324.341620] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  324.348380] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  324.354539] *** Control State ***
[  324.358016] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  324.364765] EntryControls=0000d1ff ExitControls=002fefff
[  324.370405] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  324.377401] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  324.384137] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  324.390884]         reason=80000021 qualification=0000000000000000
23:38:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  324.398101] IDTVectoring: info=00000000 errcode=00000000
[  324.403652] TSC Offset = 0xffffff50947cfca5
[  324.407991] EPT pointer = 0x00000000950b001e
[  324.412487] Virtual processor ID = 0x0005
[  324.474112] *** Guest State ***
[  324.477626] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  324.486727] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871
[  324.495861] CR3 = 0x0000000000000000
[  324.499746] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  324.506283] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  324.512502] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  324.519371] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.528500] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.536729] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.545003] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.553274] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.561436] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.569708] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  324.577909] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.586162] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  324.594364] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  324.602602] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  324.609146] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  324.616876] Interruptibility = 00000000  ActivityState = 00000000
[  324.623252] *** Host State ***
[  324.626543] RIP = 0xffffffff811c9a16  RSP = 0xffff888055b9f8c0
[  324.632986] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  324.639640] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  324.647657] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  324.654504] CR0=0000000080050033 CR3=0000000094305000 CR4=00000000001426f0
[  324.661555] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  324.668379] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  324.674522] *** Control State ***
[  324.677994] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  324.684823] EntryControls=0000d1ff ExitControls=002fefff
[  324.690314] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  324.697365] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  324.704130] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  324.710756]         reason=80000021 qualification=0000000000000000
[  324.717166] IDTVectoring: info=00000000 errcode=00000000
23:38:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  324.722678] TSC Offset = 0xffffff5061e4e908
[  324.727009] EPT pointer = 0x000000009432801e
[  324.731427] Virtual processor ID = 0x0005
23:38:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:19 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:19 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:21 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:21 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:21 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:21 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, 0x0, 0x0)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:21 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, 0x0, 0x0)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:21 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:21 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:21 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:21 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{0x0}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:21 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:22 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:24 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:24 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{0x0}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:24 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:24 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, 0x0, 0x0)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:24 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, 0x0, 0x0)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  330.220659] *** Guest State ***
[  330.228542] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  330.238490] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  330.272770] CR3 = 0x0000000000000000
[  330.285043] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  330.294671] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  330.301513] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  330.308543] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  330.315302] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
23:38:24 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = accept(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(r1)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  330.323678] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.334087] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.342773] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:38:24 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = accept(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(r1)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  330.369341] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.389913] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.400195] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.410783] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  330.421192] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.432385] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  330.446833] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.455461] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  330.462364] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
23:38:25 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = accept(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(r1)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  330.470192] Interruptibility = 00000000  ActivityState = 00000000
[  330.476718] *** Host State ***
[  330.489378] RIP = 0xffffffff811c9a16  RSP = 0xffff88805c14f8c0
[  330.500233] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  330.510586] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
23:38:25 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = accept(r0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(r1)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  330.519277] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  330.526082] CR0=0000000080050033 CR3=0000000096bca000 CR4=00000000001426f0
[  330.534079] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  330.541211] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  330.549195] *** Control State ***
[  330.557001] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  330.567360] EntryControls=0000d1ff ExitControls=002fefff
23:38:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  330.578248] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  330.586027] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  330.593905] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  330.601017]         reason=80000021 qualification=0000000000000000
[  330.608106] IDTVectoring: info=00000000 errcode=00000000
[  330.614018] TSC Offset = 0xffffff4d4e1456d0
[  330.618778] EPT pointer = 0x00000000a53a901e
[  330.623760] Virtual processor ID = 0x0005
[  330.698790] *** Guest State ***
[  330.703548] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  330.713553] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  330.723344] CR3 = 0x0000000000000000
[  330.727550] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  330.735322] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  330.742810] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  330.749471] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  330.758200] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  330.765685] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.774240] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.782639] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.790712] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.799099] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.807406] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.815949] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  330.824464] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.833489] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  330.842071] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  330.850542] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  330.857299] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  330.864989] Interruptibility = 00000000  ActivityState = 00000000
[  330.871460] *** Host State ***
[  330.874838] RIP = 0xffffffff811c9a16  RSP = 0xffff88804e0678c0
[  330.880856] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  330.887367] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  330.895359] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
[  330.901529] CR0=0000000080050033 CR3=00000000809f5000 CR4=00000000001426f0
[  330.908655] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  330.915691] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  330.921866] *** Control State ***
[  330.926234] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  330.933428] EntryControls=0000d1ff ExitControls=002fefff
[  330.939009] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
23:38:25 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  330.946644] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  330.954557] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  330.961674]         reason=80000021 qualification=0000000000000000
[  330.969206] IDTVectoring: info=00000000 errcode=00000000
[  330.974937] TSC Offset = 0xffffff4d0c5002ac
[  330.979312] EPT pointer = 0x0000000087c7a01e
[  330.983855] Virtual processor ID = 0x0005
[  331.076283] *** Guest State ***
[  331.095883] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  331.115257] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  331.144334] CR3 = 0x0000000000000000
[  331.155105] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  331.162339] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  331.169379] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  331.180772] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  331.187296] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  331.194414] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.203438] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.212311] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.220838] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.229622] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.238269] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.246979] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  331.255714] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.263921] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  331.272559] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  331.280650] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  331.287580] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  331.296212] Interruptibility = 00000000  ActivityState = 00000000
[  331.302693] *** Host State ***
[  331.305934] RIP = 0xffffffff811c9a16  RSP = 0xffff888051a978c0
[  331.312314] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  331.319214] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000034000
[  331.327543] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  331.334274] CR0=0000000080050033 CR3=00000000a0060000 CR4=00000000001426f0
[  331.341675] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  331.348610] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  331.354749] *** Control State ***
[  331.358238] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  331.365522] EntryControls=0000d1ff ExitControls=002fefff
[  331.371307] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  331.379092] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  331.386110] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  331.393117]         reason=80000021 qualification=0000000000000000
[  331.399468] IDTVectoring: info=00000000 errcode=00000000
[  331.405103] TSC Offset = 0xffffff4cd88f0054
[  331.409462] EPT pointer = 0x000000009591b01e
[  331.414061] Virtual processor ID = 0x0005
23:38:27 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:27 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{0x0}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:27 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, 0x0, 0x0)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:27 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, 0x0, 0x0)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:27 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = accept(r0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(r1)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:27 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  333.334901] *** Guest State ***
[  333.338729] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  333.348646] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  333.360060] CR3 = 0x0000000000000000
[  333.366427] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  333.373709] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
23:38:27 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:27 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

[  333.386063] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  333.393849] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  333.400655] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  333.408482] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.426914] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.457136] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.482471] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:38:28 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

[  333.502679] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.536163] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.546140] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  333.555299] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.564212] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  333.576817] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:38:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  333.586956] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  333.595076] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  333.603717] Interruptibility = 00000000  ActivityState = 00000000
[  333.612552] *** Host State ***
[  333.622082] RIP = 0xffffffff811c9a16  RSP = 0xffff8880577378c0
[  333.638208] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  333.646027] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  333.655075] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  333.661443] CR0=0000000080050033 CR3=0000000088fd2000 CR4=00000000001426e0
[  333.669481] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  333.677330] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  333.684502] *** Control State ***
23:38:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  333.688506] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  333.695965] EntryControls=0000d1ff ExitControls=002fefff
[  333.701957] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  333.709706] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  333.718437] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  333.726239]         reason=80000021 qualification=0000000000000000
[  333.733721] IDTVectoring: info=00000000 errcode=00000000
[  333.739533] TSC Offset = 0xffffff4ba5f1cedc
[  333.744553] EPT pointer = 0x0000000090ba301e
[  333.755048] Virtual processor ID = 0x0005
23:38:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  333.861082] *** Guest State ***
[  333.868261] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  333.885969] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  333.898842] CR3 = 0x0000000000000000
[  333.904298] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  333.911759] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  333.927702] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  333.934610] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  333.940986] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  333.949011] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.957929] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.967812] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.977277] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.986447] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  333.995600] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
23:38:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  334.005174] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  334.013928] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.022742] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  334.032771] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.041606] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  334.059651] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  334.098921] Interruptibility = 00000000  ActivityState = 00000000
[  334.111232] *** Host State ***
[  334.121988] RIP = 0xffffffff811c9a16  RSP = 0xffff8880593678c0
[  334.129131] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
23:38:28 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:28 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:28 executing program 5:
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = accept(r0, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r2 = dup(r1)
write$P9_RXATTRWALK(r2, &(0x7f0000000000)={0xf}, 0xf)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r3, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

[  334.143567] FSBase=00007fcca0732700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000
[  334.157933] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000
23:38:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  334.199353] CR0=0000000080050033 CR3=00000000903df000 CR4=00000000001426f0
[  334.264874] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87001340
[  334.288263] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  334.295372] *** Control State ***
[  334.299118] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  334.306363] EntryControls=0000d1ff ExitControls=002fefff
[  334.312336] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  334.319704] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  334.329419] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  334.336674]         reason=80000021 qualification=0000000000000000
[  334.343453] IDTVectoring: info=00000000 errcode=00000000
[  334.350615] TSC Offset = 0xffffff4b5ac7ae4a
[  334.356195] EPT pointer = 0x000000009090401e
[  334.360906] Virtual processor ID = 0x0005
23:38:28 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0), 0x0, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:28 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

[  334.486099] *** Guest State ***
[  334.494673] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7
[  334.509480] CR4: actual=0x000000000000206c, shadow=0x000000000000002c, gh_mask=ffffffffffffe871
[  334.526273] CR3 = 0x0000000000000000
[  334.530315] PDPTR0 = 0x0000000000000000  PDPTR1 = 0x0000000000000000
[  334.539118] PDPTR2 = 0x0000000000000000  PDPTR3 = 0x0000000000000000
[  334.546567] RSP = 0x0000000000000000  RIP = 0x000000000000fff0
[  334.553935] RFLAGS=0x00000002         DR7 = 0x0000000000000400
[  334.560198] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000
[  334.567573] CS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.576383] DS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.591730] SS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.600893] ES:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.609521] FS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.617786] GS:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.626314] GDTR:                           limit=0x00000000, base=0x0000000000000000
[  334.635345] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.645369] IDTR:                           limit=0x00000000, base=0x0000000000000000
[  334.653588] TR:   sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000
[  334.662046] EFER =     0x0000000000000000  PAT = 0x0007040600070406
[  334.669271] DebugCtl = 0x0000000000000000  DebugExceptions = 0x0000000000000000
[  334.677076] Interruptibility = 00000000  ActivityState = 00000000
[  334.683589] *** Host State ***
[  334.687160] RIP = 0xffffffff811c9a16  RSP = 0xffff8880589378c0
[  334.693523] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040
[  334.700140] FSBase=00007fcca0732700 GSBase=ffff8880ae900000 TRBase=fffffe0000034000
[  334.708543] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000
[  334.714815] CR0=0000000080050033 CR3=00000000986c3000 CR4=00000000001426e0
[  334.722193] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff87001340
[  334.729967] EFER = 0x0000000000000d01  PAT = 0x0407050600070106
[  334.736409] *** Control State ***
[  334.740105] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000e2
[  334.747179] EntryControls=0000d1ff ExitControls=002fefff
[  334.753117] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000
[  334.760882] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000
[  334.768367] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003
[  334.775907]         reason=80000021 qualification=0000000000000000
[  334.782595] IDTVectoring: info=00000000 errcode=00000000
[  334.788533] TSC Offset = 0xffffff4b05773a1e
[  334.793434] EPT pointer = 0x000000009411a01e
[  334.798233] Virtual processor ID = 0x0005
23:38:31 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x2c})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r3, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r4 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r4, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r4, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r4, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r3, 0x9)
socket$inet6(0xa, 0x6, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r2, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r2, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:31 executing program 3:
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x7, 0x13})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x0, 0x0)

23:38:31 executing program 2:
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r1, 0x541c, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f00000000c0)=""/128, 0x1a, 0x80}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(r1, 0x9)
socket$inet6(0xa, 0x6, 0x0)
openat$cgroup(r0, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

23:38:31 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$TIOCLINUX5(r2, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r3, &(0x7f0000000040)={0x2, 0x4e21, @remote}, 0x10)
sendmsg$rds(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r3, &(0x7f00000053c0), 0x0, 0x0, 0x0)
listen(r2, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(r2, 0x0, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, 0x0)
ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000))
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)
read(0xffffffffffffffff, 0x0, 0x0)

23:38:31 executing program 5:
r0 = socket$unix(0x1, 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000140)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2a, &(0x7f0000000080)=0x200, 0x4)
r3 = dup(r2)
write$P9_RXATTRWALK(r3, &(0x7f0000000000)={0xf}, 0xf)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl(r4, 0x1000008912, &(0x7f0000000040)="c0dca5055e0bcfec7be070")
recvfrom$unix(r0, 0x0, 0x0, 0xc08e, 0x0, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000240)={'syz0\x00'}, 0x45c)

23:38:31 executing program 0:
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, 0x0)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TIOCLINUX5(0xffffffffffffffff, 0x541c, 0x0)
ioctl$DRM_IOCTL_MODESET_CTL(0xffffffffffffffff, 0x40086408, 0x0)
r2 = socket$rds(0x15, 0x5, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@restrict={0x0, 0x0, 0x0, 0x7, 0x1}]}}, &(0x7f00000000c0)=""/128, 0x26, 0x80, 0x1}, 0x20)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
sendmsg$rds(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x104e21, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f00000000c0)=""/16, 0xfd0f}], 0x1}, 0x0)
recvmmsg(r2, &(0x7f00000053c0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)=""/193, 0xfd0f}], 0x1}}], 0x1, 0x0, 0x0)
listen(0xffffffffffffffff, 0x9)
socket$inet6(0xa, 0x6, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$cgroup(r1, &(0x7f0000000140)='syz1\x00', 0x200002, 0x0)

[  336.630564] kasan: CONFIG_KASAN_INLINE enabled
[  336.631446] *** Guest State ***
[  336.635845] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  336.635869] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  336.635885] CPU: 1 PID: 13212 Comm: syz-executor.0 Not tainted 4.19.50 #22
[  336.635894] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  336.636042] RIP: 0010:rds_recv_rcvbuf_delta.part.0+0x14a/0x3f0
[  336.636064] Code: c1 ea 03 80 3c 02 00 0f 85 6e 02 00 00 4c 8b a3 b8 04 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7c 24 2c 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 00
[  336.695012] RSP: 0018:ffff88805c4176c0 EFLAGS: 00010007
[  336.700396] RAX: dffffc0000000000 RBX: ffff888081bc7700 RCX: ffffc90005e6f000
[  336.707678] RDX: 0000000000000005 RSI: ffffffff86723d8b RDI: 000000000000002c
[  336.715432] RBP: ffff88805c4176f8 R08: ffff88805534a600 R09: ffffed1010378f8c
[  336.722958] R10: ffffed1010378f8b R11: ffff888081bc7c5b R12: 0000000000000000
[  336.730554] R13: ffff888081bc7c1c R14: 000000000002e440 R15: ffff88809b5a6800
[  336.738829] FS:  00007fbd7a1a9700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  336.747364] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  336.753658] CR2: 0000001b2ec22000 CR3: 000000009e4cf000 CR4: 00000000001426e0
[  336.761102] Call Trace:
[  336.763720]  rds_recv_incoming+0x789/0x11c0
[  336.768094]  ? rds_recv_rcvbuf_delta.part.0+0x3f0/0x3f0
[  336.773682]  ? rds_message_addref+0x1b/0x60
[  336.778203]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[  336.784038]  rds_loop_xmit+0xf3/0x2a0
[  336.787885]  ? rds_loop_inc_free+0x20/0x20
[  336.792346]  rds_send_xmit+0x10ff/0x2540
[  336.796768]  ? rds_send_mprds_hash+0x4d0/0x4d0
[  336.802184]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[  336.808042]  ? check_preemption_disabled+0x48/0x290
[  336.813758]  rds_sendmsg+0x2a24/0x2f50
[  336.818039]  ? rds_send_drop_to+0x1620/0x1620
[  336.822880]  ? copy_msghdr_from_user+0x2d0/0x430
[  336.827770]  ? selinux_socket_sendmsg+0x36/0x40
[  336.832619]  ? rds_send_drop_to+0x1620/0x1620
[  336.837649]  sock_sendmsg+0xd7/0x130
[  336.841469]  ? sock_sendmsg+0xd7/0x130
[  336.845848]  ___sys_sendmsg+0x803/0x920
[  336.849906]  ? copy_msghdr_from_user+0x430/0x430
[  336.854784]  ? lock_downgrade+0x810/0x810
[  336.859225]  ? kasan_check_read+0x11/0x20
[  336.863425]  ? __fget+0x367/0x540
[  336.866999]  ? iterate_fd+0x360/0x360
[  336.870938]  ? lock_downgrade+0x810/0x810
[  336.875111]  ? __fget_light+0x1a9/0x230
[  336.879344]  ? __fdget+0x1b/0x20
[  336.883000]  ? __sanitizer_cov_trace_const_cmp8+0x18/0x20
[  336.889018]  __sys_sendmsg+0x105/0x1d0
[  336.893200]  ? __ia32_sys_shutdown+0x80/0x80
[  336.898177]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  336.903351]  ? do_syscall_64+0x26/0x620
[  336.907621]  ? entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  336.913354]  ? do_syscall_64+0x26/0x620
[  336.917768]  __x64_sys_sendmsg+0x78/0xb0
[  336.922433]  do_syscall_64+0xfd/0x620
[  336.926512]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  336.931726] RIP: 0033:0x4592c9
[  336.935124] Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  336.954867] RSP: 002b:00007fbd7a1a8c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  336.962591] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000004592c9
[  336.970034] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004
[  336.977648] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000
[  336.985128] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbd7a1a96d4
[  336.992648] R13: 00000000004c7021 R14: 00000000004dc1a0 R15: 00000000ffffffff
[  337.000045] Modules linked in:
[  337.003354] ---[ end trace 13053be83449447e ]---
[  337.008451] RIP: 0010:rds_recv_rcvbuf_delta.part.0+0x14a/0x3f0
[  337.015050] Code: c1 ea 03 80 3c 02 00 0f 85 6e 02 00 00 4c 8b a3 b8 04 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7c 24 2c 48 89 fa 48 c1 ea 03 <0f> b6 14 02 48 89 f8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 00
[  337.034328] RSP: 0018:ffff88805c4176c0 EFLAGS: 00010007
[  337.039887] RAX: dffffc0000000000 RBX: ffff888081bc7700 RCX: ffffc90005e6f000
[  337.047286] RDX: 0000000000000005 RSI: ffffffff86723d8b RDI: 000000000000002c
[  337.054742] RBP: ffff88805c4176f8 R08: ffff88805534a600 R09: ffffed1010378f8c
[  337.062295] R10: ffffed1010378f8b R11: ffff888081bc7c5b R12: 0000000000000000
[  337.069843] R13: ffff888081bc7c1c R14: 000000000002e440 R15: ffff88809b5a6800
[  337.077375] FS:  00007fbd7a1a9700(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000
[  337.085790] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  337.091839] CR2: 0000001b2ec22000 CR3: 000000009e4cf000 CR4: 00000000001426e0
[  337.099303] Kernel panic - not syncing: Fatal exception
[  338.210467] Shutting down cpus with NMI
[  338.216390] Kernel Offset: disabled
[  338.220310] Rebooting in 86400 seconds..