{0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:53 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:18:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:53 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

05:18:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:53 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:53 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:53 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:53 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

05:18:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:53 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000100))
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

05:18:53 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:53 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:53 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:53 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000100))
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

05:18:53 executing program 1:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:53 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:54 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, &(0x7f0000000100))
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

05:18:54 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:54 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, 0x0)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})

[  614.081416][T22316] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  614.089987][T22316] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, 0x0)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})

05:18:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:54 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:54 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, 0x0)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})

05:18:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(0xffffffffffffffff, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

05:18:54 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:54 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:54 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:54 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(0xffffffffffffffff, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

05:18:54 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(0xffffffffffffffff, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

05:18:54 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  614.752084][T22369] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:18:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  614.856893][T22369] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:18:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:55 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, 0x0)

05:18:55 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:55 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:55 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:55 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, 0x0)

05:18:55 executing program 1:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:55 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:55 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, 0x0)

05:18:55 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:55 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

05:18:55 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:55 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

05:18:55 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:55 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:55 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:56 executing program 0:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}})

05:18:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:56 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:56 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:56 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], 0x0)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:56 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:56 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:56 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:18:56 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], 0x0)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:56 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:18:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:57 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], 0x0)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:57 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  617.049630][T22535] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:18:57 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

[  617.116812][T22546] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:18:57 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

[  617.166984][T22535] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  617.220783][T22546] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:18:57 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:57 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:57 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:57 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:57 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:58 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:58 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  618.054095][T22595] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:18:58 executing program 4:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:58 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:58 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

[  618.157030][T22595] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:18:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:58 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:58 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, 0x0, 0x40000002)

05:18:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, 0x0, 0x40000002)

05:18:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, 0x0, 0x40000002)

05:18:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:59 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:59 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:59 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:18:59 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:18:59 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  619.628324][T22702] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  619.666886][T22702] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:18:59 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:18:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:18:59 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:00 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:19:00 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))

05:19:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:00 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, 0x0, 0x0, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:00 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, 0x0, 0x0, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:00 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:00 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:01 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))

[  620.976359][T15241] Bluetooth: hci3: command 0x0406 tx timeout
05:19:01 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, 0x0, 0x0, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  621.164124][T22805] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  621.241357][T22805] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340), 0x0, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:02 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340), 0x0, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))

05:19:02 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340), 0x0, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(0xffffffffffffffff, 0x8048ae66, &(0x7f0000000100))

05:19:02 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:02 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:02 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{0x0}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

[  622.806691][T22920] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  622.816559][T22920] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  622.840720][T22917] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  622.863346][T22917] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:03 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{0x0}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:03 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{0x0}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:03 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:03 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:03 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1}, 0x40000002)

05:19:03 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)

05:19:03 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  623.991289][T22990] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  624.026559][ T1226] ieee802154 phy0 wpan0: encryption failed: -22
05:19:04 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1}, 0x40000002)

[  624.035726][T22990] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  624.053011][ T1226] ieee802154 phy1 wpan1: encryption failed: -22
05:19:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1}, 0x40000002)

05:19:04 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:05 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x0)

05:19:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:05 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:05 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:05 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x0)

05:19:05 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:05 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  625.469497][T23071] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  625.478035][T23071] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:05 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x10, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:05 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:06 executing program 3:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x0)

05:19:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:06 executing program 5:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{0x0}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:06 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:06 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  626.481514][T23137] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
05:19:06 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:06 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:06 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:06 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:06 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:07 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:07 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:07 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:07 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:07 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 2:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7e2d8", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 2:
socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x885)
socket$inet_icmp(0x2, 0x2, 0x1)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000950000d9000000000600000001591ab4a205425714c7bef1b69229f60dfe77093c7fb95ccfc5ada0ab5c6a360eec3cadd909417645ccd615d669c697013e3bf37c5cae8157781a6cd885641508d9e32cb71da3efd92c02ab362cd52e24e4d3c78d9e2e7e739ee0d11242bae9c474b0e81a056791109913742af7d7f7169f0530d176b6935e6de412ea123f69d759bfb2dd6be71c4e098c281de20f4400224e2817f49ffa2ecfef4881af14895813c6e410e4e7908ad8870cfe5e08fc20278bd1b6cb34"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='add_device_randomness\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
mmap(&(0x7f00006d5000/0x2000)=nil, 0x2000, 0x1000002, 0x30, 0xffffffffffffffff, 0xa3d86000)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x80, 0x8, 0x0, 0x0, @dev}, 0x10)
socket$inet6(0xa, 0x2, 0x203)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYBLOB="c1c800e6ffffffbbaada0bdf0f9759a441914f2cb7cd2878a6515c4bd065a1b55a13a259afc6d40b3cb49476ef6973e74ea9bbfe017962b14b9d7d69aca5836da5ee04652d670e63a7", @ANYRES32=0x0], &(0x7f0000000540)=0x8)
recvmsg(r1, &(0x7f00000002c0)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000680)=""/164, 0xa4}], 0x1, &(0x7f0000000740)=""/4104, 0x1008}, 0x40000002)

05:19:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:08 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:19:09 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:19:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:09 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:09 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:09 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100))
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

05:19:09 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:09 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

[  629.676340][T23407] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  629.685019][T23407] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:09 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:09 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:09 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:09 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:19:10 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:10 executing program 2:
socketpair$unix(0x1, 0x400000000000002, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f0000000080), 0x4)
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000000)={0x0, <r2=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r0, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r2})

05:19:10 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:19:10 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:10 executing program 0:
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:10 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:10 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:10 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:11 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:11 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:11 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:11 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  631.373611][T23552] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  631.387662][T23552] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:11 executing program 5:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:11 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x0, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

05:19:11 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:11 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:11 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  631.630408][T23562] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
05:19:11 executing program 5:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

[  631.714380][T23562] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
05:19:11 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  631.774481][T23566] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  631.804839][T23562] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.2'.
05:19:12 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  631.828331][T23566] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:12 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x14, 0x2, [@TCA_BASIC_EMATCHES={0x10, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}}, 0x0)

05:19:12 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

[  632.065495][T23582] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  632.076696][T23582] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:12 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  632.171900][T23594] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
[  632.268501][T23594] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.5'.
[  632.316938][T23596] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  632.327205][T23596] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:12 executing program 5:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
ioctl$SIOCAX25DELUID(r2, 0x89e2, &(0x7f0000000500)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x10003, 0x0)
readv(r5, &(0x7f0000000180)=[{&(0x7f0000000040)=""/35, 0x20000063}], 0x1)
syz_init_net_socket$ax25(0x3, 0x5, 0x0)

[  632.372471][T23611] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.5'.
05:19:12 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

[  632.526076][T23604] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:12 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  632.609645][T23604] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:13 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:13 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:13 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  633.342971][T23648] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:13 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:13 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x10, 0x2, [@TCA_BASIC_EMATCHES={0xc, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}]}]}}]}, 0x40}}, 0x0)

[  633.435455][T23648] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:13 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  633.625413][T23680] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  633.638279][T23680] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:13 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}}, 0x0)

[  633.670101][T23680] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:13 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:14 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

[  633.924508][T23694] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:14 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:14 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:14 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:14 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:14 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  634.517454][T23721] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  634.529770][T23720] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  634.563423][T23721] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:14 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  634.630538][T23720] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  634.661931][T23728] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  634.773533][T23728] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

05:19:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:15 executing program 2:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x0, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:15 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:15 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:15 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}}, 0x24}}, 0x0)

05:19:15 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:15 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  635.629447][T23774] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  635.703880][T23775] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:15 executing program 5:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
ioctl$SIOCAX25DELUID(r2, 0x89e2, &(0x7f0000000500)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x10003, 0x0)
readv(r5, &(0x7f0000000180)=[{&(0x7f0000000040)=""/35, 0x20000063}], 0x1)
r7 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SIOCAX25DELUID(r7, 0x89e0, &(0x7f0000000000)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)

05:19:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:16 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x0, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:16 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:16 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:16 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:16 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, 0x0, 0x0)

05:19:16 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:16 executing program 5:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
ioctl$SIOCAX25DELUID(r2, 0x89e2, &(0x7f0000000500)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x10003, 0x0)
readv(r5, &(0x7f0000000180)=[{&(0x7f0000000040)=""/35, 0x20000063}], 0x1)
r7 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SIOCAX25DELUID(r7, 0x89e0, &(0x7f0000000000)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)

05:19:16 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  636.803663][T23839] __nla_validate_parse: 5 callbacks suppressed
[  636.803680][T23839] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  636.879216][T23839] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
05:19:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  636.920472][T23839] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.2'.
05:19:17 executing program 2:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:17 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:17 executing program 2:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:17 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:17 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:17 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600000000000000", @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

05:19:17 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:17 executing program 5:
socketpair$unix(0x1, 0x400000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080), 0x4)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000000)={0x0, <r3=>0x0}, &(0x7f0000000100)=0x5)
ioctl$SIOCAX25ADDUID(r1, 0x89e1, &(0x7f0000000080)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
ioctl$SIOCAX25DELUID(r2, 0x89e2, &(0x7f0000000500)={0x3, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, r3})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x10003, 0x0)
readv(r5, &(0x7f0000000180)=[{&(0x7f0000000040)=""/35, 0x20000063}], 0x1)
r7 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
ioctl$SIOCAX25DELUID(r7, 0x89e0, &(0x7f0000000000)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
r8 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000100)=0x5)

[  637.855678][T23896] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  637.918522][T23888] set_target_expiration: 1 callbacks suppressed
[  637.918538][T23888] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  637.925045][T23891] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
05:19:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0)

[  638.031035][T23896] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  638.174690][T23914] netlink: 84 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0)

05:19:18 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:18 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:18 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0)

05:19:18 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff00000000080001007366"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

[  639.125163][T23971] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  639.152648][T23971] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  639.233394][T23971] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:19 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:19 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  639.322197][T23974] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  639.396241][T23974] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:19 executing program 3:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:19 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  639.620464][T23985] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  639.666303][T23985] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:20 executing program 1:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  640.009548][T24012] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  640.037099][T24012] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:20 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

05:19:20 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:19:20 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:20 executing program 2:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:20 executing program 4:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:20 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:19:20 executing program 0:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

[  640.340044][T24036] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:20 executing program 4:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:20 executing program 2:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

[  640.443069][T24037] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  640.503528][T24037] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:20 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:20 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

05:19:20 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

05:19:20 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:20 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  640.905660][T24064] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  640.944599][T24064] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  641.017708][T24075] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  641.048001][T24075] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:21 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:21 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff000000000800010073"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

05:19:21 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)

05:19:21 executing program 3:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
close_range(r0, 0xffffffffffffffff, 0x0)

05:19:21 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:21 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  641.663212][T24093] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  641.682019][T24097] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:21 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:21 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  641.712993][T24102] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  641.728593][T24102] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  641.737298][T24093] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:21 executing program 3:
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x401, 0x8, 0x81})
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x5, 0x8, 0xffff})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x80, 0x3f, 0x82})
close_range(r0, 0xffffffffffffffff, 0x0)

[  642.030337][T24118] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:22 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:22 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:22 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:22 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:23 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:23 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  643.181177][T24175] set_target_expiration: 3 callbacks suppressed
[  643.181194][T24175] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:23 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:23 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  643.525412][T24195] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:23 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:23 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:23 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:24 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:24 executing program 5:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:24 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

05:19:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

05:19:24 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:24 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  644.773827][T24296] __nla_validate_parse: 5 callbacks suppressed
[  644.773844][T24296] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:24 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x7f]}, 0x8)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="360faef06766c7442400004800006766c7442402c58290f06766c744240600000000670f0114249a53000b0066b94e0800000f32baf80c66b884f0448966efbafc0cb81a82ef660fe10736f2ac3e0f01c9b828018ec8660fc731", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}]})
r4 = openat2(r3, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x40000, 0x104, 0xc}, 0x18)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200), 0xf000)
sendfile(r5, 0xffffffffffffffff, 0x0, 0xf03b2400)
sendfile(r5, 0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000840)={{0x2, 0x1000, 0x0, 0xe1, 0x7, 0x2, 0xc6, 0x8, 0x1f, 0x2, 0x0, 0xfb}, {0x116000, 0x0, 0x4, 0xff, 0x0, 0x4, 0x1, 0x7, 0x1f, 0x8, 0x1, 0x3}, {0x3000, 0x4000, 0xb, 0x81, 0x4, 0x4, 0xb0, 0x1, 0x7f, 0x0, 0x1}, {0x0, 0x100008, 0xd, 0x80, 0x80, 0x8, 0x40, 0x4, 0x80, 0x6, 0x0, 0x7f}, {0x4000, 0x2000, 0x3, 0x2b, 0x40, 0x4a, 0x13, 0x5, 0x0, 0x0, 0x80, 0x5}, {0xd000, 0x3000, 0x8, 0x5, 0x0, 0xff, 0x0, 0x6, 0x40, 0x0, 0x1f, 0x5}, {0x4000, 0x5000, 0x4, 0xd7, 0x0, 0x3, 0x0, 0x3f, 0x7, 0x1, 0x3f, 0x5}, {0x0, 0x6000, 0x4, 0x6, 0x5, 0x20, 0x8, 0x80, 0x9, 0x1, 0x6, 0x1f}, {0xf000, 0x7f}, {0x1, 0x81}, 0x17, 0x0, 0x1000, 0x420488, 0xb, 0x400, 0x2, [0xd186, 0xe6c1, 0x2, 0x5]})

[  644.857779][T24296] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
05:19:25 executing program 0:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  644.945135][T24299] limit_periodic_timer_frequency: 3 callbacks suppressed
[  644.945150][T24299] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  645.006338][T24299] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:25 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

[  645.154366][T24313] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:19:25 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  645.226354][T24313] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:25 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:25 executing program 0:
r0 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:25 executing program 4:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:25 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:25 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:26 executing program 0:
r0 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:26 executing program 2:
r0 = syz_io_uring_setup(0x6b6d, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x1)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, r0, 0x10000000)
syz_io_uring_submit(r1, r3, &(0x7f0000000580)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x3}, 0x1)
syz_io_uring_setup(0x631f, &(0x7f0000000080), &(0x7f0000fec000/0x14000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)=<r4=>0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x6374, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 0:
r0 = syz_open_dev$usbfs(0x0, 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff00", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000001240)=ANY=[@ANYBLOB="780000002400518600"/20, @ANYRES32=r4, @ANYBLOB="00000000ffffffff0000000008000100736671004c00"], 0x78}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000640)=@newtfilter={0x54, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {}, {0x3}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x10, 0x1, 0x0, 0x0, {{0x0, 0x8}}}]}]}]}}]}, 0x54}}, 0x0)

05:19:26 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 2:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d242000012", 0x65, 0x400}, {&(0x7f0000010100)="0000000000000000000000006856d49a00cc4371bd6a7c893f280045010040", 0x1f, 0x4e0}, {0x0, 0x0, 0x6700000}], 0x0, &(0x7f0000013b00))

05:19:26 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  646.337349][T24375] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  646.360928][T24375] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
05:19:26 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  646.385852][T24380] loop2: detected capacity change from 0 to 264192
[  646.449758][T24380] EXT4-fs (loop2): fragment/cluster size (16384) != block size (1024)
05:19:26 executing program 4:
r0 = syz_io_uring_setup(0x6b6d, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x4000)=nil, 0x4000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x1)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, r0, 0x10000000)
syz_io_uring_submit(r1, r3, &(0x7f0000000580)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x3}, 0x1)
syz_io_uring_setup(0x631f, &(0x7f0000000080), &(0x7f0000fec000/0x14000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000140), 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index}, 0x0)
io_uring_enter(r0, 0x6374, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:26 executing program 2:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x0)

05:19:26 executing program 5:
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:26 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000000000004000000000002000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000008000000d24200001203", 0x66, 0x400}, {&(0x7f0000010100), 0x0, 0x4e0}, {0x0, 0x0, 0x6700000}], 0x0, &(0x7f0000013b00))

05:19:26 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:27 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:27 executing program 5:
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:27 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c016ce2f02a94a3a741bc639706e8c47521fa2fd7609050400400060044007250183040002692132f7285b5970fc4f3a628c7e76ee7079b38f46808a6c0309ce7f4242377ba4941456c3604244212f89ecc59910c60093a244db35b11756836356fd9095848cb28fac1e16ce3731edb1d1"], 0x0)

[  646.984901][T24402] loop3: detected capacity change from 0 to 264192
05:19:27 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:27 executing program 5:
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  647.133973][T24402] EXT4-fs (loop3): unsupported descriptor size 0
[  647.166435][T15244] usb 3-1: new high-speed USB device number 60 using dummy_hcd
05:19:27 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000001c0), 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={r1}, 0xc)

05:19:27 executing program 5:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c016ce2f02a94a3a741bc639706e8c4752"], 0x0)

[  647.386538][T15241] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  647.416387][T15244] usb 3-1: Using ep0 maxpacket: 8
[  647.546448][T15244] usb 3-1: config 0 has an invalid interface number: 177 but max is 0
[  647.557055][T15244] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  647.576261][T15244] usb 3-1: config 0 has no interface number 0
[  647.588214][T15244] usb 3-1: config 0 interface 177 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  647.610274][T15244] usb 3-1: config 0 interface 177 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 8
[  647.626282][T15241] usb 5-1: Using ep0 maxpacket: 8
[  647.664739][ T3675] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  647.746485][T15241] usb 5-1: config 0 has an invalid interface number: 177 but max is 0
[  647.754684][T15241] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  647.765353][T15241] usb 5-1: config 0 has no interface number 0
[  647.771707][T15241] usb 5-1: config 0 interface 177 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  647.796503][T15244] usb 3-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  647.814522][T15244] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  647.824137][T15244] usb 3-1: Product: syz
[  647.830210][T15244] usb 3-1: Manufacturer: syz
[  647.834957][T15244] usb 3-1: SerialNumber: syz
05:19:28 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  647.890625][T15244] usb 3-1: config 0 descriptor??
[  647.926518][ T3675] usb 6-1: Using ep0 maxpacket: 8
[  647.936825][T15241] usb 5-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  647.945889][T15241] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  647.964046][T15241] usb 5-1: Product: syz
[  647.968423][T15241] usb 5-1: Manufacturer: syz
[  647.973158][T15241] usb 5-1: SerialNumber: syz
[  647.984097][T15241] usb 5-1: config 0 descriptor??
[  648.071480][ T3675] usb 6-1: config 0 has an invalid interface number: 177 but max is 0
[  648.084975][ T3675] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  648.097039][ T3675] usb 6-1: config 0 has no interface number 0
[  648.103316][ T3675] usb 6-1: config 0 interface 177 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
[  648.172571][T15241] usb 3-1: USB disconnect, device number 60
[  648.261727][T15244] usb 5-1: USB disconnect, device number 11
[  648.296451][ T3675] usb 6-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  648.313850][ T3675] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  648.322574][ T3675] usb 6-1: Product: syz
[  648.327229][ T3675] usb 6-1: Manufacturer: syz
[  648.333615][ T3675] usb 6-1: SerialNumber: syz
[  648.348094][ T3675] usb 6-1: config 0 descriptor??
[  648.621609][ T3675] usb 6-1: USB disconnect, device number 16
05:19:28 executing program 2:
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})

05:19:28 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000080)={r1}, 0xc)

05:19:28 executing program 3:
r0 = syz_io_uring_setup(0x6b6d, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000380)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x1)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, r0, 0x10000000)
syz_io_uring_submit(r1, r3, &(0x7f0000000580)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x3}, 0x1)
syz_io_uring_setup(0x631f, &(0x7f0000000080), &(0x7f0000fec000/0x14000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)=<r4=>0x0)
syz_io_uring_submit(r1, r4, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index}, 0x0)
io_uring_enter(r0, 0x6374, 0x0, 0x0, 0x0, 0x0)

05:19:28 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x10, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:28 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

05:19:28 executing program 0:
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:28 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c016ce2f02a94a3a741bc639706e8c47521fa2fd7609050400400060044007250183040002692132f7285b5970fc4f3a628c7e76ee7079b38f46808a6c0309ce7f4242377ba4941456c3604244212f89ecc59910c60093a244db35b11756836356fd9095848cb28fac1e16ce3731edb1d1"], 0x0)

05:19:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"}) (fail_nth: 1)

[  648.841725][T24436] FAULT_INJECTION: forcing a failure.
[  648.841725][T24436] name failslab, interval 1, probability 0, space 0, times 1
[  648.879508][T24436] CPU: 0 PID: 24436 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
05:19:29 executing program 0:
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  648.887962][T24436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  648.898029][T24436] Call Trace:
[  648.901320][T24436]  <TASK>
[  648.904261][T24436]  dump_stack_lvl+0x1e3/0x2cb
[  648.909045][T24436]  ? bfq_pos_tree_add_move+0x436/0x436
[  648.914522][T24436]  ? panic+0x76e/0x76e
[  648.918608][T24436]  ? __might_sleep+0xc0/0xc0
[  648.923283][T24436]  should_fail+0x384/0x4b0
[  648.927783][T24436]  ? dup_task_struct+0x4e/0x480
[  648.932684][T24436]  should_failslab+0x5/0x20
05:19:29 executing program 0:
syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  648.937270][T24436]  kmem_cache_alloc_node+0x6c/0x340
[  648.942527][T24436]  dup_task_struct+0x4e/0x480
[  648.947310][T24436]  copy_process+0x5ea/0x3f70
[  648.951909][T24436]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  648.957951][T24436]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  648.963959][T24436]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  648.969078][T24436]  ? mark_lock+0x98/0x350
[  648.973504][T24436]  kernel_clone+0x22f/0x7a0
[  648.978023][T24436]  ? create_io_thread+0x1e0/0x1e0
[  648.983070][T24436]  ? read_lock_is_recursive+0x10/0x10
[  648.988459][T24436]  ? __context_tracking_exit+0x4d/0x80
[  648.993957][T24436]  __x64_sys_clone+0x289/0x310
[  648.998714][T24436]  ? __do_sys_vfork+0x130/0x130
[  649.003550][T24436]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  649.009531][T24436]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  649.015506][T24436]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  649.021479][T24436]  do_syscall_64+0x2b/0x70
[  649.025886][T24436]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  649.031815][T24436] RIP: 0033:0x7fa3598890e9
[  649.036222][T24436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  649.055822][T24436] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  649.064229][T24436] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  649.072194][T24436] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  649.080154][T24436] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  649.088113][T24436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  649.096068][T24436] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  649.104044][T24436]  </TASK>
[  649.126352][T24449] FAULT_INJECTION: forcing a failure.
[  649.126352][T24449] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  649.187137][T24449] CPU: 0 PID: 24449 Comm: syz-executor.2 Not tainted 5.18.0-syzkaller #0
[  649.195589][T24449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.205652][T24449] Call Trace:
[  649.208940][T24449]  <TASK>
[  649.211883][T24449]  dump_stack_lvl+0x1e3/0x2cb
[  649.216587][T24449]  ? bfq_pos_tree_add_move+0x436/0x436
[  649.222068][T24449]  ? panic+0x76e/0x76e
[  649.226147][T24449]  ? snprintf+0xd6/0x120
[  649.230456][T24449]  should_fail+0x384/0x4b0
[  649.234873][T24449]  _copy_to_user+0x2b/0x130
[  649.239381][T24449]  simple_read_from_buffer+0xd9/0x160
[  649.244784][T24449]  proc_fail_nth_read+0x1af/0x220
[  649.249815][T24449]  ? proc_fault_inject_write+0x3a0/0x3a0
[  649.255443][T24449]  ? security_file_permission+0x45f/0x5c0
[  649.261214][T24449]  ? proc_fault_inject_write+0x3a0/0x3a0
[  649.266839][T24449]  vfs_read+0x2ea/0xd10
[  649.271022][T24449]  ? __fdget_pos+0x247/0x2e0
[  649.275616][T24449]  ? kernel_read+0x1f0/0x1f0
[  649.280212][T24449]  ? mutex_lock_nested+0x17/0x20
[  649.285167][T24449]  ? __fdget_pos+0x247/0x2e0
[  649.289744][T24449]  ? ksys_read+0x77/0x2c0
[  649.294070][T24449]  ksys_read+0x19b/0x2c0
[  649.298305][T24449]  ? print_irqtrace_events+0x220/0x220
[  649.303757][T24449]  ? vfs_write+0xd40/0xd40
[  649.308164][T24449]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  649.314137][T24449]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  649.320106][T24449]  do_syscall_64+0x2b/0x70
[  649.324511][T24449]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  649.330393][T24449] RIP: 0033:0x7f990ae3bc9c
[  649.334799][T24449] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  649.354391][T24449] RSP: 002b:00007f990bf04160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  649.362797][T24449] RAX: ffffffffffffffda RBX: 00007f990af9c030 RCX: 00007f990ae3bc9c
[  649.370763][T24449] RDX: 000000000000000f RSI: 00007f990bf041e0 RDI: 0000000000000004
[  649.378722][T24449] RBP: 00007f990bf041d0 R08: 0000000000000000 R09: 0000000000000000
05:19:29 executing program 5:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c016ce2f02a94a3a741bc639706e8c4752"], 0x0)

05:19:29 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 1)

05:19:29 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

05:19:29 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1)

[  649.386680][T24449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  649.394637][T24449] R13: 00007ffe259cc99f R14: 00007f990bf04300 R15: 0000000000022000
[  649.402608][T24449]  </TASK>
[  649.476363][  T921] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  649.556709][T24461] FAULT_INJECTION: forcing a failure.
[  649.556709][T24461] name failslab, interval 1, probability 0, space 0, times 0
[  649.605509][T24461] CPU: 1 PID: 24461 Comm: syz-executor.0 Not tainted 5.18.0-syzkaller #0
[  649.613874][T24455] FAULT_INJECTION: forcing a failure.
[  649.613874][T24455] name failslab, interval 1, probability 0, space 0, times 0
[  649.613962][T24461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.636591][T24461] Call Trace:
[  649.639879][T24461]  <TASK>
[  649.642835][T24461]  dump_stack_lvl+0x1e3/0x2cb
[  649.647541][T24461]  ? bfq_pos_tree_add_move+0x436/0x436
[  649.653016][T24461]  ? panic+0x76e/0x76e
[  649.657094][T24461]  ? __might_sleep+0xc0/0xc0
[  649.661705][T24461]  should_fail+0x384/0x4b0
[  649.666137][T24461]  ? dup_task_struct+0x4e/0x480
[  649.670997][T24461]  should_failslab+0x5/0x20
[  649.675517][T24461]  kmem_cache_alloc_node+0x6c/0x340
[  649.680731][T24461]  dup_task_struct+0x4e/0x480
[  649.685428][T24461]  copy_process+0x5ea/0x3f70
[  649.690030][T24461]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  649.696010][T24461]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  649.701990][T24461]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  649.707087][T24461]  ? mark_lock+0x98/0x350
[  649.711417][T24461]  kernel_clone+0x22f/0x7a0
[  649.715917][T24461]  ? create_io_thread+0x1e0/0x1e0
[  649.720941][T24461]  ? read_lock_is_recursive+0x10/0x10
[  649.726309][T24461]  ? __context_tracking_exit+0x4d/0x80
[  649.731771][T24461]  __x64_sys_clone+0x289/0x310
[  649.736620][T24461]  ? __do_sys_vfork+0x130/0x130
[  649.741457][T24461]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  649.747439][T24461]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  649.753412][T24461]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  649.759384][T24461]  do_syscall_64+0x2b/0x70
[  649.763790][T24461]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  649.769673][T24461] RIP: 0033:0x7f52f78890e9
[  649.774078][T24461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  649.793675][T24461] RSP: 002b:00007f52f890a118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  649.802076][T24461] RAX: ffffffffffffffda RBX: 00007f52f799bf60 RCX: 00007f52f78890e9
[  649.810035][T24461] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  649.817992][T24461] RBP: 00007f52f890a1d0 R08: 0000000000000000 R09: 0000000000000000
[  649.825951][T24461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  649.833906][T24461] R13: 00007ffc2911398f R14: 00007f52f890a300 R15: 0000000000022000
[  649.841876][T24461]  </TASK>
[  649.847890][T24455] CPU: 1 PID: 24455 Comm: syz-executor.3 Not tainted 5.18.0-syzkaller #0
05:19:30 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)

[  649.856329][T24455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  649.866390][T24455] Call Trace:
[  649.869679][T24455]  <TASK>
[  649.872617][T24455]  dump_stack_lvl+0x1e3/0x2cb
[  649.877317][T24455]  ? bfq_pos_tree_add_move+0x436/0x436
[  649.882794][T24455]  ? panic+0x76e/0x76e
[  649.886883][T24455]  ? __might_sleep+0xc0/0xc0
[  649.891500][T24455]  ? rcu_read_lock_sched_held+0x89/0x130
[  649.897158][T24455]  should_fail+0x384/0x4b0
[  649.901616][T24455]  ? tomoyo_realpath_from_path+0xd8/0x5f0
[  649.907425][T24455]  should_failslab+0x5/0x20
[  649.911946][T24455]  __kmalloc+0x8b/0x370
[  649.916112][T24455]  ? kfree+0x2f/0x210
[  649.920102][T24455]  ? rcu_read_lock_sched_held+0x89/0x130
[  649.925753][T24455]  tomoyo_realpath_from_path+0xd8/0x5f0
[  649.931329][T24455]  tomoyo_path_number_perm+0x219/0x7b0
[  649.936817][T24455]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  649.942330][T24455]  ? __fget_files+0x3d0/0x440
[  649.947034][T24455]  security_file_ioctl+0x55/0xb0
[  649.951995][T24455]  __se_sys_ioctl+0x48/0x170
[  649.952340][T24465] FAULT_INJECTION: forcing a failure.
[  649.952340][T24465] name failslab, interval 1, probability 0, space 0, times 0
[  649.956595][T24455]  do_syscall_64+0x2b/0x70
[  649.956619][T24455]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  649.956641][T24455] RIP: 0033:0x7fdcfe6890e9
[  649.956658][T24455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  649.956675][T24455] RSP: 002b:00007fdcff79b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  649.956698][T24455] RAX: ffffffffffffffda RBX: 00007fdcfe79bf60 RCX: 00007fdcfe6890e9
[  649.956714][T24455] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  649.956727][T24455] RBP: 00007fdcff79b1d0 R08: 0000000000000000 R09: 0000000000000000
[  649.956740][T24455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  649.956753][T24455] R13: 00007ffce7a8c8ff R14: 00007fdcff79b300 R15: 0000000000022000
[  649.956783][T24455]  </TASK>
05:19:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  650.016873][T24455] ERROR: Out of memory at tomoyo_realpath_from_path.
[  650.117167][T24466] FAULT_INJECTION: forcing a failure.
[  650.117167][T24466] name failslab, interval 1, probability 0, space 0, times 0
[  650.129884][  T921] usb 5-1: Using ep0 maxpacket: 8
[  650.143501][ T7672] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  650.173243][T24466] CPU: 1 PID: 24466 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  650.181690][T24466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  650.191864][T24466] Call Trace:
[  650.195158][T24466]  <TASK>
[  650.198097][T24466]  dump_stack_lvl+0x1e3/0x2cb
[  650.202802][T24466]  ? bfq_pos_tree_add_move+0x436/0x436
[  650.208279][T24466]  ? panic+0x76e/0x76e
[  650.212370][T24466]  ? __might_sleep+0xc0/0xc0
[  650.216998][T24466]  should_fail+0x384/0x4b0
[  650.221436][T24466]  ? prepare_creds+0x3d/0x630
[  650.226194][T24466]  should_failslab+0x5/0x20
[  650.230709][T24466]  kmem_cache_alloc+0x69/0x2f0
[  650.235497][T24466]  prepare_creds+0x3d/0x630
[  650.240018][T24466]  copy_creds+0x13d/0xbf0
[  650.244352][T24466]  copy_process+0x8a1/0x3f70
[  650.248932][T24466]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  650.254941][T24466]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  650.260927][T24466]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  650.266034][T24466]  ? mark_lock+0x98/0x350
[  650.270359][T24466]  kernel_clone+0x22f/0x7a0
[  650.274854][T24466]  ? create_io_thread+0x1e0/0x1e0
[  650.279876][T24466]  ? read_lock_is_recursive+0x10/0x10
[  650.285236][T24466]  ? __context_tracking_exit+0x4d/0x80
[  650.290693][T24466]  __x64_sys_clone+0x289/0x310
[  650.295455][T24466]  ? __do_sys_vfork+0x130/0x130
[  650.300297][T24466]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  650.306275][T24466]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  650.312250][T24466]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  650.318224][T24466]  do_syscall_64+0x2b/0x70
[  650.322631][T24466]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  650.328517][T24466] RIP: 0033:0x7fa3598890e9
[  650.332922][T24466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  650.352518][T24466] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  650.360924][T24466] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  650.368890][T24466] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  650.376846][T24466] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  650.384803][T24466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  650.392761][T24466] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  650.400730][T24466]  </TASK>
[  650.419606][T24465] CPU: 0 PID: 24465 Comm: syz-executor.0 Not tainted 5.18.0-syzkaller #0
[  650.428063][T24465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  650.438129][T24465] Call Trace:
[  650.441413][T24465]  <TASK>
[  650.444354][T24465]  dump_stack_lvl+0x1e3/0x2cb
[  650.449053][T24465]  ? bfq_pos_tree_add_move+0x436/0x436
[  650.454520][T24465]  ? panic+0x76e/0x76e
[  650.458605][T24465]  ? __might_sleep+0xc0/0xc0
[  650.463203][T24465]  ? __mod_memcg_lruvec_state+0x1d3/0x2a0
[  650.469063][T24465]  should_fail+0x384/0x4b0
[  650.473501][T24465]  ? __get_vm_area_node+0x13f/0x380
[  650.478763][T24465]  should_failslab+0x5/0x20
[  650.483287][T24465]  kmem_cache_alloc_node_trace+0x6b/0x360
[  650.489026][T24465]  ? rcu_lock_acquire+0x30/0x30
[  650.493897][T24465]  __get_vm_area_node+0x13f/0x380
[  650.498938][T24465]  __vmalloc_node_range+0x369/0x12e0
[  650.504233][T24465]  ? dup_task_struct+0x8b/0x480
[  650.509108][T24465]  ? rcu_read_lock_sched_held+0x89/0x130
[  650.514762][T24465]  alloc_thread_stack_node+0x307/0x500
[  650.520226][T24465]  ? dup_task_struct+0x8b/0x480
[  650.525087][T24465]  ? memcpy+0x3c/0x60
[  650.529083][T24465]  dup_task_struct+0x8b/0x480
[  650.533774][T24465]  copy_process+0x5ea/0x3f70
[  650.538381][T24465]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  650.544384][T24465]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  650.550396][T24465]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  650.555521][T24465]  ? mark_lock+0x98/0x350
[  650.559870][T24465]  kernel_clone+0x22f/0x7a0
[  650.564386][T24465]  ? create_io_thread+0x1e0/0x1e0
[  650.569438][T24465]  ? read_lock_is_recursive+0x10/0x10
[  650.574821][T24465]  ? __context_tracking_exit+0x4d/0x80
[  650.580292][T24465]  __x64_sys_clone+0x289/0x310
[  650.585067][T24465]  ? __do_sys_vfork+0x130/0x130
[  650.589924][T24465]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  650.595929][T24465]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  650.601920][T24465]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  650.607905][T24465]  do_syscall_64+0x2b/0x70
[  650.612309][T24465]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  650.618190][T24465] RIP: 0033:0x7f52f78890e9
[  650.622594][T24465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  650.642187][T24465] RSP: 002b:00007f52f890a118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  650.650588][T24465] RAX: ffffffffffffffda RBX: 00007f52f799bf60 RCX: 00007f52f78890e9
[  650.658546][T24465] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  650.666503][T24465] RBP: 00007f52f890a1d0 R08: 0000000000000000 R09: 0000000000000000
05:19:30 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3)

[  650.674463][T24465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  650.682424][T24465] R13: 00007ffc2911398f R14: 00007f52f890a300 R15: 0000000000022000
[  650.690403][T24465]  </TASK>
[  650.693827][  T921] usb 5-1: config 0 has an invalid interface number: 177 but max is 0
[  650.708168][  T921] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  650.718938][  T921] usb 5-1: config 0 has no interface number 0
[  650.746338][ T7672] usb 6-1: Using ep0 maxpacket: 8
[  650.757823][  T921] usb 5-1: config 0 interface 177 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  650.801541][T24475] FAULT_INJECTION: forcing a failure.
[  650.801541][T24475] name failslab, interval 1, probability 0, space 0, times 0
[  650.829710][T24465] syz-executor.0: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  650.840949][T24475] CPU: 0 PID: 24475 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  650.853719][T24475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  650.863768][T24475] Call Trace:
[  650.867038][T24475]  <TASK>
[  650.869963][T24475]  dump_stack_lvl+0x1e3/0x2cb
[  650.874646][T24475]  ? bfq_pos_tree_add_move+0x436/0x436
[  650.880102][T24475]  ? panic+0x76e/0x76e
[  650.884170][T24475]  ? __might_sleep+0xc0/0xc0
[  650.888767][T24475]  should_fail+0x384/0x4b0
[  650.893194][T24475]  ? security_prepare_creds+0x48/0x150
[  650.898652][T24475]  should_failslab+0x5/0x20
[  650.903158][T24475]  __kmalloc+0x8b/0x370
[  650.907319][T24475]  security_prepare_creds+0x48/0x150
[  650.912602][T24475]  prepare_creds+0x452/0x630
[  650.917199][T24475]  copy_creds+0x13d/0xbf0
[  650.921541][T24475]  copy_process+0x8a1/0x3f70
[  650.926136][T24475]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  650.932128][T24475]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  650.936799][ T7672] usb 6-1: config 0 has an invalid interface number: 177 but max is 0
[  650.938111][T24475]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  650.938136][T24475]  ? mark_lock+0x98/0x350
[  650.938166][T24475]  kernel_clone+0x22f/0x7a0
[  650.960154][T24475]  ? create_io_thread+0x1e0/0x1e0
[  650.965179][T24475]  ? read_lock_is_recursive+0x10/0x10
[  650.970541][T24475]  ? __context_tracking_exit+0x4d/0x80
[  650.975991][T24475]  __x64_sys_clone+0x289/0x310
[  650.980745][T24475]  ? __do_sys_vfork+0x130/0x130
[  650.985581][T24475]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  650.991557][T24475]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  650.997530][T24475]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  651.003505][T24475]  do_syscall_64+0x2b/0x70
[  651.007910][T24475]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  651.013794][T24475] RIP: 0033:0x7fa3598890e9
[  651.018199][T24475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  651.037791][T24475] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
05:19:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x64)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x70, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  651.046195][T24475] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  651.054154][T24475] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  651.062110][T24475] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  651.070065][T24475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  651.078022][T24475] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  651.085994][T24475]  </TASK>
[  651.118031][ T7672] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  651.164034][ T7672] usb 6-1: config 0 has no interface number 0
[  651.170984][  T921] usb 5-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  651.189172][  T921] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.205463][ T7672] usb 6-1: config 0 interface 177 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
[  651.240083][  T921] usb 5-1: Product: syz
[  651.263089][  T921] usb 5-1: Manufacturer: syz
[  651.272801][T24477] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  651.285050][  T921] usb 5-1: SerialNumber: syz
[  651.289882][T24477] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  651.339566][  T921] usb 5-1: config 0 descriptor??
[  651.446535][ T7672] usb 6-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  651.477449][ T7672] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  651.485614][ T7672] usb 6-1: Product: syz
[  651.490518][ T7672] usb 6-1: Manufacturer: syz
[  651.495257][ T7672] usb 6-1: SerialNumber: syz
[  651.511480][ T7672] usb 6-1: config 0 descriptor??
[  651.523480][T24465] CPU: 1 PID: 24465 Comm: syz-executor.0 Not tainted 5.18.0-syzkaller #0
[  651.531915][T24465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  651.541963][T24465] Call Trace:
[  651.545230][T24465]  <TASK>
[  651.548150][T24465]  dump_stack_lvl+0x1e3/0x2cb
[  651.552830][T24465]  ? bfq_pos_tree_add_move+0x436/0x436
[  651.558282][T24465]  ? panic+0x76e/0x76e
[  651.562350][T24465]  warn_alloc+0x296/0x400
[  651.566673][T24465]  ? zone_watermark_ok_safe+0x280/0x280
[  651.572209][T24465]  ? kmem_cache_alloc_node_trace+0x23f/0x360
[  651.578187][T24465]  ? __get_vm_area_node+0x36c/0x380
[  651.583380][T24465]  __vmalloc_node_range+0x390/0x12e0
[  651.588672][T24465]  ? rcu_read_lock_sched_held+0x89/0x130
[  651.594301][T24465]  alloc_thread_stack_node+0x307/0x500
[  651.599753][T24465]  ? dup_task_struct+0x8b/0x480
[  651.604594][T24465]  ? memcpy+0x3c/0x60
[  651.608572][T24465]  dup_task_struct+0x8b/0x480
[  651.613241][T24465]  copy_process+0x5ea/0x3f70
[  651.617817][T24465]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  651.623797][T24465]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  651.629774][T24465]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  651.634875][T24465]  ? mark_lock+0x98/0x350
[  651.639203][T24465]  kernel_clone+0x22f/0x7a0
[  651.643700][T24465]  ? create_io_thread+0x1e0/0x1e0
[  651.648728][T24465]  ? read_lock_is_recursive+0x10/0x10
[  651.654100][T24465]  ? __context_tracking_exit+0x4d/0x80
[  651.659561][T24465]  __x64_sys_clone+0x289/0x310
[  651.664323][T24465]  ? __do_sys_vfork+0x130/0x130
[  651.669166][T24465]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  651.675147][T24465]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  651.681123][T24465]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  651.687100][T24465]  do_syscall_64+0x2b/0x70
[  651.691506][T24465]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  651.697392][T24465] RIP: 0033:0x7f52f78890e9
[  651.701801][T24465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  651.721397][T24465] RSP: 002b:00007f52f890a118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  651.729800][T24465] RAX: ffffffffffffffda RBX: 00007f52f799bf60 RCX: 00007f52f78890e9
[  651.737760][T24465] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  651.745721][T24465] RBP: 00007f52f890a1d0 R08: 0000000000000000 R09: 0000000000000000
[  651.753678][T24465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  651.761632][T24465] R13: 00007ffc2911398f R14: 00007f52f890a300 R15: 0000000000022000
[  651.769602][T24465]  </TASK>
[  651.826846][   T14] usb 5-1: USB disconnect, device number 12
[  651.845611][T24465] Mem-Info:
[  651.850784][T24465] active_anon:232 inactive_anon:124130 isolated_anon:0
[  651.850784][T24465]  active_file:2358 inactive_file:4006 isolated_file:0
[  651.850784][T24465]  unevictable:768 dirty:0 writeback:0
[  651.850784][T24465]  slab_reclaimable:19844 slab_unreclaimable:103695
[  651.850784][T24465]  mapped:18888 shmem:4678 pagetables:875 bounce:0
[  651.850784][T24465]  kernel_misc_reclaimable:0
[  651.850784][T24465]  free:1308295 free_pcp:12716 free_cma:0
[  651.912704][T24465] Node 0 active_anon:928kB inactive_anon:496520kB active_file:9432kB inactive_file:16016kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:75552kB dirty:0kB writeback:0kB shmem:17176kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 6144kB writeback_tmp:0kB kernel_stack:10416kB pagetables:3496kB all_unreclaimable? no
[  651.953770][T24465] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:4kB all_unreclaimable? no
[  652.004238][T24465] Node 0 DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  652.042261][T24465] lowmem_reserve[]: 0 2635 2636 2636 2636
[  652.050225][T24465] Node 0 DMA32 free:1291972kB boost:0kB min:35588kB low:44484kB high:53380kB reserved_highatomic:0KB active_anon:928kB inactive_anon:496520kB active_file:9432kB inactive_file:16016kB unevictable:1536kB writepending:0kB present:3129332kB managed:2704512kB mlocked:0kB bounce:0kB free_pcp:39880kB local_pcp:21212kB free_cma:0kB
[  652.052586][ T7672] usb 6-1: USB disconnect, device number 17
[  652.090944][T24465] lowmem_reserve[]: 0 0 1 1 1
[  652.095755][T24465] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1424kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  652.132728][T24465] lowmem_reserve[]: 0 0 0 0 0
[  652.139161][T24465] Node 1 Normal free:3925848kB boost:0kB min:54300kB low:67872kB high:81444kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:8kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117620kB mlocked:0kB bounce:0kB free_pcp:10592kB local_pcp:6336kB free_cma:0kB
[  652.169025][T24465] lowmem_reserve[]: 0 0 0 0 0
[  652.173835][T24465] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  652.187328][T24465] Node 0 DMA32: 401*4kB (UE) 1480*8kB (UME) 1162*16kB (UME) 867*32kB (UME) 857*64kB (UME) 358*128kB (UM) 138*256kB (UME) 89*512kB (UME) 44*1024kB (UME) 17*2048kB (ME) 237*4096kB (UM) = 1291972kB
[  652.207078][T24465] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  652.219120][T24465] Node 1 Normal: 172*4kB (UME) 39*8kB (UE) 25*16kB (UME) 95*32kB (UME) 38*64kB (UME) 19*128kB (UE) 7*256kB (UE) 2*512kB (U) 2*1024kB (UM) 0*2048kB 955*4096kB (M) = 3925848kB
[  652.237965][T24465] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  652.266300][T24465] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  652.275596][T24465] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  652.294505][T24465] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  652.304360][T24465] 11042 total pagecache pages
[  652.316264][T24465] 0 pages in swap cache
[  652.320430][T24465] Swap cache stats: add 0, delete 0, find 0/0
[  652.337317][T24465] Free swap  = 0kB
[  652.341058][T24465] Total swap = 0kB
[  652.344775][T24465] 2097051 pages RAM
[  652.355657][T24465] 0 pages HighMem/MovableOnly
[  652.361973][T24465] 387322 pages reserved
05:19:32 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c016ce2f02a94a3a741bc639706e8c47521fa2fd7609050400400060044007250183040002692132f7285b5970fc4f3a628c7e76ee7079b38f46808a6c0309ce7f4242377ba4941456c3604244212f89ecc59910c60093a244db35b11756836356fd9095848cb28fac1e16ce3731edb1d1"], 0x0)

05:19:32 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:32 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x64)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x70, 0x0, 0x0) (async, rerun: 64)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"}) (rerun: 64)

05:19:32 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4)

[  652.374318][T24465] 0 pages cma reserved
[  652.463227][T24486] FAULT_INJECTION: forcing a failure.
[  652.463227][T24486] name failslab, interval 1, probability 0, space 0, times 0
[  652.494039][T24486] CPU: 0 PID: 24486 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  652.502515][T24486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  652.512575][T24486] Call Trace:
[  652.515854][T24486]  <TASK>
[  652.518789][T24486]  dump_stack_lvl+0x1e3/0x2cb
[  652.523492][T24486]  ? bfq_pos_tree_add_move+0x436/0x436
[  652.528965][T24486]  ? panic+0x76e/0x76e
[  652.533046][T24486]  ? __might_sleep+0xc0/0xc0
[  652.537646][T24486]  ? perf_event_init_task+0x746/0x7b0
[  652.543115][T24486]  should_fail+0x384/0x4b0
[  652.547545][T24486]  ? security_task_alloc+0x3f/0x140
[  652.552754][T24486]  should_failslab+0x5/0x20
[  652.557281][T24486]  __kmalloc+0x8b/0x370
[  652.561447][T24486]  ? rcu_read_unlock+0x80/0x80
[  652.566302][T24486]  security_task_alloc+0x3f/0x140
[  652.571343][T24486]  copy_process+0x16a6/0x3f70
[  652.576027][T24486]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  652.582094][T24486]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  652.587213][T24486]  ? mark_lock+0x98/0x350
[  652.591573][T24486]  kernel_clone+0x22f/0x7a0
[  652.596091][T24486]  ? create_io_thread+0x1e0/0x1e0
[  652.601139][T24486]  ? read_lock_is_recursive+0x10/0x10
[  652.606529][T24486]  ? __context_tracking_exit+0x4d/0x80
[  652.612042][T24486]  __x64_sys_clone+0x289/0x310
[  652.616822][T24486]  ? __do_sys_vfork+0x130/0x130
[  652.621679][T24486]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  652.627694][T24486]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  652.633692][T24486]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  652.639689][T24486]  do_syscall_64+0x2b/0x70
[  652.644117][T24486]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  652.650019][T24486] RIP: 0033:0x7fa3598890e9
[  652.654442][T24486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  652.674151][T24486] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  652.682585][T24486] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  652.690580][T24486] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  652.698560][T24486] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
05:19:32 executing program 5:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c016ce2f02a94a3a741bc639706e8c4752"], 0x0)

05:19:32 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

[  652.706538][T24486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  652.714523][T24486] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  652.722527][T24486]  </TASK>
05:19:32 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x2, 0x0, 0x0, 0x0, 0x0, 0x0)

[  652.766362][ T7672] usb 5-1: new high-speed USB device number 13 using dummy_hcd
05:19:32 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5)

05:19:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x64)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x70, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x64) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x70, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"}) (async)

05:19:33 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x7, 0x0, 0x0, 0x0, 0x0, 0x0)

[  652.929806][T24504] FAULT_INJECTION: forcing a failure.
[  652.929806][T24504] name failslab, interval 1, probability 0, space 0, times 0
[  652.970761][T24506] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  652.978752][T24504] CPU: 1 PID: 24504 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  652.987524][T24504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  652.989720][T24506] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  652.997579][T24504] Call Trace:
[  652.997590][T24504]  <TASK>
[  652.997599][T24504]  dump_stack_lvl+0x1e3/0x2cb
[  652.997631][T24504]  ? bfq_pos_tree_add_move+0x436/0x436
[  652.997655][T24504]  ? panic+0x76e/0x76e
[  652.997676][T24504]  ? __might_sleep+0xc0/0xc0
[  652.997702][T24504]  should_fail+0x384/0x4b0
[  652.997730][T24504]  ? dup_fd+0x72/0xb60
[  652.997747][T24504]  should_failslab+0x5/0x20
[  652.997768][T24504]  kmem_cache_alloc+0x69/0x2f0
[  652.997794][T24504]  dup_fd+0x72/0xb60
[  653.061430][T24504]  copy_files+0xe6/0x200
[  653.065691][T24504]  ? dup_task_struct+0x480/0x480
[  653.070639][T24504]  ? tomoyo_task_alloc+0xaf/0xf0
[  653.075587][T24504]  ? copy_semundo+0x3e/0x230
[  653.080246][T24504]  copy_process+0x16fa/0x3f70
[  653.084932][T24504]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  653.090949][T24504]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  653.093648][T15241] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  653.096072][T24504]  ? mark_lock+0x98/0x350
[  653.096112][T24504]  kernel_clone+0x22f/0x7a0
[  653.096139][T24504]  ? create_io_thread+0x1e0/0x1e0
[  653.096168][T24504]  ? read_lock_is_recursive+0x10/0x10
[  653.096188][T24504]  ? __context_tracking_exit+0x4d/0x80
[  653.096219][T24504]  __x64_sys_clone+0x289/0x310
[  653.096243][T24504]  ? __do_sys_vfork+0x130/0x130
[  653.137938][T24504]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  653.143946][T24504]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  653.149943][T24504]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  653.155937][T24504]  do_syscall_64+0x2b/0x70
[  653.160359][T24504]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  653.166265][T24504] RIP: 0033:0x7fa3598890e9
[  653.170677][T24504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  653.190273][T24504] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  653.198675][T24504] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  653.206634][T24504] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
05:19:33 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x2, 0x0)

05:19:33 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x8, 0x0, 0x0, 0x0, 0x0, 0x0)

[  653.214591][T24504] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  653.222548][T24504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.230506][T24504] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  653.238478][T24504]  </TASK>
[  653.286280][ T7672] usb 5-1: Using ep0 maxpacket: 8
[  653.446401][ T7672] usb 5-1: config 0 has an invalid interface number: 177 but max is 0
[  653.446458][T15241] usb 6-1: Using ep0 maxpacket: 8
[  653.454606][ T7672] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  653.454629][ T7672] usb 5-1: config 0 has no interface number 0
[  653.454668][ T7672] usb 5-1: config 0 interface 177 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  653.626331][T15241] usb 6-1: config 0 has an invalid interface number: 177 but max is 0
[  653.634703][T15241] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  653.645381][T15241] usb 6-1: config 0 has no interface number 0
[  653.649838][ T7672] usb 5-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  653.651951][T15241] usb 6-1: config 0 interface 177 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
[  653.676905][ T7672] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.684913][ T7672] usb 5-1: Product: syz
[  653.702212][ T7672] usb 5-1: Manufacturer: syz
[  653.725714][ T7672] usb 5-1: SerialNumber: syz
[  653.749458][ T7672] usb 5-1: config 0 descriptor??
[  653.826419][T15241] usb 6-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  653.835637][T15241] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.844229][T15241] usb 6-1: Product: syz
[  653.848813][T15241] usb 6-1: Manufacturer: syz
[  653.853555][T15241] usb 6-1: SerialNumber: syz
[  653.870404][T15241] usb 6-1: config 0 descriptor??
[  654.025035][T15241] usb 5-1: USB disconnect, device number 13
[  654.140227][   T14] usb 6-1: USB disconnect, device number 18
05:19:34 executing program 4:

05:19:34 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6)

05:19:34 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x9, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:34 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r5=>0x0})
connect$can_bcm(r4, &(0x7f0000001ff0)={0x1d, r5}, 0x10)
r6 = dup3(r4, r3, 0x0)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000001ff0), 0x10)
r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
r8 = open_tree(r0, &(0x7f0000000000)='./file0\x00', 0x8000)
ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f00000000c0)={r7, 0xc9, 0x9, r8})
sendmsg$can_raw(r6, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r6, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2050d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af07691024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

[  654.589718][T24534] FAULT_INJECTION: forcing a failure.
[  654.589718][T24534] name failslab, interval 1, probability 0, space 0, times 0
05:19:34 executing program 5:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x2, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:34 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x10, 0x0)

05:19:34 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x10, 0x0, 0x0, 0x0, 0x0, 0x0)

[  654.636226][T24534] CPU: 1 PID: 24534 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  654.644680][T24534] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  654.654740][T24534] Call Trace:
[  654.658023][T24534]  <TASK>
[  654.660958][T24534]  dump_stack_lvl+0x1e3/0x2cb
[  654.665659][T24534]  ? bfq_pos_tree_add_move+0x436/0x436
[  654.671133][T24534]  ? panic+0x76e/0x76e
[  654.675211][T24534]  should_fail+0x384/0x4b0
[  654.679621][T24534]  ? alloc_fdtable+0xaf/0x290
[  654.684292][T24534]  should_failslab+0x5/0x20
[  654.688786][T24534]  kmem_cache_alloc_trace+0x68/0x310
[  654.694106][T24534]  alloc_fdtable+0xaf/0x290
[  654.698604][T24534]  dup_fd+0x834/0xb60
[  654.702587][T24534]  copy_files+0xe6/0x200
[  654.706819][T24534]  ? dup_task_struct+0x480/0x480
[  654.711743][T24534]  ? tomoyo_task_alloc+0xaf/0xf0
[  654.716671][T24534]  ? copy_semundo+0x3e/0x230
[  654.721252][T24534]  copy_process+0x16fa/0x3f70
[  654.725915][T24534]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  654.731904][T24534]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  654.736999][T24534]  ? mark_lock+0x98/0x350
[  654.741327][T24534]  kernel_clone+0x22f/0x7a0
[  654.745823][T24534]  ? create_io_thread+0x1e0/0x1e0
[  654.750842][T24534]  ? read_lock_is_recursive+0x10/0x10
[  654.756203][T24534]  ? __context_tracking_exit+0x4d/0x80
[  654.761656][T24534]  __x64_sys_clone+0x289/0x310
[  654.766416][T24534]  ? __do_sys_vfork+0x130/0x130
[  654.771252][T24534]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  654.777229][T24534]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  654.783204][T24534]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  654.789173][T24534]  do_syscall_64+0x2b/0x70
[  654.793597][T24534]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  654.799478][T24534] RIP: 0033:0x7fa3598890e9
[  654.803890][T24534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  654.823480][T24534] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  654.831889][T24534] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  654.839854][T24534] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  654.847818][T24534] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  654.855788][T24534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  654.863748][T24534] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  654.871721][T24534]  </TASK>
05:19:35 executing program 4:

05:19:35 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:35 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7)

05:19:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
r3 = socket$can_bcm(0x1d, 0x2, 0x2) (async, rerun: 64)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r5=>0x0})
connect$can_bcm(r4, &(0x7f0000001ff0)={0x1d, r5}, 0x10)
r6 = dup3(r4, r3, 0x0) (async)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000001ff0), 0x10)
r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
r8 = open_tree(r0, &(0x7f0000000000)='./file0\x00', 0x8000)
ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f00000000c0)={r7, 0xc9, 0x9, r8}) (async, rerun: 64)
sendmsg$can_raw(r6, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (rerun: 64)
sendmsg$can_raw(r6, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async, rerun: 64)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000440)={"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"}) (rerun: 64)

05:19:35 executing program 4:

05:19:35 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0) (fail_nth: 1)

05:19:35 executing program 4:
syz_usb_connect(0x0, 0x25a, 0x0, 0x0)

[  655.076876][T24557] FAULT_INJECTION: forcing a failure.
[  655.076876][T24557] name failslab, interval 1, probability 0, space 0, times 0
[  655.126225][T24557] CPU: 0 PID: 24557 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  655.134674][T24557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  655.144734][T24557] Call Trace:
[  655.148018][T24557]  <TASK>
[  655.150955][T24557]  dump_stack_lvl+0x1e3/0x2cb
[  655.155654][T24557]  ? bfq_pos_tree_add_move+0x436/0x436
[  655.161132][T24557]  ? panic+0x76e/0x76e
[  655.165232][T24557]  should_fail+0x384/0x4b0
[  655.169671][T24557]  ? __vmalloc_node_range+0x5bc/0x12e0
[  655.175144][T24557]  should_failslab+0x5/0x20
[  655.179659][T24557]  __kmalloc_node+0x8e/0x400
[  655.184274][T24557]  __vmalloc_node_range+0x5bc/0x12e0
[  655.189590][T24557]  ? rcu_read_lock_sched_held+0x89/0x130
[  655.195244][T24557]  alloc_thread_stack_node+0x307/0x500
[  655.200721][T24557]  ? dup_task_struct+0x8b/0x480
[  655.205584][T24557]  ? memcpy+0x3c/0x60
[  655.209583][T24557]  dup_task_struct+0x8b/0x480
[  655.214276][T24557]  copy_process+0x5ea/0x3f70
[  655.218878][T24557]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  655.224881][T24557]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  655.230893][T24557]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  655.236012][T24557]  ? mark_lock+0x98/0x350
[  655.240362][T24557]  kernel_clone+0x22f/0x7a0
[  655.244880][T24557]  ? create_io_thread+0x1e0/0x1e0
[  655.249923][T24557]  ? read_lock_is_recursive+0x10/0x10
[  655.255304][T24557]  ? __context_tracking_exit+0x4d/0x80
[  655.260779][T24557]  __x64_sys_clone+0x289/0x310
[  655.265552][T24557]  ? __do_sys_vfork+0x130/0x130
[  655.270411][T24557]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  655.276413][T24557]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  655.282408][T24557]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  655.288405][T24557]  do_syscall_64+0x2b/0x70
[  655.292830][T24557]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  655.298727][T24557] RIP: 0033:0x7fa3598890e9
[  655.303156][T24557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  655.318639][T24570] FAULT_INJECTION: forcing a failure.
[  655.318639][T24570] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  655.322768][T24557] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  655.322796][T24557] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  655.322812][T24557] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  655.322825][T24557] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  655.322838][T24557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  655.322851][T24557] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  655.383998][T24557]  </TASK>
[  655.421671][T24570] CPU: 0 PID: 24570 Comm: syz-executor.5 Not tainted 5.18.0-syzkaller #0
[  655.430118][T24570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  655.440180][T24570] Call Trace:
[  655.443456][T24570]  <TASK>
[  655.446380][T24570]  dump_stack_lvl+0x1e3/0x2cb
[  655.451056][T24570]  ? bfq_pos_tree_add_move+0x436/0x436
[  655.456508][T24570]  ? panic+0x76e/0x76e
[  655.460575][T24570]  ? snprintf+0xd6/0x120
[  655.464809][T24570]  should_fail+0x384/0x4b0
[  655.469220][T24570]  _copy_to_user+0x2b/0x130
[  655.473720][T24570]  simple_read_from_buffer+0xd9/0x160
[  655.479090][T24570]  proc_fail_nth_read+0x1af/0x220
[  655.484116][T24570]  ? proc_fault_inject_write+0x3a0/0x3a0
[  655.489741][T24570]  ? security_file_permission+0x45f/0x5c0
[  655.495451][T24570]  ? proc_fault_inject_write+0x3a0/0x3a0
[  655.501076][T24570]  vfs_read+0x2ea/0xd10
[  655.505224][T24570]  ? __fdget_pos+0x247/0x2e0
[  655.509805][T24570]  ? kernel_read+0x1f0/0x1f0
[  655.514403][T24570]  ? mutex_lock_nested+0x17/0x20
[  655.519336][T24570]  ? __fdget_pos+0x247/0x2e0
[  655.523910][T24570]  ? ksys_read+0x77/0x2c0
[  655.528227][T24570]  ksys_read+0x19b/0x2c0
[  655.532456][T24570]  ? print_irqtrace_events+0x220/0x220
[  655.537906][T24570]  ? vfs_write+0xd40/0xd40
[  655.542310][T24570]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  655.548318][T24570]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  655.554313][T24570]  do_syscall_64+0x2b/0x70
[  655.558717][T24570]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  655.564598][T24570] RIP: 0033:0x7f516123bc9c
[  655.569005][T24570] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  655.588594][T24570] RSP: 002b:00007f515ffdd160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  655.596997][T24570] RAX: ffffffffffffffda RBX: 00007f516139c1d0 RCX: 00007f516123bc9c
[  655.604955][T24570] RDX: 000000000000000f RSI: 00007f515ffdd1e0 RDI: 0000000000000004
[  655.612912][T24570] RBP: 00007f515ffdd1d0 R08: 0000000000000000 R09: 0000000000000000
05:19:35 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x41, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:35 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8)

[  655.620868][T24570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  655.628823][T24570] R13: 00007ffc6e34e2bf R14: 00007f515ffdd300 R15: 0000000000022000
[  655.636792][T24570]  </TASK>
05:19:35 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x541b, 0x0)

05:19:35 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x700, 0x0, 0x0, 0x0, 0x0, 0x0)

[  655.783107][T24582] FAULT_INJECTION: forcing a failure.
[  655.783107][T24582] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  655.811397][T24582] CPU: 1 PID: 24582 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  655.819846][T24582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  655.829934][T24582] Call Trace:
05:19:35 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x900, 0x0, 0x0, 0x0, 0x0, 0x0)

[  655.833220][T24582]  <TASK>
[  655.836155][T24582]  dump_stack_lvl+0x1e3/0x2cb
[  655.840849][T24582]  ? bfq_pos_tree_add_move+0x436/0x436
[  655.846326][T24582]  ? panic+0x76e/0x76e
[  655.850413][T24582]  ? __kernel_text_address+0x9/0x40
[  655.855701][T24582]  ? unwind_get_return_address+0x48/0x80
[  655.861377][T24582]  ? arch_stack_walk+0xf8/0x140
[  655.866300][T24582]  should_fail+0x384/0x4b0
[  655.870739][T24582]  prepare_alloc_pages+0x1d7/0x5a0
[  655.875885][T24582]  __alloc_pages+0x14d/0x5f0
05:19:36 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1100, 0x0, 0x0, 0x0, 0x0, 0x0)

[  655.880498][T24582]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  655.885805][T24582]  ? __kmalloc_node+0x262/0x400
[  655.890669][T24582]  ? __vmalloc_node_range+0x5bc/0x12e0
[  655.896137][T24582]  ? alloc_thread_stack_node+0x307/0x500
[  655.901779][T24582]  ? dup_task_struct+0x8b/0x480
[  655.906636][T24582]  ? copy_process+0x5ea/0x3f70
[  655.911406][T24582]  ? kernel_clone+0x22f/0x7a0
[  655.916092][T24582]  ? __x64_sys_clone+0x289/0x310
[  655.921039][T24582]  ? entry_SYSCALL_64_after_hwframe+0x44/0xae
[  655.927125][T24582]  __alloc_pages_bulk+0xb6c/0x1130
05:19:36 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5421, 0x0)

[  655.932272][T24582]  ? gfp_pfmemalloc_allowed+0x120/0x120
[  655.937854][T24582]  ? alloc_pages_bulk_array_mempolicy+0x5aa/0x7b0
[  655.944352][T24582]  __vmalloc_node_range+0x75b/0x12e0
[  655.949667][T24582]  ? rcu_read_lock_sched_held+0x89/0x130
[  655.955323][T24582]  alloc_thread_stack_node+0x307/0x500
[  655.960796][T24582]  ? dup_task_struct+0x8b/0x480
[  655.965659][T24582]  ? memcpy+0x3c/0x60
[  655.969649][T24582]  dup_task_struct+0x8b/0x480
[  655.974332][T24582]  copy_process+0x5ea/0x3f70
[  655.978918][T24582]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  655.984901][T24582]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  655.990881][T24582]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  655.996108][T24582]  ? mark_lock+0x98/0x350
[  656.000460][T24582]  kernel_clone+0x22f/0x7a0
[  656.004968][T24582]  ? create_io_thread+0x1e0/0x1e0
[  656.009990][T24582]  ? read_lock_is_recursive+0x10/0x10
[  656.015354][T24582]  ? __context_tracking_exit+0x4d/0x80
[  656.020818][T24582]  __x64_sys_clone+0x289/0x310
[  656.025592][T24582]  ? __do_sys_vfork+0x130/0x130
[  656.030433][T24582]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  656.036420][T24582]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  656.042391][T24582]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  656.048368][T24582]  do_syscall_64+0x2b/0x70
[  656.052779][T24582]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  656.058661][T24582] RIP: 0033:0x7fa3598890e9
[  656.063071][T24582] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
05:19:36 executing program 4:
syz_usb_connect(0x0, 0x25a, 0x0, 0x0)

[  656.082680][T24582] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  656.091088][T24582] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  656.099051][T24582] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  656.107011][T24582] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  656.114972][T24582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.122928][T24582] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  656.130900][T24582]  </TASK>
05:19:36 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1f00, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:36 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

05:19:36 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5450, 0x0)

05:19:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r5=>0x0})
connect$can_bcm(r4, &(0x7f0000001ff0)={0x1d, r5}, 0x10) (async)
r6 = dup3(r4, r3, 0x0) (async, rerun: 64)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000001ff0), 0x10) (async, rerun: 64)
r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
r8 = open_tree(r0, &(0x7f0000000000)='./file0\x00', 0x8000)
ioctl$KVM_IRQFD(r6, 0x4020ae76, &(0x7f00000000c0)={r7, 0xc9, 0x9, r8})
sendmsg$can_raw(r6, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async)
sendmsg$can_raw(r6, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:36 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9)

05:19:36 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x2000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  656.597608][T24618] FAULT_INJECTION: forcing a failure.
[  656.597608][T24618] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  656.666561][T24618] CPU: 1 PID: 24618 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  656.675019][T24618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  656.685069][T24618] Call Trace:
[  656.688339][T24618]  <TASK>
[  656.691262][T24618]  dump_stack_lvl+0x1e3/0x2cb
[  656.695939][T24618]  ? bfq_pos_tree_add_move+0x436/0x436
[  656.701390][T24618]  ? panic+0x76e/0x76e
[  656.705456][T24618]  should_fail+0x384/0x4b0
[  656.709875][T24618]  prepare_alloc_pages+0x1d7/0x5a0
[  656.714984][T24618]  __alloc_pages+0x14d/0x5f0
[  656.719569][T24618]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  656.724860][T24618]  ? alloc_pages+0x43d/0x690
[  656.729446][T24618]  __vmalloc_node_range+0x904/0x12e0
[  656.734741][T24618]  alloc_thread_stack_node+0x307/0x500
[  656.740191][T24618]  ? dup_task_struct+0x8b/0x480
[  656.745036][T24618]  ? memcpy+0x3c/0x60
[  656.749006][T24618]  dup_task_struct+0x8b/0x480
[  656.753671][T24618]  copy_process+0x5ea/0x3f70
[  656.758248][T24618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  656.764225][T24618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  656.770288][T24618]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  656.775386][T24618]  ? mark_lock+0x98/0x350
[  656.779712][T24618]  kernel_clone+0x22f/0x7a0
[  656.784206][T24618]  ? create_io_thread+0x1e0/0x1e0
[  656.789227][T24618]  ? read_lock_is_recursive+0x10/0x10
[  656.794588][T24618]  ? __context_tracking_exit+0x4d/0x80
[  656.800040][T24618]  __x64_sys_clone+0x289/0x310
[  656.804806][T24618]  ? __do_sys_vfork+0x130/0x130
[  656.809646][T24618]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  656.815624][T24618]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  656.821595][T24618]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  656.827586][T24618]  do_syscall_64+0x2b/0x70
[  656.832022][T24618]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  656.837921][T24618] RIP: 0033:0x7fa3598890e9
[  656.842335][T24618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
05:19:37 executing program 4:
syz_usb_connect(0x0, 0x25a, 0x0, 0x0)

05:19:37 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x4000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  656.861936][T24618] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  656.870343][T24618] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  656.878306][T24618] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  656.886263][T24618] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  656.894219][T24618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.902176][T24618] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  656.910149][T24618]  </TASK>
05:19:37 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10)

05:19:37 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000000000704f5ff00000000000000000000000900010073797a310049d90b6900000040fa35092ab2f4eb810e656809906165e852afd1255ad059c915547672f1017ee3b000c48e3e67af50"], 0x20}}, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000307010100000000000000a849cb00000500000900010073797a3100008000"], 0x20}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$can_raw(r3, &(0x7f0000001fc8)={0x0, 0xfffffed2, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x2, r4})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10)
dup2(0xffffffffffffffff, r1)
r8 = dup3(r6, r5, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x8, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$can_raw(r4, &(0x7f0000001fc8)={0x0, 0xfffffffffffffd16, &(0x7f0000000040)={&(0x7f0000000140)=@can={{}, 0x3, 0x1, 0x0, 0x0, "f33767ada17c2cdf"}, 0x10}}, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r8, 0xae44, 0xfffffffffffffff9)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)

[  657.120235][T24635] FAULT_INJECTION: forcing a failure.
[  657.120235][T24635] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  657.153175][T24638] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  657.176297][T24635] CPU: 1 PID: 24635 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  657.184734][T24635] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  657.194816][T24635] Call Trace:
[  657.198090][T24635]  <TASK>
[  657.201008][T24635]  dump_stack_lvl+0x1e3/0x2cb
[  657.205686][T24635]  ? bfq_pos_tree_add_move+0x436/0x436
[  657.211136][T24635]  ? panic+0x76e/0x76e
[  657.215200][T24635]  should_fail+0x384/0x4b0
[  657.219611][T24635]  prepare_alloc_pages+0x1d7/0x5a0
[  657.224721][T24635]  __alloc_pages+0x14d/0x5f0
[  657.229305][T24635]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  657.234595][T24635]  ? alloc_pages+0x43d/0x690
[  657.239181][T24635]  __vmalloc_node_range+0x904/0x12e0
[  657.244510][T24635]  alloc_thread_stack_node+0x307/0x500
[  657.249959][T24635]  ? dup_task_struct+0x8b/0x480
[  657.254797][T24635]  ? memcpy+0x3c/0x60
[  657.258776][T24635]  dup_task_struct+0x8b/0x480
[  657.263446][T24635]  copy_process+0x5ea/0x3f70
[  657.268034][T24635]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  657.274010][T24635]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  657.279986][T24635]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  657.285085][T24635]  ? mark_lock+0x98/0x350
[  657.289411][T24635]  kernel_clone+0x22f/0x7a0
[  657.293902][T24635]  ? create_io_thread+0x1e0/0x1e0
[  657.298923][T24635]  ? read_lock_is_recursive+0x10/0x10
[  657.304280][T24635]  ? __context_tracking_exit+0x4d/0x80
[  657.309731][T24635]  __x64_sys_clone+0x289/0x310
[  657.314487][T24635]  ? __do_sys_vfork+0x130/0x130
[  657.319324][T24635]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  657.325296][T24635]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  657.331269][T24635]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  657.337240][T24635]  do_syscall_64+0x2b/0x70
[  657.341641][T24635]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  657.347524][T24635] RIP: 0033:0x7fa3598890e9
[  657.351932][T24635] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  657.371523][T24635] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  657.379929][T24635] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  657.387887][T24635] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  657.395847][T24635] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  657.403806][T24635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  657.411766][T24635] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  657.419751][T24635]  </TASK>
05:19:37 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x4100, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:37 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11)

05:19:37 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000000000704f5ff00000000000000000000000900010073797a310049d90b6900000040fa35092ab2f4eb810e656809906165e852afd1255ad059c915547672f1017ee3b000c48e3e67af50"], 0x20}}, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000307010100000000000000a849cb00000500000900010073797a3100008000"], 0x20}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$can_raw(r3, &(0x7f0000001fc8)={0x0, 0xfffffed2, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x2, r4})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10)
dup2(0xffffffffffffffff, r1)
r8 = dup3(r6, r5, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x8, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$can_raw(r4, &(0x7f0000001fc8)={0x0, 0xfffffffffffffd16, &(0x7f0000000040)={&(0x7f0000000140)=@can={{}, 0x3, 0x1, 0x0, 0x0, "f33767ada17c2cdf"}, 0x10}}, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r8, 0xae44, 0xfffffffffffffff9)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000000000704f5ff00000000000000000000000900010073797a310049d90b6900000040fa35092ab2f4eb810e656809906165e852afd1255ad059c915547672f1017ee3b000c48e3e67af50"], 0x20}}, 0x0) (async)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000307010100000000000000a849cb00000500000900010073797a3100008000"], 0x20}}, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
sendmsg$can_raw(r3, &(0x7f0000001fc8)={0x0, 0xfffffed2, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) (async)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x2, r4}) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00'}) (async)
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10) (async)
dup2(0xffffffffffffffff, r1) (async)
dup3(r6, r5, 0x0) (async)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x8, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async)
sendmsg$can_raw(r4, &(0x7f0000001fc8)={0x0, 0xfffffffffffffd16, &(0x7f0000000040)={&(0x7f0000000140)=@can={{}, 0x3, 0x1, 0x0, 0x0, "f33767ada17c2cdf"}, 0x10}}, 0x0) (async)
ioctl$KVM_SET_NR_MMU_PAGES(r8, 0xae44, 0xfffffffffffffff9) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)

05:19:37 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5451, 0x0)

05:19:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x2, 0x0)

[  657.666001][T24648] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
05:19:37 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x20010, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:37 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[], 0x0)

[  657.715552][T24652] FAULT_INJECTION: forcing a failure.
[  657.715552][T24652] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  657.787004][T24652] CPU: 0 PID: 24652 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  657.795460][T24652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  657.805525][T24652] Call Trace:
[  657.808813][T24652]  <TASK>
[  657.811750][T24652]  dump_stack_lvl+0x1e3/0x2cb
[  657.816444][T24652]  ? bfq_pos_tree_add_move+0x436/0x436
[  657.821915][T24652]  ? panic+0x76e/0x76e
[  657.826017][T24652]  should_fail+0x384/0x4b0
[  657.830459][T24652]  prepare_alloc_pages+0x1d7/0x5a0
05:19:37 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x10, 0x0)

[  657.835602][T24652]  __alloc_pages+0x14d/0x5f0
[  657.840219][T24652]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  657.845537][T24652]  ? alloc_pages+0x43d/0x690
[  657.850148][T24652]  __vmalloc_node_range+0x904/0x12e0
[  657.855477][T24652]  alloc_thread_stack_node+0x307/0x500
[  657.860954][T24652]  ? dup_task_struct+0x8b/0x480
[  657.865823][T24652]  ? memcpy+0x3c/0x60
[  657.869823][T24652]  dup_task_struct+0x8b/0x480
[  657.874507][T24652]  copy_process+0x5ea/0x3f70
[  657.879101][T24652]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  657.885106][T24652]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  657.891116][T24652]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  657.896243][T24652]  ? mark_lock+0x98/0x350
[  657.900595][T24652]  kernel_clone+0x22f/0x7a0
[  657.905114][T24652]  ? create_io_thread+0x1e0/0x1e0
[  657.910160][T24652]  ? read_lock_is_recursive+0x10/0x10
[  657.915553][T24652]  ? __context_tracking_exit+0x4d/0x80
[  657.921038][T24652]  __x64_sys_clone+0x289/0x310
[  657.925821][T24652]  ? __do_sys_vfork+0x130/0x130
[  657.930677][T24652]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  657.936674][T24652]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  657.942670][T24652]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  657.948665][T24652]  do_syscall_64+0x2b/0x70
[  657.953089][T24652]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  657.958994][T24652] RIP: 0033:0x7fa3598890e9
[  657.963424][T24652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  657.983051][T24652] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  657.991480][T24652] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  657.999457][T24652] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  658.007435][T24652] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  658.015424][T24652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  658.023403][T24652] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  658.031395][T24652]  </TASK>
05:19:38 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x20200, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:38 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12)

05:19:38 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000000000704f5ff00000000000000000000000900010073797a310049d90b6900000040fa35092ab2f4eb810e656809906165e852afd1255ad059c915547672f1017ee3b000c48e3e67af50"], 0x20}}, 0x0)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000307010100000000000000a849cb00000500000900010073797a3100008000"], 0x20}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$can_raw(r3, &(0x7f0000001fc8)={0x0, 0xfffffed2, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x2, r4})
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10)
dup2(0xffffffffffffffff, r1)
r8 = dup3(r6, r5, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x8, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$can_raw(r4, &(0x7f0000001fc8)={0x0, 0xfffffffffffffd16, &(0x7f0000000040)={&(0x7f0000000140)=@can={{}, 0x3, 0x1, 0x0, 0x0, "f33767ada17c2cdf"}, 0x10}}, 0x0)
ioctl$KVM_SET_NR_MMU_PAGES(r8, 0xae44, 0xfffffffffffffff9)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="20000000000704f5ff00000000000000000000000900010073797a310049d90b6900000040fa35092ab2f4eb810e656809906165e852afd1255ad059c915547672f1017ee3b000c48e3e67af50"], 0x20}}, 0x0) (async)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="200000000307010100000000000000a849cb00000500000900010073797a3100008000"], 0x20}}, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async)
sendmsg$can_raw(r3, &(0x7f0000001fc8)={0x0, 0xfffffed2, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) (async)
ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x2, r4}) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00'}) (async)
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10) (async)
dup2(0xffffffffffffffff, r1) (async)
dup3(r6, r5, 0x0) (async)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x8, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x0) (async)
sendmsg$can_raw(r4, &(0x7f0000001fc8)={0x0, 0xfffffffffffffd16, &(0x7f0000000040)={&(0x7f0000000140)=@can={{}, 0x3, 0x1, 0x0, 0x0, "f33767ada17c2cdf"}, 0x10}}, 0x0) (async)
ioctl$KVM_SET_NR_MMU_PAGES(r8, 0xae44, 0xfffffffffffffff9) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)

05:19:38 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  658.242206][T24687] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  658.318848][T24689] FAULT_INJECTION: forcing a failure.
[  658.318848][T24689] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  658.332321][T15241] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  658.370433][T24689] CPU: 0 PID: 24689 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  658.378887][T24689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  658.388955][T24689] Call Trace:
[  658.392239][T24689]  <TASK>
[  658.395182][T24689]  dump_stack_lvl+0x1e3/0x2cb
[  658.399886][T24689]  ? bfq_pos_tree_add_move+0x436/0x436
[  658.405364][T24689]  ? panic+0x76e/0x76e
[  658.409457][T24689]  should_fail+0x384/0x4b0
[  658.413898][T24689]  prepare_alloc_pages+0x1d7/0x5a0
[  658.419034][T24689]  __alloc_pages+0x14d/0x5f0
[  658.423640][T24689]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  658.428952][T24689]  ? alloc_pages+0x43d/0x690
[  658.433557][T24689]  __vmalloc_node_range+0x904/0x12e0
[  658.438884][T24689]  alloc_thread_stack_node+0x307/0x500
[  658.444358][T24689]  ? dup_task_struct+0x8b/0x480
[  658.449219][T24689]  ? memcpy+0x3c/0x60
[  658.453216][T24689]  dup_task_struct+0x8b/0x480
[  658.457910][T24689]  copy_process+0x5ea/0x3f70
[  658.462507][T24689]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  658.468506][T24689]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  658.474507][T24689]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  658.479632][T24689]  ? mark_lock+0x98/0x350
[  658.483999][T24689]  kernel_clone+0x22f/0x7a0
[  658.488522][T24689]  ? create_io_thread+0x1e0/0x1e0
[  658.493567][T24689]  ? read_lock_is_recursive+0x10/0x10
[  658.498948][T24689]  ? __context_tracking_exit+0x4d/0x80
[  658.504433][T24689]  __x64_sys_clone+0x289/0x310
[  658.509218][T24689]  ? __do_sys_vfork+0x130/0x130
[  658.514073][T24689]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  658.520074][T24689]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  658.526069][T24689]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  658.532058][T24689]  do_syscall_64+0x2b/0x70
[  658.536497][T24689]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  658.542407][T24689] RIP: 0033:0x7fa3598890e9
[  658.546839][T24689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  658.566454][T24689] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  658.574879][T24689] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  658.582863][T24689] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  658.590840][T24689] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  658.598816][T24689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  658.606795][T24689] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  658.614793][T24689]  </TASK>
05:19:38 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:38 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5452, 0x0)

05:19:38 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x541b, 0x0)

05:19:38 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13)

05:19:38 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x121200, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/udmabuf', 0x280, 0xc)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10)
r8 = dup3(r6, r5, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f00000000c0)={0x2710, 0x0, 0x0, 0x1000, &(0x7f0000ff9000/0x1000)=nil})
ioctl$KVM_GET_SUPPORTED_CPUID(r4, 0xc008ae05, &(0x7f0000000040)=""/14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:38 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x101000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  658.776336][T15241] usb 5-1: device descriptor read/64, error 18
[  658.806386][T24720] FAULT_INJECTION: forcing a failure.
[  658.806386][T24720] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  658.858627][T24720] CPU: 0 PID: 24720 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  658.867082][T24720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  658.877150][T24720] Call Trace:
[  658.880436][T24720]  <TASK>
[  658.883378][T24720]  dump_stack_lvl+0x1e3/0x2cb
[  658.888078][T24720]  ? bfq_pos_tree_add_move+0x436/0x436
[  658.893566][T24720]  ? panic+0x76e/0x76e
[  658.897669][T24720]  should_fail+0x384/0x4b0
[  658.902103][T24720]  prepare_alloc_pages+0x1d7/0x5a0
[  658.907252][T24720]  __alloc_pages+0x14d/0x5f0
[  658.911858][T24720]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  658.917166][T24720]  ? alloc_pages+0x43d/0x690
[  658.921774][T24720]  __vmalloc_node_range+0x904/0x12e0
[  658.927096][T24720]  alloc_thread_stack_node+0x307/0x500
[  658.932564][T24720]  ? dup_task_struct+0x8b/0x480
[  658.937415][T24720]  ? memcpy+0x3c/0x60
[  658.941393][T24720]  dup_task_struct+0x8b/0x480
[  658.946062][T24720]  copy_process+0x5ea/0x3f70
[  658.950642][T24720]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  658.956634][T24720]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  658.962619][T24720]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  658.967718][T24720]  ? mark_lock+0x98/0x350
[  658.972045][T24720]  kernel_clone+0x22f/0x7a0
[  658.976542][T24720]  ? create_io_thread+0x1e0/0x1e0
[  658.981561][T24720]  ? read_lock_is_recursive+0x10/0x10
[  658.986926][T24720]  ? __context_tracking_exit+0x4d/0x80
[  658.992382][T24720]  __x64_sys_clone+0x289/0x310
[  658.997140][T24720]  ? __do_sys_vfork+0x130/0x130
[  659.001977][T24720]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  659.007991][T24720]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  659.013964][T24720]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  659.019936][T24720]  do_syscall_64+0x2b/0x70
[  659.024338][T24720]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  659.030223][T24720] RIP: 0033:0x7fa3598890e9
[  659.034627][T24720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  659.054219][T24720] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  659.062624][T24720] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  659.070582][T24720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  659.078544][T24720] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  659.086503][T24720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  659.094462][T24720] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  659.102431][T24720]  </TASK>
[  659.256433][T15241] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  659.456317][T15241] usb 5-1: device descriptor read/64, error 18
[  659.576489][T15241] usb usb5-port1: attempt power cycle
[  659.996293][T15241] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  660.176429][T15241] usb 5-1: device descriptor read/8, error -61
[  660.446214][T15241] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  660.616305][T15241] usb 5-1: device descriptor read/8, error -61
05:19:40 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[], 0x0)

05:19:40 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14)

05:19:40 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5460, 0x0)

05:19:40 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5421, 0x0)

05:19:40 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x121200, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/udmabuf', 0x280, 0xc)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10)
r8 = dup3(r6, r5, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f00000000c0)={0x2710, 0x0, 0x0, 0x1000, &(0x7f0000ff9000/0x1000)=nil})
ioctl$KVM_GET_SUPPORTED_CPUID(r4, 0xc008ae05, &(0x7f0000000040)=""/14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000440)={"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"})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x121200, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/udmabuf', 0x280, 0xc) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00'}) (async)
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10) (async)
dup3(r6, r5, 0x0) (async)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f00000000c0)={0x2710, 0x0, 0x0, 0x1000, &(0x7f0000ff9000/0x1000)=nil}) (async)
ioctl$KVM_GET_SUPPORTED_CPUID(r4, 0xc008ae05, &(0x7f0000000040)=""/14) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000440)={"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"}) (async)

05:19:40 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x400000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  660.747789][T15241] usb usb5-port1: unable to enumerate USB device
05:19:41 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xf0ff1f, 0x0, 0x0, 0x0, 0x0, 0x0)

[  660.859303][T24742] FAULT_INJECTION: forcing a failure.
[  660.859303][T24742] name failslab, interval 1, probability 0, space 0, times 0
[  660.927111][T24742] CPU: 1 PID: 24742 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  660.935568][T24742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  660.945622][T24742] Call Trace:
[  660.948900][T24742]  <TASK>
[  660.951824][T24742]  dump_stack_lvl+0x1e3/0x2cb
[  660.956504][T24742]  ? bfq_pos_tree_add_move+0x436/0x436
[  660.961957][T24742]  ? panic+0x76e/0x76e
[  660.966026][T24742]  should_fail+0x384/0x4b0
[  660.970438][T24742]  ? vm_area_dup+0x23/0x1c0
[  660.974928][T24742]  should_failslab+0x5/0x20
[  660.979425][T24742]  kmem_cache_alloc+0x69/0x2f0
[  660.984186][T24742]  vm_area_dup+0x23/0x1c0
[  660.988509][T24742]  dup_mmap+0x6ba/0xde0
[  660.992662][T24742]  ? __delayed_free_task+0x20/0x20
[  660.997765][T24742]  ? __init_rwsem+0x11e/0x160
[  661.002465][T24742]  ? mm_init+0x66e/0x7b0
[  661.006699][T24742]  dup_mm+0x8c/0x310
[  661.010589][T24742]  copy_mm+0x102/0x190
[  661.014661][T24742]  copy_process+0x1856/0x3f70
[  661.019341][T24742]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  661.025347][T24742]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  661.030450][T24742]  ? mark_lock+0x98/0x350
[  661.034791][T24742]  kernel_clone+0x22f/0x7a0
[  661.039301][T24742]  ? create_io_thread+0x1e0/0x1e0
[  661.044328][T24742]  ? read_lock_is_recursive+0x10/0x10
[  661.049693][T24742]  ? __context_tracking_exit+0x4d/0x80
[  661.055152][T24742]  __x64_sys_clone+0x289/0x310
[  661.059920][T24742]  ? __do_sys_vfork+0x130/0x130
[  661.064761][T24742]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  661.070745][T24742]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  661.076720][T24742]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  661.082699][T24742]  do_syscall_64+0x2b/0x70
[  661.087105][T24742]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  661.092992][T24742] RIP: 0033:0x7fa3598890e9
[  661.097404][T24742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  661.117002][T24742] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
05:19:41 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  661.125406][T24742] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  661.133368][T24742] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  661.141324][T24742] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  661.149282][T24742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  661.157239][T24742] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  661.165215][T24742]  </TASK>
05:19:41 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15)

05:19:41 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:41 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5450, 0x0)

05:19:41 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x121200, 0x0)
r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/udmabuf', 0x280, 0xc)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r7=>0x0})
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10)
r8 = dup3(r6, r5, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f00000000c0)={0x2710, 0x0, 0x0, 0x1000, &(0x7f0000ff9000/0x1000)=nil})
ioctl$KVM_GET_SUPPORTED_CPUID(r4, 0xc008ae05, &(0x7f0000000040)=""/14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000440)={"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"})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x121200, 0x0) (async)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x5) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/udmabuf', 0x280, 0xc) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00'}) (async)
connect$can_bcm(r6, &(0x7f0000001ff0)={0x1d, r7}, 0x10) (async)
dup3(r6, r5, 0x0) (async)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async)
sendmsg$can_raw(r8, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f00000000c0)={0x2710, 0x0, 0x0, 0x1000, &(0x7f0000ff9000/0x1000)=nil}) (async)
ioctl$KVM_GET_SUPPORTED_CPUID(r4, 0xc008ae05, &(0x7f0000000040)=""/14) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_RUN(r4, 0xae80, 0x0) (async)
ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000440)={"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"}) (async)

[  661.394300][T24770] FAULT_INJECTION: forcing a failure.
[  661.394300][T24770] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  661.445018][T24770] CPU: 1 PID: 24770 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  661.453466][T24770] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  661.463535][T24770] Call Trace:
[  661.466823][T24770]  <TASK>
[  661.469764][T24770]  dump_stack_lvl+0x1e3/0x2cb
[  661.474465][T24770]  ? bfq_pos_tree_add_move+0x436/0x436
[  661.479943][T24770]  ? panic+0x76e/0x76e
[  661.484040][T24770]  should_fail+0x384/0x4b0
[  661.488478][T24770]  prepare_alloc_pages+0x1d7/0x5a0
[  661.493615][T24770]  __alloc_pages+0x14d/0x5f0
[  661.498225][T24770]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  661.503544][T24770]  ? alloc_pages+0x43d/0x690
[  661.508161][T24770]  __vmalloc_node_range+0x904/0x12e0
[  661.513499][T24770]  alloc_thread_stack_node+0x307/0x500
[  661.518976][T24770]  ? dup_task_struct+0x8b/0x480
[  661.523835][T24770]  ? memcpy+0x3c/0x60
[  661.527835][T24770]  dup_task_struct+0x8b/0x480
[  661.532517][T24770]  copy_process+0x5ea/0x3f70
[  661.537099][T24770]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  661.543080][T24770]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  661.549063][T24770]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  661.554164][T24770]  ? mark_lock+0x98/0x350
[  661.558497][T24770]  kernel_clone+0x22f/0x7a0
[  661.562997][T24770]  ? create_io_thread+0x1e0/0x1e0
[  661.568018][T24770]  ? read_lock_is_recursive+0x10/0x10
[  661.573380][T24770]  ? __context_tracking_exit+0x4d/0x80
[  661.578830][T24770]  __x64_sys_clone+0x289/0x310
[  661.583589][T24770]  ? __do_sys_vfork+0x130/0x130
[  661.588426][T24770]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  661.594406][T24770]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  661.600381][T24770]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  661.606350][T24770]  do_syscall_64+0x2b/0x70
[  661.610754][T24770]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  661.616635][T24770] RIP: 0033:0x7fa3598890e9
[  661.621039][T24770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  661.640639][T24770] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  661.649056][T24770] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  661.657016][T24770] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  661.664977][T24770] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  661.672939][T24770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  661.680908][T24770] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  661.688886][T24770]  </TASK>
[  661.694310][  T921] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  661.906189][  T921] usb 5-1: device descriptor read/64, error 18
[  662.196198][  T921] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  662.389014][  T921] usb 5-1: device descriptor read/64, error 18
[  662.516517][  T921] usb usb5-port1: attempt power cycle
[  662.936253][  T921] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  663.146289][  T921] usb 5-1: device descriptor read/8, error -61
[  663.416335][  T921] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  663.586296][  T921] usb 5-1: device descriptor read/8, error -61
[  663.706373][  T921] usb usb5-port1: unable to enumerate USB device
05:19:43 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[], 0x0)

05:19:43 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x8933, 0x0)

05:19:43 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x7000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:43 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16)

05:19:43 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5451, 0x0)

05:19:43 executing program 2:
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:44 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  663.900434][T24792] FAULT_INJECTION: forcing a failure.
[  663.900434][T24792] name failslab, interval 1, probability 0, space 0, times 0
[  663.973689][T24792] CPU: 1 PID: 24792 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  663.982142][T24792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  663.992212][T24792] Call Trace:
[  663.995500][T24792]  <TASK>
[  663.998441][T24792]  dump_stack_lvl+0x1e3/0x2cb
[  664.003143][T24792]  ? bfq_pos_tree_add_move+0x436/0x436
[  664.008628][T24792]  ? panic+0x76e/0x76e
[  664.012713][T24792]  ? __might_sleep+0xc0/0xc0
[  664.017318][T24792]  should_fail+0x384/0x4b0
[  664.021748][T24792]  ? security_prepare_creds+0x48/0x150
[  664.027215][T24792]  should_failslab+0x5/0x20
[  664.031734][T24792]  __kmalloc+0x8b/0x370
[  664.035910][T24792]  security_prepare_creds+0x48/0x150
[  664.041211][T24792]  prepare_creds+0x452/0x630
[  664.045825][T24792]  copy_creds+0x13d/0xbf0
[  664.050179][T24792]  copy_process+0x8a1/0x3f70
[  664.054778][T24792]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  664.060788][T24792]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  664.066795][T24792]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  664.071913][T24792]  ? mark_lock+0x98/0x350
[  664.076247][T24792]  kernel_clone+0x22f/0x7a0
[  664.080766][T24792]  ? create_io_thread+0x1e0/0x1e0
[  664.085897][T24792]  ? read_lock_is_recursive+0x10/0x10
[  664.091270][T24792]  ? __context_tracking_exit+0x4d/0x80
[  664.096725][T24792]  __x64_sys_clone+0x289/0x310
[  664.101483][T24792]  ? __do_sys_vfork+0x130/0x130
[  664.106323][T24792]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  664.112319][T24792]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  664.118298][T24792]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  664.124286][T24792]  do_syscall_64+0x2b/0x70
[  664.128705][T24792]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  664.134591][T24792] RIP: 0033:0x7fa3598890e9
[  664.138998][T24792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  664.158593][T24792] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  664.167005][T24792] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  664.174976][T24792] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  664.182955][T24792] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  664.190945][T24792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  664.198919][T24792] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  664.206896][T24792]  </TASK>
05:19:44 executing program 2:
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:44 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5452, 0x0)

05:19:44 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x9000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:44 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17)

05:19:44 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xaece, 0x0)

[  664.576230][  T921] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  664.732078][T24834] FAULT_INJECTION: forcing a failure.
[  664.732078][T24834] name failslab, interval 1, probability 0, space 0, times 0
[  664.752846][T24834] CPU: 1 PID: 24834 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  664.761298][T24834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  664.771368][T24834] Call Trace:
[  664.774653][T24834]  <TASK>
[  664.777590][T24834]  dump_stack_lvl+0x1e3/0x2cb
[  664.782293][T24834]  ? bfq_pos_tree_add_move+0x436/0x436
[  664.787816][T24834]  ? panic+0x76e/0x76e
[  664.791897][T24834]  ? __might_sleep+0xc0/0xc0
[  664.796510][T24834]  should_fail+0x384/0x4b0
[  664.800947][T24834]  ? anon_vma_fork+0xed/0x540
[  664.805633][T24834]  should_failslab+0x5/0x20
[  664.810147][T24834]  kmem_cache_alloc+0x69/0x2f0
[  664.814933][T24834]  anon_vma_fork+0xed/0x540
[  664.819444][T24834]  ? dup_userfaultfd+0xa1/0x650
[  664.824371][T24834]  ? anon_vma_name+0x101/0x170
[  664.829165][T24834]  dup_mmap+0x77c/0xde0
[  664.833373][T24834]  ? __delayed_free_task+0x20/0x20
[  664.838514][T24834]  ? __init_rwsem+0x11e/0x160
[  664.843217][T24834]  ? mm_init+0x66e/0x7b0
[  664.847479][T24834]  dup_mm+0x8c/0x310
[  664.851395][T24834]  copy_mm+0x102/0x190
[  664.855498][T24834]  copy_process+0x1856/0x3f70
[  664.860453][T24834]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  664.866481][T24834]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  664.871604][T24834]  ? mark_lock+0x98/0x350
[  664.875957][T24834]  kernel_clone+0x22f/0x7a0
[  664.880479][T24834]  ? create_io_thread+0x1e0/0x1e0
[  664.885528][T24834]  ? read_lock_is_recursive+0x10/0x10
[  664.890935][T24834]  ? __context_tracking_exit+0x4d/0x80
[  664.896407][T24834]  __x64_sys_clone+0x289/0x310
[  664.901181][T24834]  ? __do_sys_vfork+0x130/0x130
[  664.906045][T24834]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  664.912059][T24834]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  664.918051][T24834]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  664.924051][T24834]  do_syscall_64+0x2b/0x70
[  664.928484][T24834]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  664.934383][T24834] RIP: 0033:0x7fa3598890e9
[  664.938810][T24834] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  664.958425][T24834] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  664.966854][T24834] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  664.974832][T24834] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  664.982810][T24834] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  664.990786][T24834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  664.998766][T24834] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  665.006764][T24834]  </TASK>
[  665.016575][  T921] usb 5-1: device descriptor read/64, error 18
[  665.286201][  T921] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  665.496263][  T921] usb 5-1: device descriptor read/64, error 18
[  665.621085][  T921] usb usb5-port1: attempt power cycle
[  666.046326][  T921] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  666.216381][  T921] usb 5-1: device descriptor read/8, error -61
[  666.486188][  T921] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  666.656375][  T921] usb 5-1: device descriptor read/8, error -61
[  666.777233][  T921] usb usb5-port1: unable to enumerate USB device
05:19:47 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)

05:19:47 executing program 2:
ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04) (async)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:47 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x10000200, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:47 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x400448c9, 0x0)

05:19:47 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x5460, 0x0)

05:19:47 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18)

05:19:47 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x11000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  666.979749][T24841] FAULT_INJECTION: forcing a failure.
[  666.979749][T24841] name failslab, interval 1, probability 0, space 0, times 0
[  667.037398][T24841] CPU: 1 PID: 24841 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  667.045855][T24841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  667.055920][T24841] Call Trace:
[  667.059202][T24841]  <TASK>
[  667.062150][T24841]  dump_stack_lvl+0x1e3/0x2cb
[  667.066855][T24841]  ? bfq_pos_tree_add_move+0x436/0x436
[  667.072341][T24841]  ? panic+0x76e/0x76e
[  667.076428][T24841]  ? __might_sleep+0xc0/0xc0
[  667.081047][T24841]  should_fail+0x384/0x4b0
[  667.085483][T24841]  ? dup_fd+0x72/0xb60
[  667.089558][T24841]  should_failslab+0x5/0x20
[  667.094080][T24841]  kmem_cache_alloc+0x69/0x2f0
[  667.098900][T24841]  dup_fd+0x72/0xb60
[  667.102802][T24841]  copy_files+0xe6/0x200
[  667.107036][T24841]  ? dup_task_struct+0x480/0x480
[  667.111965][T24841]  ? tomoyo_task_alloc+0xaf/0xf0
[  667.116895][T24841]  ? copy_semundo+0x3e/0x230
[  667.121477][T24841]  copy_process+0x16fa/0x3f70
[  667.126145][T24841]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  667.132137][T24841]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  667.137233][T24841]  ? mark_lock+0x98/0x350
[  667.141560][T24841]  kernel_clone+0x22f/0x7a0
[  667.146055][T24841]  ? create_io_thread+0x1e0/0x1e0
[  667.151073][T24841]  ? read_lock_is_recursive+0x10/0x10
[  667.156431][T24841]  ? __context_tracking_exit+0x4d/0x80
[  667.161883][T24841]  __x64_sys_clone+0x289/0x310
[  667.166639][T24841]  ? __do_sys_vfork+0x130/0x130
[  667.171478][T24841]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  667.177453][T24841]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  667.183431][T24841]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  667.189401][T24841]  do_syscall_64+0x2b/0x70
[  667.193806][T24841]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  667.199688][T24841] RIP: 0033:0x7fa3598890e9
[  667.204095][T24841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  667.223688][T24841] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
05:19:47 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1f000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  667.232093][T24841] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  667.240053][T24841] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  667.248010][T24841] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  667.255967][T24841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  667.263922][T24841] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  667.271892][T24841]  </TASK>
05:19:47 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19)

05:19:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:47 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1ffff000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  667.560036][T24872] FAULT_INJECTION: forcing a failure.
[  667.560036][T24872] name failslab, interval 1, probability 0, space 0, times 0
[  667.611103][T24872] CPU: 0 PID: 24872 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  667.619567][T24872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  667.629631][T24872] Call Trace:
[  667.632917][T24872]  <TASK>
[  667.635855][T24872]  dump_stack_lvl+0x1e3/0x2cb
[  667.640554][T24872]  ? bfq_pos_tree_add_move+0x436/0x436
[  667.646035][T24872]  ? panic+0x76e/0x76e
[  667.650145][T24872]  should_fail+0x384/0x4b0
[  667.654585][T24872]  ? alloc_fdtable+0xaf/0x290
[  667.659282][T24872]  should_failslab+0x5/0x20
[  667.663803][T24872]  kmem_cache_alloc_trace+0x68/0x310
[  667.669117][T24872]  alloc_fdtable+0xaf/0x290
[  667.669809][  T921] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  667.673633][T24872]  dup_fd+0x834/0xb60
[  667.685145][T24872]  copy_files+0xe6/0x200
[  667.689399][T24872]  ? dup_task_struct+0x480/0x480
[  667.694351][T24872]  ? tomoyo_task_alloc+0xaf/0xf0
[  667.699309][T24872]  ? copy_semundo+0x3e/0x230
[  667.703922][T24872]  copy_process+0x16fa/0x3f70
[  667.708611][T24872]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  667.714633][T24872]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  667.719750][T24872]  ? mark_lock+0x98/0x350
[  667.724105][T24872]  kernel_clone+0x22f/0x7a0
[  667.728634][T24872]  ? create_io_thread+0x1e0/0x1e0
[  667.733679][T24872]  ? read_lock_is_recursive+0x10/0x10
[  667.739046][T24872]  ? __context_tracking_exit+0x4d/0x80
[  667.744500][T24872]  __x64_sys_clone+0x289/0x310
[  667.749263][T24872]  ? __do_sys_vfork+0x130/0x130
[  667.754102][T24872]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  667.760078][T24872]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  667.766049][T24872]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  667.772028][T24872]  do_syscall_64+0x2b/0x70
[  667.776440][T24872]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  667.782325][T24872] RIP: 0033:0x7fa3598890e9
[  667.786736][T24872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  667.806338][T24872] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  667.814741][T24872] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  667.822703][T24872] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  667.830658][T24872] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  667.838621][T24872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  667.846587][T24872] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  667.854564][T24872]  </TASK>
05:19:48 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  668.026331][  T921] usb 5-1: device descriptor read/64, error 18
[  668.296196][  T921] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  668.526206][  T921] usb 5-1: device descriptor read/64, error 18
[  668.649129][  T921] usb usb5-port1: attempt power cycle
[  669.106204][  T921] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  669.326275][  T921] usb 5-1: device descriptor read/8, error -61
[  669.616274][  T921] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  669.796398][  T921] usb 5-1: device descriptor read/8, error -61
[  669.920503][  T921] usb usb5-port1: unable to enumerate USB device
05:19:50 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)

05:19:50 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20)

05:19:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x400448dd, 0x0)

05:19:50 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async, rerun: 32)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:50 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x3a800fff, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:50 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x8933, 0x0)

[  670.054250][T24886] FAULT_INJECTION: forcing a failure.
[  670.054250][T24886] name failslab, interval 1, probability 0, space 0, times 0
[  670.079777][T24886] CPU: 0 PID: 24886 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  670.088230][T24886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  670.098295][T24886] Call Trace:
[  670.101585][T24886]  <TASK>
[  670.104521][T24886]  dump_stack_lvl+0x1e3/0x2cb
[  670.109227][T24886]  ? bfq_pos_tree_add_move+0x436/0x436
[  670.114705][T24886]  ? panic+0x76e/0x76e
[  670.118787][T24886]  ? __might_sleep+0xc0/0xc0
[  670.123381][T24886]  should_fail+0x384/0x4b0
[  670.127804][T24886]  ? kvmalloc_node+0x6e/0x160
[  670.132537][T24886]  should_failslab+0x5/0x20
[  670.137038][T24886]  __kmalloc_node+0x8e/0x400
[  670.141640][T24886]  kvmalloc_node+0x6e/0x160
[  670.146143][T24886]  alloc_fdtable+0xeb/0x290
[  670.150643][T24886]  dup_fd+0x834/0xb60
[  670.154626][T24886]  copy_files+0xe6/0x200
[  670.158860][T24886]  ? dup_task_struct+0x480/0x480
[  670.163787][T24886]  ? tomoyo_task_alloc+0xaf/0xf0
[  670.168716][T24886]  ? copy_semundo+0x3e/0x230
[  670.173300][T24886]  copy_process+0x16fa/0x3f70
[  670.177964][T24886]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  670.183953][T24886]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  670.189054][T24886]  ? mark_lock+0x98/0x350
[  670.193382][T24886]  kernel_clone+0x22f/0x7a0
[  670.197884][T24886]  ? create_io_thread+0x1e0/0x1e0
[  670.202908][T24886]  ? read_lock_is_recursive+0x10/0x10
[  670.208269][T24886]  ? __context_tracking_exit+0x4d/0x80
[  670.213835][T24886]  __x64_sys_clone+0x289/0x310
[  670.218594][T24886]  ? __do_sys_vfork+0x130/0x130
[  670.223434][T24886]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  670.229410][T24886]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  670.235380][T24886]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  670.241353][T24886]  do_syscall_64+0x2b/0x70
[  670.245756][T24886]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  670.251639][T24886] RIP: 0033:0x7fa3598890e9
[  670.256048][T24886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  670.275641][T24886] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  670.284044][T24886] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  670.292005][T24886] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
05:19:50 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x3abfffff, 0x0, 0x0, 0x0, 0x0, 0x0)

[  670.299963][T24886] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  670.307921][T24886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  670.315881][T24886] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  670.323854][T24886]  </TASK>
05:19:50 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:50 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async, rerun: 32)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"}) (rerun: 32)

05:19:50 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21)

05:19:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x400454ca, 0x0)

[  670.559679][T24914] FAULT_INJECTION: forcing a failure.
[  670.559679][T24914] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  670.644893][T24914] CPU: 0 PID: 24914 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  670.653350][T24914] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  670.663413][T24914] Call Trace:
[  670.666704][T24914]  <TASK>
[  670.669645][T24914]  dump_stack_lvl+0x1e3/0x2cb
[  670.674345][T24914]  ? bfq_pos_tree_add_move+0x436/0x436
[  670.679815][T24914]  ? panic+0x76e/0x76e
[  670.683903][T24914]  ? validate_chain+0x126/0x65c0
[  670.688858][T24914]  should_fail+0x384/0x4b0
[  670.693286][T24914]  prepare_alloc_pages+0x1d7/0x5a0
[  670.698411][T24914]  __alloc_pages+0x14d/0x5f0
[  670.703014][T24914]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  670.708295][T24914]  ? preempt_count_add+0x8d/0x180
[  670.713314][T24914]  ? reacquire_held_locks+0x680/0x680
[  670.718688][T24914]  get_zeroed_page+0x13/0x40
[  670.723270][T24914]  __pud_alloc+0x8b/0x220
[  670.727591][T24914]  ? handle_mm_fault+0x3940/0x3940
[  670.732691][T24914]  ? local_lock_release+0x7b/0x120
[  670.737796][T24914]  copy_p4d_range+0x213a/0x21b0
[  670.742640][T24914]  ? __lock_acquire+0x129a/0x1f80
[  670.747662][T24914]  ? rcu_read_lock_sched_held+0x89/0x130
[  670.753290][T24914]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  670.759278][T24914]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[  670.765773][T24914]  ? mmu_notifier_invalidate_range_start+0xbd/0xf0
[  670.772265][T24914]  ? __lock_acquire+0x1f80/0x1f80
[  670.777296][T24914]  copy_page_range+0x4dd/0x7a0
[  670.782067][T24914]  ? pfn_valid+0x1c0/0x1c0
[  670.786484][T24914]  ? __vma_link_rb+0x7c9/0x810
[  670.791238][T24914]  ? __do_sys_brk+0x6d0/0x6d0
[  670.795996][T24914]  dup_mmap+0x9e5/0xde0
[  670.800151][T24914]  ? __delayed_free_task+0x20/0x20
[  670.805254][T24914]  ? __init_rwsem+0x11e/0x160
[  670.809923][T24914]  ? mm_init+0x66e/0x7b0
[  670.814156][T24914]  dup_mm+0x8c/0x310
[  670.818079][T24914]  copy_mm+0x102/0x190
[  670.822146][T24914]  copy_process+0x1856/0x3f70
[  670.826814][T24914]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  670.832804][T24914]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  670.837902][T24914]  ? mark_lock+0x98/0x350
[  670.842231][T24914]  kernel_clone+0x22f/0x7a0
[  670.846737][T24914]  ? create_io_thread+0x1e0/0x1e0
[  670.851784][T24914]  ? read_lock_is_recursive+0x10/0x10
[  670.857177][T24914]  ? __context_tracking_exit+0x4d/0x80
[  670.862657][T24914]  __x64_sys_clone+0x289/0x310
[  670.867439][T24914]  ? __do_sys_vfork+0x130/0x130
[  670.872304][T24914]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  670.878306][T24914]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  670.884300][T24914]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  670.890282][T24914]  do_syscall_64+0x2b/0x70
[  670.894692][T24914]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  670.900574][T24914] RIP: 0033:0x7fa3598890e9
[  670.904984][T24914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  670.924575][T24914] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  670.932978][T24914] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
05:19:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f0000001ff0)={0x1d, r4}, 0x10)
r5 = dup3(r3, r2, 0x0)
sendmsg$can_raw(r5, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r5, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="dfb90900000066baf80cb87ceaac85ef66bafc0c66ed640f070f20e035200000000f22e0c401b1675207450f300f20c035000000400f22c02e2e0f06f3410f09440f01c2", 0x44}], 0x1, 0x28, &(0x7f0000000180)=[@dstype0={0x6, 0x402}, @cr0], 0x2)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f0000000000)=ANY=[@ANYBLOB="79000000d36484d95f07d00d52dc3b7f05da1b49aa23865cc4dd8927a5b4ab4f6787d6536e2b7b9e9993c7abd73aea283c4587b3f0594f206b2c542646e622e6d138fffbb9c3ee9fbdea5721d91959e86c8f11f898a930a20fe8f50f09ecc1d0d24a26448d34a74b27c5b834aad2823e62d1f724f971141acbb8dbd4a0"])
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  670.940937][T24914] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  670.948895][T24914] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  670.956853][T24914] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  670.964806][T24914] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  670.972787][T24914]  </TASK>
[  670.983767][ T3676] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  671.206245][ T3676] usb 5-1: device descriptor read/64, error 18
[  671.247714][T24921] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  671.303879][T24921] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  671.476266][ T3676] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  671.676302][ T3676] usb 5-1: device descriptor read/64, error 18
[  671.796384][ T3676] usb usb5-port1: attempt power cycle
[  672.206300][ T3676] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  672.376478][ T3676] usb 5-1: device descriptor read/8, error -61
[  672.664684][ T3676] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[  672.839149][ T3676] usb 5-1: device descriptor read/8, error -61
[  672.956452][ T3676] usb usb5-port1: unable to enumerate USB device
05:19:53 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)

05:19:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xaece, 0x0)

05:19:53 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x41000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:53 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22)

05:19:53 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x40049409, 0x0)

05:19:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
r2 = socket$can_bcm(0x1d, 0x2, 0x2) (async)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f0000001ff0)={0x1d, r4}, 0x10)
r5 = dup3(r3, r2, 0x0)
sendmsg$can_raw(r5, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async)
sendmsg$can_raw(r5, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="dfb90900000066baf80cb87ceaac85ef66bafc0c66ed640f070f20e035200000000f22e0c401b1675207450f300f20c035000000400f22c02e2e0f06f3410f09440f01c2", 0x44}], 0x1, 0x28, &(0x7f0000000180)=[@dstype0={0x6, 0x402}, @cr0], 0x2)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f0000000000)=ANY=[@ANYBLOB="79000000d36484d95f07d00d52dc3b7f05da1b49aa23865cc4dd8927a5b4ab4f6787d6536e2b7b9e9993c7abd73aea283c4587b3f0594f206b2c542646e622e6d138fffbb9c3ee9fbdea5721d91959e86c8f11f898a930a20fe8f50f09ecc1d0d24a26448d34a74b27c5b834aad2823e62d1f724f971141acbb8dbd4a0"]) (async)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  673.142273][T24933] FAULT_INJECTION: forcing a failure.
[  673.142273][T24933] name failslab, interval 1, probability 0, space 0, times 0
[  673.167863][T24933] CPU: 1 PID: 24933 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  673.176305][T24933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  673.186362][T24933] Call Trace:
[  673.189642][T24933]  <TASK>
[  673.192576][T24933]  dump_stack_lvl+0x1e3/0x2cb
[  673.197281][T24933]  ? bfq_pos_tree_add_move+0x436/0x436
[  673.202752][T24933]  ? panic+0x76e/0x76e
[  673.206825][T24933]  ? __might_sleep+0xc0/0xc0
[  673.211430][T24933]  should_fail+0x384/0x4b0
[  673.215862][T24933]  ? copy_fs_struct+0x4a/0x260
[  673.220709][T24933]  should_failslab+0x5/0x20
[  673.225226][T24933]  kmem_cache_alloc+0x69/0x2f0
[  673.230012][T24933]  copy_fs_struct+0x4a/0x260
[  673.234620][T24933]  copy_fs+0x6e/0x140
[  673.238616][T24933]  copy_process+0x1724/0x3f70
[  673.243295][T24933]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  673.249293][T24933]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  673.254396][T24933]  ? mark_lock+0x98/0x350
[  673.258723][T24933]  kernel_clone+0x22f/0x7a0
[  673.263220][T24933]  ? create_io_thread+0x1e0/0x1e0
[  673.268240][T24933]  ? read_lock_is_recursive+0x10/0x10
[  673.273604][T24933]  ? __context_tracking_exit+0x4d/0x80
[  673.279063][T24933]  __x64_sys_clone+0x289/0x310
[  673.283820][T24933]  ? __do_sys_vfork+0x130/0x130
[  673.288665][T24933]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  673.294646][T24933]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  673.300622][T24933]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  673.306595][T24933]  do_syscall_64+0x2b/0x70
[  673.310997][T24933]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  673.316879][T24933] RIP: 0033:0x7fa3598890e9
[  673.321284][T24933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  673.340887][T24933] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  673.349293][T24933] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  673.357255][T24933] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  673.365210][T24933] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  673.373168][T24933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  673.381127][T24933] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  673.389098][T24933]  </TASK>
05:19:53 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23)

05:19:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2) (async)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f0000001ff0)={0x1d, r4}, 0x10)
r5 = dup3(r3, r2, 0x0)
sendmsg$can_raw(r5, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async, rerun: 32)
sendmsg$can_raw(r5, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (rerun: 32)
syz_kvm_setup_cpu$x86(r1, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="dfb90900000066baf80cb87ceaac85ef66bafc0c66ed640f070f20e035200000000f22e0c401b1675207450f300f20c035000000400f22c02e2e0f06f3410f09440f01c2", 0x44}], 0x1, 0x28, &(0x7f0000000180)=[@dstype0={0x6, 0x402}, @cr0], 0x2)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_SIGNAL_MASK(r6, 0x4004ae8b, &(0x7f0000000000)=ANY=[@ANYBLOB="79000000d36484d95f07d00d52dc3b7f05da1b49aa23865cc4dd8927a5b4ab4f6787d6536e2b7b9e9993c7abd73aea283c4587b3f0594f206b2c542646e622e6d138fffbb9c3ee9fbdea5721d91959e86c8f11f898a930a20fe8f50f09ecc1d0d24a26448d34a74b27c5b834aad2823e62d1f724f971141acbb8dbd4a0"]) (async, rerun: 64)
ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000440)={"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"}) (rerun: 64)

05:19:53 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xf0ffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:53 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x400448c9, 0x0)

[  673.642161][T24960] FAULT_INJECTION: forcing a failure.
[  673.642161][T24960] name failslab, interval 1, probability 0, space 0, times 0
[  673.676964][T24960] CPU: 0 PID: 24960 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  673.685415][T24960] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  673.695475][T24960] Call Trace:
[  673.699110][T24960]  <TASK>
[  673.702044][T24960]  dump_stack_lvl+0x1e3/0x2cb
[  673.706735][T24960]  ? bfq_pos_tree_add_move+0x436/0x436
[  673.712205][T24960]  ? panic+0x76e/0x76e
[  673.716288][T24960]  ? _raw_spin_lock_irqsave+0xac/0x120
[  673.721769][T24960]  should_fail+0x384/0x4b0
[  673.726203][T24960]  ? vm_area_dup+0x23/0x1c0
[  673.730709][T24960]  should_failslab+0x5/0x20
[  673.735223][T24960]  kmem_cache_alloc+0x69/0x2f0
[  673.740002][T24960]  vm_area_dup+0x23/0x1c0
[  673.744344][T24960]  dup_mmap+0x6ba/0xde0
[  673.748544][T24960]  ? __delayed_free_task+0x20/0x20
[  673.753679][T24960]  ? __init_rwsem+0x11e/0x160
[  673.758376][T24960]  ? mm_init+0x66e/0x7b0
[  673.762632][T24960]  dup_mm+0x8c/0x310
[  673.766539][T24960]  copy_mm+0x102/0x190
[  673.770622][T24960]  copy_process+0x1856/0x3f70
[  673.775310][T24960]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  673.781344][T24960]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  673.786477][T24960]  ? mark_lock+0x98/0x350
[  673.790832][T24960]  kernel_clone+0x22f/0x7a0
[  673.795350][T24960]  ? create_io_thread+0x1e0/0x1e0
[  673.800380][T24960]  ? read_lock_is_recursive+0x10/0x10
[  673.805743][T24960]  ? __context_tracking_exit+0x4d/0x80
[  673.811199][T24960]  __x64_sys_clone+0x289/0x310
[  673.815960][T24960]  ? __do_sys_vfork+0x130/0x130
[  673.820799][T24960]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  673.826779][T24960]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  673.832753][T24960]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  673.838727][T24960]  do_syscall_64+0x2b/0x70
[  673.843137][T24960]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  673.849021][T24960] RIP: 0033:0x7fa3598890e9
[  673.853437][T24960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  673.873045][T24960] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  673.881459][T24960] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
05:19:54 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xf5ffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

[  673.889422][T24960] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  673.897380][T24960] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  673.905346][T24960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  673.913311][T24960] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  673.921287][T24960]  </TASK>
[  673.925146][   T22] usb 5-1: new high-speed USB device number 34 using dummy_hcd
05:19:54 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xfbffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

[  674.156286][   T22] usb 5-1: device descriptor read/64, error 18
[  674.446277][   T22] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  674.659313][   T22] usb 5-1: device descriptor read/64, error 18
[  674.779069][   T22] usb usb5-port1: attempt power cycle
[  675.200029][   T22] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[  675.396416][   T22] usb 5-1: device descriptor read/8, error -61
[  675.676350][   T22] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[  675.866406][   T22] usb 5-1: device descriptor read/8, error -61
[  675.988268][   T22] usb usb5-port1: unable to enumerate USB device
05:19:56 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401bb0404000d24020201005a0716c281c77d07240118890210340059f636c128febb5f7becd016e3136d8ea59a500deb991918eeb7dc0b68c0"], 0x0)

05:19:56 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24)

05:19:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f0000001ff0)={0x1d, r4}, 0x10)
dup3(r3, r2, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r2, 0x80049363, &(0x7f0000000000))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:56 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4004ae8b, 0x0)

05:19:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x400448dd, 0x0)

05:19:56 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xff0f803a, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:56 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xffffbf3a, 0x0, 0x0, 0x0, 0x0, 0x0)

[  676.255357][T24984] FAULT_INJECTION: forcing a failure.
[  676.255357][T24984] name failslab, interval 1, probability 0, space 0, times 0
[  676.337008][T24984] CPU: 1 PID: 24984 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  676.345455][T24984] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  676.355504][T24984] Call Trace:
[  676.358778][T24984]  <TASK>
[  676.361697][T24984]  dump_stack_lvl+0x1e3/0x2cb
[  676.366375][T24984]  ? bfq_pos_tree_add_move+0x436/0x436
[  676.371825][T24984]  ? panic+0x76e/0x76e
[  676.375893][T24984]  should_fail+0x384/0x4b0
[  676.380302][T24984]  ? anon_vma_clone+0xa1/0x4e0
[  676.385052][T24984]  should_failslab+0x5/0x20
[  676.389553][T24984]  kmem_cache_alloc+0x69/0x2f0
[  676.394309][T24984]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  676.400285][T24984]  anon_vma_clone+0xa1/0x4e0
[  676.404872][T24984]  anon_vma_fork+0x8c/0x540
[  676.409360][T24984]  ? dup_userfaultfd+0xa1/0x650
[  676.414198][T24984]  ? anon_vma_name+0x101/0x170
[  676.418959][T24984]  dup_mmap+0x77c/0xde0
[  676.423113][T24984]  ? __delayed_free_task+0x20/0x20
[  676.428211][T24984]  ? __init_rwsem+0x11e/0x160
[  676.432881][T24984]  ? mm_init+0x66e/0x7b0
[  676.437113][T24984]  dup_mm+0x8c/0x310
[  676.441000][T24984]  copy_mm+0x102/0x190
[  676.445064][T24984]  copy_process+0x1856/0x3f70
[  676.449729][T24984]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  676.455723][T24984]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  676.460818][T24984]  ? mark_lock+0x98/0x350
[  676.465144][T24984]  kernel_clone+0x22f/0x7a0
[  676.469637][T24984]  ? create_io_thread+0x1e0/0x1e0
[  676.474659][T24984]  ? read_lock_is_recursive+0x10/0x10
[  676.480019][T24984]  ? __context_tracking_exit+0x4d/0x80
[  676.485473][T24984]  __x64_sys_clone+0x289/0x310
[  676.490229][T24984]  ? __do_sys_vfork+0x130/0x130
[  676.495066][T24984]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  676.501044][T24984]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  676.507020][T24984]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  676.512993][T24984]  do_syscall_64+0x2b/0x70
[  676.517397][T24984]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  676.523278][T24984] RIP: 0033:0x7fa3598890e9
[  676.527683][T24984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  676.547278][T24984] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  676.555677][T24984] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  676.563634][T24984] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  676.571588][T24984] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  676.579544][T24984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  676.587502][T24984] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  676.595476][T24984]  </TASK>
05:19:56 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xfffffff0, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:56 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 25)

[  676.700548][T24982] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  676.711660][T24982] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
05:19:56 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x400454ca, 0x0)

05:19:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2) (async)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f0000001ff0)={0x1d, r4}, 0x10) (async)
dup3(r3, r2, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r2, 0x80049363, &(0x7f0000000000)) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:19:56 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xfffffff5, 0x0, 0x0, 0x0, 0x0, 0x0)

[  676.926340][   T22] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[  677.079044][T25015] FAULT_INJECTION: forcing a failure.
[  677.079044][T25015] name failslab, interval 1, probability 0, space 0, times 0
[  677.121387][T25015] CPU: 1 PID: 25015 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  677.129835][T25015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  677.139892][T25015] Call Trace:
[  677.143171][T25015]  <TASK>
[  677.146102][T25015]  dump_stack_lvl+0x1e3/0x2cb
[  677.150790][T25015]  ? bfq_pos_tree_add_move+0x436/0x436
[  677.156252][T25015]  ? panic+0x76e/0x76e
[  677.160323][T25015]  ? __might_sleep+0xc0/0xc0
[  677.164929][T25015]  should_fail+0x384/0x4b0
[  677.169360][T25015]  ? anon_vma_fork+0xed/0x540
[  677.174040][T25015]  should_failslab+0x5/0x20
[  677.178548][T25015]  kmem_cache_alloc+0x69/0x2f0
[  677.183332][T25015]  anon_vma_fork+0xed/0x540
[  677.187840][T25015]  ? dup_userfaultfd+0xa1/0x650
[  677.192690][T25015]  ? anon_vma_name+0x101/0x170
[  677.197461][T25015]  dup_mmap+0x77c/0xde0
[  677.201895][T25015]  ? __delayed_free_task+0x20/0x20
[  677.207011][T25015]  ? __init_rwsem+0x11e/0x160
[  677.211695][T25015]  ? mm_init+0x66e/0x7b0
[  677.215949][T25015]  dup_mm+0x8c/0x310
[  677.219852][T25015]  copy_mm+0x102/0x190
[  677.223932][T25015]  copy_process+0x1856/0x3f70
[  677.228608][T25015]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  677.234626][T25015]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  677.239738][T25015]  ? mark_lock+0x98/0x350
[  677.244088][T25015]  kernel_clone+0x22f/0x7a0
[  677.248601][T25015]  ? create_io_thread+0x1e0/0x1e0
[  677.253640][T25015]  ? read_lock_is_recursive+0x10/0x10
[  677.259017][T25015]  ? __context_tracking_exit+0x4d/0x80
[  677.264486][T25015]  __x64_sys_clone+0x289/0x310
[  677.269262][T25015]  ? __do_sys_vfork+0x130/0x130
[  677.274108][T25015]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  677.280103][T25015]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  677.286092][T25015]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  677.292082][T25015]  do_syscall_64+0x2b/0x70
[  677.296501][T25015]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  677.302399][T25015] RIP: 0033:0x7fa3598890e9
[  677.306822][T25015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  677.326429][T25015] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  677.334855][T25015] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  677.342832][T25015] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  677.350803][T25015] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  677.358770][T25015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  677.366740][T25015] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  677.374713][T25015]  </TASK>
[  677.446233][   T22] usb 5-1: Using ep0 maxpacket: 8
[  677.604114][   T22] usb 5-1: config 0 has an invalid interface number: 177 but max is 0
[  677.615908][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  677.646213][   T22] usb 5-1: config 0 has no interface number 0
[  677.646255][   T22] usb 5-1: config 0 interface 177 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
[  677.817082][   T22] usb 5-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  677.834574][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  677.845683][   T22] usb 5-1: Product: syz
[  677.854184][   T22] usb 5-1: Manufacturer: syz
[  677.866199][   T22] usb 5-1: SerialNumber: syz
[  677.881285][   T22] usb 5-1: config 0 descriptor??
[  678.144448][   T22] usb 5-1: USB disconnect, device number 38
05:19:58 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)

05:19:58 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4004ae99, 0x0)

05:19:58 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:58 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x40049409, 0x0)

05:19:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2) (async)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r4=>0x0})
connect$can_bcm(r3, &(0x7f0000001ff0)={0x1d, r4}, 0x10) (async)
dup3(r3, r2, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r2, 0x80049363, &(0x7f0000000000))
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"})

05:19:58 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 26)

05:19:58 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1b0ce1f000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  678.704954][T25028] FAULT_INJECTION: forcing a failure.
[  678.704954][T25028] name failslab, interval 1, probability 0, space 0, times 0
05:19:58 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x29fd9f43c000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  678.756780][T25028] CPU: 0 PID: 25028 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  678.765238][T25028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  678.775301][T25028] Call Trace:
[  678.778594][T25028]  <TASK>
[  678.781536][T25028]  dump_stack_lvl+0x1e3/0x2cb
[  678.786253][T25028]  ? bfq_pos_tree_add_move+0x436/0x436
[  678.791740][T25028]  ? panic+0x76e/0x76e
[  678.795823][T25028]  ? __might_sleep+0xc0/0xc0
[  678.800425][T25028]  ? rcu_read_lock_sched_held+0x89/0x130
[  678.806065][T25028]  should_fail+0x384/0x4b0
[  678.810490][T25028]  ? anon_vma_fork+0x1d0/0x540
[  678.815259][T25028]  should_failslab+0x5/0x20
[  678.819772][T25028]  kmem_cache_alloc+0x69/0x2f0
[  678.824527][T25028]  ? anon_vma_fork+0xed/0x540
[  678.829198][T25028]  anon_vma_fork+0x1d0/0x540
[  678.833790][T25028]  dup_mmap+0x77c/0xde0
[  678.837942][T25028]  ? __delayed_free_task+0x20/0x20
[  678.843064][T25028]  ? __init_rwsem+0x11e/0x160
[  678.847753][T25028]  ? mm_init+0x66e/0x7b0
[  678.852004][T25028]  dup_mm+0x8c/0x310
[  678.855901][T25028]  copy_mm+0x102/0x190
[  678.859979][T25028]  copy_process+0x1856/0x3f70
[  678.864661][T25028]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  678.870660][T25028]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  678.875763][T25028]  ? mark_lock+0x98/0x350
[  678.880097][T25028]  kernel_clone+0x22f/0x7a0
[  678.884607][T25028]  ? create_io_thread+0x1e0/0x1e0
[  678.889635][T25028]  ? read_lock_is_recursive+0x10/0x10
[  678.894998][T25028]  ? __context_tracking_exit+0x4d/0x80
[  678.900459][T25028]  __x64_sys_clone+0x289/0x310
[  678.905224][T25028]  ? __do_sys_vfork+0x130/0x130
[  678.910060][T25028]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  678.916038][T25028]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  678.922011][T25028]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  678.927988][T25028]  do_syscall_64+0x2b/0x70
[  678.932410][T25028]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  678.938309][T25028] RIP: 0033:0x7fa3598890e9
[  678.942724][T25028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  678.962323][T25028] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  678.970733][T25028] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  678.978694][T25028] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  678.986650][T25028] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  678.994611][T25028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
05:19:59 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x400000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  679.002919][T25028] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  679.010893][T25028]  </TASK>
05:19:59 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x553a28781000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:19:59 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 27)

05:19:59 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4004ae8b, 0x0)

[  679.147116][T25040] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  679.186494][   T22] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[  679.276735][T25057] FAULT_INJECTION: forcing a failure.
[  679.276735][T25057] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  679.406377][   T22] usb 5-1: device descriptor read/64, error 18
[  679.429315][T25057] CPU: 1 PID: 25057 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  679.437762][T25057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  679.447820][T25057] Call Trace:
[  679.451103][T25057]  <TASK>
[  679.454033][T25057]  dump_stack_lvl+0x1e3/0x2cb
[  679.458734][T25057]  ? bfq_pos_tree_add_move+0x436/0x436
[  679.464206][T25057]  ? panic+0x76e/0x76e
[  679.468299][T25057]  should_fail+0x384/0x4b0
[  679.472727][T25057]  prepare_alloc_pages+0x1d7/0x5a0
[  679.477856][T25057]  __alloc_pages+0x14d/0x5f0
[  679.482464][T25057]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  679.487752][T25057]  ? lockdep_init_map_type+0x9d/0x8d0
[  679.493138][T25057]  ? lockdep_unregister_key+0x600/0x600
[  679.498682][T25057]  ? alloc_pages+0x43d/0x690
[  679.503270][T25057]  __get_free_pages+0x8/0x30
[  679.507849][T25057]  pgd_alloc+0x1e/0x1c0
[  679.511997][T25057]  mm_init+0x4ca/0x7b0
[  679.516057][T25057]  dup_mm+0x78/0x310
[  679.519940][T25057]  copy_mm+0x102/0x190
[  679.523999][T25057]  copy_process+0x1856/0x3f70
[  679.528662][T25057]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  679.534651][T25057]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  679.539746][T25057]  ? mark_lock+0x98/0x350
[  679.544068][T25057]  kernel_clone+0x22f/0x7a0
[  679.548559][T25057]  ? create_io_thread+0x1e0/0x1e0
[  679.553577][T25057]  ? read_lock_is_recursive+0x10/0x10
[  679.558938][T25057]  ? __context_tracking_exit+0x4d/0x80
[  679.564390][T25057]  __x64_sys_clone+0x289/0x310
[  679.569149][T25057]  ? __do_sys_vfork+0x130/0x130
[  679.573985][T25057]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  679.579963][T25057]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  679.585935][T25057]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  679.591903][T25057]  do_syscall_64+0x2b/0x70
[  679.596305][T25057]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  679.602185][T25057] RIP: 0033:0x7fa3598890e9
[  679.606586][T25057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  679.626180][T25057] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  679.634578][T25057] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  679.642533][T25057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  679.650488][T25057] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  679.658442][T25057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  679.666396][T25057] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  679.674378][T25057]  </TASK>
[  679.846219][   T22] usb 5-1: new high-speed USB device number 40 using dummy_hcd
[  680.036224][   T22] usb 5-1: device descriptor read/64, error 18
[  680.157255][   T22] usb usb5-port1: attempt power cycle
[  680.576333][   T22] usb 5-1: new high-speed USB device number 41 using dummy_hcd
[  680.756433][   T22] usb 5-1: device descriptor read/8, error -61
[  681.036404][   T22] usb 5-1: new high-speed USB device number 42 using dummy_hcd
[  681.216583][   T22] usb 5-1: device descriptor read/8, error -61
[  681.337223][   T22] usb usb5-port1: unable to enumerate USB device
05:20:01 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)

05:20:01 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x40086602, 0x0)

05:20:01 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x2001000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000200)={0xffffffffffffffff, 0xf3a4, 0x1ff})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0', [{0x20, '!-$]'}, {0x20, 'vcan0\x00'}, {0x20, 'vcan0\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '\xef+'}, {0x20, 'vcan0\x00'}], 0xa, "9723661cba941c06e84ad4f23b173303c7f496102214d633edd4012b05742f16bd34ba5c286aba15d6bba679468ba83d5f4b96e8027e7f0ddf8c7ff9e240f0d9ebabd02bfa8b63b77e2d5fa375b6d27b2b1d8b7b2b13fa52177e853840c9ac9318736f3688849afbfb09"}, 0x9c)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r6=>0x0})
connect$can_bcm(r5, &(0x7f0000001ff0)={0x1d, r6}, 0x10)
r7 = dup3(r5, r4, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
syz_kvm_setup_cpu$x86(r3, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="26660f6a42b00f225b36660f383f647ee2cff76e000f01cb0f218966bad004b08dee0fc735fe000000b9b90a00000f32", 0x30}], 0x1, 0x39, &(0x7f0000000100)=[@efer={0x2, 0x1000}], 0x1)

05:20:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4004ae99, 0x0)

05:20:01 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 28)

05:20:01 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x2020000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:01 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x40086602, 0x0)

[  681.811247][T25065] FAULT_INJECTION: forcing a failure.
[  681.811247][T25065] name failslab, interval 1, probability 0, space 0, times 0
[  681.869967][T25065] CPU: 0 PID: 25065 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  681.878418][T25065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  681.888483][T25065] Call Trace:
[  681.891758][T25065]  <TASK>
[  681.894677][T25065]  dump_stack_lvl+0x1e3/0x2cb
[  681.899353][T25065]  ? bfq_pos_tree_add_move+0x436/0x436
[  681.904802][T25065]  ? panic+0x76e/0x76e
[  681.908860][T25065]  ? memset+0x1f/0x40
[  681.912831][T25065]  ? copy_page_range+0x380/0x7a0
[  681.917769][T25065]  should_fail+0x384/0x4b0
[  681.922193][T25065]  ? vm_area_dup+0x23/0x1c0
[  681.926684][T25065]  should_failslab+0x5/0x20
[  681.931180][T25065]  kmem_cache_alloc+0x69/0x2f0
[  681.935939][T25065]  vm_area_dup+0x23/0x1c0
[  681.940257][T25065]  dup_mmap+0x6ba/0xde0
[  681.944408][T25065]  ? __delayed_free_task+0x20/0x20
[  681.949512][T25065]  ? __init_rwsem+0x11e/0x160
[  681.954183][T25065]  ? mm_init+0x66e/0x7b0
[  681.958416][T25065]  dup_mm+0x8c/0x310
[  681.962306][T25065]  copy_mm+0x102/0x190
[  681.966366][T25065]  copy_process+0x1856/0x3f70
[  681.971028][T25065]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  681.977024][T25065]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  681.982119][T25065]  ? mark_lock+0x98/0x350
[  681.986452][T25065]  kernel_clone+0x22f/0x7a0
[  681.990951][T25065]  ? create_io_thread+0x1e0/0x1e0
[  681.995970][T25065]  ? read_lock_is_recursive+0x10/0x10
[  682.001330][T25065]  ? __context_tracking_exit+0x4d/0x80
[  682.006780][T25065]  __x64_sys_clone+0x289/0x310
[  682.011536][T25065]  ? __do_sys_vfork+0x130/0x130
[  682.016371][T25065]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  682.022348][T25065]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  682.028330][T25065]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  682.034318][T25065]  do_syscall_64+0x2b/0x70
[  682.038728][T25065]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  682.044611][T25065] RIP: 0033:0x7fa3598890e9
[  682.049034][T25065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  682.068642][T25065] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  682.077047][T25065] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  682.085008][T25065] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  682.092968][T25065] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  682.100928][T25065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  682.108888][T25065] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  682.116867][T25065]  </TASK>
05:20:02 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x8000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:02 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x40186366, 0x0)

[  682.240434][T25063] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
05:20:02 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x40186366, 0x0)

05:20:02 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x10000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  682.365672][T25063] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  682.406256][T15241] usb 5-1: new high-speed USB device number 43 using dummy_hcd
[  682.613056][T15241] usb 5-1: device descriptor read/64, error 18
[  682.886303][T15241] usb 5-1: new high-speed USB device number 44 using dummy_hcd
[  683.086270][T15241] usb 5-1: device descriptor read/64, error 18
[  683.206463][T15241] usb usb5-port1: attempt power cycle
[  683.616323][T15241] usb 5-1: new high-speed USB device number 45 using dummy_hcd
[  683.796420][T15241] usb 5-1: device descriptor read/8, error -61
[  684.066185][T15241] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  684.236282][T15241] usb 5-1: device descriptor read/8, error -61
[  684.356994][T15241] usb usb5-port1: unable to enumerate USB device
05:20:04 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)

05:20:04 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 29)

05:20:04 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x10100000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:04 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x401c5820, 0x0)

05:20:04 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x401c5820, 0x0)

05:20:04 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000200)={0xffffffffffffffff, 0xf3a4, 0x1ff})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0', [{0x20, '!-$]'}, {0x20, 'vcan0\x00'}, {0x20, 'vcan0\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '\xef+'}, {0x20, 'vcan0\x00'}], 0xa, "9723661cba941c06e84ad4f23b173303c7f496102214d633edd4012b05742f16bd34ba5c286aba15d6bba679468ba83d5f4b96e8027e7f0ddf8c7ff9e240f0d9ebabd02bfa8b63b77e2d5fa375b6d27b2b1d8b7b2b13fa52177e853840c9ac9318736f3688849afbfb09"}, 0x9c)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r6=>0x0})
connect$can_bcm(r5, &(0x7f0000001ff0)={0x1d, r6}, 0x10)
r7 = dup3(r5, r4, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0)
syz_kvm_setup_cpu$x86(r3, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="26660f6a42b00f225b36660f383f647ee2cff76e000f01cb0f218966bad004b08dee0fc735fe000000b9b90a00000f32", 0x30}], 0x1, 0x39, &(0x7f0000000100)=[@efer={0x2, 0x1000}], 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000200)={0xffffffffffffffff, 0xf3a4, 0x1ff}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0', [{0x20, '!-$]'}, {0x20, 'vcan0\x00'}, {0x20, 'vcan0\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '\xef+'}, {0x20, 'vcan0\x00'}], 0xa, "9723661cba941c06e84ad4f23b173303c7f496102214d633edd4012b05742f16bd34ba5c286aba15d6bba679468ba83d5f4b96e8027e7f0ddf8c7ff9e240f0d9ebabd02bfa8b63b77e2d5fa375b6d27b2b1d8b7b2b13fa52177e853840c9ac9318736f3688849afbfb09"}, 0x9c) (async)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e38e06c5fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b53606000000000000007c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df1001000000000694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34cf2645cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f580968af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb010100000000000001a047526865c888c9ff36056cc4ad258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"}) (async)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
socket$can_bcm(0x1d, 0x2, 0x2) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vcan0\x00'}) (async)
connect$can_bcm(r5, &(0x7f0000001ff0)={0x1d, r6}, 0x10) (async)
dup3(r5, r4, 0x0) (async)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="26660f6a42b00f225b36660f383f647ee2cff76e000f01cb0f218966bad004b08dee0fc735fe000000b9b90a00000f32", 0x30}], 0x1, 0x39, &(0x7f0000000100)=[@efer={0x2, 0x1000}], 0x1) (async)

05:20:05 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1078283a550000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  684.888477][T25119] FAULT_INJECTION: forcing a failure.
[  684.888477][T25119] name failslab, interval 1, probability 0, space 0, times 0
[  684.969782][T25117] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  684.972791][T25119] CPU: 1 PID: 25119 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  684.986542][T25119] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  684.996599][T25119] Call Trace:
[  684.999878][T25119]  <TASK>
[  685.002813][T25119]  dump_stack_lvl+0x1e3/0x2cb
[  685.007511][T25119]  ? bfq_pos_tree_add_move+0x436/0x436
[  685.012992][T25119]  ? panic+0x76e/0x76e
[  685.017089][T25119]  ? memset+0x1f/0x40
[  685.021089][T25119]  ? copy_page_range+0x380/0x7a0
[  685.026050][T25119]  should_fail+0x384/0x4b0
[  685.028574][T25117] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  685.030479][T25119]  ? vm_area_dup+0x23/0x1c0
[  685.030502][T25119]  should_failslab+0x5/0x20
[  685.056642][T25119]  kmem_cache_alloc+0x69/0x2f0
[  685.061429][T25119]  vm_area_dup+0x23/0x1c0
[  685.065770][T25119]  dup_mmap+0x6ba/0xde0
[  685.069945][T25119]  ? __delayed_free_task+0x20/0x20
[  685.075065][T25119]  ? __init_rwsem+0x11e/0x160
[  685.079754][T25119]  ? mm_init+0x66e/0x7b0
[  685.084007][T25119]  dup_mm+0x8c/0x310
[  685.087919][T25119]  copy_mm+0x102/0x190
[  685.092005][T25119]  copy_process+0x1856/0x3f70
[  685.096694][T25119]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  685.102728][T25119]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  685.107848][T25119]  ? mark_lock+0x98/0x350
[  685.112206][T25119]  kernel_clone+0x22f/0x7a0
[  685.116727][T25119]  ? create_io_thread+0x1e0/0x1e0
[  685.121775][T25119]  ? read_lock_is_recursive+0x10/0x10
[  685.127163][T25119]  ? __context_tracking_exit+0x4d/0x80
[  685.132636][T25119]  __x64_sys_clone+0x289/0x310
[  685.137421][T25119]  ? __do_sys_vfork+0x130/0x130
[  685.142278][T25119]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  685.148285][T25119]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  685.154276][T25119]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  685.160271][T25119]  do_syscall_64+0x2b/0x70
[  685.164700][T25119]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  685.170602][T25119] RIP: 0033:0x7fa3598890e9
[  685.175014][T25119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  685.194609][T25119] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  685.203026][T25119] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  685.210987][T25119] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
05:20:05 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xc0439ffd290000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:05 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4020940d, 0x0)

[  685.218945][T25119] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  685.226901][T25119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  685.234858][T25119] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  685.242864][T25119]  </TASK>
05:20:05 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xf0e10c1b000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:05 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 30)

05:20:05 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0xf0ff1f00000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  685.463217][ T1226] ieee802154 phy0 wpan0: encryption failed: -22
[  685.469590][ T1226] ieee802154 phy1 wpan1: encryption failed: -22
[  685.578454][T25164] FAULT_INJECTION: forcing a failure.
[  685.578454][T25164] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  685.596269][   T22] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  685.637318][T25164] CPU: 1 PID: 25164 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  685.645766][T25164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  685.655824][T25164] Call Trace:
[  685.659103][T25164]  <TASK>
[  685.662037][T25164]  dump_stack_lvl+0x1e3/0x2cb
[  685.666731][T25164]  ? bfq_pos_tree_add_move+0x436/0x436
[  685.672197][T25164]  ? panic+0x76e/0x76e
[  685.676275][T25164]  ? validate_chain+0x126/0x65c0
[  685.681227][T25164]  should_fail+0x384/0x4b0
[  685.685661][T25164]  prepare_alloc_pages+0x1d7/0x5a0
[  685.690787][T25164]  __alloc_pages+0x14d/0x5f0
[  685.695389][T25164]  ? __rmqueue_pcplist+0x1cb0/0x1cb0
[  685.700680][T25164]  ? preempt_count_add+0x8d/0x180
[  685.705713][T25164]  ? reacquire_held_locks+0x680/0x680
[  685.711095][T25164]  get_zeroed_page+0x13/0x40
[  685.715682][T25164]  __pud_alloc+0x8b/0x220
[  685.720000][T25164]  ? handle_mm_fault+0x3940/0x3940
[  685.725105][T25164]  ? local_lock_release+0x7b/0x120
[  685.730210][T25164]  copy_p4d_range+0x213a/0x21b0
[  685.735071][T25164]  ? __lock_acquire+0x129a/0x1f80
[  685.740091][T25164]  ? rcu_read_lock_sched_held+0x89/0x130
[  685.745711][T25164]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  685.751693][T25164]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[  685.758184][T25164]  ? mmu_notifier_invalidate_range_start+0xbd/0xf0
[  685.764677][T25164]  ? __lock_acquire+0x1f80/0x1f80
[  685.769704][T25164]  copy_page_range+0x4dd/0x7a0
[  685.774466][T25164]  ? pfn_valid+0x1c0/0x1c0
[  685.778879][T25164]  ? __do_sys_brk+0x6d0/0x6d0
[  685.783542][T25164]  ? vma_gap_callbacks_rotate+0x203/0x210
[  685.789251][T25164]  dup_mmap+0x9e5/0xde0
[  685.793401][T25164]  ? __delayed_free_task+0x20/0x20
[  685.798502][T25164]  ? __init_rwsem+0x11e/0x160
[  685.803167][T25164]  ? mm_init+0x66e/0x7b0
[  685.807401][T25164]  dup_mm+0x8c/0x310
[  685.811290][T25164]  copy_mm+0x102/0x190
[  685.815354][T25164]  copy_process+0x1856/0x3f70
[  685.820053][T25164]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  685.826056][T25164]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  685.831157][T25164]  ? mark_lock+0x98/0x350
[  685.835488][T25164]  kernel_clone+0x22f/0x7a0
[  685.839984][T25164]  ? create_io_thread+0x1e0/0x1e0
[  685.845005][T25164]  ? read_lock_is_recursive+0x10/0x10
[  685.850370][T25164]  ? __context_tracking_exit+0x4d/0x80
[  685.855834][T25164]  __x64_sys_clone+0x289/0x310
[  685.860596][T25164]  ? __do_sys_vfork+0x130/0x130
[  685.865436][T25164]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  685.871419][T25164]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  685.877391][T25164]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  685.883365][T25164]  do_syscall_64+0x2b/0x70
[  685.887772][T25164]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  685.893652][T25164] RIP: 0033:0x7fa3598890e9
[  685.898055][T25164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  685.917643][T25164] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  685.926041][T25164] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  685.933999][T25164] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  685.941953][T25164] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  685.949907][T25164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  685.957862][T25164] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  685.965832][T25164]  </TASK>
[  686.156223][   T22] usb 5-1: device descriptor read/64, error 18
[  686.466402][   T22] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  686.686290][   T22] usb 5-1: device descriptor read/64, error 18
[  686.818275][   T22] usb usb5-port1: attempt power cycle
[  687.267013][   T22] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  687.436307][   T22] usb 5-1: device descriptor read/8, error -61
[  687.706303][   T22] usb 5-1: new high-speed USB device number 50 using dummy_hcd
05:20:08 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401"], 0x0)

05:20:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0)

05:20:08 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4020940d, 0x0)

05:20:08 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 31)

05:20:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000200)={0xffffffffffffffff, 0xf3a4, 0x1ff}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0', [{0x20, '!-$]'}, {0x20, 'vcan0\x00'}, {0x20, 'vcan0\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '\xef+'}, {0x20, 'vcan0\x00'}], 0xa, "9723661cba941c06e84ad4f23b173303c7f496102214d633edd4012b05742f16bd34ba5c286aba15d6bba679468ba83d5f4b96e8027e7f0ddf8c7ff9e240f0d9ebabd02bfa8b63b77e2d5fa375b6d27b2b1d8b7b2b13fa52177e853840c9ac9318736f3688849afbfb09"}, 0x9c)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"}) (async)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
r4 = socket$can_bcm(0x1d, 0x2, 0x2) (async)
r5 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r6=>0x0})
connect$can_bcm(r5, &(0x7f0000001ff0)={0x1d, r6}, 0x10) (async)
r7 = dup3(r5, r4, 0x0)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x2000a048}}, 0x0) (async)
sendmsg$can_raw(r7, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000000040)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000104e2f9663a918fa1efd9b0b"}, 0x48}}, 0x0) (async)
syz_kvm_setup_cpu$x86(r3, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="26660f6a42b00f225b36660f383f647ee2cff76e000f01cb0f218966bad004b08dee0fc735fe000000b9b90a00000f32", 0x30}], 0x1, 0x39, &(0x7f0000000100)=[@efer={0x2, 0x1000}], 0x1)

05:20:08 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  687.904634][   T22] usb 5-1: device descriptor read/8, error -71
[  687.934158][T25168] FAULT_INJECTION: forcing a failure.
[  687.934158][T25168] name failslab, interval 1, probability 0, space 0, times 0
[  687.973252][T25168] CPU: 1 PID: 25168 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  687.981706][T25168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  687.991858][T25168] Call Trace:
[  687.995131][T25168]  <TASK>
[  687.998049][T25168]  dump_stack_lvl+0x1e3/0x2cb
[  688.002728][T25168]  ? bfq_pos_tree_add_move+0x436/0x436
[  688.008178][T25168]  ? panic+0x76e/0x76e
[  688.012245][T25168]  ? rcu_read_lock_sched_held+0x89/0x130
[  688.017871][T25168]  should_fail+0x384/0x4b0
[  688.022284][T25168]  ? anon_vma_clone+0xa1/0x4e0
[  688.027037][T25168]  should_failslab+0x5/0x20
[  688.031533][T25168]  kmem_cache_alloc+0x69/0x2f0
[  688.036285][T25168]  ? vma_interval_tree_augment_rotate+0x200/0x200
[  688.042695][T25168]  anon_vma_clone+0xa1/0x4e0
[  688.047282][T25168]  anon_vma_fork+0x8c/0x540
[  688.051773][T25168]  ? dup_userfaultfd+0xa1/0x650
[  688.056611][T25168]  ? anon_vma_name+0x101/0x170
[  688.061371][T25168]  dup_mmap+0x77c/0xde0
[  688.065525][T25168]  ? __delayed_free_task+0x20/0x20
[  688.070628][T25168]  ? __init_rwsem+0x11e/0x160
[  688.075303][T25168]  ? mm_init+0x66e/0x7b0
[  688.079536][T25168]  dup_mm+0x8c/0x310
[  688.083426][T25168]  copy_mm+0x102/0x190
[  688.087487][T25168]  copy_process+0x1856/0x3f70
[  688.092152][T25168]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  688.098146][T25168]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  688.103245][T25168]  ? mark_lock+0x98/0x350
[  688.107574][T25168]  kernel_clone+0x22f/0x7a0
[  688.112071][T25168]  ? create_io_thread+0x1e0/0x1e0
[  688.117093][T25168]  ? read_lock_is_recursive+0x10/0x10
[  688.122451][T25168]  ? __context_tracking_exit+0x4d/0x80
[  688.127903][T25168]  __x64_sys_clone+0x289/0x310
[  688.132663][T25168]  ? __do_sys_vfork+0x130/0x130
[  688.137500][T25168]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  688.143482][T25168]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  688.149451][T25168]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  688.155420][T25168]  do_syscall_64+0x2b/0x70
[  688.159821][T25168]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  688.165700][T25168] RIP: 0033:0x7fa3598890e9
[  688.170103][T25168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  688.189693][T25168] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  688.198095][T25168] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  688.206399][T25168] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  688.214355][T25168] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  688.222311][T25168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  688.230266][T25168] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  688.238240][T25168]  </TASK>
[  688.257387][   T22] usb usb5-port1: unable to enumerate USB device
05:20:08 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 32)

05:20:08 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x700000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:08 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4090ae82, 0x0)

05:20:08 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_mount_image$xfs(&(0x7f0000000000), &(0x7f0000002c00)='./file0\x00', 0x4, 0x9, &(0x7f00000029c0)=[{&(0x7f00000000c0)="6966ea38066f67c3f70be375f618a4550ee5efe7674d7f51a250924952e677e62b80475d45b92ca7d65fe54527fac9d472fdc2c8dd0223809104aad68ec23548a194c9186118024431fa70990cf334ad490eeb7ac2b0125c35fe36f1b97ae1b3fda6f2788ecee86ee61c4b5f3c490fe22506510c2a39a4d5f0a925cea29573cec17a2e8bf57aad752dc06a07b2e406231198c7bba0d3694533d4d5c9", 0x9c, 0xfffffffffffffffb}, {&(0x7f0000000180)="783a5b6eea20874c369a26139cb481b157a10686088946f2d24629529c714c1e22092f994b700a3058c69de79fa9ee", 0x2f, 0x945}, {&(0x7f0000000280)="e1a045f718ee2e1961fcc380eb8f2c9612385a6a18081c1f4b7a75091ca84c6b3a22808ca9baa4dcb7d3031f23dcef5dc0ea29de89f201465f699e78c1f2a55a6b831c55021b3e4e7d03302fb9f1d7091f5aa2e165d042a80cc67b1284b0e4127c91fcf7f59b4c5a4c001feae39c48a8d68cf3f44a2659e4d657800e6368b5eab5d24ac5330e59d3415c5f165e6eb02d2fb0cc71868aca25b9bd7d17ccf7b096bdae3e7ddcf32fad67c5a39ae10bb1e3180a0f9d6fa9f8187cd0832b7d88e7664e036a101337768676ec07a4", 0xcc, 0x1000}, {&(0x7f00000001c0)="79366832046b7673a1ede77ce247bc3beacfa256b383a67ab61e467aac2f6e930cb24807c49c4fba4288cf55c641c91b66ac897be1cab44b6da04f9b9c0c9ad15bcf6c5c7904", 0x46, 0x6}, {&(0x7f0000000380)="228e636d646b1f9aa583bb3eb6afc1c0db70aa0426a5b5ae9285b86848e1b5fdff2d79a61b15696295d75dc92e46eb6fbb07406f89f293bd59462ee523f4711df7b29598d2d5656b6c", 0x49, 0x7f}, {&(0x7f0000000840)="194d598737044cbbaa002f375614b20062295c5a355e60533d1a771947deab03592859aa22f5c120c1ae0267f1b80213a796f7f1cee70fdee6655377b23dd7918682b17a9fbb0cb08b45359f8be13fa54e53b13239c259317e15b426ed22f45982b1b41fffb2393689483da26a8f2673112846ed6caef600ecd95c8fed4d24c5f12ae2423bdbcd8f58589723dcece91020fd2f0d3b3d3d8171117d7aac90813acd64dab42e68294e4a0fe820426aa8294e69ca5142ffe596d5725b9adab3f1e348a10022e61d763c", 0xc8, 0x100000005}, {&(0x7f0000002c40)="04c3477672c3d7b7c11f03d853120ec49c14185009773a34a054242d1e12cc0f01fe585eb70cf4b91cc61974508b8355511daea0eef5b0e6e12a730721313aa849a6f7132c13bc1fbec9240c26b4d49d2940b24f5c7bbec9f1b5dc6abfa14a2f1faf2a74e97172c451f167f43ffad75db689fcc83476f4d559f9e9035cc5ba688d7d784dc7fa080dd07628d2e733b8cc99429dd78c1d98b1b18d791ddbd7d7c6a347e4c378d2f49596a0a7ac5398bed63f82afd1b79268b47d04a6533f830ad2046e06d571e9439333f239a2d5bf05f41fbd6dd90653ba0e059d8e056212de85a5dd78122bb4de1655ee44868c3b991e7195e300b97503500c48144981579539a0848bcfc53cd1f9e226c1e20f774ec47598d0fabe798873077c618ca8a8d84f8db87bc5d9845905e9ecc2c57cb9afd9a9d25928cb1386f92a9619812f99ad11b9bf8119c0899b34a120e123c9e20cab524ecc9cc8daa642d8271205c124b30216d05bc7b8be119626bbe422552f5d516f8f381d07a6cab9f236145c655cf28af34f5bd22d9fe2142db8ceaf04e28dd4b6e705af5113b5b20dffad7fe69a341af5f69cd336ec71d6cc29a7c0fb87db31effcf206b83af3b5439907986455ab656d37747db8c6704e19d17b589116159155b6e9a6917d9aced86892c58414655347d0f0a69c60853923bac47c27566c61365afc77c464eb685f9291af16b2aeaa47b8824fafb075f02a68d70197a61d876383c6c7ab92cc2952794a9dcff8876ec2a5a60b38fbfbf98584f60d1c29e3a6b3676ca92d03d3a415d10c052f24e2fe4374249c27b0aa5b6b8630f334217df6b2b9e1683637c5473f64e8dec55de8116f9ac43e60a0926761db006517cfe850172f20653ff3f3b2eb4be80235223f5e50c8edf02afc5fe77f0caa65e7e8b243a7a1f04ac8dd85c43fa0c0efe03f8ad77aadfa31c30e33747c310bd433bb385d5ba745f84ff5b5628ba993666246b6fae11a71db782bfe44a6ab8d46933bb362ee69ffa8f3ac9cca4702d5d71e4b7fa20ecd03b0a0998a6a45013b79f83ce0ff95e5a87cc4341136c69cd79f54fe1d10a81a1d7449b9f98108063fe447d488ed2df68939e11764f3f4d1bc1685a17921f56a5837b0ef25001c8c1c1f5dd4eca62c2f7eac5ff20a009714895820fbaf88832c79975d0c1928935a589940c94254932674de112b01b7a480cfb24bca5b1d7a3d89a7a50731a86e0046f75514215eaa3f9583b8e81499e4c267a80ef01f760892f5f9ea98f9dc9fad1164bbe5fbe930aaf1b804b1f58a7d998edafe95fa6c0229bab0d4631226e421c489d2ecebdd25464ac30c6a500b9b8e37cdf8e7bd4e2db76ffeb7608bdc1d6fcce996bf97268a1a38798142e4f17abb07f3a385c6a6b14a3b2d47d6c1c98315b1d9b9ab1f3589147d55c4564c9869f28121142c57d6f531b8df68350add606d5cd3262f300c0d9b21d5ae3c6e3d1b0f9fa33af33af524a174420052657ec46f2a4e2d9a33ced8df10eab54bbefe69ae51a034c22733771cd61a0ce42c2dba5b90b0af8c5ce6e27fa33efc487579bb24096e4cee748a0d1676238e871b2b207b8266586851bea04104353971308322b89d15f0dc83e303504bcd7fb3e2991edacf84d2f196d3dd753b23fcbd3c0eaeabb340899ee33f5d55471968af0d6110ae8dc2fb7c8bad26e491f1e799ab518bccff8ae7bbfe5a78ea85aa649fd2b1e69cf44f9ce137d57e4e1caef2aa1376280672010bd51de8ef770a6275e02a64fe2520efdc55c96e47a195030bcd9b016a4405911944839ae284464163f7cac8ca75c6b5dd4c8ab27d3a2a07d51e989686f3d4be19dd2a11277e769901ad8015e9a95633dfed55295f244968ef9c1dad809947489aac3d419bdb90b1833fb503ffa4284add15c1bc1920999a4f1e1bf3ca92fbe4afcc9c050000f4edf7f6ca7d80fa085143d4dca1809650583bf37b0ffcdc920708d18a4729f978b5245e724d103ed7fbe9dd83af1382fdaac089b479ada733ef7f827a1aff570c982f16e5cf690745f30accf27765d13359446a66b1e1df61d88c569905eaaf8b37f818421951d2c4549e0819a89a0d6e3d927839b6744e44023fbc58406773470647eb87b224396a2ee606be4e92e0300f146b6aa7fe8cff1f84d6c2cb97015169671df47f222ecdd77e0421a8e02d4853abb30266570142bf9c9b9bb86aed39e26861fbb50653dc6a7eb104b42b5ff7f7dce69ffbd0f19cf9b8a59307739a51913fb165a0c3327301f3bae2c75619305408d0d81ff580c63c7734ebb7edd1ff02d05afc7b6127652214e0d9a9a022d6a3296634e58d1f9d42457dca0142f5d950aaa071407f272bc0a23ba062263ae32e00e25ddbfb62de0cbd1111facce99d098fecb76fd43e58e37cdb685d99a29609e1a48fa1f4727591e27e56ff8edcf5c2e05f95862c6446ba41dd153a46efe4c5a8299c64d1efe7b43122ec1cf8e5daedf07412579043d217f3d68f35b5a39644c484fa355ed77af4ccca451ca4d9f999be21cd7b568b4ffb9b0f83e8b029f23803126e7f4c21b8b4927c5e999365d7acf27d65e9034b51dfa1d4701906879b2b8c7bd823bb7854e7409c99f32c36c26dd8064a9d20f1e0784f8113daa8089e5c5fdab2cfe4c8c38c457754c44b9c5a944bd398a395bc35a38901e769f118d8d52068f1826e36e57fff3ff2002816bcd750aa7b1d8ee3527c2f9ba62a258c5dc9edc84ef2dac66fc56cdf7d3c3eb6eb676eb6e55d7f24acbc217fcd2a1b6684ed27aadf8101cf2308af18e1685d8e8f8effab22109cfcc4b866be20d796de3430b55c6f9263bf6b4e8ccb243e34bfa509241a76aca2a9ead191b4d2009ff58f9a77a4eebffec43352996ef18e8dc23cc65aaa54633ca3cb84c0bf41abedd7323e0324d2af5ab864db5235156e983c60eb51452cbf51117657bdab25f8a601a369252b33d938474d919bf914d88d4e8ee317132efc5d26a63beeffeb2cd45d45d6d943ae492a1f10644e114dabdcf972067a535ad5feb2a04290661f35f194ef06484e3af0a4d77cd23e24ba51562bfa41361c1ef7d54ba0643103f41d601f0e99bdefa54c0e2add0b22c3a21ac5771e9d7a526811244dc7637f4ea6d3556f0af43746d6dbde466024f00c36bbfb1a685447232541a867f137e889c2818b3331b9f43391af2f3a3f0a3631c062cc702fdfd1279ceeb98e7f0e8a2c2e4b7818eda6eb81f6720e81b5a8e2a3ae9ee93cff1f862e14c2fd57a7b02e01cb8b3124cb1d6bea4b48d6b234ad0317bfcf87e399139e99aaff13a172a5b967705c5d7c020914eda9feaf39c6a779aac81ddd80ef93de3782c41d0b5f41672b2fca7b2493526711488cd4d71a7306341b8f05cef604f7a6bf05d4791bac74d2f9fed4cf327519e8d2a6f7b76732beefffb29ac940e184ad383d3bf6b71da7af3ec0d9f15687bc0e40d96f2a33e100cbf72154228de7a0088dc53deea32c8d359e4a2363d37d772d224dd9e7da0cdad313f26fb00356c7d0e96b9714eaea25d87528d3d4f089bd38a694778ee7f176da8aea98470a82647050209382b76fa5dd5be5ef2a391ca71f1976b52953ecee07686c0164805c5dd0de7696bb3dd628b0cdca046e2927c966b01592215f57c90f6a2819c1b2cac88efae8449b6b9b6c23ee56aebc144f6f0d2c0ebe7ff0fe71dea6a51c038526248b994ca79a0b585b4baa67136d1b6638ccf68189515df9af59b9bd8cb7ebeefcbb75852f9f5cdb3247e00966380cfa28ca5519bd38556de18a40913b35bb83ba45a824b86d0e25dee4e7a6b43d32650db786718589875317bc87cc0f67d56d9aea0b9d00166622e0ebf7cb7e99f9662b4e51b7e54e53f13ddbe17b44956a4dd0d1032000792a6a73f90805865fb64ba501c08e4313e6290ee029cc53ce1526a5db307ce018f318f56bf8eb0aa7e1c87209bc5f4b708ed93248f7205c0dc7b46f10313dc37c8cd33b95dbbedb0c58b8a233abbcbcf7df2ee35e6bc8e46dc3714befa8587d845848e18b91f65b4b7ba6fe5a3d2a2284a5a1cc2c86bbc6de9be5760cfce69c3e8d7a2b9f2a1fbd09a971a81afda8cd5c42eefb0aea94a4138ca2954d8ff4d831018bfa7be4ebe158d456d848034c37644d5ff3f11768ecff4caa93d3c968bb2fde0fd552e69e0e3d3fd0706443585d7e1488d0a701c527a3d1119c8f7ca37ce4cbef7e468602f0a2b93c7fe377df741b896c57fb7afd99759ef10dea54263000fbc8c337dab54b770b8336a278fad767ace95972aca3cec7413af8de3efc84fb318ed84da002beaa55d235e5b59fa713f9f3e3ec8c4c0d988f81d1ffcffa4dee9d1c0fd1931b84308b3fe2925e0b259d8966a74e874b6ede6320888c9f43d1a6e1050659873e9dd5f681aaf2831fe76475cf236b76293e66cddf164e7ad1add9f34b7e271276e500fb42058f82b10ff02a7b82930c2c843e650642869194640b336a9ec8d4ef03cd3a5609456222153888ca9b65a3fdac93239de4d33048e8a2ffb983e147c624014ebbb8c0e187e8ab2e50ee7bf702a19463635b0ab0ebf268d670d47a0f153342090ade931106f4d9dd7b48370413badb90b5f8f568a77fd0f7bcb43705e135a66fc6bb6204115f866edc5204c915eb06fac6c9dfc63068e68d8bcd411960e1012d4ef27f4fc3850c4e484a5f19b06a9317efbd4082b5b60e36dadfdab80ae607ffbacf23b7b449a1dfdbf7f04cd7b0ee7e5b10e5b35e844f08fc60af540eaa252a0921491be357b7cff0e53025db0cb3fb9b5cda6e6337da7d6b3a1c5781d11f2f3fe8d3aec5413cb3269376486f83adb56a5336cd462e9bc365115d52e738ddf6083aee434d8b433916c90991b95cc73e8645b19ee0a66e8169562c5bff48273a21f722fe52cd8e43cce6099d0ea4bfe6c5c8b4a67ec6752659ef189bb50c4b060b7e59b37e483457d17bbf0fb329bfe49e576d88ea37f665d8f62c23e56b8f3269fdfc42a00bcc30eaaecca0f2e18150039a84cbbf413e95432e39a2d8522ad66b2a0c3724ae7d6f5d32ce064004b313cade6f23cba851fbcc8fd0620a5323cf97d33420f7d1407a8dd65ad8527f84f80ca52449e7b5446aa312d2a6974ebb71b4fe89df8ac63138626f0d5323d6eb6023e760459fde8846a83d8633e38562853181117a167731ce6058c669641960a0003fb7cdfcb3de58c2f72691cc9f0eed97fdb141f3e4b7026ab499a8c1c69cfd7f95da3114f46d483f7051482e8e5348e978c9d086451c3ea4d5cc5699661607517072f3ab2cc0d9c2f4f97f830e9f02ec554a66b66ef0f1a8edfc441ff3725148920fee17897b9ff59a4faf13806316ede4ba8f9e22c0c0013d9a2ad0798e2c173c2e452a420b86b3ccf592c4f32f3d09c37c0cb36b6f8e83bf263c446db68e3276dbf8298d85ed43d841e439820dbef15def7518a585cc430493e31ce5e3d9c88d3cdba0c8c8fc2fc5db3b0df8ee4bb36ea935a96d2321bda8dce7919e49823a93c5b9477153bc05a4886e3525033a53a33623cbab2cd1900757369d769c51427204c73124ad0bad3b10d14f6c181a7023f66c169d93b950b343fe42bb1e6afe7cb010c642edb3631a08a853e6f1a51fc8b0bd88ccc45d2e6f952c55e18aefa4c3e72c0860c28879c12c4e27b89555ef241e3735e8dfe66d393c680331c30a552222919452325602053fe37dfce97b8c36d65d795bc29269ff2b090bdabfea5b9e829a360da32a172d999972f8b3af24393b8012b886d86dbd690437", 0x1000, 0x7}, {&(0x7f0000001940)="fad22991c97d9b5adb498f73c20c8c2959405de4566803e8f50df966ac155fe6d9ac0e0b5ec27027794fab174dd7c4cfdce76df8b3aafb65cd1c8f49f2e6373a6977e7036650f64bb43abc75b4ac47cbe968c5e1b1efd4aac872e838cd18c2c602cc1ca7f9606169618a", 0x6a, 0x3}, {&(0x7f00000019c0)="719f3ae108136250d46424bf946dde225a0737cc2259db4dfe2cd368875c3bd6f87b4f23706e2b7e3f47148c7f0d4f9c11126c9bb4a279b1b767bb70b63efda4392f22e0402a916787599595a7f11aea1440a2dd93ca0908121e5b08076415754c549d0a9cae00aa19fa68106667eb51e6a30202ba485a975f22a962246f09df534b48ffe38433ff88ff0420962de6add29249cc673ced13d786c54a50242069c31b39b67adf79cebce1bb551c7a41e2bcfddaf0b8b2fb76710f5491d0ee84fc6dcf0c9c5c9af8f2ddd82f8a0509f91ff3f4ac7fa08e29c04ccd52b56244eed4e775862576338f22f14aa72b873ff477edb2248931b9e44a80a6292b0838dea852e8eafdf44486476e9a0ec1615333c4616dceffbd44215b3f20189369ca164c457cc5dfa909eb79968067672e41a4ac2ab581f3abdea35082799ab7c3a3d9fbc9e2a373f2eb40f04e09a92d757d6f215145dc5ef0117afe80a2c9b88b1408b87dce905521920dc4277c1cd7b8172a586200b7b8124402e79bbe1931c023f0b81544d17298e79d3b224ec76d49517769a2dbc40a2c32abec94deee293ecd63ce8db9ff8209cf401ed6e2dce86ce1b9729b191e3ff55d5d76b8376df12c79f49ca54e66da1cc1bed6365b6bf2146b2592a097e63a35f60df0a68dfd68c5861bb2a6cc6169e9a5c5ae9a42d311205c161765b0f32180517c1f95b4573455e180525c441b287126c7deb12cbc8812e2e5edb4b0ab5b256d94325fbb71d3903e3aa0bc1418c9658a61b1a431064fced241fd4facccbb2a5d44a8ee4b2daf3217a9698ddba4569e73508c8950925d7ec56ff6a3c24304dd54750136822e21c07116e0c08c27e57253624f62a5625e256a3663bfb49bb3affcdf0bf1fae5a334f3ee22d4b22328263ec2412eb04a983f10c001cb81df8514119854a2debe7dab46f5b198c4bb0534be9933452a73961b58b8770f2f97934d13d8523c32eae44c825606c73923baeef60876702048d35918cbda40a751212276591df9dfbe8f621d4b79dde997cabe68f596efabad9496ac33ee44ef99c8a6d6b89d355f8c233640c6d9329f666d01f91f3900510a74af96c43c4f3635d3da6d9c38ee05be8c7796de52bcc04c07f51d5f710a8e4576dc8a5d2e946994b8588f4bae7ef7e76993bca72872d5d242efba8035f39677b5ef268f971cb264d61083bed133b37b9a955c6ec1de8ec03849649be39b45449074f335774e8f8be52993aea16f7a39cb283bb67cdf859444bd9b76768b596113e5d9a018d755a6ce06ca8f44bbc9670e3b180c89e46ef5d2715502e65e4c0b34fb1b6846f77523ac16aebd1ad60fe2ffaa24103646a085b9255ad8ffcf5809a2fc77dab9067ff136fef0dda3348a5109f74ad1e11e1119ea08bfb27b6bc04c07e1d986ed54a2f3c3fc6a548a74ded4eb62f97bc1a84372a298e6f48f7f1148f904efb361f350de5ccb5e70d8716e4236eea333698bb61151959843d29459f8d2f79d297ee9a3fb82fe020e05fe07f70bfdf83c03faf6d27d5d1e3de5f0510807c6aad30cd866f752936cd915ea4acacc966f78ebdb37dad6fcd7626ffdef3b8d7c7a4922718ae9e6a5dd96fa9e0c19d4ceae94f28c6659f16f8a4552d376ca079e69390628ab40bea2014364c2b809932b8e432df37cac4542575719944d26e5d3ab0eaf4c2873d327e65638698c6dcca511fc29d21f5b950078fe1fbf386d0869e187d0eae15335b60566cafab5fc3e95ea9aaf6c29a71875c0320c537f229019b84b9c63fe972efca11454592a3ef84ed68b1fb110a72782969d9ab4e875ef441a718af03fd6c0b6713930c169f6947b5bf57b9b160acc52d3d4e0f8b9429c4fb97e7311ddd733c7eeb53cb252e95aef42160667806dbaebf498fdb0ac9b8db730e781f393bf785316bb72457c753e488c8406ab3fd3f94cb3a5da66f4bf79635aacc722100bb54499105075bc7cb3245acd06e3be92de04054fa088e483f65f2cdd295b201fb180ba38c449bbdf5ec34592acdcfbed3078223736fb396df8babb255fe05852bcc900288acc10e7bc42426ced3d0c60bc37c2c9f17ead1de1c0da894ab85e048429ae1a6d9af8049544205d67557e2510d02c7bf1245bc9e1173502720412f8ade20505edd5bb8d5ea92641300b58d10984fe8872a1655e3913b71d8395d5bdbed63fb073a997e820135550b72b76f8fc1b8f710989ca0cf20c5615fcfa8c4d08bd3076096b4ac33ae6209a9d852bc7e0f2796921fdfe59ca33762f6aa95a446a243f7f0ddc8597fe8732f18fc56536585e48a53b848d75792efbee77578a9b9e58bc8b1648a92aad1d96c3377e3361a04d876ca4a96d8e74504dd9b6a9de4090e1120a4da87fef80ee9c2fd81f2d9d7dcfbda0281552c2a50997526b12d34d819c51372181c605036832a60197bb2f4f942b70267a089e63368c64dd7727f3059acdbd68fe9782eb9055cc15b1114f740f6e01ede36500a2ff7e268612963dc71213913daa2deff5705a63f6eeb1583a053a1e9a3afba16109b8d68d587f2cf8efda37f1ff0f32034b0fe0efa2f06abd36d45f70ac16a051019b263b987eabae0181596bbe8509a1dca6058125a1a4c2c9f03cca888ddbddf232bdfe9b1d5ac48107cec34b3bf7a8a1bf96e17b5082c701c2da34f65174dc18f9bde2ce9b25edc9987966a47a22f1d52476898e6157ed712c9d84d08b4679669b09d5145566298e03c41ef793c77db66754403617982b847910bbf9440da7b1d51d226bdea6f1938b30e5a58a900a318d9efdaae5cd9935412c9e154040685e14fac811a27073e8a47be5e2f6bbc3be0493479c0905f70be96e464c818de2176d7e2836d0c3d02e48324ba8c3c4c3e8912a028100c6b5e9494a8c761825a9b096ba444e416d213b2dc4eaab22b7e4a376a5149ab93c64bbb8cbb69f1cf0f3ded55a994ea675936c5042fa69b0abe5715f027cbabd8f7cdb7c737dc6886721d7df180a941d4f87c7cfdd118516ec85033363c8566c26dec2097a7028aa750a5fbe422bb7380e5906b13683cbde71883169b1e859c798407c3aa10231b16d2e48ea207115db6a141de83608cf94c52c9a01388f00db3659a2f824c11d515efbf4e6d2fd9b7b82bd6b0387ec40914295d9a364e288a237043a38c6b4721b04be062005f58845842555c058744740ed5dff224b78fc7343befb54492552706a0c1197ba3d26dc99e60a153717c63c027c7e47459d55d44e938ecf71489d6b68cd5b3afc3cd6ce826307216bcb527c1c8edb579751ff7e90014cab533ef34a86ee7007541c3b8ebfd6327820c94e22088148aaeb0bab9e1a85026e3e265f6953ab6397e51512f785a2906cba1dabb67dd77c3bd506bbec5855c1e66a180d2777f63ddac1bc48836515b8fafb797f5badc11a40aee41c21f6452e6622e29a6c30722457a54966057699c2d5a660883a5249d44d6c4613ba9e34045ab2bf96ab71b75f57ffd4ac5a9fb76071bb70fd14f9ffba8ac84d4e1e42837f45377d3eb56d5b8e9685337eae8f009db39e6b2f950cd9e27da99357df33f552f24529ff8dba54f809f75fce629cd1c1bf7340b819ee217465d8f154bf081e601ad1305bd3e3b3529c6ab17cfcc6e21fbeb416d32e769a5af938a622a368b7a433bf810c93e57aa2d620a8f470f179a6c7903635ae0d45f2034ff0264086cabfa0be6d4bdc0420efc6d321db6e6e49cd35bae7e9242d3c3c8e9a6716d9ad6eebdaf93136d15f2e6e367f2448290e938286d1153bc50b1a6ce2ee5c7584e720ce83b09b96704e8c9774dafc8b91b5629670608c934652a1d226d35f07f681511635536de8ef5c2a29ec58016363416604e26b38d5823075ebc2205640d23862c1dae1e41a721e59befdb57f865d774935b5c9035caf3e9fc43f7edffb17ef0b3b3eb5d01c9cc355c403efbf6ec1f351dd88fa14bdc4ba54563198f73b05bc3fc9e68190911715e2084663746cd67c7322e70712c29e69bc56b77ff253b300001ae5722731d7ed7dba60eec0eca6c8be78fda806c1faf0e49ced4f1c1c372eedceefede2a6a0bb1eddad4176ccc02790e0f6b785a94e588367356428f62a02fc183e7d585352f1897639ca7036983cb58f57a64bad525f3b8505887fa2d82b5a3ed6c5c460c1b37b22c0ff29eb355a1999ef4dfebe9ef19636827f859ba516b8d1d597c0f6e6f1b639b73ce6578c9811bdd053ff2366c7d865fef314eebcb8034c6efb79604c796e4fad7e68daa6e8f15cbc54603fc83439996ce2d1a17ca2a5af579863708c2262f66a89e5e471b0b1e1e19e3e0a6fe697a3314902790cf6f8ab904790c02e7c1aab56054552dbbc1cb085567ea48a16cf6cd094b292af5afbb9596545c830f9f753dceafea0e2b49eb3b951a1bc3eb1cffa64f3459f209b1ab0bd26a7947c4fe9ee934d1e7fb808efad412fa5fc95c22f84b59e9535d4df88aab22713588c01ab1fd1e7e125bc0c21bacd555186c9ec4c82afe0ec139e50e1e94ed8b2df93cc0111a6ae7cef9452d122ce0cfa736d07a67f72b1266a71ff19ba585c99dbc2bee15d0aa45bf409efe4ed8bbc80e423232e44d31e52c005fb84ecb70289d08294360ee5223c3dfc4f3a891d84363e6b66e6513d0af4ecc1c6b6750d58ead08e54cbad74696d6356df391610e42ba9c22df489cac991dc66c2c7e6344e872e669a0f84fb32ad65bb72fbdb17c91c13f0a368ddccad45178a3e7ef7916a71f1c3e3d5cd22501a0f09f88fb1825dc1f406cfbe37d2bbe5158feef0dc69896e3e809376d2ea236207937179a3abd2e46c4fd1a51a868b89233bf7d2d62ed1c0bd1177cb76e8290b6cb1480170b1c4e9b2c24958629ec43a9526bd27072df587297346a7ac7170cc93dc5cc8de91559aaccf7869ef61c2cab31d8120c10fb1b39b2f8ce453c0e87de79101e01072dd06e734462616c1339a85f70607226be30fd3d6ac99670f4354eafcba8adb9203b0db2fbe1a3b9664c51469568e114ee2e4f8f2e789a75166f52946db5fa5c20c1689c2258b4d2cfa04137a0fb00eaed1da129a7967acc5b1211d747880973a3472edf63fff0d780f20691dbebf6ad69029698d5ff2155c3487ec007b9b3a4cf2aa3a25fd7d41aff3f196b2afa8e749e5ce4e1769c628c1b7a057c541cfd27ba794de241836a71cec9c6efe8c1d0aeb3c9213e96a7cfc1fcbdd65df58a8582cad764bd3e1e39c0a9abbbac6ac015bd5f68c1aabba9c354c9c651d49c470e159cfb2c6da43410b9fb70fec2ff60d860539ea16fcb866fd3d7f4283bc0d2e61f0b5ad485e5e1099f2561d52c619ac9237853692e9df65f7fda258579218c1d578bc6ad9c0222f4948fc57f33bdea3d9b445e243a831cfc0ea135359663a785c1e495552ff9867fb5877d067296095b7025ce7d948a38295f288ee0e025efc3bca2eb6fd35c8bd3bcb17712619f864389ac304f4822c4de430b44d1cb85847ddef0dcf94d073b03020502049b2b6f0a89336c3388ff1aaf2ab1d574876ebc6b9cb748f917c0cf390f25293061a8c27042002d5fb78339d32dac95257e1f96735d4085083b7514749a965e368a35e503ac29e9f3a2fa8ae05ec24a9c5b3565e83b897eb93e96af16ff132b1f50c3aa0da6bc70d325951162b2e01bfa35ea99ab958eaa63ae8a1d2ec88c7a27e7b8ee35d33b172bfc029d5f8c3fec3ce9ac7895d562138f8dc424103bc38387e14b91fefcaffe5de1f67cfa1b9148f334f03bd352f4ff2b1bb12203183b5c6", 0x1000, 0x7fff}], 0x1091806, &(0x7f0000002ac0)=ANY=[@ANYBLOB="72746465763d2e2f66696c65302c736d61636b66736861743d2f6465762f6b766d002c646f6e745f686173682c736d61636b6673666c6f6f723d2f6465762f6b766d002c7375626a5f747970653d2f6465762f6b766d002c6673757569643d0e313439383831632d313164332d346337352d363900662d614d3666616634652c7569643e", @ANYRESDEC=0xee01, @ANYBLOB=',uid>', @ANYRESDEC, @ANYBLOB=',fsname=&:,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="2466a68389", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, &(0x7f0000002bc0)={0x10001, 0x20, '\x00', 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

05:20:08 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0)

[  688.439481][T25198] FAULT_INJECTION: forcing a failure.
[  688.439481][T25198] name failslab, interval 1, probability 0, space 0, times 0
[  688.549201][T25198] CPU: 0 PID: 25198 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  688.557660][T25198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  688.567728][T25198] Call Trace:
[  688.571012][T25198]  <TASK>
[  688.573939][T25198]  dump_stack_lvl+0x1e3/0x2cb
[  688.578629][T25198]  ? bfq_pos_tree_add_move+0x436/0x436
[  688.584090][T25198]  ? panic+0x76e/0x76e
[  688.588152][T25198]  ? __might_sleep+0xc0/0xc0
[  688.592729][T25198]  ? __alloc_pages+0x2fd/0x5f0
[  688.597492][T25198]  should_fail+0x384/0x4b0
[  688.601905][T25198]  ? __pmd_alloc+0x132/0x840
[  688.606481][T25198]  should_failslab+0x5/0x20
[  688.610974][T25198]  kmem_cache_alloc+0x69/0x2f0
[  688.615728][T25198]  ? alloc_pages+0x43d/0x690
[  688.620315][T25198]  __pmd_alloc+0x132/0x840
[  688.624722][T25198]  ? __pud_alloc+0x220/0x220
[  688.629302][T25198]  ? _raw_spin_unlock+0x24/0x40
[  688.634140][T25198]  ? __pud_alloc+0x1da/0x220
[  688.638717][T25198]  ? handle_mm_fault+0x3940/0x3940
[  688.643821][T25198]  ? local_lock_release+0x7b/0x120
[  688.648925][T25198]  copy_p4d_range+0x2044/0x21b0
[  688.653795][T25198]  ? rcu_read_lock_sched_held+0x89/0x130
[  688.659414][T25198]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  688.665400][T25198]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[  688.671892][T25198]  ? mmu_notifier_invalidate_range_start+0xbd/0xf0
[  688.678387][T25198]  ? __lock_acquire+0x1f80/0x1f80
[  688.683415][T25198]  copy_page_range+0x4dd/0x7a0
[  688.688178][T25198]  ? pfn_valid+0x1c0/0x1c0
[  688.692596][T25198]  ? __do_sys_brk+0x6d0/0x6d0
[  688.697271][T25198]  ? vma_gap_callbacks_rotate+0x203/0x210
[  688.702997][T25198]  dup_mmap+0x9e5/0xde0
[  688.707153][T25198]  ? __delayed_free_task+0x20/0x20
[  688.712257][T25198]  ? __init_rwsem+0x11e/0x160
[  688.716930][T25198]  ? mm_init+0x66e/0x7b0
[  688.721170][T25198]  dup_mm+0x8c/0x310
[  688.725059][T25198]  copy_mm+0x102/0x190
[  688.729122][T25198]  copy_process+0x1856/0x3f70
[  688.733792][T25198]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  688.739789][T25198]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  688.744891][T25198]  ? mark_lock+0x98/0x350
[  688.749220][T25198]  kernel_clone+0x22f/0x7a0
[  688.753718][T25198]  ? create_io_thread+0x1e0/0x1e0
[  688.758740][T25198]  ? read_lock_is_recursive+0x10/0x10
[  688.764102][T25198]  ? __context_tracking_exit+0x4d/0x80
[  688.769552][T25198]  __x64_sys_clone+0x289/0x310
[  688.774309][T25198]  ? __do_sys_vfork+0x130/0x130
[  688.779150][T25198]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  688.785734][T25198]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  688.791702][T25198]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  688.797671][T25198]  do_syscall_64+0x2b/0x70
[  688.802076][T25198]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  688.807956][T25198] RIP: 0033:0x7fa3598890e9
[  688.812370][T25198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  688.832085][T25198] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  688.840497][T25198] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  688.848459][T25198] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  688.856422][T25198] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  688.864382][T25198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  688.872347][T25198] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  688.880323][T25198]  </TASK>
[  688.883477][   T22] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  688.992649][T25215] loop2: detected capacity change from 0 to 264192
[  689.098883][T25203] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  689.136409][   T22] usb 5-1: Using ep0 maxpacket: 8
[  689.205613][T25203] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  689.256519][   T22] usb 5-1: config 0 has an invalid interface number: 177 but max is 0
[  689.265419][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  689.275944][   T22] usb 5-1: config 0 has no interface number 0
[  689.283247][   T22] usb 5-1: config 0 interface 177 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
[  689.459870][   T22] usb 5-1: New USB device found, idVendor=06f8, idProduct=0004, bcdDevice=2b.2a
[  689.469063][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  689.477175][   T22] usb 5-1: Product: syz
[  689.481337][   T22] usb 5-1: Manufacturer: syz
[  689.486057][   T22] usb 5-1: SerialNumber: syz
[  689.492781][   T22] usb 5-1: config 0 descriptor??
[  689.742143][   T22] usb 5-1: USB disconnect, device number 51
05:20:10 executing program 4:
syz_usb_connect(0x0, 0x25a, &(0x7f00000005c0)=ANY=[@ANYBLOB="120100001eaf7708f80604002a2b0102030109024802010000d0000904b100080259ae001124020202000100027712f80d140c26ad072401"], 0x0)

05:20:10 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x800000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:10 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4138ae84, 0x0)

05:20:10 executing program 1:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (fail_nth: 33)

05:20:10 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4090ae82, 0x0)

05:20:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = syz_mount_image$xfs(&(0x7f0000000000), &(0x7f0000002c00)='./file0\x00', 0x4, 0x9, &(0x7f00000029c0)=[{&(0x7f00000000c0)="6966ea38066f67c3f70be375f618a4550ee5efe7674d7f51a250924952e677e62b80475d45b92ca7d65fe54527fac9d472fdc2c8dd0223809104aad68ec23548a194c9186118024431fa70990cf334ad490eeb7ac2b0125c35fe36f1b97ae1b3fda6f2788ecee86ee61c4b5f3c490fe22506510c2a39a4d5f0a925cea29573cec17a2e8bf57aad752dc06a07b2e406231198c7bba0d3694533d4d5c9", 0x9c, 0xfffffffffffffffb}, {&(0x7f0000000180)="783a5b6eea20874c369a26139cb481b157a10686088946f2d24629529c714c1e22092f994b700a3058c69de79fa9ee", 0x2f, 0x945}, {&(0x7f0000000280)="e1a045f718ee2e1961fcc380eb8f2c9612385a6a18081c1f4b7a75091ca84c6b3a22808ca9baa4dcb7d3031f23dcef5dc0ea29de89f201465f699e78c1f2a55a6b831c55021b3e4e7d03302fb9f1d7091f5aa2e165d042a80cc67b1284b0e4127c91fcf7f59b4c5a4c001feae39c48a8d68cf3f44a2659e4d657800e6368b5eab5d24ac5330e59d3415c5f165e6eb02d2fb0cc71868aca25b9bd7d17ccf7b096bdae3e7ddcf32fad67c5a39ae10bb1e3180a0f9d6fa9f8187cd0832b7d88e7664e036a101337768676ec07a4", 0xcc, 0x1000}, {&(0x7f00000001c0)="79366832046b7673a1ede77ce247bc3beacfa256b383a67ab61e467aac2f6e930cb24807c49c4fba4288cf55c641c91b66ac897be1cab44b6da04f9b9c0c9ad15bcf6c5c7904", 0x46, 0x6}, {&(0x7f0000000380)="228e636d646b1f9aa583bb3eb6afc1c0db70aa0426a5b5ae9285b86848e1b5fdff2d79a61b15696295d75dc92e46eb6fbb07406f89f293bd59462ee523f4711df7b29598d2d5656b6c", 0x49, 0x7f}, {&(0x7f0000000840)="194d598737044cbbaa002f375614b20062295c5a355e60533d1a771947deab03592859aa22f5c120c1ae0267f1b80213a796f7f1cee70fdee6655377b23dd7918682b17a9fbb0cb08b45359f8be13fa54e53b13239c259317e15b426ed22f45982b1b41fffb2393689483da26a8f2673112846ed6caef600ecd95c8fed4d24c5f12ae2423bdbcd8f58589723dcece91020fd2f0d3b3d3d8171117d7aac90813acd64dab42e68294e4a0fe820426aa8294e69ca5142ffe596d5725b9adab3f1e348a10022e61d763c", 0xc8, 0x100000005}, {&(0x7f0000002c40)="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", 0x1000, 0x7}, {&(0x7f0000001940)="fad22991c97d9b5adb498f73c20c8c2959405de4566803e8f50df966ac155fe6d9ac0e0b5ec27027794fab174dd7c4cfdce76df8b3aafb65cd1c8f49f2e6373a6977e7036650f64bb43abc75b4ac47cbe968c5e1b1efd4aac872e838cd18c2c602cc1ca7f9606169618a", 0x6a, 0x3}, {&(0x7f00000019c0)="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", 0x1000, 0x7fff}], 0x1091806, &(0x7f0000002ac0)=ANY=[@ANYBLOB="72746465763d2e2f66696c65302c736d61636b66736861743d2f6465762f6b766d002c646f6e745f686173682c736d61636b6673666c6f6f723d2f6465762f6b766d002c7375626a5f747970653d2f6465762f6b766d002c6673757569643d0e313439383831632d313164332d346337352d363900662d614d3666616634652c7569643e", @ANYRESDEC=0xee01, @ANYBLOB=',uid>', @ANYRESDEC, @ANYBLOB=',fsname=&:,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="2466a68389", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, &(0x7f0000002bc0)={0x10001, 0x20, '\x00', 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async)
syz_mount_image$xfs(&(0x7f0000000000), &(0x7f0000002c00)='./file0\x00', 0x4, 0x9, &(0x7f00000029c0)=[{&(0x7f00000000c0)="6966ea38066f67c3f70be375f618a4550ee5efe7674d7f51a250924952e677e62b80475d45b92ca7d65fe54527fac9d472fdc2c8dd0223809104aad68ec23548a194c9186118024431fa70990cf334ad490eeb7ac2b0125c35fe36f1b97ae1b3fda6f2788ecee86ee61c4b5f3c490fe22506510c2a39a4d5f0a925cea29573cec17a2e8bf57aad752dc06a07b2e406231198c7bba0d3694533d4d5c9", 0x9c, 0xfffffffffffffffb}, {&(0x7f0000000180)="783a5b6eea20874c369a26139cb481b157a10686088946f2d24629529c714c1e22092f994b700a3058c69de79fa9ee", 0x2f, 0x945}, {&(0x7f0000000280)="e1a045f718ee2e1961fcc380eb8f2c9612385a6a18081c1f4b7a75091ca84c6b3a22808ca9baa4dcb7d3031f23dcef5dc0ea29de89f201465f699e78c1f2a55a6b831c55021b3e4e7d03302fb9f1d7091f5aa2e165d042a80cc67b1284b0e4127c91fcf7f59b4c5a4c001feae39c48a8d68cf3f44a2659e4d657800e6368b5eab5d24ac5330e59d3415c5f165e6eb02d2fb0cc71868aca25b9bd7d17ccf7b096bdae3e7ddcf32fad67c5a39ae10bb1e3180a0f9d6fa9f8187cd0832b7d88e7664e036a101337768676ec07a4", 0xcc, 0x1000}, {&(0x7f00000001c0)="79366832046b7673a1ede77ce247bc3beacfa256b383a67ab61e467aac2f6e930cb24807c49c4fba4288cf55c641c91b66ac897be1cab44b6da04f9b9c0c9ad15bcf6c5c7904", 0x46, 0x6}, {&(0x7f0000000380)="228e636d646b1f9aa583bb3eb6afc1c0db70aa0426a5b5ae9285b86848e1b5fdff2d79a61b15696295d75dc92e46eb6fbb07406f89f293bd59462ee523f4711df7b29598d2d5656b6c", 0x49, 0x7f}, {&(0x7f0000000840)="194d598737044cbbaa002f375614b20062295c5a355e60533d1a771947deab03592859aa22f5c120c1ae0267f1b80213a796f7f1cee70fdee6655377b23dd7918682b17a9fbb0cb08b45359f8be13fa54e53b13239c259317e15b426ed22f45982b1b41fffb2393689483da26a8f2673112846ed6caef600ecd95c8fed4d24c5f12ae2423bdbcd8f58589723dcece91020fd2f0d3b3d3d8171117d7aac90813acd64dab42e68294e4a0fe820426aa8294e69ca5142ffe596d5725b9adab3f1e348a10022e61d763c", 0xc8, 0x100000005}, {&(0x7f0000002c40)="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", 0x1000, 0x7}, {&(0x7f0000001940)="fad22991c97d9b5adb498f73c20c8c2959405de4566803e8f50df966ac155fe6d9ac0e0b5ec27027794fab174dd7c4cfdce76df8b3aafb65cd1c8f49f2e6373a6977e7036650f64bb43abc75b4ac47cbe968c5e1b1efd4aac872e838cd18c2c602cc1ca7f9606169618a", 0x6a, 0x3}, {&(0x7f00000019c0)="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", 0x1000, 0x7fff}], 0x1091806, &(0x7f0000002ac0)=ANY=[@ANYBLOB="72746465763d2e2f66696c65302c736d61636b66736861743d2f6465762f6b766d002c646f6e745f686173682c736d61636b6673666c6f6f723d2f6465762f6b766d002c7375626a5f747970653d2f6465762f6b766d002c6673757569643d0e313439383831632d313164332d346337352d363900662d614d3666616634652c7569643e", @ANYRESDEC=0xee01, @ANYBLOB=',uid>', @ANYRESDEC, @ANYBLOB=',fsname=&:,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="2466a68389", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) (async)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, &(0x7f0000002bc0)={0x10001, 0x20, '\x00', 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0]}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"}) (async)

[  690.288891][T25223] FAULT_INJECTION: forcing a failure.
[  690.288891][T25223] name failslab, interval 1, probability 0, space 0, times 0
[  690.306368][T25223] CPU: 1 PID: 25223 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  690.314814][T25223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  690.324883][T25223] Call Trace:
[  690.328168][T25223]  <TASK>
[  690.331103][T25223]  dump_stack_lvl+0x1e3/0x2cb
[  690.335802][T25223]  ? bfq_pos_tree_add_move+0x436/0x436
[  690.341277][T25223]  ? panic+0x76e/0x76e
[  690.345367][T25223]  ? __alloc_pages+0x2fd/0x5f0
[  690.350152][T25223]  should_fail+0x384/0x4b0
[  690.354585][T25223]  ? ptlock_alloc+0x1c/0x60
[  690.359096][T25223]  should_failslab+0x5/0x20
[  690.363610][T25223]  kmem_cache_alloc+0x69/0x2f0
[  690.368402][T25223]  ptlock_alloc+0x1c/0x60
[  690.372742][T25223]  pte_alloc_one+0xd1/0x360
[  690.377263][T25223]  ? pfn_modify_allowed+0x2f0/0x2f0
[  690.382474][T25223]  ? _raw_spin_unlock+0x24/0x40
[  690.387332][T25223]  ? __pmd_alloc+0x6d2/0x840
[  690.391933][T25223]  ? __pud_alloc+0x220/0x220
[  690.396538][T25223]  __pte_alloc+0x75/0x210
[  690.400898][T25223]  ? pmd_install+0x210/0x210
[  690.405505][T25223]  ? follow_phys+0x2c4/0x310
[  690.410105][T25223]  copy_p4d_range+0x1dfd/0x21b0
[  690.414990][T25223]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  690.421005][T25223]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[  690.427530][T25223]  ? mmu_notifier_invalidate_range_start+0xbd/0xf0
[  690.434066][T25223]  ? __lock_acquire+0x1f80/0x1f80
[  690.439133][T25223]  copy_page_range+0x4dd/0x7a0
[  690.443913][T25223]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  690.449909][T25223]  ? pfn_valid+0x1c0/0x1c0
[  690.454343][T25223]  ? __vma_link_rb+0x7c9/0x810
[  690.459109][T25223]  ? __do_sys_brk+0x6d0/0x6d0
[  690.463805][T25223]  dup_mmap+0x9e5/0xde0
[  690.467972][T25223]  ? __delayed_free_task+0x20/0x20
[  690.473099][T25223]  ? __init_rwsem+0x11e/0x160
[  690.477781][T25223]  ? mm_init+0x66e/0x7b0
[  690.482018][T25223]  dup_mm+0x8c/0x310
[  690.485922][T25223]  copy_mm+0x102/0x190
[  690.490000][T25223]  copy_process+0x1856/0x3f70
[  690.494675][T25223]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  690.500676][T25223]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  690.505784][T25223]  ? mark_lock+0x98/0x350
[  690.510121][T25223]  kernel_clone+0x22f/0x7a0
[  690.514631][T25223]  ? create_io_thread+0x1e0/0x1e0
[  690.519661][T25223]  ? read_lock_is_recursive+0x10/0x10
[  690.525033][T25223]  ? __context_tracking_exit+0x4d/0x80
[  690.530497][T25223]  __x64_sys_clone+0x289/0x310
[  690.535264][T25223]  ? __do_sys_vfork+0x130/0x130
[  690.540105][T25223]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  690.546090][T25223]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  690.552071][T25223]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  690.558047][T25223]  do_syscall_64+0x2b/0x70
[  690.562455][T25223]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  690.568339][T25223] RIP: 0033:0x7fa3598890e9
[  690.572745][T25223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  690.592338][T25223] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  690.600745][T25223] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  690.608708][T25223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  690.616666][T25223] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  690.624624][T25223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  690.632583][T25223] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  690.640587][T25223]  </TASK>
05:20:10 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x900000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  690.684936][T25223] ------------[ cut here ]------------
[  690.691343][T25223] WARNING: CPU: 1 PID: 25223 at arch/x86/mm/pat/memtype.c:1099 untrack_pfn+0x1b0/0x450
[  690.702179][T25223] Modules linked in:
[  690.708199][T25223] CPU: 1 PID: 25223 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  690.717084][T25223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
05:20:10 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64)
r3 = syz_mount_image$xfs(&(0x7f0000000000), &(0x7f0000002c00)='./file0\x00', 0x4, 0x9, &(0x7f00000029c0)=[{&(0x7f00000000c0)="6966ea38066f67c3f70be375f618a4550ee5efe7674d7f51a250924952e677e62b80475d45b92ca7d65fe54527fac9d472fdc2c8dd0223809104aad68ec23548a194c9186118024431fa70990cf334ad490eeb7ac2b0125c35fe36f1b97ae1b3fda6f2788ecee86ee61c4b5f3c490fe22506510c2a39a4d5f0a925cea29573cec17a2e8bf57aad752dc06a07b2e406231198c7bba0d3694533d4d5c9", 0x9c, 0xfffffffffffffffb}, {&(0x7f0000000180)="783a5b6eea20874c369a26139cb481b157a10686088946f2d24629529c714c1e22092f994b700a3058c69de79fa9ee", 0x2f, 0x945}, {&(0x7f0000000280)="e1a045f718ee2e1961fcc380eb8f2c9612385a6a18081c1f4b7a75091ca84c6b3a22808ca9baa4dcb7d3031f23dcef5dc0ea29de89f201465f699e78c1f2a55a6b831c55021b3e4e7d03302fb9f1d7091f5aa2e165d042a80cc67b1284b0e4127c91fcf7f59b4c5a4c001feae39c48a8d68cf3f44a2659e4d657800e6368b5eab5d24ac5330e59d3415c5f165e6eb02d2fb0cc71868aca25b9bd7d17ccf7b096bdae3e7ddcf32fad67c5a39ae10bb1e3180a0f9d6fa9f8187cd0832b7d88e7664e036a101337768676ec07a4", 0xcc, 0x1000}, {&(0x7f00000001c0)="79366832046b7673a1ede77ce247bc3beacfa256b383a67ab61e467aac2f6e930cb24807c49c4fba4288cf55c641c91b66ac897be1cab44b6da04f9b9c0c9ad15bcf6c5c7904", 0x46, 0x6}, {&(0x7f0000000380)="228e636d646b1f9aa583bb3eb6afc1c0db70aa0426a5b5ae9285b86848e1b5fdff2d79a61b15696295d75dc92e46eb6fbb07406f89f293bd59462ee523f4711df7b29598d2d5656b6c", 0x49, 0x7f}, {&(0x7f0000000840)="194d598737044cbbaa002f375614b20062295c5a355e60533d1a771947deab03592859aa22f5c120c1ae0267f1b80213a796f7f1cee70fdee6655377b23dd7918682b17a9fbb0cb08b45359f8be13fa54e53b13239c259317e15b426ed22f45982b1b41fffb2393689483da26a8f2673112846ed6caef600ecd95c8fed4d24c5f12ae2423bdbcd8f58589723dcece91020fd2f0d3b3d3d8171117d7aac90813acd64dab42e68294e4a0fe820426aa8294e69ca5142ffe596d5725b9adab3f1e348a10022e61d763c", 0xc8, 0x100000005}, {&(0x7f0000002c40)="04c3477672c3d7b7c11f03d853120ec49c14185009773a34a054242d1e12cc0f01fe585eb70cf4b91cc61974508b8355511daea0eef5b0e6e12a730721313aa849a6f7132c13bc1fbec9240c26b4d49d2940b24f5c7bbec9f1b5dc6abfa14a2f1faf2a74e97172c451f167f43ffad75db689fcc83476f4d559f9e9035cc5ba688d7d784dc7fa080dd07628d2e733b8cc99429dd78c1d98b1b18d791ddbd7d7c6a347e4c378d2f49596a0a7ac5398bed63f82afd1b79268b47d04a6533f830ad2046e06d571e9439333f239a2d5bf05f41fbd6dd90653ba0e059d8e056212de85a5dd78122bb4de1655ee44868c3b991e7195e300b97503500c48144981579539a0848bcfc53cd1f9e226c1e20f774ec47598d0fabe798873077c618ca8a8d84f8db87bc5d9845905e9ecc2c57cb9afd9a9d25928cb1386f92a9619812f99ad11b9bf8119c0899b34a120e123c9e20cab524ecc9cc8daa642d8271205c124b30216d05bc7b8be119626bbe422552f5d516f8f381d07a6cab9f236145c655cf28af34f5bd22d9fe2142db8ceaf04e28dd4b6e705af5113b5b20dffad7fe69a341af5f69cd336ec71d6cc29a7c0fb87db31effcf206b83af3b5439907986455ab656d37747db8c6704e19d17b589116159155b6e9a6917d9aced86892c58414655347d0f0a69c60853923bac47c27566c61365afc77c464eb685f9291af16b2aeaa47b8824fafb075f02a68d70197a61d876383c6c7ab92cc2952794a9dcff8876ec2a5a60b38fbfbf98584f60d1c29e3a6b3676ca92d03d3a415d10c052f24e2fe4374249c27b0aa5b6b8630f334217df6b2b9e1683637c5473f64e8dec55de8116f9ac43e60a0926761db006517cfe850172f20653ff3f3b2eb4be80235223f5e50c8edf02afc5fe77f0caa65e7e8b243a7a1f04ac8dd85c43fa0c0efe03f8ad77aadfa31c30e33747c310bd433bb385d5ba745f84ff5b5628ba993666246b6fae11a71db782bfe44a6ab8d46933bb362ee69ffa8f3ac9cca4702d5d71e4b7fa20ecd03b0a0998a6a45013b79f83ce0ff95e5a87cc4341136c69cd79f54fe1d10a81a1d7449b9f98108063fe447d488ed2df68939e11764f3f4d1bc1685a17921f56a5837b0ef25001c8c1c1f5dd4eca62c2f7eac5ff20a009714895820fbaf88832c79975d0c1928935a589940c94254932674de112b01b7a480cfb24bca5b1d7a3d89a7a50731a86e0046f75514215eaa3f9583b8e81499e4c267a80ef01f760892f5f9ea98f9dc9fad1164bbe5fbe930aaf1b804b1f58a7d998edafe95fa6c0229bab0d4631226e421c489d2ecebdd25464ac30c6a500b9b8e37cdf8e7bd4e2db76ffeb7608bdc1d6fcce996bf97268a1a38798142e4f17abb07f3a385c6a6b14a3b2d47d6c1c98315b1d9b9ab1f3589147d55c4564c9869f28121142c57d6f531b8df68350add606d5cd3262f300c0d9b21d5ae3c6e3d1b0f9fa33af33af524a174420052657ec46f2a4e2d9a33ced8df10eab54bbefe69ae51a034c22733771cd61a0ce42c2dba5b90b0af8c5ce6e27fa33efc487579bb24096e4cee748a0d1676238e871b2b207b8266586851bea04104353971308322b89d15f0dc83e303504bcd7fb3e2991edacf84d2f196d3dd753b23fcbd3c0eaeabb340899ee33f5d55471968af0d6110ae8dc2fb7c8bad26e491f1e799ab518bccff8ae7bbfe5a78ea85aa649fd2b1e69cf44f9ce137d57e4e1caef2aa1376280672010bd51de8ef770a6275e02a64fe2520efdc55c96e47a195030bcd9b016a4405911944839ae284464163f7cac8ca75c6b5dd4c8ab27d3a2a07d51e989686f3d4be19dd2a11277e769901ad8015e9a95633dfed55295f244968ef9c1dad809947489aac3d419bdb90b1833fb503ffa4284add15c1bc1920999a4f1e1bf3ca92fbe4afcc9c050000f4edf7f6ca7d80fa085143d4dca1809650583bf37b0ffcdc920708d18a4729f978b5245e724d103ed7fbe9dd83af1382fdaac089b479ada733ef7f827a1aff570c982f16e5cf690745f30accf27765d13359446a66b1e1df61d88c569905eaaf8b37f818421951d2c4549e0819a89a0d6e3d927839b6744e44023fbc58406773470647eb87b224396a2ee606be4e92e0300f146b6aa7fe8cff1f84d6c2cb97015169671df47f222ecdd77e0421a8e02d4853abb30266570142bf9c9b9bb86aed39e26861fbb50653dc6a7eb104b42b5ff7f7dce69ffbd0f19cf9b8a59307739a51913fb165a0c3327301f3bae2c75619305408d0d81ff580c63c7734ebb7edd1ff02d05afc7b6127652214e0d9a9a022d6a3296634e58d1f9d42457dca0142f5d950aaa071407f272bc0a23ba062263ae32e00e25ddbfb62de0cbd1111facce99d098fecb76fd43e58e37cdb685d99a29609e1a48fa1f4727591e27e56ff8edcf5c2e05f95862c6446ba41dd153a46efe4c5a8299c64d1efe7b43122ec1cf8e5daedf07412579043d217f3d68f35b5a39644c484fa355ed77af4ccca451ca4d9f999be21cd7b568b4ffb9b0f83e8b029f23803126e7f4c21b8b4927c5e999365d7acf27d65e9034b51dfa1d4701906879b2b8c7bd823bb7854e7409c99f32c36c26dd8064a9d20f1e0784f8113daa8089e5c5fdab2cfe4c8c38c457754c44b9c5a944bd398a395bc35a38901e769f118d8d52068f1826e36e57fff3ff2002816bcd750aa7b1d8ee3527c2f9ba62a258c5dc9edc84ef2dac66fc56cdf7d3c3eb6eb676eb6e55d7f24acbc217fcd2a1b6684ed27aadf8101cf2308af18e1685d8e8f8effab22109cfcc4b866be20d796de3430b55c6f9263bf6b4e8ccb243e34bfa509241a76aca2a9ead191b4d2009ff58f9a77a4eebffec43352996ef18e8dc23cc65aaa54633ca3cb84c0bf41abedd7323e0324d2af5ab864db5235156e983c60eb51452cbf51117657bdab25f8a601a369252b33d938474d919bf914d88d4e8ee317132efc5d26a63beeffeb2cd45d45d6d943ae492a1f10644e114dabdcf972067a535ad5feb2a04290661f35f194ef06484e3af0a4d77cd23e24ba51562bfa41361c1ef7d54ba0643103f41d601f0e99bdefa54c0e2add0b22c3a21ac5771e9d7a526811244dc7637f4ea6d3556f0af43746d6dbde466024f00c36bbfb1a685447232541a867f137e889c2818b3331b9f43391af2f3a3f0a3631c062cc702fdfd1279ceeb98e7f0e8a2c2e4b7818eda6eb81f6720e81b5a8e2a3ae9ee93cff1f862e14c2fd57a7b02e01cb8b3124cb1d6bea4b48d6b234ad0317bfcf87e399139e99aaff13a172a5b967705c5d7c020914eda9feaf39c6a779aac81ddd80ef93de3782c41d0b5f41672b2fca7b2493526711488cd4d71a7306341b8f05cef604f7a6bf05d4791bac74d2f9fed4cf327519e8d2a6f7b76732beefffb29ac940e184ad383d3bf6b71da7af3ec0d9f15687bc0e40d96f2a33e100cbf72154228de7a0088dc53deea32c8d359e4a2363d37d772d224dd9e7da0cdad313f26fb00356c7d0e96b9714eaea25d87528d3d4f089bd38a694778ee7f176da8aea98470a82647050209382b76fa5dd5be5ef2a391ca71f1976b52953ecee07686c0164805c5dd0de7696bb3dd628b0cdca046e2927c966b01592215f57c90f6a2819c1b2cac88efae8449b6b9b6c23ee56aebc144f6f0d2c0ebe7ff0fe71dea6a51c038526248b994ca79a0b585b4baa67136d1b6638ccf68189515df9af59b9bd8cb7ebeefcbb75852f9f5cdb3247e00966380cfa28ca5519bd38556de18a40913b35bb83ba45a824b86d0e25dee4e7a6b43d32650db786718589875317bc87cc0f67d56d9aea0b9d00166622e0ebf7cb7e99f9662b4e51b7e54e53f13ddbe17b44956a4dd0d1032000792a6a73f90805865fb64ba501c08e4313e6290ee029cc53ce1526a5db307ce018f318f56bf8eb0aa7e1c87209bc5f4b708ed93248f7205c0dc7b46f10313dc37c8cd33b95dbbedb0c58b8a233abbcbcf7df2ee35e6bc8e46dc3714befa8587d845848e18b91f65b4b7ba6fe5a3d2a2284a5a1cc2c86bbc6de9be5760cfce69c3e8d7a2b9f2a1fbd09a971a81afda8cd5c42eefb0aea94a4138ca2954d8ff4d831018bfa7be4ebe158d456d848034c37644d5ff3f11768ecff4caa93d3c968bb2fde0fd552e69e0e3d3fd0706443585d7e1488d0a701c527a3d1119c8f7ca37ce4cbef7e468602f0a2b93c7fe377df741b896c57fb7afd99759ef10dea54263000fbc8c337dab54b770b8336a278fad767ace95972aca3cec7413af8de3efc84fb318ed84da002beaa55d235e5b59fa713f9f3e3ec8c4c0d988f81d1ffcffa4dee9d1c0fd1931b84308b3fe2925e0b259d8966a74e874b6ede6320888c9f43d1a6e1050659873e9dd5f681aaf2831fe76475cf236b76293e66cddf164e7ad1add9f34b7e271276e500fb42058f82b10ff02a7b82930c2c843e650642869194640b336a9ec8d4ef03cd3a5609456222153888ca9b65a3fdac93239de4d33048e8a2ffb983e147c624014ebbb8c0e187e8ab2e50ee7bf702a19463635b0ab0ebf268d670d47a0f153342090ade931106f4d9dd7b48370413badb90b5f8f568a77fd0f7bcb43705e135a66fc6bb6204115f866edc5204c915eb06fac6c9dfc63068e68d8bcd411960e1012d4ef27f4fc3850c4e484a5f19b06a9317efbd4082b5b60e36dadfdab80ae607ffbacf23b7b449a1dfdbf7f04cd7b0ee7e5b10e5b35e844f08fc60af540eaa252a0921491be357b7cff0e53025db0cb3fb9b5cda6e6337da7d6b3a1c5781d11f2f3fe8d3aec5413cb3269376486f83adb56a5336cd462e9bc365115d52e738ddf6083aee434d8b433916c90991b95cc73e8645b19ee0a66e8169562c5bff48273a21f722fe52cd8e43cce6099d0ea4bfe6c5c8b4a67ec6752659ef189bb50c4b060b7e59b37e483457d17bbf0fb329bfe49e576d88ea37f665d8f62c23e56b8f3269fdfc42a00bcc30eaaecca0f2e18150039a84cbbf413e95432e39a2d8522ad66b2a0c3724ae7d6f5d32ce064004b313cade6f23cba851fbcc8fd0620a5323cf97d33420f7d1407a8dd65ad8527f84f80ca52449e7b5446aa312d2a6974ebb71b4fe89df8ac63138626f0d5323d6eb6023e760459fde8846a83d8633e38562853181117a167731ce6058c669641960a0003fb7cdfcb3de58c2f72691cc9f0eed97fdb141f3e4b7026ab499a8c1c69cfd7f95da3114f46d483f7051482e8e5348e978c9d086451c3ea4d5cc5699661607517072f3ab2cc0d9c2f4f97f830e9f02ec554a66b66ef0f1a8edfc441ff3725148920fee17897b9ff59a4faf13806316ede4ba8f9e22c0c0013d9a2ad0798e2c173c2e452a420b86b3ccf592c4f32f3d09c37c0cb36b6f8e83bf263c446db68e3276dbf8298d85ed43d841e439820dbef15def7518a585cc430493e31ce5e3d9c88d3cdba0c8c8fc2fc5db3b0df8ee4bb36ea935a96d2321bda8dce7919e49823a93c5b9477153bc05a4886e3525033a53a33623cbab2cd1900757369d769c51427204c73124ad0bad3b10d14f6c181a7023f66c169d93b950b343fe42bb1e6afe7cb010c642edb3631a08a853e6f1a51fc8b0bd88ccc45d2e6f952c55e18aefa4c3e72c0860c28879c12c4e27b89555ef241e3735e8dfe66d393c680331c30a552222919452325602053fe37dfce97b8c36d65d795bc29269ff2b090bdabfea5b9e829a360da32a172d999972f8b3af24393b8012b886d86dbd690437", 0x1000, 0x7}, {&(0x7f0000001940)="fad22991c97d9b5adb498f73c20c8c2959405de4566803e8f50df966ac155fe6d9ac0e0b5ec27027794fab174dd7c4cfdce76df8b3aafb65cd1c8f49f2e6373a6977e7036650f64bb43abc75b4ac47cbe968c5e1b1efd4aac872e838cd18c2c602cc1ca7f9606169618a", 0x6a, 0x3}, {&(0x7f00000019c0)="719f3ae108136250d46424bf946dde225a0737cc2259db4dfe2cd368875c3bd6f87b4f23706e2b7e3f47148c7f0d4f9c11126c9bb4a279b1b767bb70b63efda4392f22e0402a916787599595a7f11aea1440a2dd93ca0908121e5b08076415754c549d0a9cae00aa19fa68106667eb51e6a30202ba485a975f22a962246f09df534b48ffe38433ff88ff0420962de6add29249cc673ced13d786c54a50242069c31b39b67adf79cebce1bb551c7a41e2bcfddaf0b8b2fb76710f5491d0ee84fc6dcf0c9c5c9af8f2ddd82f8a0509f91ff3f4ac7fa08e29c04ccd52b56244eed4e775862576338f22f14aa72b873ff477edb2248931b9e44a80a6292b0838dea852e8eafdf44486476e9a0ec1615333c4616dceffbd44215b3f20189369ca164c457cc5dfa909eb79968067672e41a4ac2ab581f3abdea35082799ab7c3a3d9fbc9e2a373f2eb40f04e09a92d757d6f215145dc5ef0117afe80a2c9b88b1408b87dce905521920dc4277c1cd7b8172a586200b7b8124402e79bbe1931c023f0b81544d17298e79d3b224ec76d49517769a2dbc40a2c32abec94deee293ecd63ce8db9ff8209cf401ed6e2dce86ce1b9729b191e3ff55d5d76b8376df12c79f49ca54e66da1cc1bed6365b6bf2146b2592a097e63a35f60df0a68dfd68c5861bb2a6cc6169e9a5c5ae9a42d311205c161765b0f32180517c1f95b4573455e180525c441b287126c7deb12cbc8812e2e5edb4b0ab5b256d94325fbb71d3903e3aa0bc1418c9658a61b1a431064fced241fd4facccbb2a5d44a8ee4b2daf3217a9698ddba4569e73508c8950925d7ec56ff6a3c24304dd54750136822e21c07116e0c08c27e57253624f62a5625e256a3663bfb49bb3affcdf0bf1fae5a334f3ee22d4b22328263ec2412eb04a983f10c001cb81df8514119854a2debe7dab46f5b198c4bb0534be9933452a73961b58b8770f2f97934d13d8523c32eae44c825606c73923baeef60876702048d35918cbda40a751212276591df9dfbe8f621d4b79dde997cabe68f596efabad9496ac33ee44ef99c8a6d6b89d355f8c233640c6d9329f666d01f91f3900510a74af96c43c4f3635d3da6d9c38ee05be8c7796de52bcc04c07f51d5f710a8e4576dc8a5d2e946994b8588f4bae7ef7e76993bca72872d5d242efba8035f39677b5ef268f971cb264d61083bed133b37b9a955c6ec1de8ec03849649be39b45449074f335774e8f8be52993aea16f7a39cb283bb67cdf859444bd9b76768b596113e5d9a018d755a6ce06ca8f44bbc9670e3b180c89e46ef5d2715502e65e4c0b34fb1b6846f77523ac16aebd1ad60fe2ffaa24103646a085b9255ad8ffcf5809a2fc77dab9067ff136fef0dda3348a5109f74ad1e11e1119ea08bfb27b6bc04c07e1d986ed54a2f3c3fc6a548a74ded4eb62f97bc1a84372a298e6f48f7f1148f904efb361f350de5ccb5e70d8716e4236eea333698bb61151959843d29459f8d2f79d297ee9a3fb82fe020e05fe07f70bfdf83c03faf6d27d5d1e3de5f0510807c6aad30cd866f752936cd915ea4acacc966f78ebdb37dad6fcd7626ffdef3b8d7c7a4922718ae9e6a5dd96fa9e0c19d4ceae94f28c6659f16f8a4552d376ca079e69390628ab40bea2014364c2b809932b8e432df37cac4542575719944d26e5d3ab0eaf4c2873d327e65638698c6dcca511fc29d21f5b950078fe1fbf386d0869e187d0eae15335b60566cafab5fc3e95ea9aaf6c29a71875c0320c537f229019b84b9c63fe972efca11454592a3ef84ed68b1fb110a72782969d9ab4e875ef441a718af03fd6c0b6713930c169f6947b5bf57b9b160acc52d3d4e0f8b9429c4fb97e7311ddd733c7eeb53cb252e95aef42160667806dbaebf498fdb0ac9b8db730e781f393bf785316bb72457c753e488c8406ab3fd3f94cb3a5da66f4bf79635aacc722100bb54499105075bc7cb3245acd06e3be92de04054fa088e483f65f2cdd295b201fb180ba38c449bbdf5ec34592acdcfbed3078223736fb396df8babb255fe05852bcc900288acc10e7bc42426ced3d0c60bc37c2c9f17ead1de1c0da894ab85e048429ae1a6d9af8049544205d67557e2510d02c7bf1245bc9e1173502720412f8ade20505edd5bb8d5ea92641300b58d10984fe8872a1655e3913b71d8395d5bdbed63fb073a997e820135550b72b76f8fc1b8f710989ca0cf20c5615fcfa8c4d08bd3076096b4ac33ae6209a9d852bc7e0f2796921fdfe59ca33762f6aa95a446a243f7f0ddc8597fe8732f18fc56536585e48a53b848d75792efbee77578a9b9e58bc8b1648a92aad1d96c3377e3361a04d876ca4a96d8e74504dd9b6a9de4090e1120a4da87fef80ee9c2fd81f2d9d7dcfbda0281552c2a50997526b12d34d819c51372181c605036832a60197bb2f4f942b70267a089e63368c64dd7727f3059acdbd68fe9782eb9055cc15b1114f740f6e01ede36500a2ff7e268612963dc71213913daa2deff5705a63f6eeb1583a053a1e9a3afba16109b8d68d587f2cf8efda37f1ff0f32034b0fe0efa2f06abd36d45f70ac16a051019b263b987eabae0181596bbe8509a1dca6058125a1a4c2c9f03cca888ddbddf232bdfe9b1d5ac48107cec34b3bf7a8a1bf96e17b5082c701c2da34f65174dc18f9bde2ce9b25edc9987966a47a22f1d52476898e6157ed712c9d84d08b4679669b09d5145566298e03c41ef793c77db66754403617982b847910bbf9440da7b1d51d226bdea6f1938b30e5a58a900a318d9efdaae5cd9935412c9e154040685e14fac811a27073e8a47be5e2f6bbc3be0493479c0905f70be96e464c818de2176d7e2836d0c3d02e48324ba8c3c4c3e8912a028100c6b5e9494a8c761825a9b096ba444e416d213b2dc4eaab22b7e4a376a5149ab93c64bbb8cbb69f1cf0f3ded55a994ea675936c5042fa69b0abe5715f027cbabd8f7cdb7c737dc6886721d7df180a941d4f87c7cfdd118516ec85033363c8566c26dec2097a7028aa750a5fbe422bb7380e5906b13683cbde71883169b1e859c798407c3aa10231b16d2e48ea207115db6a141de83608cf94c52c9a01388f00db3659a2f824c11d515efbf4e6d2fd9b7b82bd6b0387ec40914295d9a364e288a237043a38c6b4721b04be062005f58845842555c058744740ed5dff224b78fc7343befb54492552706a0c1197ba3d26dc99e60a153717c63c027c7e47459d55d44e938ecf71489d6b68cd5b3afc3cd6ce826307216bcb527c1c8edb579751ff7e90014cab533ef34a86ee7007541c3b8ebfd6327820c94e22088148aaeb0bab9e1a85026e3e265f6953ab6397e51512f785a2906cba1dabb67dd77c3bd506bbec5855c1e66a180d2777f63ddac1bc48836515b8fafb797f5badc11a40aee41c21f6452e6622e29a6c30722457a54966057699c2d5a660883a5249d44d6c4613ba9e34045ab2bf96ab71b75f57ffd4ac5a9fb76071bb70fd14f9ffba8ac84d4e1e42837f45377d3eb56d5b8e9685337eae8f009db39e6b2f950cd9e27da99357df33f552f24529ff8dba54f809f75fce629cd1c1bf7340b819ee217465d8f154bf081e601ad1305bd3e3b3529c6ab17cfcc6e21fbeb416d32e769a5af938a622a368b7a433bf810c93e57aa2d620a8f470f179a6c7903635ae0d45f2034ff0264086cabfa0be6d4bdc0420efc6d321db6e6e49cd35bae7e9242d3c3c8e9a6716d9ad6eebdaf93136d15f2e6e367f2448290e938286d1153bc50b1a6ce2ee5c7584e720ce83b09b96704e8c9774dafc8b91b5629670608c934652a1d226d35f07f681511635536de8ef5c2a29ec58016363416604e26b38d5823075ebc2205640d23862c1dae1e41a721e59befdb57f865d774935b5c9035caf3e9fc43f7edffb17ef0b3b3eb5d01c9cc355c403efbf6ec1f351dd88fa14bdc4ba54563198f73b05bc3fc9e68190911715e2084663746cd67c7322e70712c29e69bc56b77ff253b300001ae5722731d7ed7dba60eec0eca6c8be78fda806c1faf0e49ced4f1c1c372eedceefede2a6a0bb1eddad4176ccc02790e0f6b785a94e588367356428f62a02fc183e7d585352f1897639ca7036983cb58f57a64bad525f3b8505887fa2d82b5a3ed6c5c460c1b37b22c0ff29eb355a1999ef4dfebe9ef19636827f859ba516b8d1d597c0f6e6f1b639b73ce6578c9811bdd053ff2366c7d865fef314eebcb8034c6efb79604c796e4fad7e68daa6e8f15cbc54603fc83439996ce2d1a17ca2a5af579863708c2262f66a89e5e471b0b1e1e19e3e0a6fe697a3314902790cf6f8ab904790c02e7c1aab56054552dbbc1cb085567ea48a16cf6cd094b292af5afbb9596545c830f9f753dceafea0e2b49eb3b951a1bc3eb1cffa64f3459f209b1ab0bd26a7947c4fe9ee934d1e7fb808efad412fa5fc95c22f84b59e9535d4df88aab22713588c01ab1fd1e7e125bc0c21bacd555186c9ec4c82afe0ec139e50e1e94ed8b2df93cc0111a6ae7cef9452d122ce0cfa736d07a67f72b1266a71ff19ba585c99dbc2bee15d0aa45bf409efe4ed8bbc80e423232e44d31e52c005fb84ecb70289d08294360ee5223c3dfc4f3a891d84363e6b66e6513d0af4ecc1c6b6750d58ead08e54cbad74696d6356df391610e42ba9c22df489cac991dc66c2c7e6344e872e669a0f84fb32ad65bb72fbdb17c91c13f0a368ddccad45178a3e7ef7916a71f1c3e3d5cd22501a0f09f88fb1825dc1f406cfbe37d2bbe5158feef0dc69896e3e809376d2ea236207937179a3abd2e46c4fd1a51a868b89233bf7d2d62ed1c0bd1177cb76e8290b6cb1480170b1c4e9b2c24958629ec43a9526bd27072df587297346a7ac7170cc93dc5cc8de91559aaccf7869ef61c2cab31d8120c10fb1b39b2f8ce453c0e87de79101e01072dd06e734462616c1339a85f70607226be30fd3d6ac99670f4354eafcba8adb9203b0db2fbe1a3b9664c51469568e114ee2e4f8f2e789a75166f52946db5fa5c20c1689c2258b4d2cfa04137a0fb00eaed1da129a7967acc5b1211d747880973a3472edf63fff0d780f20691dbebf6ad69029698d5ff2155c3487ec007b9b3a4cf2aa3a25fd7d41aff3f196b2afa8e749e5ce4e1769c628c1b7a057c541cfd27ba794de241836a71cec9c6efe8c1d0aeb3c9213e96a7cfc1fcbdd65df58a8582cad764bd3e1e39c0a9abbbac6ac015bd5f68c1aabba9c354c9c651d49c470e159cfb2c6da43410b9fb70fec2ff60d860539ea16fcb866fd3d7f4283bc0d2e61f0b5ad485e5e1099f2561d52c619ac9237853692e9df65f7fda258579218c1d578bc6ad9c0222f4948fc57f33bdea3d9b445e243a831cfc0ea135359663a785c1e495552ff9867fb5877d067296095b7025ce7d948a38295f288ee0e025efc3bca2eb6fd35c8bd3bcb17712619f864389ac304f4822c4de430b44d1cb85847ddef0dcf94d073b03020502049b2b6f0a89336c3388ff1aaf2ab1d574876ebc6b9cb748f917c0cf390f25293061a8c27042002d5fb78339d32dac95257e1f96735d4085083b7514749a965e368a35e503ac29e9f3a2fa8ae05ec24a9c5b3565e83b897eb93e96af16ff132b1f50c3aa0da6bc70d325951162b2e01bfa35ea99ab958eaa63ae8a1d2ec88c7a27e7b8ee35d33b172bfc029d5f8c3fec3ce9ac7895d562138f8dc424103bc38387e14b91fefcaffe5de1f67cfa1b9148f334f03bd352f4ff2b1bb12203183b5c6", 0x1000, 0x7fff}], 0x1091806, &(0x7f0000002ac0)=ANY=[@ANYBLOB="72746465763d2e2f66696c65302c736d61636b66736861743d2f6465762f6b766d002c646f6e745f686173682c736d61636b6673666c6f6f723d2f6465762f6b766d002c7375626a5f747970653d2f6465762f6b766d002c6673757569643d0e313439383831632d313164332d346337352d363900662d614d3666616634652c7569643e", @ANYRESDEC=0xee01, @ANYBLOB=',uid>', @ANYRESDEC, @ANYBLOB=',fsname=&:,fowner>', @ANYRESDEC=0xee00, @ANYBLOB="2466a68389", @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r3, 0xc038943b, &(0x7f0000002bc0)={0x10001, 0x20, '\x00', 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0]}) (async)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})

[  690.734780][T25223] RIP: 0010:untrack_pfn+0x1b0/0x450
[  690.747366][T25223] Code: 8c 24 a0 00 00 00 4c 8d 84 24 80 00 00 00 e8 07 7c 86 00 49 89 df 89 c3 31 ff 89 c6 e8 29 b0 48 00 85 db 74 1d e8 00 ac 48 00 <0f> 0b e9 e5 01 00 00 e8 f4 ab 48 00 49 be 00 00 00 00 00 fc ff df
[  690.775252][T25223] RSP: 0018:ffffc900045a7600 EFLAGS: 00010246
[  690.781836][T25223] RAX: ffffffff813d6970 RBX: 00000000ffffffea RCX: 0000000000040000
[  690.790440][T25223] RDX: ffffc90004a3b000 RSI: 000000000003ffff RDI: 0000000000040000
[  690.799374][T25223] RBP: ffffc900045a7710 R08: ffffffff813d6967 R09: ffffc900045a7580
[  690.807813][T25223] R10: fffffbfff1c02e56 R11: 1ffffffff1c02e55 R12: 1ffff110043e976b
05:20:10 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

[  690.832276][T25223] R13: 1ffff920008b4ec8 R14: dffffc0000000000 R15: ffff888021f4bb58
[  690.840865][T25223] FS:  00007fa35aa04700(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[  690.872896][T25223] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
05:20:11 executing program 5:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x41a0ae8d, 0x0)

05:20:11 executing program 0:
r0 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0, 0x1012, r0, 0x0)
syz_clone(0x1f00000000000000, 0x0, 0x0, 0x0, 0x0, 0x0)

05:20:11 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000001280), 0x1aa1, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2, 0x1012, r2, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, 0x0}], 0x1, 0x50, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0x4138ae84, 0x0)

[  690.925193][T25223] CR2: 00007f52f78add90 CR3: 0000000051c1d000 CR4: 00000000003526e0
[  690.976472][  T921] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  690.989510][T25223] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  690.997718][T25223] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  691.005825][T25223] Call Trace:
[  691.009372][T25223]  <TASK>
[  691.012437][T25223]  ? __might_sleep+0xc0/0xc0
[  691.017242][T25223]  ? track_pfn_insert+0x3e0/0x3e0
[  691.022416][T25223]  ? unmap_page_range+0x5cf/0x600
[  691.027761][T25223]  unmap_single_vma+0x1e9/0x2d0
[  691.033717][T25223]  unmap_vmas+0x202/0x390
[  691.038232][T25223]  ? unmap_page_range+0x600/0x600
[  691.043401][T25223]  ? down_read_killable+0x80/0x80
[  691.048800][T25223]  ? tlb_gather_mmu_fullmm+0x154/0x200
[  691.054390][T25223]  exit_mmap+0x1c5/0x530
[  691.058820][T25223]  ? vm_brk+0x20/0x20
[  691.062967][T25223]  ? uprobe_clear_state+0x283/0x2a0
[  691.090225][T25223]  __mmput+0x111/0x3a0
[  691.094464][T25223]  dup_mm+0x2e8/0x310
[  691.142407][T25223]  copy_mm+0x102/0x190
[  691.182086][T25223]  copy_process+0x1856/0x3f70
[  691.187401][T25223]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  691.193598][T25223]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  691.199717][T25223]  ? mark_lock+0x98/0x350
[  691.204236][T25223]  kernel_clone+0x22f/0x7a0
[  691.214173][T25223]  ? create_io_thread+0x1e0/0x1e0
[  691.220407][  T921] usb 5-1: Using ep0 maxpacket: 8
[  691.240246][T25223]  ? read_lock_is_recursive+0x10/0x10
[  691.253402][T25223]  ? __context_tracking_exit+0x4d/0x80
[  691.259633][T25223]  __x64_sys_clone+0x289/0x310
[  691.264551][T25223]  ? __do_sys_vfork+0x130/0x130
[  691.269919][T25223]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  691.276071][T25223]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  691.282745][T25223]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  691.289320][T25223]  do_syscall_64+0x2b/0x70
[  691.293878][T25223]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  691.300572][T25223] RIP: 0033:0x7fa3598890e9
[  691.305120][T25223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  691.325760][T25223] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  691.339620][  T921] usb 5-1: config 0 has an invalid interface number: 177 but max is 0
[  691.356256][T25223] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  691.365467][  T921] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  691.376607][T25223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  691.377355][  T921] usb 5-1: config 0 has no interface number 0
[  691.384594][T25223] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  691.384613][T25223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  691.384626][T25223] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  691.384657][T25223]  </TASK>
[  691.391391][  T921] usb 5-1: config 0 interface 177 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 8
[  691.432280][T25223] Kernel panic - not syncing: panic_on_warn set ...
[  691.438876][T25223] CPU: 1 PID: 25223 Comm: syz-executor.1 Not tainted 5.18.0-syzkaller #0
[  691.447293][T25223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  691.457352][T25223] Call Trace:
[  691.460644][T25223]  <TASK>
[  691.463583][T25223]  dump_stack_lvl+0x1e3/0x2cb
[  691.468285][T25223]  ? bfq_pos_tree_add_move+0x436/0x436
[  691.473764][T25223]  ? panic+0x76e/0x76e
[  691.477850][T25223]  ? vscnprintf+0x59/0x80
[  691.482194][T25223]  ? untrack_pfn+0x140/0x450
[  691.486791][T25223]  panic+0x312/0x76e
[  691.490698][T25223]  ? __warn+0x131/0x220
[  691.494858][T25223]  ? fb_is_primary_device+0xcc/0xcc
[  691.500069][T25223]  ? untrack_pfn+0x1b0/0x450
[  691.504652][T25223]  __warn+0x1fa/0x220
[  691.508625][T25223]  ? untrack_pfn+0x1b0/0x450
[  691.513202][T25223]  report_bug+0x1b1/0x2e0
[  691.517530][T25223]  handle_bug+0x3d/0x70
[  691.521672][T25223]  exc_invalid_op+0x16/0x40
[  691.526167][T25223]  asm_exc_invalid_op+0x12/0x20
[  691.531009][T25223] RIP: 0010:untrack_pfn+0x1b0/0x450
[  691.536198][T25223] Code: 8c 24 a0 00 00 00 4c 8d 84 24 80 00 00 00 e8 07 7c 86 00 49 89 df 89 c3 31 ff 89 c6 e8 29 b0 48 00 85 db 74 1d e8 00 ac 48 00 <0f> 0b e9 e5 01 00 00 e8 f4 ab 48 00 49 be 00 00 00 00 00 fc ff df
[  691.555802][T25223] RSP: 0018:ffffc900045a7600 EFLAGS: 00010246
[  691.561861][T25223] RAX: ffffffff813d6970 RBX: 00000000ffffffea RCX: 0000000000040000
[  691.569821][T25223] RDX: ffffc90004a3b000 RSI: 000000000003ffff RDI: 0000000000040000
[  691.577779][T25223] RBP: ffffc900045a7710 R08: ffffffff813d6967 R09: ffffc900045a7580
[  691.585739][T25223] R10: fffffbfff1c02e56 R11: 1ffffffff1c02e55 R12: 1ffff110043e976b
[  691.593698][T25223] R13: 1ffff920008b4ec8 R14: dffffc0000000000 R15: ffff888021f4bb58
[  691.601663][T25223]  ? untrack_pfn+0x1a7/0x450
[  691.606246][T25223]  ? untrack_pfn+0x1b0/0x450
[  691.610828][T25223]  ? __might_sleep+0xc0/0xc0
[  691.615410][T25223]  ? track_pfn_insert+0x3e0/0x3e0
[  691.620432][T25223]  ? unmap_page_range+0x5cf/0x600
[  691.625451][T25223]  unmap_single_vma+0x1e9/0x2d0
[  691.630297][T25223]  unmap_vmas+0x202/0x390
[  691.634622][T25223]  ? unmap_page_range+0x600/0x600
[  691.639640][T25223]  ? down_read_killable+0x80/0x80
[  691.644669][T25223]  ? tlb_gather_mmu_fullmm+0x154/0x200
[  691.650135][T25223]  exit_mmap+0x1c5/0x530
[  691.654374][T25223]  ? vm_brk+0x20/0x20
[  691.658359][T25223]  ? uprobe_clear_state+0x283/0x2a0
[  691.663551][T25223]  __mmput+0x111/0x3a0
[  691.667614][T25223]  dup_mm+0x2e8/0x310
[  691.671590][T25223]  copy_mm+0x102/0x190
[  691.675655][T25223]  copy_process+0x1856/0x3f70
[  691.680323][T25223]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[  691.686317][T25223]  ? pidfd_show_fdinfo+0x2e0/0x2e0
[  691.691420][T25223]  ? mark_lock+0x98/0x350
[  691.695757][T25223]  kernel_clone+0x22f/0x7a0
[  691.700256][T25223]  ? create_io_thread+0x1e0/0x1e0
[  691.705279][T25223]  ? read_lock_is_recursive+0x10/0x10
[  691.710639][T25223]  ? __context_tracking_exit+0x4d/0x80
[  691.716092][T25223]  __x64_sys_clone+0x289/0x310
[  691.720860][T25223]  ? __do_sys_vfork+0x130/0x130
[  691.725700][T25223]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[  691.731678][T25223]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  691.737659][T25223]  ? syscall_enter_from_user_mode+0x2e/0x1a0
[  691.743650][T25223]  do_syscall_64+0x2b/0x70
[  691.748066][T25223]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  691.753952][T25223] RIP: 0033:0x7fa3598890e9
[  691.758368][T25223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  691.777976][T25223] RSP: 002b:00007fa35aa04118 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  691.786390][T25223] RAX: ffffffffffffffda RBX: 00007fa35999bf60 RCX: 00007fa3598890e9
[  691.794365][T25223] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  691.802335][T25223] RBP: 00007fa35aa041d0 R08: 0000000000000000 R09: 0000000000000000
[  691.810303][T25223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  691.818265][T25223] R13: 00007ffe383a892f R14: 00007fa35aa04300 R15: 0000000000022000
[  691.826240][T25223]  </TASK>
[  691.829648][T25223] Kernel Offset: disabled
[  691.834358][T25223] Rebooting in 86400 seconds..