0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) fcntl$getown(r1, 0x9) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$sock_SIOCGIFINDEX(r0, 0x40082406, &(0x7f0000000400)={'bcsf0\x00'}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:03 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:04 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:04 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:04 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b7118400"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:04 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="0400000000000000"]) tkill(r0, 0x15) 2033/05/18 03:37:04 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:04 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:05 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:05 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockname$inet(r3, &(0x7f0000000080)={0x0, 0x0, @local}, &(0x7f00000000c0)=0x10) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$sock_SIOCGIFINDEX(r0, 0x40082406, &(0x7f0000000400)={'bcsf0\x00'}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:05 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:05 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:05 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001e"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:05 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:05 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:05 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:06 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001e"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:06 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:06 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x101100, 0x0) sendmsg$nl_route(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000004}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)=@ipv6_newroute={0x80, 0x18, 0x404, 0x70bd2d, 0x25dfdbfd, {0xa, 0x0, 0xa0, 0x100000001, 0xff, 0x0, 0xff, 0x9, 0x400}, [@RTA_METRICS={0x64, 0x8, "a07378c00c3ccd30b8c0e3b1c4bbccd0f2f8d99e7b5fcd151dd55d170019f7aa1635a6780f234952674a889b20e8f492cf0a3092a25792f527e19f449ed89d3599286218b4702f3888e65d0c789f6a5175165a7d69ac6f7b46083bdb24"}]}, 0x80}, 0x1}, 0x20000000) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) userfaultfd(0x80800) read(r1, &(0x7f0000465f8e)=""/114, 0x72) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_user\x00', 0x0, 0x0) getsockopt$bt_l2cap_L2CAP_LM(r4, 0x6, 0x3, &(0x7f00000000c0), &(0x7f00000001c0)=0x4) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000140)='cpuacct.usage_user\x00') ioctl$sock_SIOCGIFINDEX(r0, 0x40082406, &(0x7f0000000400)={'bcsf0\x00'}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:06 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:06 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:07 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001e"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:07 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:07 executing program 0 (fault-call:7 fault-nth:0): r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:07 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:07 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB]) tkill(r0, 0x15) 2033/05/18 03:37:07 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x8000, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r3, 0xc4c85512, &(0x7f0000000440)={{0x7, 0x5, 0xca7c, 0x7ff, "edc5aa448ae86fa04242ad630ac698392bd803ba0a23bbf7c2e35435b01cbfaf7d2ea134e2b0e781ed252962", 0xd33}, 0xb8, [0x800, 0x6, 0x9, 0x20, 0x0, 0x40, 0xffff, 0x3, 0x3, 0x100000001, 0x7fffffff, 0x363, 0x3, 0x20, 0x6e32, 0xffff, 0x6, 0x6, 0xf447, 0xffffffff, 0xc16, 0x4, 0x80, 0xf85f, 0x6, 0x9, 0x8, 0x5, 0x1, 0xd3, 0x8, 0x0, 0x1604, 0x6, 0x7, 0x7f, 0x0, 0x3, 0x9, 0x7, 0x2, 0x800, 0xff, 0x4, 0x8, 0x7, 0x2, 0x9, 0x8, 0x4, 0x7, 0x79, 0x1d, 0xa0, 0x43, 0x9, 0x4, 0x2, 0x5, 0x100000000, 0x7, 0x166e, 0x99, 0x9, 0x1ff, 0x7fff, 0x0, 0xf47, 0x1000, 0x3b3, 0xfffffffffffffffe, 0xffff, 0x700000000000000, 0x3, 0x4, 0x5, 0x4, 0xf82, 0x9, 0x8, 0x7, 0xfff, 0x2, 0x2, 0xbde1, 0x7fff, 0x1000, 0x7ff, 0x2, 0x9, 0xff, 0x2, 0x7, 0xfffffffffffffffb, 0x9, 0xfff, 0x4, 0x7, 0x3, 0x8000, 0x4, 0x618, 0x401, 0x100000001, 0x4, 0x1, 0x800, 0x9, 0x3f, 0x1000, 0x3, 0x1df, 0xcd6, 0xfffffffffffff800, 0x100000000, 0x7, 0x5, 0xfffffffffffffffd, 0x2, 0x8001, 0x6, 0xc000000, 0x7f, 0x0, 0x20, 0x6, 0x10001, 0x3], {0x0, 0x989680}}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$sock_SIOCGIFINDEX(r0, 0x40082406, &(0x7f0000000400)={'bcsf0\x00'}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4, 0x50, r3, 0x0) 2033/05/18 03:37:07 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:07 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:08 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:08 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:08 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:08 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:08 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x206000, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000280)={{{@in6=@ipv4={[], [], @loopback}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@multicast1}}, &(0x7f0000000180)=0xe8) sendto$packet(r3, &(0x7f0000000080)="e853fa09dc2f8bb77444408eee2e17e720e914d18bbb95288f59e03d172c419af05b55a7342b4e7980fb350f8fed3e6dab8595ec53872a6535eefb11d15d30fa02dbc8b88ca348a27016bce1dc8ce74027f2fb6fbd7245669e8980cd6770722d32946b8607cdba75e54f285fdb3c4eb9bca27972e7ddb486df43f7b8ff4be16d84c7bcd56c70e36853b1c07798724864c88f4ba18de44c3fcc0e9793e9bd9092a1a36879421498c4805f364b84b4cf17f90facd32e5d14623ac01f333fa8a9cabc2b11388e63a9103b9b5c96a8efbf91c469e2719192a15aeb9c7aea5bb5ac388125bde5751658b6b36b7460ab", 0xed, 0x4000000, &(0x7f00000001c0)={0x11, 0x16, r4, 0x1, 0x80, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$sock_SIOCGIFINDEX(r0, 0x40082406, &(0x7f0000000400)={'bcsf0\x00'}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) ftruncate(r1, 0x3) 2033/05/18 03:37:08 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB]) tkill(r0, 0x15) 2033/05/18 03:37:08 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:08 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:08 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:09 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x800) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000040)={'vcan0\x00', {0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000000c0)="ce3dad61c760aade7bca577dd442df626373663000") ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:09 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x80, 0x42) setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000000c0)="baf9bd4767af87a5a88a8687941dc4b32efdcb4458fdc5c105b1c442ad02904e6a1784a7a67a1983ff00a405bb80ddd0ba8f7d57c62e9444254eb000c268e9f787ce01d3de045106746613a6d1720784d8a2027332ad8f96d7c56c7916c92e5d6da889c86a1097e4a08a2545986cb6d77df1dba27bd98cebe4936f34b876305176cfa0a4ed6453cf", 0x88) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000440)={0x6, r3, 0x1}) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000340)=ANY=[@ANYBLOB="3cff7f00000000000065867303392e7fc4260189091b036ba25cc5f2229a3cdb22a997a17a99db14a3369146856765c8f65bd91c0915178cd2bf3849b1515f90084fcbe4a6ef6cf2e5faa88de9912459bb6b3a60d5eb0365bc1359583e347f965618f76af09e52c7c47eeb2ac0bda0afa26eb4bf9498a245a97e0bffb632d0305e6a457fc2f620b0e386bd963200f7b75de7923738426e48c745b01c83a9dff531ff3b256167ba164ac3a6e02e31208c58d4562ae0187b498b7861b9e9da0e4cbddbe5b3d9769a365070a818904f0bff7c47affd13471caebccd0e7c"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$sock_bt_hidp_HIDPCONNADD(r3, 0x400448c8, &(0x7f00000001c0)={r4, r3, 0xffffffff, 0x6, &(0x7f0000000280)="d733258ede772a6f7f7d18cb634aa1caa662a1f0737d045500ee9c29c5a628ad4ef89fbdc10942a80961dd717059dc01c771ea289f603178856e68febf6603f79fa2dba0a78d83c24878ba809ebdd36eadf102f998e9e783fc636b667e626c241e8cfaf16d15265dc722799aa24f9325ab6f128529bee2e98a4db7520e35639dee1cc48dce3f274d811eaf", 0x635b, 0x5, 0x1ff, 0x6, 0x100000000, 0x97, 0xfffffffffffeffff, "d957e5c6291bc8e7"}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:09 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:09 executing program 1 (fault-call:16 fault-nth:0): r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:09 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:09 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755e", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:09 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB]) tkill(r0, 0x15) 2033/05/18 03:37:09 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000000000000509801711333f2a4303ecac87d71b6ccbffd17fcdd9cbf8acbda3ccb8e609d6c05ad59a844a630000000000000000000000"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000040)={&(0x7f000046b000/0x3000)=nil, 0x3000}) 2033/05/18 03:37:09 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:09 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 309.527602] FAULT_INJECTION: forcing a failure. [ 309.527602] name failslab, interval 1, probability 0, space 0, times 0 [ 309.538943] CPU: 1 PID: 21707 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 309.546118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.555460] Call Trace: [ 309.558046] dump_stack+0x194/0x24d [ 309.561674] ? arch_local_irq_restore+0x53/0x53 [ 309.566338] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 309.571526] should_fail+0x8c0/0xa40 [ 309.575234] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 309.580325] ? __might_sleep+0x95/0x190 [ 309.584289] ? __mutex_lock+0x16f/0x1a80 [ 309.588337] ? vhost_vsock_dev_ioctl+0x463/0x890 [ 309.593086] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 309.598269] ? find_held_lock+0x35/0x1d0 [ 309.602409] ? __lock_is_held+0xb6/0x140 [ 309.606467] ? check_same_owner+0x320/0x320 [ 309.610779] ? rcu_note_context_switch+0x710/0x710 [ 309.615698] ? lock_downgrade+0x980/0x980 [ 309.619841] should_failslab+0xec/0x120 [ 309.623810] kmem_cache_alloc_node_trace+0x5a/0x760 [ 309.628814] ? _parse_integer+0x140/0x140 [ 309.632950] ? check_same_owner+0x320/0x320 [ 309.637268] __kmalloc_node+0x33/0x70 [ 309.641061] kvmalloc_node+0x99/0xd0 [ 309.644767] vhost_dev_ioctl+0x66e/0xea0 [ 309.648819] ? __fget+0x342/0x5b0 [ 309.652262] ? lock_downgrade+0x980/0x980 [ 309.657012] ? find_held_lock+0x35/0x1d0 [ 309.661068] ? vhost_chr_write_iter+0x1600/0x1600 [ 309.665903] ? lock_release+0xa40/0xa40 [ 309.669872] ? __lock_is_held+0xb6/0x140 [ 309.673929] vhost_vsock_dev_ioctl+0x475/0x890 [ 309.678505] ? vhost_vsock_flush+0xb0/0xb0 [ 309.682736] ? iterate_fd+0x3f0/0x3f0 [ 309.686528] ? __mutex_unlock_slowpath+0xe9/0xac0 [ 309.691362] ? vfs_write+0x374/0x510 [ 309.695065] ? wait_for_completion+0x770/0x770 [ 309.699637] ? vhost_vsock_flush+0xb0/0xb0 [ 309.703866] do_vfs_ioctl+0x1b1/0x1520 [ 309.707747] ? ioctl_preallocate+0x2b0/0x2b0 [ 309.712146] ? fget_raw+0x20/0x20 [ 309.715592] ? __sb_end_write+0xa0/0xd0 [ 309.719557] ? fput+0xd2/0x140 [ 309.722740] ? SyS_write+0x184/0x220 [ 309.726445] ? security_file_ioctl+0x89/0xb0 [ 309.730845] SyS_ioctl+0x8f/0xc0 [ 309.734898] ? do_vfs_ioctl+0x1520/0x1520 [ 309.739041] do_syscall_64+0x281/0x940 [ 309.742919] ? vmalloc_sync_all+0x30/0x30 [ 309.747073] ? _raw_spin_unlock_irq+0x27/0x70 [ 309.751581] ? finish_task_switch+0x1c1/0x7e0 [ 309.756071] ? syscall_return_slowpath+0x550/0x550 [ 309.760991] ? syscall_return_slowpath+0x2ac/0x550 [ 309.765911] ? prepare_exit_to_usermode+0x350/0x350 [ 309.770927] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 309.776283] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 309.781122] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 309.786300] RIP: 0033:0x454e79 [ 309.789475] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 309.797174] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 309.804433] RDX: 0000000020000300 RSI: 000000004008af03 RDI: 0000000000000013 [ 309.811689] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 309.818947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 2033/05/18 03:37:10 executing program 1 (fault-call:16 fault-nth:1): r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) [ 309.826208] R13: 0000000000000346 R14: 00000000006f6f30 R15: 0000000000000000 [ 309.868178] FAULT_INJECTION: forcing a failure. [ 309.868178] name failslab, interval 1, probability 0, space 0, times 0 [ 309.879514] CPU: 0 PID: 21714 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 309.886693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 309.896033] Call Trace: [ 309.898618] dump_stack+0x194/0x24d [ 309.902242] ? arch_local_irq_restore+0x53/0x53 [ 309.906899] ? finish_task_switch+0x1c1/0x7e0 [ 309.911383] ? finish_task_switch+0x182/0x7e0 [ 309.915876] should_fail+0x8c0/0xa40 [ 309.919581] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 309.924683] ? __sched_text_start+0x8/0x8 [ 309.928818] ? find_held_lock+0x35/0x1d0 [ 309.932872] ? __lock_is_held+0xb6/0x140 [ 309.937017] ? check_same_owner+0x320/0x320 [ 309.941336] should_failslab+0xec/0x120 [ 309.945300] kmem_cache_alloc_node_trace+0x5a/0x760 [ 309.950306] ? __might_fault+0x110/0x1d0 [ 309.954366] ? lock_downgrade+0x980/0x980 [ 309.959986] __kmalloc_node+0x33/0x70 [ 309.963780] kvmalloc_node+0x99/0xd0 [ 309.967490] vhost_umem_alloc+0x72/0x1e0 [ 309.971540] ? vhost_dev_reset_owner_prepare+0x20/0x20 [ 309.976809] ? kasan_check_write+0x14/0x20 [ 309.981039] ? _copy_from_user+0x99/0x110 [ 309.985189] vhost_dev_ioctl+0x772/0xea0 [ 309.989244] ? __fget+0x342/0x5b0 [ 309.992692] ? lock_downgrade+0x980/0x980 [ 309.996833] ? vhost_chr_write_iter+0x1600/0x1600 [ 310.001667] ? lock_release+0xa40/0xa40 [ 310.005640] ? __lock_is_held+0xb6/0x140 [ 310.009700] vhost_vsock_dev_ioctl+0x475/0x890 [ 310.014284] ? vhost_vsock_flush+0xb0/0xb0 [ 310.018515] ? iterate_fd+0x3f0/0x3f0 [ 310.022308] ? __mutex_unlock_slowpath+0xe9/0xac0 [ 310.027144] ? vfs_write+0x374/0x510 [ 310.030848] ? wait_for_completion+0x770/0x770 [ 310.035423] ? vhost_vsock_flush+0xb0/0xb0 [ 310.039648] do_vfs_ioctl+0x1b1/0x1520 [ 310.043527] ? ioctl_preallocate+0x2b0/0x2b0 [ 310.047926] ? fget_raw+0x20/0x20 [ 310.051375] ? __sb_end_write+0xa0/0xd0 [ 310.055341] ? fput+0xd2/0x140 [ 310.058524] ? SyS_write+0x184/0x220 [ 310.062228] ? security_file_ioctl+0x89/0xb0 [ 310.066630] SyS_ioctl+0x8f/0xc0 [ 310.069984] ? do_vfs_ioctl+0x1520/0x1520 [ 310.074128] do_syscall_64+0x281/0x940 [ 310.078002] ? vmalloc_sync_all+0x30/0x30 [ 310.082142] ? _raw_spin_unlock_irq+0x27/0x70 [ 310.086623] ? finish_task_switch+0x1c1/0x7e0 [ 310.091108] ? syscall_return_slowpath+0x550/0x550 [ 310.096033] ? syscall_return_slowpath+0x2ac/0x550 [ 310.100951] ? prepare_exit_to_usermode+0x350/0x350 [ 310.105958] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 310.111315] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:37:10 executing program 1 (fault-call:16 fault-nth:2): r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) [ 310.116152] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 310.121327] RIP: 0033:0x454e79 [ 310.124506] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 310.132203] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 310.139460] RDX: 0000000020000300 RSI: 000000004008af03 RDI: 0000000000000013 [ 310.146719] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 310.153975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 310.161233] R13: 0000000000000346 R14: 00000000006f6f30 R15: 0000000000000001 [ 310.198624] FAULT_INJECTION: forcing a failure. [ 310.198624] name failslab, interval 1, probability 0, space 0, times 0 [ 310.209946] CPU: 0 PID: 21717 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 310.217129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 310.226471] Call Trace: [ 310.229054] dump_stack+0x194/0x24d [ 310.232681] ? arch_local_irq_restore+0x53/0x53 [ 310.237348] should_fail+0x8c0/0xa40 [ 310.241055] ? unwind_get_return_address+0x61/0xa0 [ 310.245981] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 310.251083] ? save_stack+0xa3/0xd0 [ 310.254708] ? save_stack+0x43/0xd0 [ 310.258325] ? kasan_kmalloc+0xad/0xe0 [ 310.262202] ? __kmalloc_node+0x47/0x70 [ 310.266167] ? kvmalloc_node+0x99/0xd0 [ 310.270061] ? vhost_umem_alloc+0x72/0x1e0 [ 310.274285] ? vhost_dev_ioctl+0x772/0xea0 [ 310.278511] ? vhost_vsock_dev_ioctl+0x475/0x890 [ 310.283258] ? do_vfs_ioctl+0x1b1/0x1520 [ 310.287308] ? SyS_ioctl+0x8f/0xc0 [ 310.290838] ? do_syscall_64+0x281/0x940 [ 310.294892] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 310.300254] ? trace_hardirqs_off+0x10/0x10 [ 310.304575] ? __lock_is_held+0xb6/0x140 [ 310.308648] ? __lock_is_held+0xb6/0x140 [ 310.312718] should_failslab+0xec/0x120 [ 310.316685] kmem_cache_alloc_trace+0x4b/0x740 [ 310.321265] ? kmem_cache_alloc_node_trace+0x36f/0x760 [ 310.326538] ? __might_fault+0x110/0x1d0 [ 310.330597] ? kasan_unpoison_shadow+0x35/0x50 [ 310.335184] vhost_new_umem_range+0xc3/0x740 [ 310.339683] ? vhost_init_device_iotlb+0x270/0x270 [ 310.344618] ? vhost_umem_alloc+0x166/0x1e0 [ 310.348939] ? vhost_dev_reset_owner_prepare+0x20/0x20 [ 310.354218] ? kasan_check_write+0x14/0x20 [ 310.358451] ? _copy_from_user+0x99/0x110 [ 310.362601] vhost_dev_ioctl+0x871/0xea0 [ 310.366663] ? __fget+0x342/0x5b0 [ 310.370128] ? vhost_chr_write_iter+0x1600/0x1600 [ 310.374971] ? lock_release+0xa40/0xa40 [ 310.378944] ? __lock_is_held+0xb6/0x140 [ 310.383006] vhost_vsock_dev_ioctl+0x475/0x890 [ 310.387576] ? vhost_vsock_flush+0xb0/0xb0 [ 310.391808] ? iterate_fd+0x3f0/0x3f0 [ 310.395590] ? __mutex_unlock_slowpath+0xe9/0xac0 [ 310.400410] ? vfs_write+0x374/0x510 [ 310.404103] ? wait_for_completion+0x770/0x770 [ 310.408664] ? vhost_vsock_flush+0xb0/0xb0 [ 310.412877] do_vfs_ioctl+0x1b1/0x1520 [ 310.416741] ? ioctl_preallocate+0x2b0/0x2b0 [ 310.421210] ? fget_raw+0x20/0x20 [ 310.424639] ? __sb_end_write+0xa0/0xd0 [ 310.428591] ? fput+0xd2/0x140 [ 310.431776] ? SyS_write+0x184/0x220 [ 310.435468] ? security_file_ioctl+0x89/0xb0 [ 310.439868] SyS_ioctl+0x8f/0xc0 [ 310.443211] ? do_vfs_ioctl+0x1520/0x1520 [ 310.447336] do_syscall_64+0x281/0x940 [ 310.451199] ? vmalloc_sync_all+0x30/0x30 [ 310.455323] ? _raw_spin_unlock_irq+0x27/0x70 [ 310.459793] ? finish_task_switch+0x1c1/0x7e0 [ 310.464265] ? syscall_return_slowpath+0x550/0x550 [ 310.469168] ? syscall_return_slowpath+0x2ac/0x550 [ 310.474070] ? prepare_exit_to_usermode+0x350/0x350 [ 310.479071] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 310.484426] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 310.489263] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 310.494426] RIP: 0033:0x454e79 [ 310.497590] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 310.505274] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 310.512523] RDX: 0000000020000300 RSI: 000000004008af03 RDI: 0000000000000013 [ 310.519769] RBP: 000000000072bea0 R08: 0000000000000000 R09: 0000000000000000 [ 310.527018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 310.534265] R13: 0000000000000346 R14: 00000000006f6f30 R15: 0000000000000002 2033/05/18 03:37:11 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:11 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:11 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:11 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(0x0, 0x15) 2033/05/18 03:37:11 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:11 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) r3 = memfd_create(&(0x7f0000000080)='bcsf0\x00', 0x3) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000280)={r3, &(0x7f00000000c0)="c4d433f1904bd0aabd50b65dee1641b597a3510be0b130294d772152eca3ab36432bd90d527e2ecbfd49ee2f16c5b7efc19b9f9327b43d90df5c3691ee0177fa5c", &(0x7f0000000140)=""/218}, 0x18) 2033/05/18 03:37:11 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755e", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:11 executing program 1 (fault-call:16 fault-nth:3): r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:11 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:11 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000001c0)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:11 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000580)=ANY=[@ANYBLOB="0100000000000000000000000000008c172f748d9c2a930f6b0030e3f3d5e212ebcf478eb169e52045d644f358d87d5c98351b8a089a3fd2efdfcfce1e4e3880b46d05872fb15d872e29e5a96fb3c08b49396750d5e06d1d57e96e47ba1341507a567a20e9b242d9f19887e49836362d56c1b759f65e51b523c53fe55e119f7bd0aadfe4f3fa7ee604cd9c55d4192aa662beea530d7a6e29acc6"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(r0, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:11 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) r4 = shmget$private(0x0, 0x1000, 0x1080, &(0x7f0000ffe000/0x1000)=nil) shmctl$SHM_LOCK(r4, 0xb) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="01801b240000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:11 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000580)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) r3 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0xffffffffffffff00, 0x10000) ioctl$sock_inet_SIOCRTMSG(r3, 0x890d, &(0x7f00000005c0)={0x8001, {0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}, {0x2, 0x4e20, @loopback=0x7f000001}, {0x2, 0x4e21, @multicast2=0xe0000002}, 0x210, 0x1f, 0x7fff, 0x8000, 0x1, &(0x7f00000001c0)='ip6tnl0\x00', 0x10001, 0x100000001, 0xfffffffffffffffc}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r3, 0x800443d2, &(0x7f00000002c0)={0x8, &(0x7f0000000640)=[{}, {}, {}, {}, {}, {}, {}, {}]}) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:11 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000040)=0x9, 0x4) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) getsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f00000001c0), &(0x7f00000002c0)=0x1) eventfd2(0x8, 0x80801) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:12 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.stat\x00', 0x0, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f00000001c0), &(0x7f00000002c0)=0xc) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:12 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') socketpair(0xb, 0x6, 0x2, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000200)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r3, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0xb8, r4, 0x330, 0x70bd25, 0x25dfdbfc, {0xb}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x44}]}, @IPVS_CMD_ATTR_DEST={0x30, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@rand_addr=0x6}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x9}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x826}]}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x33}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local={0xac, 0x14, 0x14, 0xaa}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}]}, 0xb8}, 0x1, 0x0, 0x0, 0x800}, 0x4000) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00007b5000/0x2000)=nil, 0x2000}, 0x1}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:12 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755e", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:12 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(0x0, 0x15) 2033/05/18 03:37:12 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000500)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0xe9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x7f, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) time(&(0x7f0000000000)) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:12 executing program 6: mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r0, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:12 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) syz_init_net_socket$llc(0x1a, 0x1, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x80, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f00000001c0)=""/33) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r2 = eventfd2(0x0, 0x0) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000600)=0x5) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000680)='fou\x00') sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100010}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x3c, r4, 0x100, 0x70bd28, 0x25dfdbfd, {0x1}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0x3f}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e20}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x1}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}, @FOU_ATTR_AF={0x8, 0x2, 0xa}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x20044001) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r2) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r2}) ioctl$KVM_INTERRUPT(r1, 0x4004ae86, &(0x7f00000002c0)=0x3f) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)) r5 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$TIOCLINUX5(r1, 0x541c, &(0x7f0000000500)={0x5, 0x9, 0x7, 0x7, 0xfffffffffffffe01}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000580)=ANY=[@ANYBLOB="010000000000000000000000000000193f378891b84388013b08d3e05c3fac6bd7450695b79d3b52aa541dc7dae8aacc318754f03d29bb26f022481ba2f56411c09f4a4b134d114f330283a62fc85ae75ab512368f6eb1215cf6bc76c89e1c2216ee"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x1000009, 0x4, 0x1}) r6 = socket$alg(0x26, 0x5, 0x0) bind$alg(r6, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cryptd(cbc-blowfish-asm)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f00003bcfd0)="d3ab2719", 0x4) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:12 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000040)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:12 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f0000000580)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x8, 0x101080) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r3, 0x84, 0x12, &(0x7f0000000040), &(0x7f00000001c0)=0x4) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000004"]) r4 = getpid() sched_getaffinity(r4, 0x8, &(0x7f00000002c0)) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:12 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0xfffffffffffffffe, &(0x7f0000000580)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) io_setup(0xfff, &(0x7f00000001c0)=0x0) io_cancel(r4, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x80000001, r2, &(0x7f0000000200)="6a8439edb6deb9d2182eea45925304d96976d5e075f945516a9a85e4ecfe26ff23cc6368dbc0e948a1bd5f5c1d9647b16f6520c9941103c9c30fec8f4ffc337abee0590c353a57f2927c7052260d9e558249674dc8dbaa", 0x57, 0x400, 0x0, 0x0, r1}, &(0x7f0000000500)) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) fchmodat(r1, &(0x7f0000000040)='./file0\x00', 0x141) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/pmtu_disc\x00', 0x2, 0x0) setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f00000001c0)={0xff, @rand_addr=0x200, 0x4e21, 0x2, 'sed\x00', 0x4, 0x6b7eed3b, 0x1d}, 0x2c) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:13 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:13 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:13 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(0x0, 0x15) 2033/05/18 03:37:13 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x3}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:13 executing program 6: mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r0, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:13 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) r4 = add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) keyctl$get_security(0x11, r4, &(0x7f0000000580)=""/195, 0xc3) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x8000) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) pipe2(&(0x7f0000000040), 0x4000) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x14000, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000002c0)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r2 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) ioctl$DRM_IOCTL_SET_VERSION(r2, 0xc0106407, &(0x7f0000000040)={0x1000, 0x2, 0x7, 0x8000000000000000}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000001c0)=ANY=[@ANYRES64=r0, @ANYRES16=r0, @ANYRES32=r0, @ANYRES16=r0, @ANYRES64=r0, @ANYRES16=r0, @ANYRES32=r0]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x1, 0x80000) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x0, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000380)={0x0, {0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, {0x2, 0x0, @multicast1=0xe0000001}, {0x2, 0x0, @rand_addr}, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000340)='ip6tnl0\x00'}) pipe2(&(0x7f0000000700)={0x0, 0x0}, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000000)="0f20e035000002000f22e066ba4000b009ee48b80b000000000000000f23c00f21f83503000a000f23f80f2025b805000000b95cfb2d030f01c166b81a010f00d06526deefc4c2f921d826650f3066ba6100ed", 0x53}], 0x1, 0x0, &(0x7f0000000540), 0x0) pkey_alloc(0x0, 0x3) r7 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) r8 = dup3(r5, r6, 0x7fffe) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000140)="3e9066b894000f00d86566673636df571c660f3840c6ea210000006e000f6fe0c7442400bde4bd82c74424023bfb58adc7442406000000000f011c24b9640800000f32190e66baf80cb8245e848fef66bafc0ced", 0x54}], 0x1, 0x0, &(0x7f00000002c0), 0x0) ioctl$KVM_SET_CPUID(r7, 0x4008ae8a, &(0x7f0000000200)=ANY=[@ANYRES32=r8]) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(r4, &(0x7f0000000a80)={&(0x7f0000000280)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f0000000500)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000580)=ANY=[@ANYBLOB="010000000000000000000000000000360500244052b089c8efbd43e010e1bf6848ba569684abd8003f8b896c89911e11fd5ce067a3241e2ead7184589e06b27d734266e9f0d1146e3e6597be4bf3d440e941f32208b8a97ddaa9f85054bb61f15ccd361eeecfffcc61073bd5d45c2cfdf01490947a969d096ab0705e12ef23beb4e2729617d626422cd2c9c073ebd4b5817671940745d74a64b2d5966c00bb643d557d7b44803d95604c8fd35181b57e2ee262cad14e59b3d1f24a5fe113b6358a7a591bef47e22078d03ef31d55e670c281416e7ebaf4d01be9cf8e5b30cc01310b3456f9e79de87967da736355866f"]) 2033/05/18 03:37:13 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) getsockopt$inet_udp_int(r1, 0x11, 0x0, &(0x7f0000000880), &(0x7f00000008c0)=0x4) r4 = shmget(0x2, 0x2000, 0x20, &(0x7f0000ffc000/0x2000)=nil) shmctl$SHM_LOCK(r4, 0xb) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) getpeername$unix(r3, &(0x7f0000000800), &(0x7f0000000500)=0x6e) ioctl$sock_inet_tcp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000040)) ioctl$DRM_IOCTL_VERSION(r3, 0xc0406400, &(0x7f00000001c0)={0x2, 0x5, 0x8, 0xff, &(0x7f0000000580)=""/255, 0x95, &(0x7f0000000680)=""/149, 0x97, &(0x7f0000000740)=""/151}) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) ioctl$KVM_IRQFD(r3, 0x4020ae76, &(0x7f00000002c0)={r3, 0x80000000, 0x5, r3}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:14 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x0) 2033/05/18 03:37:14 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:14 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000580)={r3, 0x6, 0x0, 0xffffffff, &(0x7f0000000500)=[0x0, 0x0], 0x2}, 0x20) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) r5 = add_key(&(0x7f0000000040)='blacklist\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000cc0)="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", 0x1000, 0xfffffffffffffffd) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, r5) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:14 executing program 6: mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r0, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:14 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:14 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:14 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) write$rdma_cm(r3, &(0x7f0000002580)=@create_id={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000002540)={0xffffffff}, 0x1, 0xb}}, 0x20) write$rdma_cm(r3, &(0x7f00000025c0)=@migrate_id={0x12, 0x10, 0xfa00, {&(0x7f0000000040), r4, r3}}, 0x18) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) readv(r0, &(0x7f0000000040)=[{&(0x7f0000000580)=""/93, 0x5d}, {&(0x7f0000000600)=""/228, 0xe4}], 0x2) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x3, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="0100a4c26b87000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) bind$nfc_llcp(r3, &(0x7f0000000580)={0x27, 0x0, 0x2, 0x0, 0x4, 0x9, "68c310f012dd0f0895a946abac82b10faaf64256300c7c9897e73d0d39356619ec84d65e113b29dad0651f7353e2e3549f4bf8c4e1c16b3c5e8b061c82f70e", 0x3}, 0x60) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) utime(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x1006, 0xfffffffffffffffe) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000580)={0x0, 0xca, "181c7b95f80b524dd90eb6715128efa2150ce181897fe20cb80d6de90e4a3bddc0bdae4e7edcf7295657f6c10e0939c46bc0b8e4c6e259fa02df95ce5665fea85948ee08963b206bbaf13319620d723d2aebdda253f910ec0c483e058f7d90c5fef77c5b4716ee3b2fa2e2cb8d51ff8170903212d028403fab6a342d00fca091d76ddedab0f665830ed2006205e53fb73c49d77690c9ebe8902a1f9acd5a4a45ce68ae8d0b497a206f8245685623f1f0f87f2f0ba8d9aa3317f8a3e201b0b7a7ed865ad7b074af6c188c"}, &(0x7f0000000040)=0xd2) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000680)={r3, 0xea, "b8445bda35d447aeaf22122fb0030af2e554a85953c0fd45bc0c4a27ec2eac1f238c1d5a107f2454f63a5342d425b6b445c85d029bab07e55d93e7a1d28e894763b9526f24d6d9a8d18839880149cad0032c87d0f8ec302e6e92be826fdb7120a8c46a29c4b9bd764c27d80a4df2392918c7d5e468f8a3bb8b6d6fbc1b5d1b028ec42d745ba5d8ed6219bcbffe1da36f066c2074c9fc50fcae8e8d35c37103a3cc9e08e01857506b294c25f31df5aa40bc2c1f84aebe6c6f541dac7b790df3866e5631aa501f114273075695ece109f8af2cea63bffbe621870c41199da6b731b598577f04cfc8798f20"}, &(0x7f00000001c0)=0xf2) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_RESET_OWNER(r0, 0xaf02, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x105000, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000001c0)={0x1, 0x0, [{0x100000, 0x15, &(0x7f0000000040)=""/21}]}) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={0x0, r3, 0x1, 0x1}, 0x14) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:14 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000002c0), 0x218c) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:15 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:15 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:15 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:15 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000000c0)=ANY=[@ANYBLOB="0200000000000000fa48bfd4b5bfa76228899d83baf5f9ea0b073f730b86a05374ce48920f43682354c86d3500fb6cc5109446947327e15b106b324b27c58506b5f4be74e197cb92cbc3e7ad3ffc51d949d00900000000000000f4b8aecd7f8ad81c2109c2a04a75335603a4"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:15 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x0) 2033/05/18 03:37:15 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000880)=ANY=[@ANYPTR=&(0x7f0000000840)=ANY=[@ANYRES16=r0, @ANYRES16, @ANYPTR, @ANYRES16=r0], @ANYPTR, @ANYRES16=r0, @ANYRES16=r0, @ANYPTR64=&(0x7f0000000500)=ANY=[@ANYRES32=r0, @ANYPTR=&(0x7f00000002c0)=ANY=[@ANYPTR64, @ANYPTR, @ANYRES16=r0, @ANYPTR64, @ANYPTR64, @ANYPTR], @ANYRES16=r0, @ANYRES16=r0, @ANYRES32=r0, @ANYPTR=&(0x7f0000000580)=ANY=[@ANYRES64=r0, @ANYBLOB="dfaa5ec68f66d62d6352a27ce9df04b4798098e03c93854fc94e208b104763598417b0799859b64c62dec247c90543176bec56d640614fe03173188958a33635c17a974ffc6017de67cb4f7b14", @ANYRES32=r0], @ANYPTR=&(0x7f0000000600)=ANY=[@ANYRES32=r0, @ANYPTR, @ANYRES32=r0, @ANYBLOB="1e8f4008bf4679257a3c6d46151694a7be1375de113b9d43ee153c9acb17b51ffdb01202d4b656a0e9373253fbca67ac8642331b65a9fea510fc05fd122b1622001a1c1aa607138d86d430f7537bb71aba531092aaf05f44440580bf6cbd2fed58af2cc87fbf68e89b92c421c34ba53130b5a904fd77f2b491209c0f14bf5e1f1f89977408524b9025537db8b9ac517d7fc80121c99a6f6c7838f414404172f8e6787a188778f4629c3db67613cd28114ad4227f4cdd23543b5cf06e22081d7c4f6401d9e04e10bc380b3ce92c49f21db28b0c1e714618651f9ec0656d7449838b", @ANYPTR, @ANYRES32], @ANYRES64=r0], @ANYRES64=r0, @ANYRES64=r0, @ANYRES16=r0, @ANYRES32=r0, @ANYPTR=&(0x7f0000000780)=ANY=[@ANYRES16=r0, @ANYRES16, @ANYPTR=&(0x7f0000000700)=ANY=[@ANYBLOB="89ca98b0f7e63d8dd23312c9df601901b9817b0f284e500ec5c09222d270c532c2a98508b2e251fccc4d767cb4e1ca4d46777a1be2de733486aa12ca1d979f109ed01426d469dd52b8cef529ffb19d66fe4028cc8741a6bc828e45c1ee", @ANYPTR], @ANYRES64=r0]]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x6, 0xfffffffffffffffd) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x10000, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000580)={0x0, @in={{0x2, 0x4e21, @broadcast=0xffffffff}}, 0xffff, 0x0, 0xd77, 0x3, 0x2}, &(0x7f00000002c0)=0x98) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000800)={r3, 0x317, "2f92ce09a74c757330763638fff5393126d8ea23c03e499611e9e38b62391665649844c3d92d926779b217696334c0a56435c10f60551887be47e4c67915f9a9b411c6f52f5818e56cc35c08400bcb4bfcd24eed70dbceba34d65d3632bef8178b787c95139d583a6341a1ba9f00f60447e5f8935901e2d06172"}, &(0x7f0000000500)=0xfffffffffffffd40) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x8000000001, 0x4, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000040)=r1) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) pipe(&(0x7f0000000300)) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000780)=ANY=[@ANYBLOB="74c76fa901279dbdf92d9dea113954d4aabe6e79ad21b835d0b9e69ae92e0f8c6ec0126eb216e41af44d276ef613fb1e45982cc2fe004d0055724731ba6b7fd03ee34cc3d8f66cd05e56a3ba7182551136f4a1ce6bef"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000026ff8)={0xffffffffffffffff, 0xffffffffffffffff}) write(r4, &(0x7f0000f39fff)='2', 0x1) setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000fdfffc)=0x18, 0x4) write(r4, &(0x7f0000019f97)='c', 0x1) recvmsg(r3, &(0x7f0000019fc8)={0x0, 0x0, &(0x7f000001e000), 0x0, &(0x7f0000019000)}, 0x1ffe) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r5 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000ac0), 0x0) getpeername$unix(r5, &(0x7f0000000580)=@abs, &(0x7f0000000040)=0x6e) ioctl$VHOST_GET_FEATURES(r0, 0x8008af00, &(0x7f00000002c0)) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000700)='/dev/sequencer\x00', 0x20280, 0x0) unlinkat(r1, &(0x7f0000000740)='./file0\x00', 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r2 = eventfd2(0x0, 0x0) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r2) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) r4 = syz_open_dev$admmidi(&(0x7f0000000580)='/dev/admmidi#\x00', 0x8000, 0x208000) ioctl$KVM_GET_DIRTY_LOG(r4, 0x4010ae42, &(0x7f00000005c0)={0x1, 0x0, &(0x7f0000ffa000/0x4000)=nil}) r5 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0xfff, 0x40000) ioctl$KVM_IOEVENTFD(r5, 0x4040ae79, &(0x7f0000000500)={0x4000, &(0x7f00000002c0), 0x1, r2, 0x8}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r2}) ioctl$sock_SIOCGPGRP(r4, 0x8904, &(0x7f0000000600)=0x0) prctl$setptracer(0x59616d61, r6) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0x4001) r7 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$keyring(&(0x7f00000008c0)='keyring\x00', &(0x7f0000000900)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffff9) r8 = request_key(&(0x7f0000000940)='ceph\x00', &(0x7f0000000980)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00000009c0)='nfs\x00', 0xffffffffffffffff) add_key$user(&(0x7f0000000880)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000780)="c1f2ed672805f8246f4b36fd8076ceefbdcba29355cd76c97c29268665c4ca8d1b8dabeb4011cca34b7880db623f84b9fc84b3f6548f2c00b844841d447a8ad1d30276aeb0254addc961d276ca24d0125fc6a8eb0997ee6fdb4e018e32bcf6029d688b8524cde66ab6bca3c355c24bd446725b7c2381c6479efc84fe82e982b7cd75637baef16ce3338fb84234134e0d193b20100d1a2a816adea8636109a63a63ba66adc5b00b3838e3c275bfe867bd54253f781a0283d37336f2eb1721c186f4c6ca1ff306fea87d422d1d0f2e04", 0xcf, r8) ioctl$SNDRV_CTL_IOCTL_POWER_STATE(r4, 0x800455d1, &(0x7f0000000640)=""/170) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="0100291f35"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r7, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = syz_open_dev$vcsn(&(0x7f00000002c0)='/dev/vcs#\x00', 0x4, 0x8800) ioctl$DRM_IOCTL_VERSION(r1, 0xc0406400, &(0x7f0000000640)={0xfffffffeffffffff, 0x2, 0x7fffffff, 0x0, &(0x7f0000000500), 0x1000, &(0x7f0000000cc0)=""/4096, 0xa7, &(0x7f0000000580)=""/167}) r2 = eventfd2(0xfffffffffffffffb, 0x0) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffff, 0x80}, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r2) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r2}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000740)=ANY=[]) getsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000000), &(0x7f0000000500)=0x4) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$sock_SIOCGIFCONF(r5, 0x8910, &(0x7f00000001c0)=@req={0x28, &(0x7f0000000040)={'gretap0\x00', @ifru_addrs=@l2={0x1f, 0x5, {0x6, 0x95a1, 0x1, 0x2, 0x400, 0x40}, 0x18000, 0x80000001}}}) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/autofs\x00', 0x26000, 0x0) setsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f00000002c0)=0x9, 0x4) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(r0, 0x406, r1) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:15 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x1) setsockopt$netlink_NETLINK_CAP_ACK(r3, 0x10e, 0xa, &(0x7f00000001c0)=0x3, 0x4) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:16 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:16 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x4, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}, 0x0, 0x0, 0x2}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') r3 = socket$bt_cmtp(0x1f, 0x3, 0x5) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f00000000c0)={0x4, &(0x7f0000000080)=[{0x0, 0x7, 0x7, 0x80000000}, {0x577f, 0x5, 0x7, 0x3}, {0x10001, 0x7, 0xffff, 0x3cbb}, {0x1, 0x5, 0x8, 0x100000001}]}, 0x10) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000100)={0x0, 0x8000000000000000, 0x1, [0xb44]}, &(0x7f0000000140)=0xa) setsockopt$inet_sctp_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f00000010c0)=ANY=[@ANYRES32=r4, @ANYBLOB="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"], 0x1008) 2033/05/18 03:37:16 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:16 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:16 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x0) 2033/05/18 03:37:16 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x200000, 0x0) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 0: bpf$OBJ_GET_PROG(0x7, &(0x7f0000000100)={&(0x7f0000000080)='./file0\x00', 0x0, 0x10}, 0x10) r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x400008001, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x2080000000) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x3}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)=ANY=[@ANYBLOB="0066bff0db000000"]) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) ioctl$sock_ipx_SIOCIPXCFGDATA(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)) 2033/05/18 03:37:16 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) socketpair$ipx(0x4, 0x2, 0x0, &(0x7f00000000c0)) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0xc6c, 0x2000) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00:\x00']) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000001c0)=ANY=[@ANYBLOB="ad8a04c0e1f3327a52fcd04e4c70d18d4007b35c01798e9e086f0000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x2) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f0000000580)=[{0x30, 0x19b, 0x3, "847daf968f98c1fd8deae2827dfb47ff1d71f4665eb1b6838fb83d382c"}, {0x100, 0x117, 0x8000000000000000, "edf2f906b4fecee0b5f7d0db0434f56ab1938e65af5758c99682a99529e9d0da3f30d666fba065efaad5dbc048ae2ee69cd958f302ab34d03ea1c43cbc64454d4dd64a99b2e5fec647738cf39b536a3e60fab0fc95453dc80f1230c8f66c856e098f48f4dca8782b6cbca8c2531cab5757ade91fe6238fb53847602df3ec5f55b9388f4c8226d73532df2f29926bd8ff25b7a5ffea901c814e1d5fd4872d8069066766d94855168d6f6f705df8a0d343f6e8c227c044add40293d1f6a93e588ed41d2c48fe3cd776b16f2c523baf952080d3336190593cce8a8ef6faf79863a49943bc45a29b1b62e7130f3d7b46ab92"}, {0x20, 0x0, 0x2, "1807581a75da0585c3f23b"}, {0x20, 0x11b, 0x7, "c51fa527b9015bde7fc733"}, {0x50, 0x29, 0xfff, "b2e3d0d820574f66dd8a0585f3ad57453c573006419882e4d5a6e60591999bfb81a5eaa7cfd58ec57298a1f340e5ccb3d8dc05af5ce743ffb9c2fcb6b44d"}], 0x1c0}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) r4 = add_key(&(0x7f00000002c0)='trusted\x00', &(0x7f0000000500)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, r4) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) fstat(r0, &(0x7f0000000600)) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f00000005c0)=&(0x7f0000000500)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x1, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000580)=@assoc_id=0x0, &(0x7f0000000680)=0x4) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f00000006c0)={r3, 0x7, 0x2, [0x2, 0x9]}, &(0x7f0000000700)=0xc) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x4240, 0x0) accept4$bt_l2cap(r4, &(0x7f00000001c0), &(0x7f00000002c0)=0xe, 0x80800) r5 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) ioctl$sock_inet_udp_SIOCOUTQ(r3, 0x5411, &(0x7f0000000040)) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) r3 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0xffffffffffffff34, 0x400) getsockopt$ARPT_SO_GET_INFO(r3, 0x0, 0x60, &(0x7f0000000580)={'filter\x00'}, &(0x7f0000000bc0)=0xfffffffffffffd07) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) ioctl$VHOST_GET_VRING_BASE(r2, 0xc008af12, &(0x7f0000000040)) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(r1, 0x406, r1) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:16 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) getresuid(&(0x7f00000002c0)=0x0, &(0x7f0000000500), &(0x7f0000000580)) quotactl(0x5, &(0x7f00000001c0)='./file0\x00', r3, &(0x7f00000005c0)="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") r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) ioctl$TIOCMGET(r4, 0x5415, &(0x7f0000000040)) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x80000) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) sched_setattr(r2, &(0x7f0000000080)={0x30, 0x1, 0x0, 0x6, 0x6, 0x8, 0x0, 0x101}, 0x0) 2033/05/18 03:37:17 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:17 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:17 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:17 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:17 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:17 executing program 2 (fault-call:8 fault-nth:0): r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) open(&(0x7f0000000040)='./file0\x00', 0x80, 0x8) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_GET_VRING_BASE(r0, 0xc008af12, &(0x7f00000001c0)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$void(0x27) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) ioctl$TCSETSW(r2, 0x5403, &(0x7f0000000040)={0x1, 0x6, 0x9, 0x6, 0x5, 0x8, 0x0, 0x3, 0x7, 0x401, 0x7, 0x1}) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) r3 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x1, 0x111000) getpeername$netlink(r3, &(0x7f00000001c0), &(0x7f00000002c0)=0xc) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000500)="8aa4301b8dc8067237cdd1ffd2686995eb470000000000000000000000000100", 0x20, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000002c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x51) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000001c0)=[{0x3, 0x9}, {0x2, 0x44b}, {0xf, 0x6}, {0x4, 0x960}, {0x7, 0x3}, {0x2, 0x36c}, {0xb, 0x8e}], 0x7) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(r2, 0x406, r1) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f00000002c0)=0x1) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r2 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000040)=r1) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) openat$ashmem(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ashmem\x00', 0x2000, 0x0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000007c0)=[{0x40, 0x109, 0x1000, "21a0bf098866510194bc331a34aef3feb5013dcf1608a2702fd0774712200f272733581bd6cfe0d693"}, {0xe8, 0x29, 0x5, "dd81fb72077285724ee95ba4914f9b1ebb7d81fa39eef005555852b49bc1268dbf605071ffc9d06f502e6bc4ebfe940b9cd32e40885dfab3fc78dcd2a2cef643224e0ddfc87c78c58a6c87aaab68fada3999692c68744b68f8172a588dc4af6891ac86c9d510a5733bc6a308843bc43c6b2c2b2dfcaafdbaea800aae303b6c9a381382de9b72056ecf419fdacfd59f4ae26ef3a0b6700e7536b2d08e87cb7c9cd6ac569295b9448c5bc4c1b94ee18b07be892f82ce23e699ca35eae49300a05a1133b24e219ab1b45f41fd94042383f13355eee9594f32d6"}, {0x12c, 0x107, 0x6, "6ba53be9deed885f8882e8bd78b4ba75a7639fe915995f002a1aa838496c5ccfb4fb823ddc06ae0d9a80cdf1b8bad16aaf194747a51de89a2c0e80eadbdb8cfb718ffc99fd639e10adcde0956e8a8b8a404f223cb9c7e48a03c96af5df4f461be369f0d1e1401500689e1916e67e0ec5367667e263ff6706597693d36e42ed8d213e7732d9742874c81d7136be10485a67c0da216de0f56830a008876076d5850695bc"}, {0xfffffffffffffd19, 0xff, 0x0, "0e2d108dbc907c6f79ae42"}, {0x18, 0x18c, 0x401, "0cace01c3a"}], 0x218}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r3, 0x29, 0xd3, &(0x7f0000000580)={{0xa, 0x4e22, 0x7, @empty, 0x9}, {0xa, 0x4e20, 0x5, @loopback={0x0, 0x1}, 0xc7}, 0x1b61ce16, [0x3f, 0xffffffffffffff90, 0x6, 0x400, 0x5, 0x5, 0xbd52, 0x5]}, 0x5c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000580)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x8a) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:17 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) mkdirat(r3, &(0x7f00000002c0)='./file0\x00', 0x80) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) r5 = getpgid(0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r4, 0xc1105511, &(0x7f0000000580)={{0x10001, 0x5, 0x8, 0x5, "76c52babd9b5787dc9967028658113734e62d8378ad0f9e92a637c284e84d4b77d14673be46a53e7dcdad9b4", 0x101}, 0x0, 0x0, 0x622, r5, 0x9, 0x9, "b94b8eb0d5e59ce3cd2444854ff68c1ff2cd847acddd63dce4257ecc1b7829ee50f63565dbe9d6d4577f734380ed5d67446e0be8dfbc28e51fb7a5df475440d0", &(0x7f00000001c0)='user\x00', 0x5, [], [0x8, 0x5, 0x800, 0x8]}) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000040)=0x1) 2033/05/18 03:37:18 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r3) socket$inet_smc(0x2b, 0x1, 0x0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) getsockopt$inet6_tcp_buf(r4, 0x6, 0xe, &(0x7f0000000040)=""/38, &(0x7f00000001c0)=0x26) 2033/05/18 03:37:18 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:18 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:18 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x0, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x0, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = socket$netlink(0x10, 0x3, 0x7) setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000080)={0x77359400}, 0x10) r3 = getpgid(0x0) ioctl$LOOP_SET_CAPACITY(r2, 0x4c07) sched_setattr(r3, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)=ANY=[@ANYBLOB="bde436455fe5f557"]) r4 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x7, 0x40000) setsockopt$bt_BT_SECURITY(r4, 0x112, 0x4, &(0x7f0000000100)={0x631, 0x54}, 0x2) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x0, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000040)={0x8, 0x0, 0x2, 0x8, 0xffffffffffffff81, 0x50, 0x1, 0x1, 0x2, 0x20, 0x606c, 0x100}) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000000680)=""/228, &(0x7f0000000580)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f00000002c0)='/dev/admmidi#\x00', 0xb3, 0xa0001) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) connect$vsock_stream(r3, &(0x7f00000001c0)={0x28, 0x0, 0x2711, @host=0x2}, 0x10) fcntl$dupfd(r3, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) ioctl$DRM_IOCTL_RES_CTX(r3, 0xc0106426, &(0x7f0000000100)={0x0, &(0x7f0000000080)}) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x0, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = syz_open_dev$dmmidi(&(0x7f0000000500)='/dev/dmmidi#\x00', 0x10001, 0x24200) r2 = eventfd2(0x0, 0x80001) r3 = dup3(r0, r0, 0x80000) ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000580)={r2, 0xffffffff, 0x3, r3}) r4 = eventfd2(0x0, 0x0) r5 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r5, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000040)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r4) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) pipe(&(0x7f00000002c0)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r4}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r6 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r6, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:18 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='stack\x00') ioctl$EVIOCSABS0(r3, 0x401845c0, &(0x7f00000001c0)={0x0, 0x3ff, 0x8001, 0x7fffffff, 0x10000, 0x5}) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:18 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x800000000000000, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000000680)=""/228, &(0x7f0000000880)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:19 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:19 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:19 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x0, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:19 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r3, 0x84, 0x16, &(0x7f0000000080), &(0x7f00000000c0)=0x4) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) setpriority(0x0, r0, 0x4) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) r4 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x7ff, 0x10000) setsockopt$inet_sctp_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f00000001c0)={0x0, 0x7fff, 0x1, 0x45a, 0x5, 0x1d7a, 0x8000, 0x3ff, 0xfffffffffffffffe, 0x0, 0xc8ea00000000}, 0xb) ioctl$DRM_IOCTL_SET_MASTER(r4, 0x641e) ioctl$KVM_DEASSIGN_PCI_DEVICE(r2, 0x4040ae72, &(0x7f0000000100)={0x6, 0xba6, 0xd25, 0x4, 0x7}) 2033/05/18 03:37:19 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:19 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:19 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) alarm(0x1) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) ioctl$TIOCLINUX6(r3, 0x541c, &(0x7f0000000040)={0x6, 0x3}) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000580)={0x80000001, {{0xa, 0x4e20, 0xfffffffffffffe01, @mcast1={0xff, 0x1, [], 0x1}, 0x1}}, 0x22bef55716d13560, 0x8, [{{0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, [], 0xb}, 0x401}}, {{0xa, 0x4e21, 0x4}}, {{0xa, 0x4e24, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0xff}}, {{0xa, 0x4e22, 0xff, @loopback={0x0, 0x1}, 0x2}}, {{0xa, 0x4e20, 0x4, @ipv4={[], [0xff, 0xff]}, 0x5}}, {{0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, [], 0x15}, 0x7}}, {{0xa, 0x4e20, 0x800, @remote={0xfe, 0x80, [], 0xbb}, 0x800}}, {{0xa, 0x4e23, 0x1, @empty, 0x400}}]}, 0x490) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x1, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = accept$inet(0xffffffffffffff9c, &(0x7f00000001c0)={0x0, 0x0, @multicast1}, &(0x7f00000002c0)=0x10) ioctl$sock_inet_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000500)) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) sendfile(r1, r1, 0x0, 0xfe2) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/rtc\x00', 0x440000, 0x0) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffff9c, 0x84, 0x6, &(0x7f0000000680)={0x0, @in6={{0xa, 0x4e23, 0x80000000, @remote={0xfe, 0x80, [], 0xbb}}}}, &(0x7f0000000740)=0x84) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r3, 0x84, 0x1a, &(0x7f0000000780)={r4, 0x14, "fd8f5570af5f9127d4361b4aee795dfe2fe16827"}, &(0x7f00000007c0)=0x1c) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r5 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000ac0), 0x0) r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r5, &(0x7f0000000580)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000500)={&(0x7f00000005c0)={0x94, r6, 0xa, 0x70bd2c, 0x25dfdbfc, {0xe}, [@IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x2}}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'lc\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@loopback={0x0, 0x1}}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xbf}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xb3c}]}, 0x94}, 0x1, 0x0, 0x0, 0x24008000}, 0x4) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x93, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000580)="05e986cc8bd66d491d6aa296b8dbdaed27c09d0def9674270783d656206b41252e0b7c4b8468aaaa164cef4ade50ba0fb20a85b63980d73799ad93efdb5074fd45ef679ae5cde0160656995a02e4e99443c2beb11af603f4b59d341116963af58f68d149630000000000000000") ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) openat$vnet(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-net\x00', 0x2, 0x0) 2033/05/18 03:37:19 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) r1 = getpid() ptrace$cont(0x18, r1, 0xc3e6, 0xaed6) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r2 = eventfd2(0x0, 0x0) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r2) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r2}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) r4 = request_key(&(0x7f0000000500)='logon\x00', &(0x7f00000007c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000800)='nfs\x00', 0xfffffffffffffff9) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f00000002c0)={0x73, 0x79, 0x7a, 0x1}, &(0x7f0000000700)="76dbfadc7e87ac46119efaaf187333294b146cfc533246ba9b4bd4bd9900a3d7855ed3c2c395505435e5aa09ea6b4af597eeb0efe2521c270184e342554c9fe5186196112ed07ddd8e8e035e96dc7ea14927e55a942765f43f8e668a8473db0857b7d237fb102b14d94e64f38fd54186f935fb423c1aff82a5aa2c192b3b126fdf76d32f87409a1144499ed31b2983d75f98a962e1347f40fcbda90db4722108ac9f0a30868cb86554986a9094bcac68046f44576224b43a7f55c77cb66b", 0xffffffffffffff97, r4) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000000040)={0x8}, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:20 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$bt_rfcomm(0x1f, 0x3, 0x3) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000000c0)=ANY=[@ANYBLOB="606593021793cb19a24a598800cce899ca088ae1cee6dcdae05a3f63d3656d408761caf88b77e166e2084a3afeb93a3185a5d57e08a892aa211bc2fc2450dfbcfb2b0a6b65c515c265e5fbce9856"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:20 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x0, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:20 executing program 7 (fault-call:10 fault-nth:0): r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:20 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) syncfs(r3) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:20 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:20 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:20 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x101000, 0x0) ioctl$TIOCMBIS(r3, 0x5416, &(0x7f00000000c0)=0x1000) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) ioctl$TIOCNOTTY(r3, 0x5422) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$TUNSETVNETHDRSZ(r3, 0x400454d8, &(0x7f0000000100)=0x401) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) ioctl$SNDRV_CTL_IOCTL_PVERSION(r3, 0x80045500, &(0x7f0000000580)=""/80) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) setsockopt$bt_BT_RCVMTU(r4, 0x112, 0xd, &(0x7f0000000040)=0x1000, 0x2) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="0100"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) close(r2) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f0000000040)={0x0, 0x80000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f00000001c0)={0x0}) ioctl$DRM_IOCTL_NEW_CTX(r3, 0x40086425, &(0x7f00000002c0)={r4, 0x2}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000000780)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r5 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f0000000580)={0x9, [0x6, 0x6c9c, 0x8001, 0x1, 0x0, 0x47, 0x0, 0x7ad, 0xb110]}) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)=ANY=[@ANYBLOB="0100000000000000c315cfafe417015d07d3155fa4c770b204093ce00abff8ff666571e118310493d58fe48b3107543d411c7fb9019fc1642bc8262449824ff1832569bec0368f4853ee05b71c50ba37766cdde3e67ce482f22541e16f5dba4452880de4e775e71d71f69a245f99d932aff1060304b9eb2653cd218fc65baaba6f2ed73e1519438e419043ec7bcee4df99b0b4eb316920dc444e871b82fe6d0000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x302) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000001c0)=ANY=[@ANYBLOB="0100e52ef08041774fffab76fca08a19bf1b78d2c9cb04000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000600)=ANY=[@ANYBLOB="e31961f5f6492883cbb650dc2da483e241074b415933a1e3f1a91943984a7cbcd1455cff272d9b60b80cc21810f8225fe2ad006f4ec548052edbdf9009c94f8326e3ed7bece7e73877c5fbd220a07947ac0a334894705f874ffd0419201ac039b198ea8713dc2c001a9d6a6a97b1aba9ff0eeda8453604a735c5b085"]) r1 = eventfd2(0x0, 0x0) perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)=0x5) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) accept$nfc_llcp(r3, &(0x7f0000000580), &(0x7f0000000040)=0x60) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) ioctl$EVIOCGRAB(r3, 0x40044590, &(0x7f00000001c0)=0x800) fcntl$dupfd(0xffffffffffffffff, 0x1000000000000000, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:20 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000002c0)={0x2, 0x0, &(0x7f0000000580)=""/240, &(0x7f0000000680)=""/216, &(0x7f0000000780)=""/140, 0x5000}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) r3 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x100000000, 0x101000) setsockopt$inet_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f00000001c0)={0xffffffff}, 0x4) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) [ 320.749495] FAULT_INJECTION: forcing a failure. [ 320.749495] name failslab, interval 1, probability 0, space 0, times 0 [ 320.760853] CPU: 1 PID: 22477 Comm: syz-executor7 Not tainted 4.16.0-rc7+ #7 [ 320.768046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 320.777400] Call Trace: [ 320.779996] dump_stack+0x194/0x24d [ 320.783637] ? arch_local_irq_restore+0x53/0x53 [ 320.788305] ? print_irqtrace_events+0x270/0x270 [ 320.793055] should_fail+0x8c0/0xa40 [ 320.796764] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 320.801860] ? print_irqtrace_events+0x270/0x270 [ 320.806608] ? __lock_acquire+0x664/0x3e00 [ 320.810827] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 320.815999] ? environ_open+0x80/0x80 [ 320.819792] ? find_held_lock+0x35/0x1d0 [ 320.823843] ? __lock_is_held+0xb6/0x140 [ 320.827908] ? check_same_owner+0x320/0x320 [ 320.832225] ? rcu_note_context_switch+0x710/0x710 [ 320.837166] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 320.842361] ? trace_hardirqs_off+0x10/0x10 [ 320.846698] should_failslab+0xec/0x120 [ 320.850687] kmem_cache_alloc+0x47/0x760 [ 320.854756] ? copy_vma+0xd80/0xd80 [ 320.858397] __split_vma+0x10b/0x7b0 [ 320.862109] ? find_vma_prev+0x140/0x140 [ 320.866153] ? vmacache_find+0x5f/0x280 [ 320.870105] ? vmacache_update+0xfe/0x130 [ 320.874321] ? find_vma+0x30/0x150 [ 320.877840] do_munmap+0xb54/0xdf0 [ 320.881374] mmap_region+0x59e/0x15a0 [ 320.885162] ? SyS_brk+0x6f0/0x6f0 [ 320.888687] ? arch_get_unmapped_area_topdown+0xba/0x920 [ 320.894125] ? arch_get_unmapped_area+0x760/0x760 [ 320.899390] ? lock_acquire+0x1d5/0x580 [ 320.903352] ? vm_mmap_pgoff+0x198/0x280 [ 320.907396] ? cap_mmap_addr+0x41/0x110 [ 320.911365] ? security_mmap_addr+0x79/0xa0 [ 320.915688] ? get_unmapped_area+0x265/0x300 [ 320.920092] do_mmap+0x6c0/0xe00 [ 320.923446] ? mmap_region+0x15a0/0x15a0 [ 320.927488] ? vm_mmap_pgoff+0x198/0x280 [ 320.931527] ? down_read_killable+0x180/0x180 [ 320.936009] ? cap_mmap_file+0x9/0x10 [ 320.939803] ? security_mmap_file+0x143/0x180 [ 320.944301] vm_mmap_pgoff+0x1de/0x280 [ 320.948198] ? vma_is_stack_for_current+0xa0/0xa0 [ 320.953048] ? __sb_end_write+0xa0/0xd0 [ 320.957027] SyS_mmap_pgoff+0x23b/0x5f0 [ 320.961008] ? find_mergeable_anon_vma+0xd0/0xd0 [ 320.965756] ? SyS_read+0x220/0x220 [ 320.969453] ? do_syscall_64+0xb7/0x940 [ 320.973410] ? align_vdso_addr+0x60/0x60 [ 320.977447] SyS_mmap+0x16/0x20 [ 320.980718] do_syscall_64+0x281/0x940 [ 320.984582] ? vmalloc_sync_all+0x30/0x30 [ 320.988711] ? _raw_spin_unlock_irq+0x27/0x70 [ 320.993188] ? finish_task_switch+0x1c1/0x7e0 [ 320.997666] ? syscall_return_slowpath+0x550/0x550 [ 321.002579] ? syscall_return_slowpath+0x2ac/0x550 [ 321.007487] ? prepare_exit_to_usermode+0x350/0x350 [ 321.012483] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 321.017827] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 321.022663] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 321.027833] RIP: 0033:0x454e79 [ 321.030999] RSP: 002b:00007f2d94a97c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 321.038702] RAX: ffffffffffffffda RBX: 00007f2d94a986d4 RCX: 0000000000454e79 [ 321.045978] RDX: 0000000000000003 RSI: 0000000000fff000 RDI: 0000000020000000 [ 321.053226] RBP: 000000000072c010 R08: ffffffffffffffff R09: 0000000000000000 [ 321.060474] R10: 0000000000000032 R11: 0000000000000246 R12: 0000000000000016 [ 321.067727] R13: 00000000000003f4 R14: 00000000006f7f80 R15: 0000000000000000 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) getsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000040)={@rand_addr, @rand_addr}, &(0x7f00000001c0)=0xc) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f00000002c0)={0x3}) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:21 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:21 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x0, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:21 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:21 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:21 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000003c0)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1fffffffffff}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000140)=ANY=[@ANYBLOB="0000000000000000d93faa05c337a5e9b573ea333f9191973799560316a4329450b2c98f1ebda56c0f11e03ce9832d2d87eeda431f275a3192032fe851c9c7eded405650a98bbdd78aa7a78544d6353feb66e5988e9b80b925f8d1074de55bd57265df84faa02f1066eda1c958f65eecb21547472957198501acc24c99c6a96a1a758eef1a2922bf1b1f8dabf78571824a659bf282994a05f6b20ce645c26c6b141330132b01c0245c821500fb336441392f93eeb1463d6fa25eec0dd414297fa20ac138e6f728a9b14b66b3138241aaf27ef87e5b9da72a8d705d1f6ae3e82306c794ceb60df9aaad5300fe6d4f81f2e33d1e59f1"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ptrace$setregs(0xf, r2, 0x7fff, &(0x7f0000000040)="2bf65fa5290ac1abec94d55176a58e18827e79609d5ac7a3bb5a6723404ee3aa4014b3caecb7dbbe82997fddb28cd2b5ff2b1c1531aadf0f0d95f4bf1620c94b0137e63eea3ac8d86da1d741c0b8b13e4831b68877cac6bd0f477cbca12cec75f2b99a3c3429672d890ef6d1ceda") ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000100)={&(0x7f000094d000/0x3000)=nil, 0x3000}) r3 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x1ff, 0x101000) ioctl$DRM_IOCTL_MODE_SETCRTC(r3, 0xc06864a2, &(0x7f00000002c0)={&(0x7f0000000280)=[0x80, 0x8000], 0x2, 0x5, 0x9c, 0x3f, 0x40, 0x7, {0x0, 0x80, 0x2, 0x80000001, 0x2, 0x80000000, 0x4, 0xe1d3, 0x4, 0x3d4bf6f0, 0x1, 0xffff, 0x8001, 0x7, "c751003205a8ebe2b07fcd2f0fa13ee0f52c4922f1fb997dfd7a5f21a44ee39e"}}) 2033/05/18 03:37:21 executing program 7 (fault-call:10 fault-nth:1): r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:21 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000080)) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x80001, 0x0) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffff9c, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x2}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f00000001c0)={r5, 0xc83, 0x3, [0x1, 0x4, 0x9]}, 0xe) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f00000000c0)=ANY=[@ANYBLOB="78ce07e6ca9759040000000000"]) tkill(r0, 0x15) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2033/05/18 03:37:21 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffb, 0x7fffffff}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) getpgid(r2) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x21, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$DRM_IOCTL_SET_UNIQUE(r4, 0x40106410, &(0x7f0000000040)={0x54, &(0x7f0000000580)="74e9440b042d7f866f04807074ed52baab93105b7542b56f2ba4a58790fdf091d313cddf69d02a09968c4a5eddfd36799b6538b17a4b099f5585b5b57fcdcd27df17a015e0744d030eeb46438e2c68a9d53b5212"}) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000040)=ANY=[@ANYBLOB="0100b97b9bff42f0e123d8e8d84d69cba3678bbb95ecfb"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0xfffffffbc879bc51, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000500)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x2, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f00000008c0)=""/199}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000009c0)=0x4401) r3 = syz_open_dev$admmidi(&(0x7f00000001c0)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) syz_open_dev$sndtimer(&(0x7f00000004c0)='/dev/snd/timer\x00', 0x0, 0x0) add_key$user(&(0x7f0000000100)='user\x00', &(0x7f0000000140)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000440)="ad04ad6e761bb3cb364fb9c6c41863f6bb618a01efa9c045b7414195fcc3151fd8190e3ac51ef1528f59c10b13b67964bab406fa66e239cb7043d4984a1f7092836b87bb3d8447f62f8943d0645d0445058b078e086452b2ff600d53818494d529e7cfbc899d4aa1f3feb9858b18c952fc4fd0", 0x73, 0x0) fcntl$setlease(r3, 0x400, 0x0) setsockopt$inet_int(r3, 0x0, 0x1, &(0x7f0000000a40)=0x5, 0x4) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000040)=r1) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) fcntl$notify(r4, 0x402, 0x10) sendmsg$netrom(r4, &(0x7f00000002c0)={&(0x7f0000000580)=@full={{0x3, {"75d06b75176f33"}, 0x1}, [{"ca479298646287"}, {"5da3a8c8247941"}, {"e53ad9b5c245fb"}, {"59fe5ad8a47ac5"}, {"6a6699f54c47aa"}, {"26fa90cd129acd"}, {"d64f0d827cca1f"}, {"509d73ced56758"}]}, 0x48, &(0x7f0000000180)=[{&(0x7f0000000600)="c72da7c3748c6a0bd691e32450b069e662e16e131631f4b8048adbd9a9257b1b9752394632f5000726359fa6ea0ec2afe4fe71d043a6433eba2b405bed53eaded7225ae58c76950ec75d5af761998dd5306f0613c7120b93f17e6c934ab9426fe6c0b844da90b3c62762502d46a942ffcfcb1e1fdcf49f915134a3c251d1801ef459bfa1e4191c19202d2f442a08b8410f957b9ccdde7ed1f41a70ecfed647e3e874a4c92ff4bf0490e4746b62de6aca035f747006", 0xb5}, {&(0x7f00000006c0)="5c3429545117fa038b1f8b779d04d35e8f1dd2ddfabc3cf71baf1f02717fba13ba37611646144e05642be0dbba6b81e5ba38c2d1e8de69fdd04519dbe085940107c42efac7399294051568b885f5b9fcf55e9ea5d4c0643c24b79d0abc7f93aa5a20c0474379c599aef2670fee9a8535752879772e9354b98c760d95efb55d99a58fb7339038be21908e4ecf9cdada338d9c972877d589b9228f526e6384e1fc4ac3472a281f40b12eeb10e45317d6fd52d680aad53d20f49481ff574d8bd4f3cf55d42a000d488dd122dbc6bf333fd039", 0xd1}, {&(0x7f00000007c0)="d273864cbb278cf2fefdbf2de5a65377158126f506dfb2b3fd065862cae21e6da4f07dd5d180885122336158b1b7bd0c7f74ae52c08da2ec37c1dad2688062371411b9ac7ce914f665065379623e5776127b8eb41ff3c833977f8673117196a1098e0ace16eb69895190d5d098025a5027bedfd6ef9f45158450f8f5c8257c2f07729b9e7b5e4ca8011de87d303659bb424e9ce4dd7edc555bf0f758486d9f1cd08f3bd2c4f38696e2d4fb7931a0dbc26ec4763d85ec589d0825bcc8f8673a00ad09df45409e5aae5d9b772a77a75b71ff8129323f80503716e2f0efedd2dca66b7bd888", 0xe4}], 0x3, 0x0, 0x0, 0x4000}, 0x0) 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) socketpair$inet6(0xa, 0x800, 0x9, &(0x7f0000000040)) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) munmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x4000, 0x66) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r3, 0x111, 0x4, 0x0, 0x4) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$KVM_GET_PIT2(r3, 0x8070ae9f, &(0x7f0000000640)) ioctl$SIOCGIFHWADDR(r4, 0x8927, &(0x7f00000001c0)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000580)=ANY=[@ANYBLOB="01000000000000000000f42ed68db7cde2b647340cdd9a16b5cc3c0b603e0fb7988e21d1b7e575ad430e470eabc2746a1f803f5386b32d9e877980b29d61586342d257770516e6fa8109e1328a26a9e2864a28c728e7637330f70cde35d23a508241b5d9364b933566436bdc5dd844df367b5f5d814ab43463e139cbe9883e914eca997f538564c41bb145b3aa87c8c0355e4d4ebc7ca922d8446db4f42d9f7925f2261eef"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) setsockopt$kcm_KCM_RECV_DISABLE(r5, 0x119, 0x1, &(0x7f0000000300)=0x1f, 0x4) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000040)=0x400, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(r3, 0x4008af04, &(0x7f0000000580)=&(0x7f00000002c0)) 2033/05/18 03:37:21 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) r4 = getpgid(0xffffffffffffffff) tkill(r4, 0x3e) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r3, 0x40bc5311, &(0x7f0000000580)={0xa9c, 0x1, 'client0\x00', 0x2, "7be67e05caf90f65", "625c2eec3105eb4931d8c13cffbb2ecac373975acc132a98ea0911d7f1eb7f58", 0x4, 0x1}) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) recvfrom$llc(r5, &(0x7f0000000740)=""/243, 0xf3, 0x60, &(0x7f0000000040)={0x1a, 0x30f, 0x3a, 0x0, 0x1, 0xfffffffffffff000}, 0x10) 2033/05/18 03:37:22 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f00000001c0)={0xff, 0x9, 0x0, 0x2, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) [ 322.073485] FAULT_INJECTION: forcing a failure. [ 322.073485] name failslab, interval 1, probability 0, space 0, times 0 [ 322.084847] CPU: 1 PID: 22554 Comm: syz-executor7 Not tainted 4.16.0-rc7+ #7 [ 322.092042] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 322.101403] Call Trace: [ 322.104000] dump_stack+0x194/0x24d [ 322.107630] ? arch_local_irq_restore+0x53/0x53 [ 322.112334] ? rcutorture_record_progress+0x10/0x10 [ 322.117364] should_fail+0x8c0/0xa40 [ 322.121079] ? kernel_text_address+0xd1/0xe0 [ 322.125492] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 322.130601] ? unwind_get_return_address+0x61/0xa0 [ 322.135524] ? __save_stack_trace+0x7e/0xd0 [ 322.139848] ? save_stack+0xa3/0xd0 [ 322.143494] ? save_stack+0x43/0xd0 [ 322.147113] ? kasan_kmalloc+0xad/0xe0 [ 322.150983] ? kasan_slab_alloc+0x12/0x20 [ 322.155112] ? kmem_cache_alloc+0x12e/0x760 [ 322.159418] ? __split_vma+0x10b/0x7b0 [ 322.163291] ? do_munmap+0xb54/0xdf0 [ 322.166996] ? mmap_region+0x59e/0x15a0 [ 322.170950] ? do_mmap+0x6c0/0xe00 [ 322.174465] ? vm_mmap_pgoff+0x1de/0x280 [ 322.178504] ? SyS_mmap_pgoff+0x23b/0x5f0 [ 322.182627] ? SyS_mmap+0x16/0x20 [ 322.186058] ? do_syscall_64+0x281/0x940 [ 322.190099] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 322.195446] ? percpu_ref_put_many+0x11a/0x220 [ 322.200009] ? lock_downgrade+0x980/0x980 [ 322.204141] ? lock_release+0xa40/0xa40 [ 322.208093] ? print_irqtrace_events+0x270/0x270 [ 322.212828] ? trace_hardirqs_off+0x10/0x10 [ 322.217128] ? __lock_is_held+0xb6/0x140 [ 322.221169] should_failslab+0xec/0x120 [ 322.225121] kmem_cache_alloc+0x47/0x760 [ 322.229175] ? __lock_is_held+0xb6/0x140 [ 322.233214] anon_vma_clone+0x139/0x700 [ 322.237171] ? unlink_anon_vmas+0x9f0/0x9f0 [ 322.241469] ? copy_vma+0xd80/0xd80 [ 322.245076] __split_vma+0x2f7/0x7b0 [ 322.248769] ? find_vma_prev+0x140/0x140 [ 322.252809] ? vmacache_find+0x5f/0x280 [ 322.256757] ? vmacache_update+0xfe/0x130 [ 322.260884] ? find_vma+0x30/0x150 [ 322.264402] do_munmap+0xb54/0xdf0 [ 322.267919] mmap_region+0x59e/0x15a0 [ 322.271699] ? SyS_brk+0x6f0/0x6f0 [ 322.275218] ? arch_get_unmapped_area_topdown+0xba/0x920 [ 322.280645] ? arch_get_unmapped_area+0x760/0x760 [ 322.285460] ? lock_acquire+0x1d5/0x580 [ 322.289411] ? vm_mmap_pgoff+0x198/0x280 [ 322.293450] ? cap_mmap_addr+0x41/0x110 [ 322.297402] ? security_mmap_addr+0x79/0xa0 [ 322.301701] ? get_unmapped_area+0x265/0x300 [ 322.306083] do_mmap+0x6c0/0xe00 [ 322.309429] ? mmap_region+0x15a0/0x15a0 [ 322.313467] ? vm_mmap_pgoff+0x198/0x280 [ 322.317505] ? down_read_killable+0x180/0x180 [ 322.321983] ? cap_mmap_file+0x9/0x10 [ 322.325765] ? security_mmap_file+0x143/0x180 [ 322.330239] vm_mmap_pgoff+0x1de/0x280 [ 322.334106] ? vma_is_stack_for_current+0xa0/0xa0 [ 322.338939] ? __sb_end_write+0xa0/0xd0 [ 322.342894] SyS_mmap_pgoff+0x23b/0x5f0 [ 322.346848] ? find_mergeable_anon_vma+0xd0/0xd0 [ 322.351581] ? SyS_read+0x220/0x220 [ 322.355187] ? do_syscall_64+0xb7/0x940 [ 322.359137] ? align_vdso_addr+0x60/0x60 [ 322.363173] SyS_mmap+0x16/0x20 [ 322.366426] do_syscall_64+0x281/0x940 [ 322.370287] ? vmalloc_sync_all+0x30/0x30 [ 322.374412] ? _raw_spin_unlock_irq+0x27/0x70 [ 322.378883] ? finish_task_switch+0x1c1/0x7e0 [ 322.383356] ? syscall_return_slowpath+0x550/0x550 [ 322.388263] ? syscall_return_slowpath+0x2ac/0x550 [ 322.393167] ? prepare_exit_to_usermode+0x350/0x350 [ 322.398161] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 322.403504] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 322.408324] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 322.413487] RIP: 0033:0x454e79 [ 322.416650] RSP: 002b:00007f2d94a97c68 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 322.424335] RAX: ffffffffffffffda RBX: 00007f2d94a986d4 RCX: 0000000000454e79 [ 322.431579] RDX: 0000000000000003 RSI: 0000000000fff000 RDI: 0000000020000000 [ 322.438823] RBP: 000000000072c010 R08: ffffffffffffffff R09: 0000000000000000 [ 322.446071] R10: 0000000000000032 R11: 0000000000000246 R12: 0000000000000016 [ 322.453319] R13: 00000000000003f4 R14: 00000000006f7f80 R15: 0000000000000001 2033/05/18 03:37:22 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:22 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x0, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:22 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:22 executing program 7 (fault-call:10 fault-nth:2): r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:22 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:22 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) sched_yield() r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.controllers\x00', 0x0, 0x0) ioctl$DRM_IOCTL_SET_MASTER(r4, 0x641e) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x200, 0x8) ioctl$TIOCGPGRP(r5, 0x540f, &(0x7f00000000c0)) tkill(r0, 0x15) 2033/05/18 03:37:22 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="0062ce3e616c00000000000000000000000000000000"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:22 executing program 1: r0 = syz_open_dev$amidi(&(0x7f0000000640)='/dev/amidi#\x00', 0x9, 0x400) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000cc0)={{0xfff, 0x1, 0x9, 0x81, "26de8d76e94098d0618e3983ff6d12b77060a2b272ab61b1e4f9fd85948d6e5e1228ca3909fad54775ae5b64", 0xffff}, 0x4, [0x484, 0x8, 0x2, 0x5, 0xffffffff, 0x5, 0x3, 0x0, 0x80, 0x4, 0x3, 0x14a, 0x100000000, 0x200, 0x9, 0x0, 0xfff, 0x2, 0x4, 0x7, 0x1ff, 0x3ff, 0x7, 0x2, 0x4, 0x9, 0x3ff, 0x6, 0x8, 0x0, 0x7, 0x0, 0xffffffffffff86bd, 0x978, 0x79955ae1, 0x4, 0x5f, 0x20, 0x5, 0x51e9, 0x1ff, 0x22b, 0x1, 0x80000000, 0x6, 0xdc1b, 0x5, 0x8, 0x81, 0x2, 0x1, 0x7ff, 0x800, 0x10001, 0x3, 0x46, 0x9afa, 0x17c000000000, 0x100, 0xd2, 0x5, 0x6b, 0x81, 0x7, 0xc6b4, 0x6, 0xc125, 0x6, 0x6, 0x6, 0x7, 0x8, 0x8000, 0x6, 0x1, 0x81, 0xfffffffffffffffd, 0x1, 0x5, 0x8000, 0x2, 0x3ff, 0x8, 0xfffffffffffffff9, 0x3e6, 0x6, 0x3, 0x800, 0x101, 0x6, 0x2, 0x8001, 0x4, 0x8, 0x4, 0xfffffffffffffffb, 0xff, 0x6d, 0xf13, 0x1, 0x1, 0x2, 0x7, 0xfffffffffffffffb, 0x5, 0x200, 0x0, 0x4e8, 0x5, 0x8, 0x1, 0x2, 0x101, 0xffff, 0x1000, 0x1f, 0x0, 0x101, 0x6, 0x1, 0x7fff, 0x800, 0xbfc, 0xff, 0xfffffffffffffffe, 0x1, 0x4, 0x9], {0x77359400}}) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r1, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000000)=ANY=[]) r2 = eventfd2(0x0, 0x0) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f00000005c0)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000c80)=r2) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000540)={0x3, r2}) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000680)={'security\x00', 0x4, [{}, {}, {}, {}]}, 0x68) ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000f82ffc)=0x4001) ioctl$fiemap(r2, 0xc020660b, &(0x7f0000000700)={0x5, 0x52d, 0x3, 0x0, 0x2, [{0x8, 0xb24, 0x6, 0x0, 0x0, 0x6}, {0x7ff, 0x0, 0x1, 0x0, 0x0, 0x2}]}) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) lseek(r2, 0x0, 0xf77630f8070d508c) getsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f00000007c0)={@dev}, &(0x7f0000000800)=0x8) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r4, &(0x7f0000000580)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c100000", @ANYRES16=r5, @ANYBLOB="00052bbd09000000df25104000020000000000020000"], 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x20000010) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x2000000, 0x800) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='loginuid\x00') setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x0, 0x488, &(0x7f0000000580)={{0x0, @remote={0xac, 0x14, 0x14, 0xbb}, 0x4e20, 0x81, 'rr\x00', 0x1, 0x6, 0x3b}, {@broadcast=0xffffffff, 0x4e20, 0x0, 0x7, 0x9, 0x6}}, 0x44) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x7, 0xe, &(0x7f0000000580)=@raw=[@map={0x18, 0x7, 0x1, 0x0, r3}, @alu={0x4, 0x969, 0x8, 0x0, 0xd, 0xfffffff6, 0x10}, @generic={0x7fffffff, 0xf1f, 0xff, 0xff}, @call={0x85, 0x0, 0x0, 0xc}, @map={0x18, 0xd, 0x1, 0x0, r3}, @map={0x18, 0x1, 0x1, 0x0, r3}, @alu={0x7, 0x7, 0xb, 0xd, 0x8, 0x8, 0xfffffffffffffffd}], &(0x7f0000000040)='GPL\x00', 0x30, 0xa3, &(0x7f0000000600)=""/163, 0x41f00, 0x1}, 0x48) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) flistxattr(r1, &(0x7f0000000580)=""/246, 0xf6) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) mount(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)='fuse\x00', 0x0, &(0x7f0000000580)="abdf5e8484273e8606fff0fcd731992ef10c9ccfb3875037b5752d808abc09b5c65d858c18e68cf7df37d161a313c6041471a80c99cba5865a4c9bb605bcf667a6fb3a1e49705081b0aaef4d8906a34fa331") recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000300"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f00000002c0)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000580)=ANY=[@ANYBLOB="0100be880116b40a5e8dc377afbbb4f9034050451b7a219f43ca8a166f86c324e79c1b3e750b0ad2e7c1454127ce7c24b27d5b7b3cc12d80872b65d428b94c00790c9ca7d285f018db4ad89bfbe6d83196849459938ec9b54e9512d35fb6e78067227dda01736cbf0570530ba46cddac7e310f0789c4f759a5f7f6a5db0b1836bde3ec9bc64effdc72739b4dee10ee4c08a588292ac6f6c5519925b901ffafc06732"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000001c0)={0x1, 0x0, [{0xd000, 0x57, &(0x7f0000000640)=""/87}]}) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000040)=&(0x7f0000000340)) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000300)={0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000380)=0x24) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x4800) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000840)={0x100, 0x0, &(0x7f00000006c0)=[@transaction_sg={0x40486311, {{0x1, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x48, 0x40, &(0x7f0000000580)=[@fda={0x66646185, 0x7, 0x4, 0x3c}, @ptr={0x70742a85, 0x1, &(0x7f00000001c0), 0x1, 0xfffffffffffeffff, 0x1a}], &(0x7f00000002c0)=[0x38, 0x38, 0x0, 0x28, 0x58, 0x30, 0x38, 0x58]}, 0x101}}, @enter_looper={0x630c}, @decrefs={0x40046307, 0x1}, @reply_sg={0x40486312, {{0x3, 0x0, 0x2, 0x0, 0x11, 0x0, 0x0, 0x0, 0x28, &(0x7f0000000500), &(0x7f0000000600)=[0x38, 0x40, 0x78, 0x40, 0x78]}, 0x6}}, @request_death={0x400c630e, 0x4}, @reply_sg={0x40486312, {{0x2, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x18, 0x28, &(0x7f0000000640)=[@fd={0x66642a85, 0x0, r0, 0x0, 0x1}], &(0x7f0000000680)=[0x18, 0x78, 0x0, 0x30, 0x78]}, 0x417768f3}}], 0x74, 0x0, &(0x7f00000007c0)="d3c3700e937f715792bc43db3485ed833511fb1bf17aedfa65cb96dfcd095ecf58bd6a5c8098fe162cc8f62a14d9cec37265062ed87d8dd619cd08f46f7efc50c25c4fb1b20d8a10e6ddf94068e3b180ada6c8e3120b993969ef5846c2f3b99517f61011a894808a53f0f04ecc14bb05510f5fde"}) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f00000008c0)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) accept4$inet(r2, 0x0, &(0x7f0000000500), 0x80000) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$KVM_IRQ_LINE(r4, 0x4008ae61, &(0x7f0000000300)={0x5, 0x8}) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000001c0)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = memfd_create(&(0x7f00000001c0)='nfs\x00', 0x3) bind$inet(r2, &(0x7f00000002c0)={0x2, 0x4e22, @loopback=0x7f000001}, 0x4) r3 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:23 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:23 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:23 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000080)=0xe, 0x4) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) getuid() ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:23 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vga_arbiter\x00', 0x4a37b2f7015354e0, 0x0) r4 = openat(r3, &(0x7f00000001c0)='./file0\x00', 0x400000, 0x80) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) r5 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x7, 0x14000) getsockname$ax25(r5, &(0x7f00000000c0), &(0x7f0000000100)=0x10) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$VHOST_VSOCK_SET_GUEST_CID(r4, 0x4008af60, &(0x7f0000000040)={@reserved=0x1}) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000280)=ANY=[@ANYBLOB="0000000004000000e8e27aff8afdaad187267f00b66ce52b71721b5d77c8e37c250b75e864e7366579975196cf636f7f7d54e36f7ffe3c38f82899ec2a7251f1accd81a2ca4e754d3b2061fac30aa860b4528e26b01f5016d71f60762eaf71e4da2ab452d02c5493d5c3ce8269e3f616f08c49f6e0b8d8d9391e2d8bb897879e92c01611ec5e11f4fb010e40f5f86df5"]) ioctl$sock_kcm_SIOCKCMCLONE(r5, 0x89e2, &(0x7f0000000140)={r5}) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:23 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:23 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:23 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:23 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x0, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) getsockopt$inet6_dccp_buf(r3, 0x21, 0xe, &(0x7f0000000580)=""/146, &(0x7f0000000040)=0x92) fchmod(r3, 0x4) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$sg(&(0x7f0000000d80)='/dev/sg#\x00', 0x8000, 0x400) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000000000000000efff000000"]) sendmsg$rds(r3, &(0x7f0000000d40)={&(0x7f0000000040)={0x2, 0x4e24, @loopback=0x7f000001}, 0x10, &(0x7f0000000ac0)=[{&(0x7f0000000580)=""/235, 0xeb}, {&(0x7f0000000680)=""/134, 0x86}, {&(0x7f0000000740)=""/195, 0xc3}, {&(0x7f0000000840)=""/99, 0x63}, {&(0x7f00000001c0)=""/10, 0xa}, {&(0x7f00000008c0)=""/159, 0x9f}, {&(0x7f00000002c0)=""/27, 0x1b}, {&(0x7f0000000980)=""/192, 0xc0}], 0x8, &(0x7f0000000cc0)=[@cswp={0x58, 0x114, 0x7, {{0x0, 0x6}, &(0x7f0000000500)=0x6, &(0x7f0000000a40)=0x3ff, 0x0, 0x2, 0x0, 0x3, 0x1, 0x2}}], 0x58, 0x85}, 0x4000000) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000000200000000969cd1e7009c4b5fd3372cc1d11f03407c014dfac50a4e5697a99fd887061e160c480d557c88fd9ca01fb725b22948139412"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000000040)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f00000001c0)={'eql\x00', 0xfffffffffffffffc}) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f00000001c0), 0x0, &(0x7f0000000500), 0xfffffffffffffe43}, 0x40000000) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x800) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r3 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) fcntl$getownex(r3, 0x10, &(0x7f0000000040)={0x0, 0x0}) process_vm_readv(r4, &(0x7f0000000780)=[{&(0x7f0000000580)=""/72, 0x48}, {&(0x7f0000000cc0)=""/4096, 0x1000}, {&(0x7f0000000600)=""/132, 0x84}, {&(0x7f00000001c0)=""/64, 0x40}, {&(0x7f00000006c0)=""/149, 0x95}], 0x5, &(0x7f0000000500)=[{&(0x7f00000002c0)=""/2, 0x2}], 0x1, 0x0) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="9839000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$ARPT_SO_GET_INFO(r3, 0x0, 0x60, &(0x7f0000000600)={'filter\x00'}, &(0x7f0000000bc0)=0x1b1) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r4 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) recvfrom$ipx(r3, &(0x7f0000000680)=""/202, 0xca, 0x40, &(0x7f00000001c0)={0x4, 0x3, 0x4, "8ecd72e0c283", 0x7ff}, 0x10) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) 2033/05/18 03:37:24 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f00001b3000)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_LOG_BASE(r0, 0xaf01, &(0x7f0000307000)=&(0x7f0000989fff)) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000000)=ANY=[]) r1 = eventfd2(0x0, 0x0) r2 = perf_event_open(&(0x7f000000a000)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000000c0)) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000b40)={'filter\x00'}, &(0x7f0000000bc0)=0x44) mount(&(0x7f0000dba000)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f000000a000)) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000c80)=r1) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000df5fd8)={0x0, 0x1, &(0x7f0000000200)=""/105, &(0x7f0000bf6000)=""/228, &(0x7f0000000080)=""/199}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000cef000)={0x1, 0x0, &(0x7f0000000440)=""/167, &(0x7f0000aac000)=""/21, &(0x7f00002fdf52)=""/174, 0xd000}) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000b00)={0xffffffffffffffff}) listen$netrom(r3, 0x6) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$TUNSETVNETHDRSZ(r4, 0x400454d8, &(0x7f00000001c0)=0xffffffffffffffff) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f00000002c0)={0x0, 0x94, &(0x7f0000000640)=[@in6={0xa, 0x4e21, 0x6, @mcast1={0xff, 0x1, [], 0x1}, 0x8}, @in={0x2, 0x4e24, @rand_addr=0x10000}, @in={0x2, 0x4e23, @multicast1=0xe0000001}, @in={0x2, 0x4e20}, @in6={0xa, 0x4e21, 0x40, @mcast2={0xff, 0x2, [], 0x1}, 0x8}, @in6={0xa, 0x4e24, 0x6, @loopback={0x0, 0x1}, 0x2}, @in={0x2, 0x4e21}]}, &(0x7f0000000500)=0x10) ioctl$UFFDIO_WAKE(r4, 0x8010aa02, &(0x7f0000000700)={&(0x7f0000ffd000/0x3000)=nil, 0x3000}) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000dc0)={r5, 0x6}, &(0x7f0000000e00)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000e40)={0x1f, 0x8000, 0x200000, 0x4, r6}, 0x10) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000540)={0x0, r1}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000f82ffc)=0x4001) r7 = syz_open_dev$admmidi(&(0x7f0000000180)='/dev/admmidi#\x00', 0x3, 0x101080) recvmsg$netrom(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f00000003c0)=@full={{0x3, {"3106259f86fbe1"}, 0x62c1}, [{"9a50a8e045f3be"}, {"365d9084ad8b8d"}, {"7eca8955f41d52"}, {"670144ddad544b"}, {"fc4f5f498fad9a"}, {"fed9d0ed38d09f"}, {"50b9bba45ea7d7"}, {"97c302a02f539c"}]}, 0x48, &(0x7f0000000580), 0x0, &(0x7f00000005c0)}, 0x0) add_key$user(&(0x7f0000000c00)='user\x00', &(0x7f0000000c40)={0x73, 0x79, 0x7a}, &(0x7f0000000f00), 0x0, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000000000000000000000000"]) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r7, 0x6, 0x16, &(0x7f0000000ac0), 0x0) ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f0000000280)={0xff, 0x9, 0x0, 0x9, 0x4, 0x1}) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, &(0x7f0000000380)=&(0x7f0000000340)) ioctl$LOOP_GET_STATUS(r7, 0x4c03, &(0x7f0000000580)) 2033/05/18 03:37:24 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:24 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) unshare(0x60000000) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:24 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x1000001, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:24 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140)={0x0}, &(0x7f0000000180)=0xc) perf_event_open(&(0x7f0000000040)={0x7, 0x70, 0x6, 0x9, 0x1, 0x8, 0x0, 0x4, 0x20, 0x4, 0x1, 0x8, 0x6, 0x3, 0x6bff, 0x6, 0x300000000000000, 0x40, 0x101, 0x0, 0xffffffffffffbc4a, 0x1ff, 0x2, 0x8, 0x100, 0x9, 0x200, 0x80, 0xfff, 0xfff, 0x101, 0x3dd, 0x3, 0x80000001, 0x4c, 0x40, 0x6, 0x5, 0x0, 0x25f7e1e7, 0x4, @perf_config_ext={0x8}, 0x8200, 0x1, 0x101, 0x6, 0x7, 0x2, 0x9}, r2, 0x10, r0, 0x3) r3 = getpgid(0x0) sched_setattr(r3, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000000000000000cf47663c054a35f0278007bbf2a733b10a3f9dc2c76d145833249b61937695777550fe525efe2213938167968faf7280c839073fe53a215eef77b29b"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f0000b1b000/0x1000)=nil, 0x1000}) 2033/05/18 03:37:24 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0x0, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:24 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:24 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:24 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_pts(0xffffffffffffffff, 0x4000) ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f00000000c0)={0xa, &(0x7f0000000080)=[{0xbcb8, 0x384}, {0x3, 0x2}, {0x1, 0x2}, {0x9, 0x7}, {0x2, 0xf6a}, {0x4}, {0x3, 0x169}, {0x4, 0x7}, {0x2, 0x7ecb}, {0xe15, 0x3}]}) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) [ 324.524304] IPVS: ftp: loaded support on port[0] = 21 [ 324.577331] IPVS: ftp: loaded support on port[0] = 21 2033/05/18 03:37:25 executing program 1: socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r2) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) rmdir(&(0x7f00000000c0)='./file0\x00') setsockopt$IP_VS_SO_SET_TIMEOUT(0xffffffffffffffff, 0x0, 0x48a, &(0x7f0000000040)={0x0, 0x5}, 0xc) recvmsg(r1, &(0x7f0000001600)={&(0x7f0000001580)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000001e00)=[{&(0x7f0000001680)=""/82, 0x52}, {&(0x7f0000001780)=""/80, 0x50}, {&(0x7f0000001ac0)=""/148, 0x94}, {&(0x7f0000001b80)=""/167, 0xa7}, {&(0x7f0000001c40)=""/246, 0xf6}, {&(0x7f0000001d40)=""/158, 0x9e}], 0x6, &(0x7f0000001e80)=""/148, 0x94, 0xfff}, 0x2) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000001f40)={0x0, @in={{0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x4, 0x1}, &(0x7f0000001840)=0x90) inotify_init1(0x0) ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x1023c) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000140)=ANY=[]) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, &(0x7f0000001380)={0x2, 0x0, 0x0, 0xead7}) ioctl$DRM_IOCTL_AGP_FREE(0xffffffffffffffff, 0x40206435, &(0x7f0000001400)={0x9, r3, 0x10003, 0x2}) ioctl$DRM_IOCTL_AGP_FREE(0xffffffffffffffff, 0x40206435, &(0x7f0000000200)) ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000001440)) process_vm_writev(0x0, &(0x7f0000001100)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1, &(0x7f0000001700)=[{&(0x7f0000001280)=""/164, 0xa4}, {&(0x7f0000001140)=""/187, 0xbb}, {&(0x7f0000001480)=""/8, 0x8}, {&(0x7f00000014c0)=""/177, 0xb1}], 0x4, 0x0) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000001880)={0x0, {{0xa, 0x0, 0xffff, @mcast1={0xff, 0x1, [], 0x1}, 0x1f}}, 0x0, 0x3, [{{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x9}}, {{0xa, 0x4e23, 0x59c, @local={0xfe, 0x80, [], 0xaa}, 0x5}}, {{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}}}]}, 0x210) openat$ipvs(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) ioprio_get$uid(0x0, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) sendto$inet(r4, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) ioctl$sock_SIOCOUTQ(r4, 0x5411, &(0x7f0000000040)) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2000000000000009, &(0x7f0000534ffc)=0x4, 0x4) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000080)) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, &(0x7f0000001240), &(0x7f0000001340)=0x4) 2033/05/18 03:37:25 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0x0, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:25 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) r4 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xfffffffffffffff9, 0x10000) getsockname$netlink(r4, &(0x7f00000000c0), &(0x7f0000000100)=0xc) tkill(r0, 0x15) 2033/05/18 03:37:25 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000200)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:25 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:25 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:25 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r1, &(0x7f0000000300)=""/114, 0x1c) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:26 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:26 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) syz_mount_image$minix(&(0x7f0000000080)='minix\x00', &(0x7f00000000c0)='./file0\x00', 0x6, 0x8, &(0x7f00000004c0)=[{&(0x7f0000000100)="04fbeff7e7b0dbaee49f38962eba1bf24f68d7b033ec330017513ba9ee6c4a12dc8487bf50d3987a0b114238aeb3f1e8e144fd39cbd76959d788d220e856997f60bc4733adca4143f3f5762c88877f0a190b8a82508c8a8e2f74d9b15bbf3d574628cdbeb3118fb1525ee7402e377c5bca8632f3d2abfe003b7a9ebf42b0ade9cb80ba247351530a7376db56346cb45448907067135629b1ec43c517c2dfe70dde2543962ee98284ded8d7b5a841beab10f40f5a7e848bccfd7e910ea8", 0xbd, 0x4}, {&(0x7f00000001c0)="cf5572585443da1326daf9cf60664995d73f343f6370d412952164ee26b4513914d8f6db4246772ed3d622078414f5a9e9d37cc82b", 0x35, 0x3}, {&(0x7f0000000200)="fa8ca03d514cb942914665a9a2ef53585347bbf8165a28ebea7faeba490fdab77a490f1aded03a9d0a672c32da8481", 0x2f, 0x3}, {&(0x7f0000000280)="90c386ef0fc737ae2783ce811101f5fcf650838d27bc8b33f3f056e546333743fd4c52067fc638960a975b86d10ae4233c20fd2dad1a677e6bd1b94af2b3b1e4cb925f9a360f94f6aba6ce22e0a02a79d13efef7ce3ad4c36199abff7dd3ee3a8964a7045469a53800d02ae7e7a840ec511f1231a41da8cb305bb76308a17e675a294fce964d4378326f8b49659f692721fe1cf6a9fc5c3e4c4f9003f75b1f47975a7782e7f9357506", 0xa9, 0x3}, {&(0x7f0000000340)="dc6dac247fef693fde1058b59351964063c0e6f5572125e39fb0b33cca2d4c0838282a6a8a1e3cf832e8f73bc73181d2d0fd37f92d3835825620ed5038a1eb94eca0ff2ac847fbcc655d00ae0ecd6010605254c2b2f9237f40c284c667b9", 0x5e, 0x6}, {&(0x7f00000003c0)="5104ac20d82e7b4deb8b6911324ddc91ae93d7cd0b61b88b14e942232e2aae2700eb1effcec4c5b34dd63ae194562953fd45fe55106dd81bcb27763b71349f2bdaa64751cda55f98b703249d6444a9a757cf56", 0x53, 0x38f}, {&(0x7f0000000440)="22e754a6ebf84adfd2c1884f3401f333c23ddea9a16018f65a27", 0x1a, 0x40}, {&(0x7f0000000480)="6cb80021f53584a669ebe614ebd15df9cdfc1c32249a1c80fcfc", 0x1a, 0x7}], 0x2000000, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000580)=ANY=[@ANYBLOB="0072f732f4208fdeefc3d5d66c00000000008a00"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000040)={&(0x7f00003c3000/0x3000)=nil, 0x3000}) 2033/05/18 03:37:26 executing program 1: socket(0x10, 0x20000000802, 0x0) r0 = socket$inet6(0xa, 0x2000000802, 0x0) connect$inet6(r0, &(0x7f000000cfe4)={0xa}, 0x1c) sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x0, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @dev={0xfe, 0x80}}, 0x1c) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200)='/dev/vga_arbiter\x00', 0x440000, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000ec0)={0x0, 0x8, 0x7ff, 0x3}, &(0x7f0000000f00)=0x10) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000f80)={0x0, 0x2c, &(0x7f0000000f40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14}}, @in6={0xa, 0x0, 0x10001, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0xfff}]}, &(0x7f0000000fc0)=0x10) syz_open_dev$sg(&(0x7f0000000300)='/dev/sg#\x00', 0xfffffffffffffff7, 0x800) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e22}, 0x1c) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rfkill\x00', 0x200000, 0x0) setsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f0000000340), 0x2) listen(r2, 0x0) sendto$inet6(r1, &(0x7f0000f6f000), 0x1000000c4, 0x20000001, &(0x7f0000faafe4)={0xa, 0x4e22}, 0x1c) sendmsg(r1, &(0x7f0000000b00)={&(0x7f0000000440)=@in={0x2, 0x4e24, @multicast1=0xe0000001}, 0x80, &(0x7f0000000a80)=[{&(0x7f00000004c0)="55aebf077baa6ad01f6b1616c0a6bc1f4d8243fc467fc460bd9204df4579a429354226372f8fbfb81db93cb11a8bb57c257da25cf9fb1a4827cfaa885c90f9fc4a719007686e18125d908c96a63272da8be3584977b3a2e96973310e9f490d6f51de9b25db8b994e116aaa0f23363c7c8c8da89baaf0f49282a8f5a285e8037d1d335e2e8061ef20adf57378cbaed4d8f69e32ddde2786c6626ec9d39f6e43a4f068", 0xa2}], 0x1, &(0x7f0000001600)=ANY=[], 0x0, 0x80000}, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000015c0)={0x0, 0x0, 0x9, 0x1e000000}, 0x14) r4 = accept4(r2, &(0x7f00000000c0)=@alg, &(0x7f0000000040)=0x80, 0x80800) getsockname$packet(r3, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000940)=0x14) sendto$packet(r4, &(0x7f0000000880)="47d82f4ee2f635e2e20450e412b0220acf243910ddbe76aa3a2361f0b552fa5080b53e8ce74b03e9c5f56ed3a13eebb299bb4be847774442d083280fec30813686eb7d6d00a7fc10de0b6b585e579b067e0cd3f397fc7737b38588f0bfa6d14ad61ee6", 0x63, 0x10, &(0x7f0000000980)={0x11, 0x1f, r5, 0x1, 0x8, 0x6, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x14) getsockopt$inet_dccp_buf(0xffffffffffffffff, 0x21, 0xf, &(0x7f0000000140)=""/86, &(0x7f00000001c0)=0x56) r6 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f00000003c0)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000280)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, r6) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x891b, &(0x7f0000000380)={'bcsf0\x00', {0x2, 0x4e21, @multicast2=0xe0000002}}) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f0000001000)={0x0, 0xf5, 0x0, 0x0, 0x5}, &(0x7f0000001040)=0xffffffffffffff65) r7 = syz_open_procfs(0x0, &(0x7f0000000700)="6664001a000000") getdents64(r7, &(0x7f00000004c0)=""/189, 0xabf70f75d9c5643) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000200)={0x10000, 0x81, 0x7, 0xffffffffffffffff, 0x1, [{}]}) 2033/05/18 03:37:26 executing program 1: r0 = socket$inet6(0xa, 0x80002, 0x0) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000ffbf47)=""/185, 0xfffffffffffffeba, 0x0, 0x0, 0xfffffffffffffde6) bind$inet6(0xffffffffffffffff, &(0x7f00008a8000)={0xa, 0x4e23}, 0x1c) sendfile(0xffffffffffffffff, r0, &(0x7f00000004c0), 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000001c0)=ANY=[@ANYPTR=&(0x7f0000000500)=ANY=[@ANYBLOB="7e0024c46091fe8da87a6834eb6479c00b000000537ba21ac3922943ed3640872d16a22e47f00f8cf8707779d85f50d7eeb80a266a030b14b38901be23a23fddd17a524016fd44e43c00a96f6ab8ef603571f58e044193a521fef53a5e36ee4735ad6a115634405048af1d2c7ced392b684952d595ecde82816ebd1ec6059ccb31b5208e9c2a30e31108e497920cbbd405929c0c3fa35c375fec666dc2fe5e50"]], 0x1) r2 = socket$inet6(0xa, 0x8000000000000802, 0x0) sendmsg$inet_sctp(r2, &(0x7f0000a29000)={&(0x7f00005dafe4)=@in6={0xa, 0x4e23, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c, &(0x7f0000fc8000)}, 0x8000) sched_setscheduler(0x0, 0x5, &(0x7f0000000300)) getsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x8) sendto$inet6(r2, &(0x7f0000b0cf6e), 0xffed, 0x0, &(0x7f000001b000)={0xa}, 0x1c) fchdir(r0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000240)=0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)) tgkill(r3, 0x0, 0x30) r4 = dup2(r2, r0) accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000180)) recvfrom$inet6(r0, &(0x7f0000000600)=""/191, 0xbf, 0x0, &(0x7f0000000440)={0xa, 0x104e24, 0x40000000000000, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)) syz_open_procfs(r3, &(0x7f00000005c0)='gid_map\x00') socket$inet6(0xa, 0xa, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f00000018c0)=ANY=[@ANYRES32=0x0], &(0x7f0000000140)=0x1) clock_gettime(0x0, &(0x7f0000000200)={0x0}) write$sndseq(r1, &(0x7f0000000700)=[{0x1, 0x3ff, 0x0, 0x0, @time={r6}, {}, {0x7fffffff, 0x96}, @note={0x3, 0x0, 0xffff, 0x0, 0x9}}, {0x0, 0x0, 0x1, 0x8, @tick=0xff, {0x7fffffff, 0x5}, {0x7, 0x1}, @queue={0x1, {0x8, 0x1000}}}, {0x0, 0x0, 0x1, 0x400, @tick, {0x0, 0x6}, {0x200, 0x101}, @result={0x9e, 0xf6}}], 0x90) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000340), &(0x7f0000000380)=0x4) ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f00000002c0)={'eql\x00', {0x2, 0x4e21, @multicast1=0xe0000001}}) ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f0000000400)) setsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x0, &(0x7f0000000480)={r5, 0x0, 0x1}, 0x10) connect$netlink(0xffffffffffffffff, &(0x7f00000003c0)=@proc={0x10, 0x0, 0x25dfdbfd}, 0x3e0) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:26 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0x0, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) 2033/05/18 03:37:26 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) r2 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs\x00') getsockopt$EBT_SO_GET_INIT_ENTRIES(r2, 0x0, 0x83, &(0x7f0000000300)={'nat\x00', 0x0, 0x4, 0xa2, [], 0x4, &(0x7f0000000200)=[{}, {}, {}, {}], &(0x7f0000000240)=""/162}, &(0x7f0000000380)=0x78) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) read(r2, &(0x7f00000003c0)=""/25, 0x19) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"]) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) 2033/05/18 03:37:26 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) syz_open_dev$audion(&(0x7f00000000c0)='/dev/audio#\x00', 0x23d, 0x8000) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000080)=ANY=[@ANYBLOB="22155eed908b234e7807"]) tkill(r0, 0x15) sched_rr_get_interval(r0, &(0x7f0000000040)) 2033/05/18 03:37:26 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:26 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:26 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) 2033/05/18 03:37:27 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:27 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:27 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') r3 = accept$netrom(0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)=0x10) ioctl$sock_netrom_SIOCGSTAMPNS(r3, 0x8907, &(0x7f0000000100)) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:27 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x0, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:27 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) 2033/05/18 03:37:27 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) syz_mount_image$jfs(&(0x7f0000000040)='jfs\x00', &(0x7f0000000200)='./file0\x00', 0x1, 0x5, &(0x7f0000000540)=[{&(0x7f0000000240)="a2442f808d5d13abcd8a9e2bf0d1336c63558319fc3ced985b1596a8ac77f863cdf7fde978754742d05e3dfca08f0e295b17c4fbabca95aa53ee815e76b6da3147818b2dc66c747952709fef9a44c41fc015598adb16ae6eba8044be638b628fa66458fddeb212ade3afe52dcb79b25dc33c5dd83141801e354126b9218f81d1a91d3193fe19e180fbe12eede19fa363d5ea54a09874e9b51b3c61dda07df7bec2523947092aa6e9236d46ce3095eee94d94e95b8bc83f0656161de757f0541ff27f", 0xc2, 0xfff}, {&(0x7f0000000340)="3f3525ed35426c12ce984fe289", 0xd, 0xf5d}, {&(0x7f0000000380)="ee02eefc9acaeb1541ab7d53f8f816fba188fe0534cc6afa0943ed8ff9b505940799035f5f3d66e6e729186106daf3ee3009929d16c567cadc3ca71d92ed9d12c24d89aa1d9a281d03f84c28d909a3b1982353904ad65511c189c558bf10", 0x5e, 0x800}, {&(0x7f0000000400)="64414b194c9dd4e40207dd03c57daab84e6719af54cec8f793f5fe23b20145923799fb416984215e9d1e47cb44b16e376b8a0a4396943fc42e11b63c6f5966e667d9714fd117fcf82df86292403b8a37db3e5404ea424b9001a1035e23806081c78f5eb40b7598abe48a8506e9b8e278572164b7004946fb5bf3831199de32d2f75660eb996af3156c65a577d9eb9076c2d806776b2dc5b15183bac6df2cc045e0bccc9e216a5576616b9b521f49f6c6dfa4d37f3c8bf8865660c400dca62f1d996a1bdb14", 0xc5}, {&(0x7f0000000500)="3a36cfb3bbcb47e6209b6ed1749273dcb9116976bc75f573c15c4805e2e7c20cd11a3baf1bed99e16fc4aba8050346cb51c9287a2f8fcdedf8fb8da39afea539", 0x40, 0xd70}], 0x1004, &(0x7f00000005c0)={[{@nodiscard='nodiscard', 0x2c}, {@quota='quota', 0x2c}]}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = memfd_create(&(0x7f0000000600)='#])vmnet1posix_acl_accessy\x00', 0x1) ioctl$VT_RESIZE(r3, 0x5609, &(0x7f0000000640)={0x10001, 0x1000, 0x3f}) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x2000, 0x0) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f00000000c0)={0x0, 0x1}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000140)={r5, 0x2}, 0x8) r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r6, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r6, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r6, 0xc008aeb0, &(0x7f00000001c0)=ANY=[@ANYBLOB="a6d4e9e5b978dc3772c84a0c"]) tkill(r0, 0x15) 2033/05/18 03:37:27 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040), 0x0, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:27 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:27 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:27 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:27 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:27 executing program 5: mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r0, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:28 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:28 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:28 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:28 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:28 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:28 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x0, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:28 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000b8e000/0x3000)=nil, 0x3000}}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:28 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000200)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:28 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040), 0x0, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:28 executing program 5: mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r0, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:28 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000080)={0x4, 0xe9e1, 0x7fffffff, 0x0, 0x6, 0xa64, 0x1, 0x3, 0x2, 0x1, 0x7, 0x2, 0x0, 0x1, 0x8, 0x2, 0x8000, 0x5c8, 0x100}) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:28 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:28 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = syz_open_dev$sndmidi(&(0x7f0000000080)='/dev/snd/midiC#D#\x00', 0x6, 0x200000) ioctl$SNDRV_TIMER_IOCTL_TREAD(r3, 0x40045402, &(0x7f00000000c0)=0x1) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000271000)={0x0, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67a"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:29 executing program 5: mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r0, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r1) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:29 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040), 0x0, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:29 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000271000)={0x0, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:29 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x0, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:29 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x0, 0x0) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f00000000c0)={0x0, 0xf004, 0x100000000, 0x1, 0x2}) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:29 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x4, 0x1) getsockopt$ARPT_SO_GET_INFO(r2, 0x0, 0x60, &(0x7f00000000c0)={'filter\x00'}, &(0x7f0000000140)=0x44) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) getsockopt$IP_VS_SO_GET_INFO(r2, 0x0, 0x481, &(0x7f00000001c0), &(0x7f0000000200)=0xc) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:29 executing program 1: perf_event_open(&(0x7f0000271000)={0x0, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:30 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:31 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:31 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:31 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x0, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = creat(&(0x7f0000000080)='./file0\x00', 0x1) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f00000000c0)={0x0, 0xe0, "3b8bc25b1439cf7a07ef0fb5ece02b748bcb873f64a29bf8c5ca5707e7fcb52cfc7a4dbdb29fa863ed03ea9b97d65cd45adfdb340d2fe502f57af314fe60b258534863f0de3400e177ffc779722f07d33bd88743497d61d3a35f33e4da1a576c01f3c930b94efc9cf17748a6874eec0ec74d1cfdc6ee1850532ef779fa1fbb3d55406a0482590a2da0512adc10020653aeb89785e7bb1147b68cbc3b7c5cb25125a85b5e9ab895e4bda60d96949baaaff2adbe64cdf97d81dedfa27b0bc50f568a0e5d6d516b0690a62ddea9b89b5e580e8f663c54cf71880d93e7c1b624f49d"}, &(0x7f00000001c0)=0xe8) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r3, 0x84, 0x5, &(0x7f0000000280)={r4, @in6={{0xa, 0x56, 0x400, @remote={0xfe, 0x80, [], 0xbb}, 0xff}}}, 0x84) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) ioctl$RNDZAPENTCNT(r3, 0x5204, &(0x7f0000000200)=0x856) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) write(r1, &(0x7f0000000340)="839240c32c8fef24a3a94b4250942064fd93b4e7575cb567e09af34e4ee54dca6d585eac095bd20ef74a0d8fa35593ea6f25514c67fd78d22cf9a1b8e198f4fcfd1998f2ba4fc459a0424a5eefd684ce005b1753e6d06bdf747537aa1ee7d61e32", 0x61) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:31 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f0000000080)={0x7fff, 0x2, 0x8ea7}) r4 = accept$unix(r3, 0x0, &(0x7f00000000c0)) ioctl$sock_FIOSETOWN(r4, 0x8901, &(0x7f0000000100)=r0) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:31 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67a"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x0, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:31 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:32 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:32 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:32 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67a"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:32 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) r3 = accept$inet6(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, @mcast2}, &(0x7f00000000c0)=0x1c) getsockopt$inet6_mreq(r3, 0x29, 0x14, &(0x7f0000000100)={@dev}, &(0x7f0000000140)=0x14) 2033/05/18 03:37:32 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x0, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:32 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:32 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) r2 = fcntl$dupfd(r0, 0x406, r0) setsockopt$RDS_FREE_MR(r2, 0x114, 0x3, &(0x7f0000000100)={{0x1, 0x3}, 0x10}, 0x10) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) r3 = socket$key(0xf, 0x3, 0x2) connect$bt_rfcomm(r2, &(0x7f0000000280)={0x1f, {0x5, 0x10000, 0x6, 0x100000001, 0x8, 0x8001}, 0x101}, 0xa) bind(r3, &(0x7f0000000200)=@generic={0x1, "cc958417c7a6b929cdf3f8eb9f2c90a73026ba8d225c6207713d907d6ce61bde13131286415be114f1b4113e6ac9991d702576de21690486e8bbeab7d8562da0f28bc0cc6a6d201f6d96083f72ca0566ea0896a118d27627a5cb2923ebe43c1d701f2c8277f517be72bdfcfbd0aef851da4f4e21681360b285ff130c2223"}, 0x80) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r4, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r4, 0xc008ae91, &(0x7f00000002c0)=ANY=[@ANYBLOB="03000000000000000000000000000000000000000000e6ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000005d9e17b889a6dcc15efd509732471504ed645ddb0a5fec7e7ca905bf80aa970970eab23ec39cfc4ced3aaea8c97149dedffcd177ab118594b6e352db18832c61ff"]) 2033/05/18 03:37:32 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x400800, 0x0) ioctl$ASHMEM_SET_SIZE(r2, 0x40087703, 0x400) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x77359400}}, &(0x7f0000040000)) kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, r2, &(0x7f0000000480)={r3, r4, 0x4}) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) r5 = add_key$user(&(0x7f0000000080)='user\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000140)="a5a5c1531a72ad8a71c465d612a52cbbac419a95edfa3e31dc28e444c47ce53e04ae81eabb44fa1fc5a5ab70871b8e4e45752545433547966f40", 0x3a, 0x0) getresuid(&(0x7f00000001c0), &(0x7f0000000200)=0x0, &(0x7f0000000240)) connect$pptp(r2, &(0x7f0000000380)={0x18, 0x2, {0x1, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1e) fstat(r4, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$PPPIOCSMRU(r2, 0x40047452, &(0x7f0000000300)) keyctl$chown(0x4, r5, r6, r7) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f00000003c0)=ANY=[@ANYBLOB="b04bc2a470b1ddce0a18d263859190c7f8683859b004a3156ec8b5610356863359bc5b8fbcb67eebcb4bf140fbb95b45078ca44b2bf92b1555ab220abe95a888b4636cf058247ba1c60454265d7d6102b1e8ed50396fb0c47be9989a9d0a8433eeb4d81717c1e40f3da00e1aafd29ce78b1c1569e6adde3a58e41324a2d588b9fb8bea640373a319c73d772ad49d20f67cd3acc124ba3f442b2dac"]) fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000340)=0x1) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000840)={{{@in6=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@broadcast}}, &(0x7f0000000940)=0xe8) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000980)={@ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, r8}, 0x14) tkill(r0, 0x15) setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f00000000c0)={0x2, 0x8, 0x81}, 0xc) 2033/05/18 03:37:32 executing program 1: perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:32 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x0, 0x0) ioctl$LOOP_SET_FD(r3, 0x4c00, r2) sched_setaffinity(0x0, 0x1, &(0x7f00009ad000)=0xffffffffffffffff) r4 = syz_open_dev$dspn(&(0x7f0000baaff6)='/dev/dsp#\x00', 0x1, 0x0) openat(r4, &(0x7f0000000040)='./file0\x00', 0x400080, 0x10) poll(&(0x7f0000000000)=[{r4}], 0x1, 0x0) readv(r4, &(0x7f00000000c0), 0x2000000000000270) ioctl$int_in(r4, 0x80000000005001, &(0x7f0000003ff8)) request_key(&(0x7f0000000380)='id_legacy\x00', &(0x7f00000003c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000400)='/dev/dsp#\x00', 0x0) 2033/05/18 03:37:32 executing program 1: mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000a80)=""/246) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x100000}) ioctl$EVIOCGREP(r0, 0x40047451, &(0x7f0000000000)=""/174) close(r0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/loop-control\x00', 0x0, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000300)={0x0}) ioctl$DRM_IOCTL_LOCK(0xffffffffffffffff, 0x4008642a, &(0x7f0000000340)={r3, 0x2}) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000500)) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000080)={0x100000000006, 0xffffffffffffffff, 0xfffffffffffffffe}) openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x101000, 0x0) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f00000000c0)) truncate(&(0x7f0000000280)='./file1\x00', 0x0) open(&(0x7f0000b91ff9)='./file1\x00', 0x0, 0x0) open(&(0x7f0000000100)='./file1\x00', 0x40, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vcs\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(0xffffffffffffffff, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000240)={0x3c, 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="00634040002b16956879613001ab070fa85d9e0200000000000027be8081b269445c6e121b501c8749000000000000a2a6c31200000000e4ffffffff"], 0x0, 0x0, &(0x7f00000002c0)}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000580), 0xf4, 0x0, &(0x7f0000000400)="9ddf4f4fcd5b51dcce17ceb01975e0f2242779c2a7785f85d479c6ebf49c182dbe1700390bee961630cc6c9b7a349711e99ccb8172d38236a6ff92271a694598fbe49cd5d610e2da538ccfe40595a85d54d8ae67e827e4c37824044c6b35a7a72c7ec1f9490dad1557a474542d2f58dbf040aae17b2bddae2e8d046993e7ec5371d270c3743a4c3325d62a368cb6d3d1a0a44cd31c589aa4cb996cd11377074081bf48857501ef26e8b318cf3f0ef385b804b2818dff17c3a1961288fcab3c94ef9e11290db92aa21e05c44ea25a8a6cd15df48cbef2776fd68cdfc1dca6eda167911a7d0bcb279162fd21291f40b1d48fcab361"}) add_key$keyring(&(0x7f00000006c0)='keyring\x00', &(0x7f0000000700)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffff8) add_key$user(&(0x7f0000000740)='user\x00', &(0x7f0000000780)={0x73, 0x79, 0x7a}, &(0x7f00000007c0)="ca6b67ed9620c50bd4dbd3f39d4d0ab8ec771373a4668891800da571f4fbbeb3b35e0b85c7c4235aa10adbd866cbfb95ccf28fd61825c5e07db1a81ee10b42a03effc1c2705a1a6bd8a3f0a1d6e46a3b945d9633128af3478cdf6efbb21f4eac53f133c8a89ece9860874da5ccf7b4cdc6061719196b99d464c76b12ef1c1c7df2503b28dc1fddb5922b2bdb718d63a1106b6c78df1b6a164591b0bc8ff5c7b4a1b006c8bc51cb73dabd68384ea530fcfb586dac5418fd6d90fa41146304f88a8792164fcfad3314c4e05338fd27efcbbfdec70fe6fcbe88bcdfa83f85", 0xdd, 0x0) add_key$user(&(0x7f00000008c0)='user\x00', &(0x7f0000000900)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000940)="49e6e39cb8d81fd49217795e40275b9736d42c99d15240338b8b60f86fb5d2ec47787ec7142e9533999c6e6fcc463fdeee557837e9f1c617ee3efab64702531bed67cf42f77ecbccb9799c2119452364dd1dd749762832b2cff593cf16c780b4d703", 0x62, 0xfffffffffffffffc) 2033/05/18 03:37:32 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000380)={0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0x0, 0x20000802, &(0x7f0000000000)={0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) sendto$inet(r0, &(0x7f0000000040)="ce", 0x1, 0x0, &(0x7f0000000080)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000280)='tunl0\x00', 0x10) sendto$inet(r0, &(0x7f00000000c0)='p', 0x1, 0x0, &(0x7f0000000100)={0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}, 0x10) 2033/05/18 03:37:32 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x0, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:32 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = socket$l2tp(0x18, 0x1, 0x1) ioctl$PPPIOCGMRU(r3, 0x80047453, &(0x7f0000000200)) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000280)=ANY=[@ANYBLOB="0000000000000000959f9e30fbd080eaa38b3efa2330fbdf084fdd5a7ccb826a77eb37cd2816ffde1e8a07219ec5a5c544e66714001cbe5e3ce9ecacc0a820f019c7d774d34761ccf063c92eec6aab10c4eaae21c801046835f68a2cd9d405226de48810b87872821264efaa65e4955161b5f3337f4ed44e74"]) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f00000000c0)={{{@in=@remote, @in=@remote}}, {{@in=@multicast1}, 0x0, @in6=@remote}}, &(0x7f00000001c0)=0xe8) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) fallocate(r5, 0x0, 0x6, 0x4) 2033/05/18 03:37:32 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:33 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x0, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:33 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:33 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x81, 0x0) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000240)=ANY=[@ANYBLOB="0300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000e0de48f754d8a51850ab081d8948511474e3d5cd859ce445903941141d9f694b8f6faab6ab39d2e9cac0000000000000000000000"]) 2033/05/18 03:37:33 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x0, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:33 executing program 2: r0 = gettid() r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x40000, 0x0) connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 'bond0\x00'}}, 0x1e) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r1, 0xc02c5341, &(0x7f0000000100)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) sendmsg$netrom(r1, &(0x7f0000000340)={&(0x7f00000001c0)=@ax25={0x3, {"15829f3181d4ff"}, 0x20}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000200)="80d0c6f5e3cd5503b6c5123de152deec35bfb26421d1337395a1e0fab33639f29701e3863ef79c38d3aa1296f02ced39a77da3e899535a5c29c241ff851cb102dfe9c3ef799cbf22b2ae83f80fb5e900abc5530ea2ad672b822a186e9a4270fedb58d25158514969cf4e5cf5b8ecdec9e9e35a6d46943d38e991cf5b8a666f3d4b7521e43c78149e66617de7f285aaa6ef00186e82c0527d79814f15c81a39c8bec93cf7fe2c24e3749fd783bd083aaf748bb19e453fa7", 0xb7}, {&(0x7f00000002c0)="23877df1faacd17ada19ceddc1c1197948be762869b5dfb8e8", 0x19}], 0x2, 0x0, 0x0, 0x4040040}, 0x8000) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:33 executing program 1: madvise(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x12) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00005d5ff3)={0x2, 0x4e20, @rand_addr}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip6_flowlabel\x00') readv(r1, &(0x7f0000001400)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000000140)=""/46, 0x2e}, {&(0x7f00000012c0)=""/226, 0xe2}], 0x3) setsockopt$inet_tcp_int(r0, 0x6, 0x200000000000a, &(0x7f0000000380)=0x4, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_dccp_buf(r2, 0x21, 0xd, &(0x7f00000001c0)=""/71, &(0x7f0000000240)=0x9b) sendto$inet(r0, &(0x7f0000de1fff), 0x0, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) sendto$inet(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x4044000, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000280)={0x0, 0xf4, "398f9419fbefe3e1e49bcf185607944e293d29dae021009da7593d7cca2164f464a785485870f49d14aa213e221c549ee60d62b6bfc21b98e711d763727699c34c1785d527c91e0e88a77d0bd3e14831b6229550cba5745d3c33e4b441ac127cf9204bb2f9989c20f13eae42e92101dfd53539815b97a95dd39b879b5ab7ed3ae2e732546d9f127297b27cfd9e71c8e45a8c9c2653b4463538994912dd301d065247126550954de12afa0ff96d281052036dfda6c52e461db82d101e891b4dccf50651fb16284bd1f3ac3c6e6c3d422cfc725fdc8d2e9ef5feda248a2525b7d648406f37d779bda481ee99e25a2afc4ce52ae211"}, &(0x7f0000000000)=0xfc) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000400)={'filter\x00'}, &(0x7f0000000480)=0x78) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000040)={r3, 0x6}, &(0x7f0000000180)=0x8) sendto$inet(r0, &(0x7f0000b0c000)="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", 0x601, 0xc004, 0x0, 0x0) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f00000003c0)) recvmsg(r0, &(0x7f00000000c0)={&(0x7f0000df6f80)=@generic, 0x80, &(0x7f0000df5000)=[{&(0x7f0000df5f6e)=""/146, 0x92}, {&(0x7f0000df6f74)=""/140, 0x8c}, {&(0x7f0000df5f18)=""/232, 0xe8}, {&(0x7f0000409fa2)=""/94, 0x5e}, {&(0x7f00007a7f19)=""/231, 0x272}, {&(0x7f0000d76f57)=""/169, 0xa9}, {&(0x7f00009e3000)=""/230, 0xe6}, {&(0x7f0000923000)=""/37, 0x25}, {&(0x7f0000554fcf)=""/49, 0x31}], 0x9, &(0x7f0000c27ff9)=""/7, 0x7, 0x8000}, 0x40000100) 2033/05/18 03:37:33 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:33 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) r3 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x0, 0x10080) ioctl$RNDADDENTROPY(r3, 0x40085203, &(0x7f00000000c0)={0x732a, 0x24, "be418e29fc3c3b102946de6bcbb58813ce348e1d7e1dd924ad08826df58e061bc31cf07a"}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:34 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x0, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:34 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="8bd641a42bd411fc1db8408e5e2de94921ea0691f5d0983429dfdad875961e55ac00000000"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:34 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:34 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x0, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x0, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) r2 = syz_open_dev$mouse(&(0x7f0000000100)='/dev/input/mouse#\x00', 0x1f, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x4000, 0x0) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) rt_sigprocmask(0x0, &(0x7f0000000200)={0x1}, 0x0, 0x8) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) 2033/05/18 03:37:35 executing program 1: madvise(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x12) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00005d5ff3)={0x2, 0x4e20, @rand_addr}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip6_flowlabel\x00') readv(r1, &(0x7f0000001400)=[{&(0x7f0000000100)=""/33, 0x21}, {&(0x7f0000000140)=""/46, 0x2e}, {&(0x7f00000012c0)=""/226, 0xe2}], 0x3) setsockopt$inet_tcp_int(r0, 0x6, 0x200000000000a, &(0x7f0000000380)=0x4, 0x4) r2 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_dccp_buf(r2, 0x21, 0xd, &(0x7f00000001c0)=""/71, &(0x7f0000000240)=0x9b) sendto$inet(r0, &(0x7f0000de1fff), 0x0, 0x20008005, &(0x7f0000db4ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) sendto$inet(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x4044000, &(0x7f0000000100)={0x2, 0x4e20}, 0x10) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000280)={0x0, 0xf4, "398f9419fbefe3e1e49bcf185607944e293d29dae021009da7593d7cca2164f464a785485870f49d14aa213e221c549ee60d62b6bfc21b98e711d763727699c34c1785d527c91e0e88a77d0bd3e14831b6229550cba5745d3c33e4b441ac127cf9204bb2f9989c20f13eae42e92101dfd53539815b97a95dd39b879b5ab7ed3ae2e732546d9f127297b27cfd9e71c8e45a8c9c2653b4463538994912dd301d065247126550954de12afa0ff96d281052036dfda6c52e461db82d101e891b4dccf50651fb16284bd1f3ac3c6e6c3d422cfc725fdc8d2e9ef5feda248a2525b7d648406f37d779bda481ee99e25a2afc4ce52ae211"}, &(0x7f0000000000)=0xfc) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000400)={'filter\x00'}, &(0x7f0000000480)=0x78) sendto$inet(r0, &(0x7f0000b0c000)="11a58fde7649496403db92ed306004b3d3cbfc195485c3b895d864ab91a3aebde4f70a917a91ec9612d004000a7b43a35bb73249ede41bf5c05ab608fb7b74ffd57f6e8e43cf9cb723fc0d8d8cabbbbae3a5fde8ad6f52d667c512596f50b9962aa2193688d872a7eeca57801742d74d39c4b003a5e292e077ed102e7999329aab95a3d96363505f76c86a6d2352dd8025207ae531701f1ce353d6b017eb64000000bc2e9f8b66fe4a8e64f0fc7a0aa55d4103e1d7d5b0dd5750071e9b3a786021678a86fcbb0b9f9364ec0f0310306fef9c21b3b20d8b44423b495299cea2c6f40c377a72534453ad7f5af27b1efb2514ace1f9a68cf205a9ddb8fd954e34bde3612e6e05686cf3b968a14bd3a356f7b8d20214c0f7a388ef5ea8d063c65f2aabff685e69f86b4a0b3697f8bfbfe66796f0489ad2e49bdbc1742941c28c88cb93e1f8ccc3db4782cdf9cbd797ddc8d7b1364da50ad48e081a38622280169eba5c6a3bf9b5f15bdf8a8b6483340a3297c31154905db209195c28f15d10153204fbe0586516c714ddc939e0eb68c73969e81fc6f215b476ddf3fcf1a604603360089dadba2779cfed9027ac163067fc0d7592ac8a013b907372a42b242405241ac1f63f85a52fff2d78b30e87a156b5cfa133dabc259bb027bec5eb8c8eb623e9776a13d3ce972a6769de8a78153f498084a244b0146b77be3d1cba7b02fe8906ed8a88f105c763d1772825b986d52823bf38b6f95eca494fd9c64497874b9f450bec65311493cc108b27611eaa6819305a3730d29368f25f7e816d60884a1e0271c3c786ad36391366ac3b65f04c148974f6973005c5ff73d6f0b3f7e44c65da7c4115c4ee543991e4ad26938384cafffffffc8f7e79aaf1b8ef37f627e3c7168ecda2cf224a491bea6129fcd954b88dbb2d29464931bcd5378041db67ddc70ee856ae09c1b26b9ada008a7d52bf1a160606865a29794f36b2a3811c66e9fe27af8fc8356374e37f3eca244367fb535dde71fae4683710761b89f18820d4f06065450c3d1f76fa26ef28320edf6c36480af14f4444edb40ebb3f8ea264486ec31c40c7f0007a69c24da10db6f60da3e648f16b5fc6b5a5c6217e46c1f3ff354a8b49beb3b46a69dcb4c5d547a7b7ba8fe22da0173f9fe80f4bd47afbec4d2e0d3c91b1a326d8bb9fded873e87f847032af52bd6d129f3ce3f11ea9d0b4250af7eaa2649d9972b9b8dc773c869b3a431eac7f55d6bb92dc29f08d7d8959e2af7571efb7ec88eac4b62850e8f6b60d4a5d06d66875b4bd260a9014a2eb88621f4c6eb3f9ed2190b48acf0358d8b82fb4794535fcb8dd50ba86d23d230a94f07a768142ff3b4c8558dac21726b6279980c238041f26e86c8e3fa83028345999464e3e37d610ab7c15daaffb744a505a3dd9802b3721f29553ee23e1cf376f12cc3fe6b7ac76bd13da44356855be096155e355c9cad31fcdeedc6679c531bc1a2765dc8777108ec5e31d793005e718a9ced77d6505e44f649128a29f5264fecba132f9f5016eaf690751edd64d903b36ceb2b08042c60e9e97f8bc985476e6088a5ebd3743c2358171b30b16d730a5dd49c92fa19cc267e2c1927f200fc3d23a804f0a12b06a6a88a2685051ab28f1721209ada2c14b557a49423795b07040d510bb21ce5d15acedd18cb7cb7a93389ceb934206e4ffb220048a7a82fb3c251d0a31ba5af9eb0c16e29f33f9d0a78f5e6300cf04d17eb5f67711cafa0d4e99eeaf0f8fdbd34170318879a0d12c01891127ba7b677d204268524c5af1d7dc27176826302e34f9d35d2f2eefad5f22f68929d3456c11d5f00d4a8ce8b784bca8088805731eff2d47024c2da68abc2d2c0f7806d7d76cdf489f3bffa75cb826bc0809331d89a3255a498b8150d4ae31d03414ab244939455b6377c2917cb2d8a9f9ebf282657e417860e49ac94f4a838aefd34f28960a78da47933252d8cb2fdb27d413ee54502cd1bf75585468b77b8dca627cab29ef0a5297ee3dcb4c987520804e9a5f45e8241019281bab7e30f4b008bf0edf3b6fb5e8d1c2ab619b2eb84293d636a6a37d716cd8e102b7099676693cb7b01031b57ee93fd22cb18229893fd4d4ef87f1596879ac9f61b2f0c35be34cb6e6f75087ff963c188d43bcb464a95e956e75", 0x601, 0xc004, 0x0, 0x0) fcntl$F_GET_FILE_RW_HINT(r1, 0x40d, &(0x7f00000003c0)) recvmsg(r0, &(0x7f00000000c0)={&(0x7f0000df6f80)=@generic, 0x80, &(0x7f0000df5000)=[{&(0x7f0000df5f6e)=""/146, 0x92}, {&(0x7f0000df6f74)=""/140, 0x8c}, {&(0x7f0000df5f18)=""/232, 0xe8}, {&(0x7f0000409fa2)=""/94, 0x5e}, {&(0x7f00007a7f19)=""/231, 0x272}, {&(0x7f0000d76f57)=""/169, 0xa9}, {&(0x7f00009e3000)=""/230, 0xe6}, {&(0x7f0000923000)=""/37, 0x25}, {&(0x7f0000554fcf)=""/49, 0x31}], 0x9, &(0x7f0000c27ff9)=""/7, 0x7, 0x8000}, 0x40000100) 2033/05/18 03:37:35 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) tkill(r0, 0x15) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x40c00, 0x0) 2033/05/18 03:37:35 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = gettid() r3 = getpgid(r2) sched_setattr(r3, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/am_droprate\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffff9c, 0x84, 0xa, &(0x7f00000000c0)={0x4, 0x1, 0x8000, 0x7fffffff, 0x7, 0x8, 0x8, 0x8000, 0x0}, &(0x7f0000000100)=0x20) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000140)={r5, 0x57, 0x6, [0x2, 0xfffffffffffffffc, 0x2, 0x4, 0x4, 0x8]}, 0x14) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:35 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b0"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x0, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x0, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:35 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:36 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x200000) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:36 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x0, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:36 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:36 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b0"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:36 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x100) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:36 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:36 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e21, @rand_addr=0x81}}, 0x3, 0x3ff, 0x80, 0x80, 0x80}, &(0x7f0000000100)=0x98) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000002c0)={r3, 0x82}, 0x8) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000000000000000000020000000000000000000000000000000000000000000000da00e30000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000db42328c19595d84cd6586bffe1e8a296c830a3b54"]) 2033/05/18 03:37:36 executing program 1: r0 = syz_open_dev$sndctrl(&(0x7f0000006000)='/dev/snd/controlC#\x00', 0x0, 0x0) syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x1000, 0x14400) ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f00000001c0)=0xfffffffffffffffc) 2033/05/18 03:37:36 executing program 1: mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f0000000a80)=""/246) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x100000}) ioctl$EVIOCGREP(r0, 0x40047451, &(0x7f0000000000)=""/174) close(r0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/loop-control\x00', 0x0, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000300)={0x0}) ioctl$DRM_IOCTL_LOCK(0xffffffffffffffff, 0x4008642a, &(0x7f0000000340)={r3, 0x2}) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000500)) ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, &(0x7f0000000080)={0x100000000006, 0xffffffffffffffff, 0xfffffffffffffffe}) openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x101000, 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x1023c) ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f00000000c0)) truncate(&(0x7f0000000280)='./file1\x00', 0x0) open(&(0x7f0000b91ff9)='./file1\x00', 0x0, 0x0) open(&(0x7f0000000100)='./file1\x00', 0x40, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vcs\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000240)={0x3c, 0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="00634040002b16956879613001ab070fa85d9e0200000000000027be8081b269445c6e121b501c8749000000000000a2a6c31200000000e4ffffffff"], 0x0, 0x0, &(0x7f00000002c0)}) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000580), 0xfb, 0x0, &(0x7f0000000400)="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"}) add_key$user(&(0x7f00000003c0)='user\x00', &(0x7f0000000580)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00000005c0)="5ebcad14db3313fec9ecd36cf8880128cee9fcbbd555bb95b577abe115e67857d82f3759a1bfcc696eb2884a3d1c41290aa6a0c694d92e2dd57ee96f9317e9697543487996974e8fe8088db12e7de295f3b33106138a3a8b342eede65c73f7276ce2c6545bbf499f752291c3ecea13bde3241c8a96c43e6d4e654bd294f5328a43c0bb676736412f7c3a4135eb29479876a144dd9f365b23e9084434b4454a8af21b75e3c24db5091447409e6d452477b48c47bf8664ec35d8f17f8e5224719e2525ce2a2a44fd4cacba19786d8b7152b6", 0xd1, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000006c0)='keyring\x00', &(0x7f0000000700)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffff8) add_key$user(&(0x7f0000000740)='user\x00', &(0x7f0000000780)={0x73, 0x79, 0x7a}, &(0x7f00000007c0)="ca6b67ed9620c50bd4dbd3f39d4d0ab8ec771373a4668891800da571f4fbbeb3b35e0b85c7c4235aa10adbd866cbfb95ccf28fd61825c5e07db1a81ee10b42a03effc1c2705a1a6bd8a3f0a1d6e46a3b945d9633128af3478cdf6efbb21f4eac53f133c8a89ece9860874da5ccf7b4cdc6061719196b99d464c76b12ef1c1c7df2503b28dc1fddb5922b2bdb718d63a1106b6c78df1b6a164591b0bc8ff5c7b4a1b006c8bc51cb73dabd68384ea530fcfb586dac5418fd6d90fa41146304f88a8792164fcfad3314c4e05338fd27efcbbfdec70fe6fcbe", 0xd7, 0x0) add_key$user(&(0x7f00000008c0)='user\x00', &(0x7f0000000900)={0x73, 0x79, 0x7a, 0x0}, &(0x7f0000000940)="49e6e39cb8d81fd49217795e40275b9736d42c99d15240338b8b60f86fb5d2ec47787ec7142e9533999c6e6fcc463fdeee557837e9f1c617ee3efab64702531bed67cf42f77ecbccb9799c2119452364dd1dd749762832b2cff593cf16c780b4d703", 0x62, 0xfffffffffffffffc) 2033/05/18 03:37:36 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x400000) getpid() fcntl$getown(r0, 0x9) fcntl$getown(r0, 0x9) r2 = getpid() r3 = getpgid(r2) sched_setattr(r3, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000000c0)=ANY=[@ANYBLOB="8bf9ce2af92c6ec7b393116ea897ff085249356745de254933ec1a9361d977350cd338e850c64ed7ca7f07bd7354dae51a3be49a933fa638d69aa420f7816472bdf3560da52b9e3c01b7e30022346a"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:36 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)=ANY=[@ANYBLOB="c14b4f20bc2b2752de8d65a685bb4b41e006c33bc96249487565142d250d3e18a9a2cbd2a7c0174cdae8bc538383c690977980d332299da0fccc87334644eec8808ab6aeb6e48443d9335d8a36ef6651b6686e0578fd24b3472e5f0000000000000000"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:37 executing program 1: socketpair$inet_icmp_raw(0x2, 0x3, 0x1, &(0x7f0000000000)={0xffffffffffffffff}) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r1) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) rmdir(&(0x7f00000000c0)='./file0\x00') setsockopt$IP_VS_SO_SET_TIMEOUT(0xffffffffffffffff, 0x0, 0x48a, &(0x7f0000000040)={0x0, 0x5}, 0xc) recvmsg(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000001580)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000001e00)=[{&(0x7f0000001680)=""/82, 0x52}, {&(0x7f0000001780)=""/80, 0x50}, {&(0x7f0000001ac0)=""/148, 0x94}, {&(0x7f0000001b80)=""/167, 0xa7}, {&(0x7f0000001c40)=""/246, 0xf6}, {&(0x7f0000001d40)=""/158, 0x9e}], 0x6, &(0x7f0000001e80)=""/148, 0x94, 0xfff}, 0x2) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000001f40)={0x0, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x4, 0x1}, &(0x7f0000001840)=0x90) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000002000)={0x0, 0x20a, 0x5, 0x7fff, r3}, &(0x7f0000002040)=0x10) inotify_init1(0x0) ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x0) r4 = memfd_create(&(0x7f0000001800)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x1023c) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000140)=ANY=[@ANYBLOB]) ioctl$DRM_IOCTL_AGP_ALLOC(r4, 0xc0206434, &(0x7f0000001380)={0x2, 0x0, 0x0, 0xead7}) ioctl$DRM_IOCTL_AGP_FREE(r4, 0x40206435, &(0x7f0000001400)={0x9, r5, 0x10003, 0x2}) ioctl$DRM_IOCTL_AGP_FREE(0xffffffffffffffff, 0x40206435, &(0x7f0000000200)) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000001440)) process_vm_writev(0x0, &(0x7f0000001100)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1, &(0x7f0000001700)=[{&(0x7f0000001280)=""/164, 0xa4}, {&(0x7f0000001140)=""/187, 0xbb}, {&(0x7f0000001480)=""/8, 0x8}, {&(0x7f00000014c0)=""/177, 0xb1}, {&(0x7f0000001640)=""/3, 0x3}], 0x5, 0x0) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000001880)={0x0, {{0xa, 0x0, 0xffff, @mcast1={0xff, 0x1, [], 0x1}, 0x1f}}, 0x1, 0x3, [{{0xa, 0x0, 0x2, @mcast1={0xff, 0x1, [], 0x1}, 0x9}}, {{0xa, 0x4e23, 0x59c, @local={0xfe, 0x80, [], 0xaa}, 0x5}}, {{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}}}]}, 0x210) openat$ipvs(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) ioprio_get$uid(0x0, 0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) sendto$inet(r6, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x0, &(0x7f0000385ff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) ioctl$sock_SIOCOUTQ(r6, 0x5411, &(0x7f0000000040)) setsockopt$sock_int(r6, 0x1, 0x2000000000000009, &(0x7f0000534ffc)=0x4, 0x4) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000080)={0x0}) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, &(0x7f0000001240), &(0x7f0000001340)=0x4) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000001200)={r7}) 2033/05/18 03:37:37 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x0, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:37 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b0"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:37 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x404000, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r3, 0x4048ae9b, &(0x7f00000000c0)={0x2, 0x0, [0x1, 0x200, 0x4, 0x0, 0xc0, 0xf7, 0xfffffffffffffe01, 0x91b]}) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:37 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) r2 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x8, 0x0) ioctl$KDADDIO(r2, 0x4b34, 0x40000000) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:37 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:37 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:37 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000140)='/dev/usbmon#\x00', 0x401, 0x100) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000180)={0x4, 0xdd3, 0x7}) r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = userfaultfd(0x0) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'rfc4543(gcm(aes))\x00'}, 0x58) setsockopt$ALG_SET_AEAD_AUTHSIZE(r3, 0x117, 0x5, 0x0, 0x7ff) r4 = getpgid(0x0) sched_setattr(r4, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$EBT_SO_GET_INIT_INFO(r5, 0x0, 0x82, &(0x7f0000000080)={'filter\x00'}, &(0x7f0000000100)=0x78) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r1, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:37 executing program 1: getsockname$netlink(0xffffffffffffffff, &(0x7f0000000180), &(0x7f00000001c0)=0xc) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x100, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='/exe\x00\x00\x00\x00\x00\x00') fcntl$setlease(0xffffffffffffffff, 0x400, 0x2) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x0, 0x0) ioctl$fiemap(r1, 0x40086602, &(0x7f00000002c0)=ANY=[@ANYBLOB="cd000800f211afca7547b3b7f03ca9cb419700000000000000000000000000000000000000007d264992000000009000000004000000f05582312ebd1527a058a13d04000000000000001400000000000000000000000000000000000000000000000008"]) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f00000000c0)={0x0, 0x80000, r1}) ioctl$DRM_IOCTL_GEM_FLINK(r1, 0xc008640a, &(0x7f0000000100)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r0, 0xc008640a, &(0x7f0000000140)={0x0, r2}) 2033/05/18 03:37:37 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup\x00', 0x200002, 0x0) fchdir(r0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) rmdir(&(0x7f00000000c0)='./file0\x00') setsockopt$IP_VS_SO_SET_TIMEOUT(0xffffffffffffffff, 0x0, 0x48a, &(0x7f0000000040)={0x0, 0x5}, 0xc) recvmsg(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000001580)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @broadcast}}}, 0x80, &(0x7f0000001e00)=[{&(0x7f0000001680)=""/82, 0x52}, {&(0x7f0000001780)=""/80, 0x50}, {&(0x7f0000001ac0)=""/148, 0x94}, {&(0x7f0000001b80)=""/167, 0xa7}, {&(0x7f0000001c40)=""/246, 0xf6}, {&(0x7f0000001d40)=""/158, 0x9e}], 0x6, &(0x7f0000001e80)=""/148, 0x94, 0xfff}, 0x2) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000001f40)={0x0, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x4, 0x1}, &(0x7f0000001840)=0x90) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000002000)={0x0, 0x20a, 0x5, 0x7fff}, &(0x7f0000002040)=0x10) inotify_init1(0x0) ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x0) r2 = memfd_create(&(0x7f0000001800)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x0) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x1023c) ioctl$fiemap(0xffffffffffffffff, 0xc020660b, &(0x7f0000000140)=ANY=[@ANYBLOB]) ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000001380)={0x2, 0x0, 0x0, 0xead7}) ioctl$DRM_IOCTL_AGP_FREE(r2, 0x40206435, &(0x7f0000001400)={0x9, r3, 0x10003, 0x2}) ioctl$DRM_IOCTL_AGP_FREE(0xffffffffffffffff, 0x40206435, &(0x7f0000000200)) ioctl$sock_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000001440)) process_vm_writev(0x0, &(0x7f0000001100)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1, &(0x7f0000001700)=[{&(0x7f0000001280)=""/164, 0xa4}, {&(0x7f0000001140)=""/187, 0xbb}, {&(0x7f0000001480)=""/8, 0x8}, {&(0x7f00000014c0)=""/177, 0xb1}, {&(0x7f0000001640)=""/3, 0x3}], 0x5, 0x0) setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000001880)={0x0, {{0xa, 0x0, 0xffff, @mcast1={0xff, 0x1, [], 0x1}, 0x1f}}, 0x1, 0x3, [{{0xa, 0x0, 0x2, @mcast1={0xff, 0x1, [], 0x1}, 0x9}}, {{0xa, 0x4e23, 0x59c, @local={0xfe, 0x80, [], 0xaa}, 0x5}}, {{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}}}]}, 0x210) openat$ipvs(0xffffffffffffff9c, &(0x7f00000013c0)='/proc/sys/net/ipv4/vs/sync_qlen_max\x00', 0x2, 0x0) ioprio_get$uid(0x0, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000b9bff0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) sendto$inet(r4, &(0x7f0000fa0fff), 0xffffffffffffffbb, 0x20020003, &(0x7f0000385ff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) ioctl$sock_SIOCOUTQ(r4, 0x5411, &(0x7f0000000040)) setsockopt$sock_int(r4, 0x1, 0x2000000000000009, &(0x7f0000534ffc)=0x4, 0x4) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000080)={0x0}) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x29, &(0x7f0000001240), &(0x7f0000001340)=0x4) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000001200)={r5}) 2033/05/18 03:37:38 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x0, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) r3 = syz_open_dev$vcsa(&(0x7f0000000180)='/dev/vcsa#\x00', 0x3fb, 0x240001) ioctl$RNDZAPENTCNT(r3, 0x5204, &(0x7f00000001c0)=0x3b) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) r4 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x0, 0x200000) r5 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x0, 0x0) linkat(r4, &(0x7f00000000c0)='./file0\x00', r5, &(0x7f0000000140)='./file0\x00', 0x1400) 2033/05/18 03:37:38 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000280)=[{r0, 0x100}, {r1, 0x600}, {r0, 0x1636}, {r1, 0x2}, {r0, 0x408}], 0x5, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) pipe2(&(0x7f0000000100)={0xffffffffffffffff}, 0x4000) ioctl$KVM_NMI(r2, 0xae9a) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x8800, 0x0) ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000240)=0x8) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000280)=0x10000, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$ASHMEM_GET_SIZE(r1, 0x7704, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f00000001c0)=ANY=[@ANYBLOB="0071a907c1e996ca52e28d563843f78e96b816c6a7db07d6b899848e89a86e9f0f4e4757496543110ef0019d88029008c14525b9c7a332945b07a53a97c763001bce45f5f720006071dd70597e9a8b9cb2e095919330667252"]) tkill(r0, 0x15) r5 = syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x401, 0x40000) ioctl$PIO_FONT(r1, 0x4b61, &(0x7f00000002c0)="c8010de4b8e7f793c27111b89dbc728407784d758aa0e90a5c0356c8688b8acbea574ef64b75a289c80e5ca27aea7c72f5646c44b7f87ae9653b30459175fe1cb86c680fa24bd2ac5f780ba00100008000000000ea1a328ee104e09e08ebe078014a86b029d07a653a98a897e6b47871bf9b49ec99ba3fc66d4e96a561c24a3e027084d04eec5a5d1964") ioctl$TIOCCONS(r5, 0x541d) 2033/05/18 03:37:38 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0x0) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0x0) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0x0) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000), 0x0, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:38 executing program 1: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000440)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000500), &(0x7f0000000bc0)=0x8) r1 = open(&(0x7f0000000380)='./file0\x00', 0x1ffff, 0x400000000000005) ioctl$TIOCLINUX7(0xffffffffffffffff, 0x541c, &(0x7f0000000900)={0x7, 0x8}) setsockopt$inet_tcp_int(r1, 0x6, 0x0, &(0x7f00000003c0), 0xf4) r2 = perf_event_open(&(0x7f0000000240)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000340)={0x124, @time, 0x1, {0x8}, 0x101, 0x2, 0x80000001}) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x0, 0x0) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000580)='/dev/sequencer\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r3, 0x80045301, &(0x7f0000000980)) ioctl$LOOP_CLR_FD(r3, 0x7003) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000840)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000800)={&(0x7f0000000a80)=ANY=[@ANYBLOB="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"], 0x1}, 0x1}, 0x40000) getsockopt$inet6_opts(r2, 0x29, 0x3b, &(0x7f0000000080)=""/53, &(0x7f00000008c0)=0xfffffffffffffeb0) ioctl$DRM_IOCTL_SET_MASTER(r0, 0x641e) timerfd_gettime(0xffffffffffffffff, &(0x7f0000000300)) sendmsg$IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000940)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)=ANY=[@ANYBLOB="dd000000"], 0x1}, 0x1, 0x0, 0x0, 0x80}, 0x40) getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f00000000c0), &(0x7f0000000100)=0x30c) sendmsg$IPVS_CMD_GET_DEST(r4, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10080804}, 0xc, &(0x7f0000000780)={&(0x7f0000000c40)=ANY=[]}, 0x1}, 0x4000000) mlock2(&(0x7f0000a93000/0x2000)=nil, 0x2000, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000a00)='./cgroup.net\x00', 0x200002, 0x0) eventfd(0x2) fchdir(0xffffffffffffffff) r5 = creat(&(0x7f0000000040)='./file1\x00', 0x0) fcntl$setstatus(r5, 0x4, 0x0) 2033/05/18 03:37:39 executing program 1 (fault-call:4 fault-nth:0): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 338.581779] FAULT_INJECTION: forcing a failure. [ 338.581779] name failslab, interval 1, probability 0, space 0, times 0 [ 338.593230] CPU: 0 PID: 23374 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 338.600413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.609760] Call Trace: [ 338.612359] dump_stack+0x194/0x24d [ 338.615984] ? arch_local_irq_restore+0x53/0x53 [ 338.620657] should_fail+0x8c0/0xa40 [ 338.624370] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 338.629472] ? lock_downgrade+0x980/0x980 [ 338.633613] ? get_pid_task+0xbc/0x140 [ 338.637507] ? proc_fail_nth_write+0x9b/0x1d0 [ 338.641988] ? map_files_get_link+0x3a0/0x3a0 [ 338.646490] ? find_held_lock+0x35/0x1d0 [ 338.650563] ? check_same_owner+0x320/0x320 [ 338.654876] ? __lock_is_held+0xb6/0x140 [ 338.658960] ? rcu_note_context_switch+0x710/0x710 [ 338.663895] should_failslab+0xec/0x120 [ 338.667864] __kmalloc_track_caller+0x5f/0x760 [ 338.672446] ? strncpy_from_user+0x430/0x430 [ 338.676847] ? strndup_user+0x62/0xb0 [ 338.680641] memdup_user+0x2c/0x90 [ 338.684175] strndup_user+0x62/0xb0 [ 338.687803] SyS_mount+0x3c/0x120 [ 338.691239] ? copy_mnt_ns+0xb30/0xb30 [ 338.695136] do_syscall_64+0x281/0x940 [ 338.699015] ? vmalloc_sync_all+0x30/0x30 [ 338.703157] ? _raw_spin_unlock_irq+0x27/0x70 [ 338.707665] ? finish_task_switch+0x1c1/0x7e0 [ 338.712156] ? syscall_return_slowpath+0x550/0x550 [ 338.717092] ? syscall_return_slowpath+0x2ac/0x550 [ 338.722014] ? prepare_exit_to_usermode+0x350/0x350 [ 338.727036] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 338.732412] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.737271] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 338.742451] RIP: 0033:0x454e79 [ 338.745619] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 338.753308] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 338.760559] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 338.767816] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 338.775073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 2033/05/18 03:37:39 executing program 1 (fault-call:4 fault-nth:1): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 338.782331] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000000 [ 338.828067] FAULT_INJECTION: forcing a failure. [ 338.828067] name failslab, interval 1, probability 0, space 0, times 0 [ 338.839425] CPU: 1 PID: 23376 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 338.846600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.855953] Call Trace: [ 338.858532] dump_stack+0x194/0x24d [ 338.862186] ? arch_local_irq_restore+0x53/0x53 [ 338.866871] ? __save_stack_trace+0x7e/0xd0 [ 338.871188] should_fail+0x8c0/0xa40 [ 338.874904] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 338.880006] ? kasan_kmalloc+0xad/0xe0 [ 338.883890] ? __kmalloc_track_caller+0x15e/0x760 [ 338.888731] ? memdup_user+0x2c/0x90 [ 338.892443] ? strndup_user+0x62/0xb0 [ 338.896233] ? SyS_mount+0x3c/0x120 [ 338.899858] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 338.904871] ? find_held_lock+0x35/0x1d0 [ 338.908948] ? check_same_owner+0x320/0x320 [ 338.913265] ? rcu_note_context_switch+0x710/0x710 [ 338.918188] ? __check_object_size+0x8b/0x530 [ 338.922696] should_failslab+0xec/0x120 [ 338.926673] __kmalloc_track_caller+0x5f/0x760 [ 338.931252] ? strncpy_from_user+0x430/0x430 [ 338.935665] ? strndup_user+0x62/0xb0 [ 338.939461] ? _copy_from_user+0x99/0x110 [ 338.943603] memdup_user+0x2c/0x90 [ 338.947143] strndup_user+0x62/0xb0 [ 338.950759] SyS_mount+0x6b/0x120 [ 338.954196] ? copy_mnt_ns+0xb30/0xb30 [ 338.958077] do_syscall_64+0x281/0x940 [ 338.961962] ? vmalloc_sync_all+0x30/0x30 [ 338.966104] ? _raw_spin_unlock_irq+0x27/0x70 [ 338.970604] ? finish_task_switch+0x1c1/0x7e0 [ 338.975094] ? syscall_return_slowpath+0x550/0x550 [ 338.980027] ? syscall_return_slowpath+0x2ac/0x550 [ 338.984976] ? prepare_exit_to_usermode+0x350/0x350 [ 338.989993] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 338.995358] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.000205] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 339.005386] RIP: 0033:0x454e79 [ 339.008564] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 339.016259] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 2033/05/18 03:37:39 executing program 1 (fault-call:4 fault-nth:2): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:39 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x0, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 339.023512] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 339.030773] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 339.038026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 339.045285] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000001 [ 339.101649] FAULT_INJECTION: forcing a failure. [ 339.101649] name failslab, interval 1, probability 0, space 0, times 0 [ 339.113064] CPU: 1 PID: 23382 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 339.120254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.129608] Call Trace: [ 339.132188] dump_stack+0x194/0x24d [ 339.135810] ? arch_local_irq_restore+0x53/0x53 [ 339.140488] should_fail+0x8c0/0xa40 [ 339.144370] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 339.149454] ? __kmalloc_track_caller+0x15e/0x760 [ 339.154309] ? strndup_user+0x62/0xb0 [ 339.158105] ? SyS_mount+0x6b/0x120 [ 339.161737] ? trace_hardirqs_off+0x10/0x10 [ 339.166059] ? proc_fail_nth_write+0x9b/0x1d0 [ 339.170551] ? map_files_get_link+0x3a0/0x3a0 [ 339.175054] ? find_held_lock+0x35/0x1d0 [ 339.179127] ? check_same_owner+0x320/0x320 [ 339.183442] ? lock_release+0xa40/0xa40 [ 339.187412] ? check_same_owner+0x320/0x320 [ 339.191740] ? rcu_note_context_switch+0x710/0x710 [ 339.196663] should_failslab+0xec/0x120 [ 339.200625] kmem_cache_alloc_trace+0x4b/0x740 [ 339.205201] ? kasan_check_write+0x14/0x20 [ 339.209426] ? _copy_from_user+0x99/0x110 [ 339.213558] copy_mount_options+0x5f/0x2e0 [ 339.217773] SyS_mount+0x87/0x120 [ 339.221208] ? copy_mnt_ns+0xb30/0xb30 [ 339.225078] do_syscall_64+0x281/0x940 [ 339.228945] ? vmalloc_sync_all+0x30/0x30 [ 339.233102] ? _raw_spin_unlock_irq+0x27/0x70 [ 339.237583] ? finish_task_switch+0x1c1/0x7e0 [ 339.242059] ? syscall_return_slowpath+0x550/0x550 [ 339.246973] ? syscall_return_slowpath+0x2ac/0x550 [ 339.251884] ? prepare_exit_to_usermode+0x350/0x350 [ 339.256901] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 339.262249] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.267076] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 339.272250] RIP: 0033:0x454e79 [ 339.275439] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 339.283137] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 339.290396] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 339.297658] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 339.304919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 339.312167] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000002 2033/05/18 03:37:40 executing program 1 (fault-call:4 fault-nth:3): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:40 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:40 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000), 0x0, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:40 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:40 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000080)={0xff, 0x5, 0x40, 0x10000, 0x6, 0x2, 0x8, 0xfffffffffffffe01, 0x3, 0x1}) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:40 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x0, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:40 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:40 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)={0xfffffffffffffffd}) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000180)='/dev/dmmidi#\x00', 0x7fffffff, 0x20000) ioctl$TCGETS(r2, 0x5401, &(0x7f00000001c0)) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, &(0x7f0000000100)={'IDLETIMER\x00'}, &(0x7f0000000200)=0x1e) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) [ 339.988844] FAULT_INJECTION: forcing a failure. [ 339.988844] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 340.000705] CPU: 1 PID: 23413 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 340.007874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.017219] Call Trace: [ 340.019804] dump_stack+0x194/0x24d [ 340.023435] ? arch_local_irq_restore+0x53/0x53 [ 340.028100] should_fail+0x8c0/0xa40 [ 340.031840] ? is_bpf_text_address+0x7b/0x120 [ 340.036346] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 340.041447] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 340.046630] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 340.051805] ? rcutorture_record_progress+0x10/0x10 [ 340.056807] ? is_bpf_text_address+0xa4/0x120 [ 340.061280] ? kernel_text_address+0xd1/0xe0 [ 340.065670] ? __unwind_start+0x169/0x330 [ 340.069812] ? __kernel_text_address+0xd/0x40 [ 340.074311] ? unwind_get_return_address+0x61/0xa0 [ 340.079226] ? __save_stack_trace+0x7e/0xd0 [ 340.083550] ? should_fail+0x23b/0xa40 [ 340.087431] ? save_stack+0xa3/0xd0 [ 340.091056] __alloc_pages_nodemask+0x327/0xdd0 [ 340.095720] ? trace_hardirqs_off+0x10/0x10 [ 340.100043] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 340.105054] ? find_held_lock+0x35/0x1d0 [ 340.109119] ? check_same_owner+0x320/0x320 [ 340.113437] ? lock_release+0xa40/0xa40 [ 340.117399] ? check_same_owner+0x320/0x320 [ 340.121701] cache_grow_begin+0x72/0x640 [ 340.125756] kmem_cache_alloc_trace+0x3f1/0x740 [ 340.130420] ? kasan_check_write+0x14/0x20 [ 340.134647] copy_mount_options+0x5f/0x2e0 [ 340.138882] SyS_mount+0x87/0x120 [ 340.142332] ? copy_mnt_ns+0xb30/0xb30 [ 340.146209] do_syscall_64+0x281/0x940 [ 340.150082] ? vmalloc_sync_all+0x30/0x30 [ 340.154222] ? _raw_spin_unlock_irq+0x27/0x70 [ 340.158712] ? finish_task_switch+0x1c1/0x7e0 [ 340.163198] ? syscall_return_slowpath+0x550/0x550 [ 340.168110] ? syscall_return_slowpath+0x2ac/0x550 [ 340.173032] ? prepare_exit_to_usermode+0x350/0x350 [ 340.178061] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 340.183412] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.188239] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.193406] RIP: 0033:0x454e79 [ 340.196582] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 340.204273] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 340.211528] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 340.218782] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 340.226036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 2033/05/18 03:37:40 executing program 1 (fault-call:4 fault-nth:4): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 340.233292] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000003 [ 340.287139] FAULT_INJECTION: forcing a failure. [ 340.287139] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 340.298969] CPU: 1 PID: 23419 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 340.306160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.315495] Call Trace: [ 340.318078] dump_stack+0x194/0x24d [ 340.321698] ? arch_local_irq_restore+0x53/0x53 [ 340.326349] should_fail+0x8c0/0xa40 [ 340.330042] ? find_held_lock+0x35/0x1d0 [ 340.334086] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 340.339183] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 340.344355] ? print_irqtrace_events+0x270/0x270 [ 340.349093] ? print_irqtrace_events+0x270/0x270 [ 340.353827] ? trace_hardirqs_off+0x10/0x10 [ 340.358133] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 340.363139] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 340.367885] ? retint_kernel+0x10/0x10 [ 340.371751] ? find_held_lock+0x35/0x1d0 [ 340.375791] ? should_fail+0x23b/0xa40 [ 340.379661] __alloc_pages_nodemask+0x327/0xdd0 [ 340.384309] ? lock_release+0xa40/0xa40 [ 340.388275] ? __alloc_pages_slowpath+0x2d10/0x2d10 [ 340.393281] ? find_held_lock+0x35/0x1d0 [ 340.397331] ? check_same_owner+0x320/0x320 [ 340.401635] cache_grow_begin+0x72/0x640 [ 340.405681] kmem_cache_alloc+0x400/0x760 [ 340.409804] ? map_files_get_link+0x3a0/0x3a0 [ 340.414284] getname_flags+0xcb/0x580 [ 340.418079] user_path_at_empty+0x2d/0x50 [ 340.422245] do_mount+0x15f/0x2bb0 [ 340.425768] ? copy_mount_string+0x40/0x40 [ 340.429983] ? rcu_pm_notify+0xc0/0xc0 [ 340.433868] ? copy_mount_options+0x5f/0x2e0 [ 340.438282] ? rcu_read_lock_sched_held+0x108/0x120 [ 340.443292] ? kmem_cache_alloc_trace+0x459/0x740 [ 340.448130] ? kasan_check_write+0x14/0x20 [ 340.452351] ? _copy_from_user+0x99/0x110 [ 340.456481] ? copy_mount_options+0x1f7/0x2e0 [ 340.460957] SyS_mount+0xab/0x120 [ 340.464386] ? copy_mnt_ns+0xb30/0xb30 [ 340.468265] do_syscall_64+0x281/0x940 [ 340.472129] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 340.477641] ? syscall_return_slowpath+0x550/0x550 [ 340.482545] ? syscall_return_slowpath+0x2ac/0x550 [ 340.487466] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 340.492809] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.497640] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.502815] RIP: 0033:0x454e79 [ 340.506010] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 340.513713] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 340.520967] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 340.528321] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 2033/05/18 03:37:41 executing program 1 (fault-call:4 fault-nth:5): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 340.535576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 340.543001] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000004 [ 340.592573] FAULT_INJECTION: forcing a failure. [ 340.592573] name failslab, interval 1, probability 0, space 0, times 0 [ 340.603914] CPU: 1 PID: 23421 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 340.611103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.620451] Call Trace: [ 340.623032] dump_stack+0x194/0x24d [ 340.626656] ? arch_local_irq_restore+0x53/0x53 [ 340.631320] ? lock_downgrade+0x980/0x980 [ 340.635479] should_fail+0x8c0/0xa40 [ 340.639186] ? trace_hardirqs_off+0x10/0x10 [ 340.643510] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 340.648611] ? is_bpf_text_address+0xa4/0x120 [ 340.653096] ? find_held_lock+0x35/0x1d0 [ 340.657167] ? check_same_owner+0x320/0x320 [ 340.661490] ? putname+0xee/0x130 [ 340.664924] ? filename_lookup+0x315/0x500 [ 340.669145] ? user_path_at_empty+0x40/0x50 [ 340.673461] ? rcu_note_context_switch+0x710/0x710 [ 340.678383] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.683756] should_failslab+0xec/0x120 [ 340.687729] kmem_cache_alloc+0x47/0x760 [ 340.691788] ? free_obj_work+0x690/0x690 [ 340.695860] alloc_vfsmnt+0xe0/0x9c0 [ 340.699564] ? path_lookupat+0x238/0xba0 [ 340.703616] ? mnt_free_id.isra.21+0x50/0x50 [ 340.708012] ? trace_hardirqs_off+0x10/0x10 [ 340.712324] ? putname+0xee/0x130 [ 340.715758] ? putname+0xee/0x130 [ 340.719206] ? rcu_read_lock_sched_held+0x108/0x120 [ 340.724220] ? find_held_lock+0x35/0x1d0 [ 340.728293] ? __get_fs_type+0x8a/0xc0 [ 340.732182] ? lock_downgrade+0x980/0x980 [ 340.736325] ? module_unload_free+0x5b0/0x5b0 [ 340.740803] ? lock_release+0xa40/0xa40 [ 340.744759] ? mpi_resize+0x200/0x200 [ 340.748568] vfs_kern_mount.part.26+0x84/0x4a0 [ 340.753161] ? may_umount+0xa0/0xa0 [ 340.756780] ? _raw_read_unlock+0x22/0x30 [ 340.760924] ? __get_fs_type+0x8a/0xc0 [ 340.764812] do_mount+0xea4/0x2bb0 [ 340.768340] ? copy_mount_string+0x40/0x40 [ 340.772661] ? rcu_pm_notify+0xc0/0xc0 [ 340.777268] ? copy_mount_options+0x5f/0x2e0 [ 340.781660] ? rcu_read_lock_sched_held+0x108/0x120 [ 340.786666] ? kmem_cache_alloc_trace+0x459/0x740 [ 340.791500] ? kasan_check_write+0x14/0x20 [ 340.795720] ? _copy_from_user+0x99/0x110 [ 340.799864] ? copy_mount_options+0x1f7/0x2e0 [ 340.804359] SyS_mount+0xab/0x120 [ 340.807816] ? copy_mnt_ns+0xb30/0xb30 [ 340.811720] do_syscall_64+0x281/0x940 [ 340.815606] ? vmalloc_sync_all+0x30/0x30 [ 340.819749] ? finish_task_switch+0x1c1/0x7e0 [ 340.824242] ? syscall_return_slowpath+0x550/0x550 [ 340.829170] ? syscall_return_slowpath+0x2ac/0x550 [ 340.834091] ? prepare_exit_to_usermode+0x350/0x350 [ 340.839106] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 340.844473] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.849310] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 340.854490] RIP: 0033:0x454e79 [ 340.857659] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 340.865348] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 340.872624] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 340.879870] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 2033/05/18 03:37:41 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:41 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000), 0x0, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:41 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x0, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 340.887116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 340.894365] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000005 2033/05/18 03:37:41 executing program 1 (fault-call:4 fault-nth:6): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:41 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000080)={0x5, 0x6000}) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) socketpair(0x8, 0x801, 0x9986, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)={r4, &(0x7f00000001c0)="e76a8c7bc66032142f6a0c22c378bfa36c58937735f8a66a5bf550fe6e7df7ba9c4d32d06cb04249ca797b145589f639be9505bdb3c794b5f89f4271ada36f3d4311c840fac2b5a338bb0831d15ce60270186ae81fd5a18f7d698d2ba497238c16c53984637db46a4ecd9b7276ee608569ce08fa2ab6e47dc75239ef5351e3136e159bf1aa5fcd14dbcf3a6d97517206f39d632bc6309de1feab6d5b61b565b81ff07350019c53e6b8e04ab812b0db97fc5ed19a8a0e6b8302922cc82b9e3081ccc4b598e895307b9ed5e07578e3caf5876f7a7e09daa36943346576da52b07d104df2ba09f7906f46c035bbcf498921c9", &(0x7f0000000100)=""/82}, 0x18) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) [ 341.016316] FAULT_INJECTION: forcing a failure. [ 341.016316] name failslab, interval 1, probability 0, space 0, times 0 [ 341.027638] CPU: 1 PID: 23449 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 341.034841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.044194] Call Trace: [ 341.046773] dump_stack+0x194/0x24d [ 341.050381] ? arch_local_irq_restore+0x53/0x53 [ 341.055033] ? __unwind_start+0x169/0x330 [ 341.059160] ? __kernel_text_address+0xd/0x40 [ 341.063649] should_fail+0x8c0/0xa40 [ 341.067347] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 341.072456] ? save_stack+0xa3/0xd0 [ 341.076065] ? save_stack+0x43/0xd0 [ 341.079678] ? kasan_kmalloc+0xad/0xe0 [ 341.083547] ? kasan_slab_alloc+0x12/0x20 [ 341.087690] ? kmem_cache_alloc+0x12e/0x760 [ 341.091995] ? alloc_vfsmnt+0xe0/0x9c0 [ 341.095867] ? vfs_kern_mount.part.26+0x84/0x4a0 [ 341.100601] ? do_mount+0xea4/0x2bb0 [ 341.104299] ? find_held_lock+0x35/0x1d0 [ 341.108353] ? check_same_owner+0x320/0x320 [ 341.112653] ? rcu_note_context_switch+0x710/0x710 [ 341.117568] should_failslab+0xec/0x120 [ 341.121522] __kmalloc_track_caller+0x5f/0x760 [ 341.126087] ? do_raw_spin_trylock+0x190/0x190 [ 341.130648] ? kstrdup_const+0x39/0x50 [ 341.134519] kstrdup+0x39/0x70 [ 341.137691] kstrdup_const+0x39/0x50 [ 341.141388] alloc_vfsmnt+0x1a5/0x9c0 [ 341.145176] ? path_lookupat+0x238/0xba0 [ 341.149218] ? mnt_free_id.isra.21+0x50/0x50 [ 341.153610] ? trace_hardirqs_off+0x10/0x10 [ 341.157910] ? putname+0xee/0x130 [ 341.161346] ? putname+0xee/0x130 [ 341.164779] ? rcu_read_lock_sched_held+0x108/0x120 [ 341.169778] ? find_held_lock+0x35/0x1d0 [ 341.173821] ? __get_fs_type+0x8a/0xc0 [ 341.177686] ? lock_downgrade+0x980/0x980 [ 341.181809] ? module_unload_free+0x5b0/0x5b0 [ 341.186283] ? lock_release+0xa40/0xa40 [ 341.190248] ? mpi_resize+0x200/0x200 [ 341.194036] vfs_kern_mount.part.26+0x84/0x4a0 [ 341.198600] ? may_umount+0xa0/0xa0 [ 341.202208] ? _raw_read_unlock+0x22/0x30 [ 341.206349] ? __get_fs_type+0x8a/0xc0 [ 341.210219] do_mount+0xea4/0x2bb0 [ 341.213750] ? copy_mount_string+0x40/0x40 [ 341.217966] ? rcu_pm_notify+0xc0/0xc0 [ 341.221834] ? copy_mount_options+0x5f/0x2e0 [ 341.226227] ? rcu_read_lock_sched_held+0x108/0x120 [ 341.231223] ? kmem_cache_alloc_trace+0x459/0x740 [ 341.236044] ? kasan_check_write+0x14/0x20 [ 341.240261] ? _copy_from_user+0x99/0x110 [ 341.244386] ? copy_mount_options+0x1f7/0x2e0 [ 341.248862] SyS_mount+0xab/0x120 [ 341.252290] ? copy_mnt_ns+0xb30/0xb30 [ 341.256159] do_syscall_64+0x281/0x940 [ 341.260029] ? vmalloc_sync_all+0x30/0x30 [ 341.264171] ? _raw_spin_unlock_irq+0x27/0x70 [ 341.268647] ? finish_task_switch+0x1c1/0x7e0 [ 341.273122] ? syscall_return_slowpath+0x550/0x550 [ 341.278033] ? syscall_return_slowpath+0x2ac/0x550 [ 341.282947] ? prepare_exit_to_usermode+0x350/0x350 [ 341.287945] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 341.293290] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 341.298129] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 341.303296] RIP: 0033:0x454e79 [ 341.306465] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 341.314156] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 341.321405] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 341.328654] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 341.335902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 341.343155] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000006 2033/05/18 03:37:42 executing program 1 (fault-call:4 fault-nth:7): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:42 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r1) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) mkdirat$cgroup(0xffffffffffffffff, &(0x7f0000000540)='syz1\x00', 0x1ff) timer_getoverrun(0x0) io_setup(0x8, &(0x7f0000000300)=0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000440)='/dev/snd/pcmC#D#p\x00', 0xb5b, 0x200602) io_cancel(r2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2, 0x6, r1, &(0x7f0000000380)="f7de57a4fed014315a139ba43ce9d3c094b5313fb0f3336b4f649a20aeb6f9f98475b1fec118f6e112f2c30aaefc899552a1256ec9671c7fd48839359da7854a59f2db7cd81bba783d9181a0cf37981157b9e4ec43d9f632c831fcbceee6ff4bdf8f8ee80c6e991b84d63960e54649af2eb83d7d2ed8a1de8da1c0e690b41a91cc8096ed5999da19b24ad2e3858563f6d6c4ca299752dbb28caa21ee15310763774a52d30194eb", 0xa7, 0x7, 0x0, 0x0, r3}, &(0x7f00000004c0)) r4 = syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0x8, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e20, @loopback=0x7f000001}}, 0x20, 0x5e, 0x1f, 0x8, 0xa0}, &(0x7f00000002c0)=0x98) setsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000340)=ANY=[@ANYRES32=r5, @ANYBLOB="0200040000040101010005b98c5b03e35dbc46de12931b00"], 0x10) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r6, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) ioctl$DRM_IOCTL_AGP_INFO(0xffffffffffffffff, 0x80386433, &(0x7f0000000580)=""/73) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r6, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:42 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:42 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:42 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x0, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:42 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x3}, &(0x7f00000001c0)="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", 0x1000, 0xfffffffffffffffd) r4 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f00000011c0)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$link(0x8, r3, r4) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r5, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r5, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r5, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x6, 0x800) 2033/05/18 03:37:42 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:42 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x630100, 0x0) ioctl$VHOST_GET_VRING_BASE(r3, 0xc008af12, &(0x7f00000000c0)) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) [ 342.385312] FAULT_INJECTION: forcing a failure. [ 342.385312] name failslab, interval 1, probability 0, space 0, times 0 [ 342.396649] CPU: 0 PID: 23467 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 342.403847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.413194] Call Trace: [ 342.415773] dump_stack+0x194/0x24d [ 342.419385] ? arch_local_irq_restore+0x53/0x53 [ 342.424042] ? debug_check_no_locks_freed+0x3c0/0x3c0 [ 342.429209] ? pcpu_alloc+0x146/0x1120 [ 342.433079] should_fail+0x8c0/0xa40 [ 342.436770] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 342.441855] ? find_held_lock+0x35/0x1d0 [ 342.445895] ? find_held_lock+0x35/0x1d0 [ 342.449942] ? check_same_owner+0x320/0x320 [ 342.454248] ? rcu_note_context_switch+0x710/0x710 [ 342.459157] ? find_held_lock+0x35/0x1d0 [ 342.463210] should_failslab+0xec/0x120 [ 342.467169] kmem_cache_alloc_trace+0x4b/0x740 [ 342.471727] ? lock_downgrade+0x980/0x980 [ 342.475852] ? lock_release+0xa40/0xa40 [ 342.479804] kernfs_mount_ns+0xb5/0x8b0 [ 342.483755] ? kernfs_super_ns+0x70/0x70 [ 342.487797] sysfs_mount+0xc2/0x1c0 [ 342.491410] ? sysfs_kill_sb+0x40/0x40 [ 342.495279] ? alloc_pages_current+0xbe/0x1e0 [ 342.499756] ? security_sb_copy_data+0x81/0xb0 [ 342.504319] mount_fs+0x66/0x2d0 [ 342.507668] vfs_kern_mount.part.26+0xc6/0x4a0 [ 342.512230] ? may_umount+0xa0/0xa0 [ 342.515838] ? _raw_read_unlock+0x22/0x30 [ 342.519965] ? __get_fs_type+0x8a/0xc0 [ 342.523833] do_mount+0xea4/0x2bb0 [ 342.527354] ? copy_mount_string+0x40/0x40 [ 342.531569] ? rcu_pm_notify+0xc0/0xc0 [ 342.535439] ? copy_mount_options+0x5f/0x2e0 [ 342.539826] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.544820] ? kmem_cache_alloc_trace+0x459/0x740 [ 342.549640] ? kasan_check_write+0x14/0x20 [ 342.553854] ? _copy_from_user+0x99/0x110 [ 342.557979] ? copy_mount_options+0x1f7/0x2e0 [ 342.562453] SyS_mount+0xab/0x120 [ 342.565888] ? copy_mnt_ns+0xb30/0xb30 [ 342.569754] do_syscall_64+0x281/0x940 [ 342.573620] ? vmalloc_sync_all+0x30/0x30 [ 342.577744] ? _raw_spin_unlock_irq+0x27/0x70 [ 342.582216] ? finish_task_switch+0x1c1/0x7e0 [ 342.586691] ? syscall_return_slowpath+0x550/0x550 [ 342.591599] ? syscall_return_slowpath+0x2ac/0x550 [ 342.596504] ? prepare_exit_to_usermode+0x350/0x350 [ 342.601497] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 342.606841] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.611664] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 342.616828] RIP: 0033:0x454e79 [ 342.619998] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 342.627687] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 2033/05/18 03:37:43 executing program 1 (fault-call:4 fault-nth:8): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 342.634932] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 342.642176] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 342.649421] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 342.656667] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000007 [ 342.710228] FAULT_INJECTION: forcing a failure. [ 342.710228] name failslab, interval 1, probability 0, space 0, times 0 [ 342.721571] CPU: 1 PID: 23483 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 342.728843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.738190] Call Trace: [ 342.740779] dump_stack+0x194/0x24d [ 342.744413] ? arch_local_irq_restore+0x53/0x53 [ 342.749093] should_fail+0x8c0/0xa40 [ 342.752806] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 342.757905] ? lock_downgrade+0x980/0x980 [ 342.762060] ? lock_release+0xa40/0xa40 [ 342.766034] ? unwind_next_frame.part.6+0x1a6/0xb40 [ 342.771055] ? find_held_lock+0x35/0x1d0 [ 342.775134] ? check_same_owner+0x320/0x320 [ 342.779454] ? sget_userns+0x27d/0xe40 [ 342.783332] ? rcu_note_context_switch+0x710/0x710 [ 342.788260] should_failslab+0xec/0x120 [ 342.792224] kmem_cache_alloc_trace+0x4b/0x740 [ 342.796805] ? sysfs_mount+0xc2/0x1c0 [ 342.800592] ? mount_fs+0x66/0x2d0 [ 342.804138] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 342.808892] ? do_mount+0xea4/0x2bb0 [ 342.812593] ? SyS_mount+0xab/0x120 [ 342.816209] ? do_syscall_64+0x281/0x940 [ 342.820286] sget_userns+0x2a3/0xe40 [ 342.824002] ? kernfs_sop_show_path+0x190/0x190 [ 342.828666] ? kernfs_sop_show_options+0x180/0x180 [ 342.833592] ? destroy_unused_super.part.6+0xd0/0xd0 [ 342.838692] ? check_same_owner+0x320/0x320 [ 342.842997] ? rcu_pm_notify+0xc0/0xc0 [ 342.846889] ? kernfs_mount_ns+0xb5/0x8b0 [ 342.851043] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.856057] ? kmem_cache_alloc_trace+0x459/0x740 [ 342.860904] ? lock_downgrade+0x980/0x980 [ 342.865052] kernfs_mount_ns+0x13d/0x8b0 [ 342.869114] ? kernfs_super_ns+0x70/0x70 [ 342.873168] sysfs_mount+0xc2/0x1c0 [ 342.876788] ? sysfs_kill_sb+0x40/0x40 [ 342.880654] ? alloc_pages_current+0xbe/0x1e0 [ 342.885160] ? security_sb_copy_data+0x81/0xb0 [ 342.889736] mount_fs+0x66/0x2d0 [ 342.893104] vfs_kern_mount.part.26+0xc6/0x4a0 [ 342.897686] ? may_umount+0xa0/0xa0 [ 342.901301] ? _raw_read_unlock+0x22/0x30 [ 342.905435] ? __get_fs_type+0x8a/0xc0 [ 342.909312] do_mount+0xea4/0x2bb0 [ 342.912841] ? copy_mount_string+0x40/0x40 [ 342.917066] ? rcu_pm_notify+0xc0/0xc0 [ 342.920946] ? copy_mount_options+0x5f/0x2e0 [ 342.925351] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.930365] ? kmem_cache_alloc_trace+0x459/0x740 [ 342.935188] ? kasan_check_write+0x14/0x20 [ 342.939410] ? _copy_from_user+0x99/0x110 [ 342.943553] ? copy_mount_options+0x1f7/0x2e0 [ 342.948042] SyS_mount+0xab/0x120 [ 342.951490] ? copy_mnt_ns+0xb30/0xb30 [ 342.955381] do_syscall_64+0x281/0x940 [ 342.959253] ? vmalloc_sync_all+0x30/0x30 [ 342.963396] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 342.968924] ? syscall_return_slowpath+0x550/0x550 [ 342.973840] ? syscall_return_slowpath+0x2ac/0x550 [ 342.978756] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 342.984108] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.988950] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 342.994139] RIP: 0033:0x454e79 [ 342.997314] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:43 executing program 1 (fault-call:4 fault-nth:9): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 343.005000] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 343.012261] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 343.019521] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 343.026786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 343.034055] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000008 [ 343.076115] FAULT_INJECTION: forcing a failure. [ 343.076115] name failslab, interval 1, probability 0, space 0, times 0 [ 343.087812] CPU: 0 PID: 23485 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 343.095014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.104383] Call Trace: [ 343.106975] dump_stack+0x194/0x24d [ 343.110611] ? arch_local_irq_restore+0x53/0x53 [ 343.115287] should_fail+0x8c0/0xa40 [ 343.119000] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 343.124101] ? find_next_zero_bit+0xe3/0x110 [ 343.128516] ? trace_hardirqs_off+0x10/0x10 [ 343.132843] ? __lock_is_held+0xb6/0x140 [ 343.136907] ? find_held_lock+0x35/0x1d0 [ 343.140966] ? __lock_is_held+0xb6/0x140 [ 343.145055] ? check_same_owner+0x320/0x320 [ 343.149386] ? rcu_note_context_switch+0x710/0x710 [ 343.154317] ? rcu_note_context_switch+0x710/0x710 [ 343.159280] should_failslab+0xec/0x120 [ 343.163254] __kmalloc+0x63/0x760 [ 343.166695] ? lockdep_init_map+0x9/0x10 [ 343.170751] ? debug_mutex_init+0x2d/0x60 [ 343.174895] ? __list_lru_init+0xcf/0x750 [ 343.179032] __list_lru_init+0xcf/0x750 [ 343.183005] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 343.188880] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 343.193887] ? __lockdep_init_map+0xe4/0x650 [ 343.198295] ? lockdep_init_map+0x9/0x10 [ 343.202364] sget_userns+0x691/0xe40 [ 343.206081] ? kernfs_sop_show_path+0x190/0x190 [ 343.210770] ? kernfs_sop_show_options+0x180/0x180 [ 343.215706] ? destroy_unused_super.part.6+0xd0/0xd0 [ 343.220826] ? check_same_owner+0x320/0x320 [ 343.225165] ? rcu_pm_notify+0xc0/0xc0 [ 343.229066] ? rcu_read_lock_sched_held+0x108/0x120 [ 343.234085] ? kmem_cache_alloc_trace+0x459/0x740 [ 343.238926] ? lock_downgrade+0x980/0x980 [ 343.243080] kernfs_mount_ns+0x13d/0x8b0 [ 343.247140] ? kernfs_super_ns+0x70/0x70 [ 343.251205] sysfs_mount+0xc2/0x1c0 [ 343.254831] ? sysfs_kill_sb+0x40/0x40 [ 343.258719] ? alloc_pages_current+0xbe/0x1e0 [ 343.263212] ? security_sb_copy_data+0x81/0xb0 [ 343.267783] mount_fs+0x66/0x2d0 [ 343.271146] vfs_kern_mount.part.26+0xc6/0x4a0 [ 343.275716] ? may_umount+0xa0/0xa0 [ 343.279332] ? _raw_read_unlock+0x22/0x30 [ 343.283469] ? __get_fs_type+0x8a/0xc0 [ 343.287356] do_mount+0xea4/0x2bb0 [ 343.290910] ? copy_mount_string+0x40/0x40 [ 343.295140] ? rcu_pm_notify+0xc0/0xc0 [ 343.299020] ? copy_mount_options+0x5f/0x2e0 [ 343.303423] ? rcu_read_lock_sched_held+0x108/0x120 [ 343.308423] ? kmem_cache_alloc_trace+0x459/0x740 [ 343.313254] ? copy_mount_options+0x1f7/0x2e0 [ 343.317738] SyS_mount+0xab/0x120 [ 343.321176] ? copy_mnt_ns+0xb30/0xb30 [ 343.325057] do_syscall_64+0x281/0x940 [ 343.328945] ? vmalloc_sync_all+0x30/0x30 [ 343.333086] ? _raw_spin_unlock_irq+0x27/0x70 [ 343.337565] ? finish_task_switch+0x1c1/0x7e0 [ 343.342052] ? syscall_return_slowpath+0x550/0x550 [ 343.346965] ? syscall_return_slowpath+0x2ac/0x550 [ 343.351885] ? prepare_exit_to_usermode+0x350/0x350 [ 343.356885] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 343.362228] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.367060] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 343.372228] RIP: 0033:0x454e79 2033/05/18 03:37:43 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:43 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x70, 0x5, 0x3, 0x1, 0x100000000, 0x0, 0x5, 0x1000, 0x3, 0x7, 0x3, 0xfffffffffffffffd, 0x80000000, 0x3, 0x6, 0x5, 0x8, 0x9, 0x5, 0x6171a59, 0x1, 0x80000000, 0x200, 0x1, 0x1, 0x0, 0xa1d, 0x40, 0x0, 0xfffffffffffffffd, 0xc000000000, 0x4e, 0x3, 0x2, 0x200, 0x7ff, 0x9, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x10, 0xfffffffffffffffa, 0x4, 0x2, 0x8, 0x100000001, 0x1000}, r2, 0x1, r0, 0xb) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) [ 343.375397] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 343.383083] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 343.390335] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 343.397596] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 343.404852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 343.412108] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000009 2033/05/18 03:37:44 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x24000, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x100000001, 0x2000) ioctl$TIOCSCTTY(r3, 0x540e, 0xfffffffffffffe00) ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000140)=@get={0x1, &(0x7f0000000080)=""/54, 0x4b}) ioctl$SIOCSIFMTU(r2, 0x8922, &(0x7f0000000180)={'gretap0\x00', 0x5}) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) sched_setattr(r0, &(0x7f00000001c0)={0x30, 0x2, 0x1, 0x4fb0538b, 0x7, 0x1000, 0xf144, 0x4bed8738}, 0x0) tkill(r0, 0x15) 2033/05/18 03:37:44 executing program 1 (fault-call:4 fault-nth:10): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:44 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000100)={0x0, 0x3e, 0x3}, &(0x7f0000000200)=0x0) timer_getoverrun(r2) fsetxattr(r1, &(0x7f0000000240)=@known='security.selinux\x00', &(0x7f0000000280)='ppp1eth0wlan1userem0}\x00', 0x16, 0x3) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:44 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:44 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x0, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:44 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') 2033/05/18 03:37:44 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:44 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 344.336099] FAULT_INJECTION: forcing a failure. [ 344.336099] name failslab, interval 1, probability 0, space 0, times 0 [ 344.347921] CPU: 0 PID: 23518 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 344.355114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.364466] Call Trace: [ 344.367048] dump_stack+0x194/0x24d [ 344.370663] ? arch_local_irq_restore+0x53/0x53 [ 344.375323] ? kernel_text_address+0xd1/0xe0 [ 344.379729] ? __unwind_start+0x169/0x330 [ 344.383869] should_fail+0x8c0/0xa40 [ 344.387576] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 344.392685] ? save_stack+0x43/0xd0 [ 344.396303] ? kasan_kmalloc+0xad/0xe0 [ 344.400186] ? __kmalloc+0x162/0x760 [ 344.403892] ? __list_lru_init+0xcf/0x750 [ 344.408031] ? find_held_lock+0x35/0x1d0 [ 344.412085] ? __lock_is_held+0xb6/0x140 [ 344.416133] ? check_same_owner+0x320/0x320 [ 344.420462] ? rcu_note_context_switch+0x710/0x710 [ 344.425385] should_failslab+0xec/0x120 [ 344.429353] kmem_cache_alloc_node_trace+0x5a/0x760 [ 344.434367] ? mark_held_locks+0xaf/0x100 [ 344.438507] ? __raw_spin_lock_init+0x1c/0x100 [ 344.443079] __kmalloc_node+0x33/0x70 [ 344.446866] kvmalloc_node+0x99/0xd0 [ 344.450569] __list_lru_init+0x5d5/0x750 [ 344.454621] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 344.460499] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 344.465509] ? __lockdep_init_map+0xe4/0x650 [ 344.469911] ? lockdep_init_map+0x9/0x10 [ 344.473961] sget_userns+0x691/0xe40 [ 344.477667] ? kernfs_sop_show_path+0x190/0x190 [ 344.482339] ? kernfs_sop_show_options+0x180/0x180 [ 344.487261] ? destroy_unused_super.part.6+0xd0/0xd0 [ 344.492352] ? check_same_owner+0x320/0x320 [ 344.496656] ? rcu_pm_notify+0xc0/0xc0 [ 344.500535] ? rcu_read_lock_sched_held+0x108/0x120 [ 344.505534] ? kmem_cache_alloc_trace+0x459/0x740 [ 344.510371] ? lock_downgrade+0x980/0x980 [ 344.514507] kernfs_mount_ns+0x13d/0x8b0 [ 344.518556] ? kernfs_super_ns+0x70/0x70 [ 344.522614] sysfs_mount+0xc2/0x1c0 [ 344.526237] ? sysfs_kill_sb+0x40/0x40 [ 344.530121] ? alloc_pages_current+0xbe/0x1e0 [ 344.534628] ? security_sb_copy_data+0x81/0xb0 [ 344.539202] mount_fs+0x66/0x2d0 [ 344.542565] vfs_kern_mount.part.26+0xc6/0x4a0 [ 344.547144] ? may_umount+0xa0/0xa0 [ 344.550786] ? _raw_read_unlock+0x22/0x30 [ 344.554916] ? __get_fs_type+0x8a/0xc0 [ 344.558786] do_mount+0xea4/0x2bb0 [ 344.562308] ? copy_mount_string+0x40/0x40 [ 344.566524] ? rcu_pm_notify+0xc0/0xc0 [ 344.570402] ? copy_mount_options+0x5f/0x2e0 [ 344.574801] ? rcu_read_lock_sched_held+0x108/0x120 [ 344.579802] ? kmem_cache_alloc_trace+0x459/0x740 [ 344.584632] ? kasan_check_write+0x14/0x20 [ 344.588861] ? _copy_from_user+0x99/0x110 [ 344.592996] ? copy_mount_options+0x1f7/0x2e0 [ 344.597469] SyS_mount+0xab/0x120 [ 344.600903] ? copy_mnt_ns+0xb30/0xb30 [ 344.604782] do_syscall_64+0x281/0x940 [ 344.608649] ? vmalloc_sync_all+0x30/0x30 [ 344.612778] ? _raw_spin_unlock_irq+0x27/0x70 [ 344.617249] ? finish_task_switch+0x1c1/0x7e0 [ 344.621725] ? syscall_return_slowpath+0x550/0x550 [ 344.626640] ? syscall_return_slowpath+0x2ac/0x550 [ 344.631547] ? prepare_exit_to_usermode+0x350/0x350 [ 344.636552] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 344.641914] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 344.646743] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 344.651911] RIP: 0033:0x454e79 [ 344.655085] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 344.662785] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 344.670040] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 344.677297] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 2033/05/18 03:37:45 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) ioctl$KVM_S390_INTERRUPT_CPU(r3, 0x4010ae94, &(0x7f0000000080)={0x7, 0x1, 0x4}) 2033/05/18 03:37:45 executing program 1 (fault-call:4 fault-nth:11): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 344.684552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 344.691807] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000000a [ 344.745386] FAULT_INJECTION: forcing a failure. [ 344.745386] name failslab, interval 1, probability 0, space 0, times 0 [ 344.756706] CPU: 1 PID: 23537 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 344.763885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.773231] Call Trace: [ 344.775824] dump_stack+0x194/0x24d [ 344.779455] ? arch_local_irq_restore+0x53/0x53 [ 344.784121] ? __save_stack_trace+0x7e/0xd0 [ 344.788443] should_fail+0x8c0/0xa40 [ 344.792161] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 344.797267] ? kasan_kmalloc+0xad/0xe0 [ 344.801240] ? kmem_cache_alloc_trace+0x136/0x740 [ 344.806082] ? __memcg_init_list_lru_node+0x169/0x270 [ 344.811268] ? __list_lru_init+0x544/0x750 [ 344.815491] ? sget_userns+0x691/0xe40 [ 344.819390] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 344.824133] ? do_mount+0xea4/0x2bb0 [ 344.827824] ? SyS_mount+0xab/0x120 [ 344.831434] ? do_syscall_64+0x281/0x940 [ 344.835496] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 344.840862] ? find_held_lock+0x35/0x1d0 [ 344.844922] ? __lock_is_held+0xb6/0x140 [ 344.848977] ? check_same_owner+0x320/0x320 [ 344.853291] ? rcu_note_context_switch+0x710/0x710 [ 344.858212] should_failslab+0xec/0x120 [ 344.862172] kmem_cache_alloc_trace+0x4b/0x740 [ 344.866743] ? __kmalloc_node+0x33/0x70 [ 344.870708] ? __kmalloc_node+0x33/0x70 [ 344.874663] ? rcu_read_lock_sched_held+0x108/0x120 [ 344.879672] __memcg_init_list_lru_node+0x169/0x270 [ 344.884672] ? list_lru_add+0x7c0/0x7c0 [ 344.888635] ? __kmalloc_node+0x47/0x70 [ 344.892613] __list_lru_init+0x544/0x750 [ 344.896662] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 344.902535] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 344.907543] ? __lockdep_init_map+0xe4/0x650 [ 344.911941] ? lockdep_init_map+0x9/0x10 [ 344.915979] sget_userns+0x691/0xe40 [ 344.919669] ? kernfs_sop_show_path+0x190/0x190 [ 344.924315] ? kernfs_sop_show_options+0x180/0x180 [ 344.929222] ? destroy_unused_super.part.6+0xd0/0xd0 [ 344.934321] ? check_same_owner+0x320/0x320 [ 344.938629] ? rcu_pm_notify+0xc0/0xc0 [ 344.942509] ? rcu_read_lock_sched_held+0x108/0x120 [ 344.947510] ? kmem_cache_alloc_trace+0x459/0x740 [ 344.952342] ? lock_downgrade+0x980/0x980 [ 344.956488] kernfs_mount_ns+0x13d/0x8b0 [ 344.960547] ? kernfs_super_ns+0x70/0x70 [ 344.964605] sysfs_mount+0xc2/0x1c0 [ 344.968212] ? sysfs_kill_sb+0x40/0x40 [ 344.972086] ? alloc_pages_current+0xbe/0x1e0 [ 344.976575] ? security_sb_copy_data+0x81/0xb0 [ 344.981154] mount_fs+0x66/0x2d0 [ 344.984507] vfs_kern_mount.part.26+0xc6/0x4a0 [ 344.989073] ? may_umount+0xa0/0xa0 [ 344.992681] ? _raw_read_unlock+0x22/0x30 [ 344.996804] ? __get_fs_type+0x8a/0xc0 [ 345.000680] do_mount+0xea4/0x2bb0 [ 345.004219] ? copy_mount_string+0x40/0x40 [ 345.008449] ? rcu_pm_notify+0xc0/0xc0 [ 345.012322] ? copy_mount_options+0x5f/0x2e0 [ 345.016707] ? rcu_read_lock_sched_held+0x108/0x120 [ 345.021714] ? kmem_cache_alloc_trace+0x459/0x740 [ 345.026543] ? kasan_check_write+0x14/0x20 [ 345.030762] ? _copy_from_user+0x99/0x110 [ 345.034886] ? copy_mount_options+0x1f7/0x2e0 [ 345.039368] SyS_mount+0xab/0x120 [ 345.042808] ? copy_mnt_ns+0xb30/0xb30 [ 345.046674] do_syscall_64+0x281/0x940 [ 345.050539] ? vmalloc_sync_all+0x30/0x30 [ 345.054673] ? _raw_spin_unlock_irq+0x27/0x70 [ 345.059164] ? finish_task_switch+0x1c1/0x7e0 [ 345.063653] ? syscall_return_slowpath+0x550/0x550 [ 345.068567] ? syscall_return_slowpath+0x2ac/0x550 [ 345.073486] ? prepare_exit_to_usermode+0x350/0x350 [ 345.078489] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 345.083847] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 345.088679] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 345.093843] RIP: 0033:0x454e79 2033/05/18 03:37:45 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x0, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 345.097014] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 345.104710] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 345.111966] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 345.119220] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 345.126467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 345.133719] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000000b 2033/05/18 03:37:46 executing program 1 (fault-call:4 fault-nth:12): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:46 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:46 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:46 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='memory.swap.current\x00', 0x0, 0x0) ioctl$KDADDIO(r2, 0x4b34, 0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000e3ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000070000000000"]) 2033/05/18 03:37:46 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000140)=ANY=[@ANYBLOB="0000000000000000aa232832d75c4535813bce410b3ae11f589caa25c13ecbe57713e28016024fb8b4166d9b3eed4dd4d6636c0b6e7e5127680449d51c739520988d4383485eda95ef805fe2f8988bfd53837bac50fab6f76d95fe229ce3deb50f265da9c1699f79e627194af8a0ec4b927e88f847b5b0c94bff1d1714d5344aed795fa71ea7e260b20572fac2768cbaff4280f6b82d321cd2898176ca9d3956ef1355ac7fbbc82efdba82fadbcf365aba4c949a6a4bb35f8bbc6864e9bfef50d490b18c994c99954e134c4d82a05ca4fa3a95cbac399d9568c6bbe7bf4c0a198144f31376970cf7d9eff1844203"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') r3 = syz_open_dev$mouse(&(0x7f0000000040)='/dev/input/mouse#\x00', 0x9, 0x101000) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000080)={0x2, 0x0, [{}, {}]}) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:46 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:46 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:46 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x2, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dsp\x00', 0x123800, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f00000001c0)={0x7fffffff}, 0x1) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x16) pipe(&(0x7f0000000080)={0xffffffffffffffff}) getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r5, 0x84, 0x16, &(0x7f00000000c0)={0x5, [0x4, 0x0, 0x1f, 0xfeb, 0x9a3]}, &(0x7f0000000100)=0xe) [ 346.025704] FAULT_INJECTION: forcing a failure. [ 346.025704] name failslab, interval 1, probability 0, space 0, times 0 [ 346.037044] CPU: 1 PID: 23569 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 346.044224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.053559] Call Trace: [ 346.056174] dump_stack+0x194/0x24d [ 346.059793] ? arch_local_irq_restore+0x53/0x53 [ 346.064439] ? __save_stack_trace+0x7e/0xd0 [ 346.068741] should_fail+0x8c0/0xa40 [ 346.072434] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 346.077515] ? kasan_kmalloc+0xad/0xe0 [ 346.081380] ? kmem_cache_alloc_trace+0x136/0x740 [ 346.086206] ? __memcg_init_list_lru_node+0x169/0x270 [ 346.091373] ? __list_lru_init+0x544/0x750 [ 346.095583] ? sget_userns+0x691/0xe40 [ 346.099452] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 346.104194] ? do_mount+0xea4/0x2bb0 [ 346.107883] ? SyS_mount+0xab/0x120 [ 346.111486] ? do_syscall_64+0x281/0x940 [ 346.115531] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 346.120893] ? find_held_lock+0x35/0x1d0 [ 346.124934] ? __lock_is_held+0xb6/0x140 [ 346.128982] ? check_same_owner+0x320/0x320 [ 346.133286] ? rcu_note_context_switch+0x710/0x710 [ 346.138205] should_failslab+0xec/0x120 [ 346.142159] kmem_cache_alloc_trace+0x4b/0x740 [ 346.146718] ? __kmalloc_node+0x33/0x70 [ 346.150669] ? __kmalloc_node+0x33/0x70 [ 346.154619] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.159616] __memcg_init_list_lru_node+0x169/0x270 [ 346.164618] ? list_lru_add+0x7c0/0x7c0 [ 346.168573] ? __kmalloc_node+0x47/0x70 [ 346.172528] __list_lru_init+0x544/0x750 [ 346.176573] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 346.182435] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 346.187430] ? __lockdep_init_map+0xe4/0x650 [ 346.191818] ? lockdep_init_map+0x9/0x10 [ 346.195858] sget_userns+0x691/0xe40 [ 346.199548] ? kernfs_sop_show_path+0x190/0x190 [ 346.204192] ? kernfs_sop_show_options+0x180/0x180 [ 346.209097] ? destroy_unused_super.part.6+0xd0/0xd0 [ 346.214183] ? check_same_owner+0x320/0x320 [ 346.218486] ? rcu_pm_notify+0xc0/0xc0 [ 346.222354] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.227346] ? kmem_cache_alloc_trace+0x459/0x740 [ 346.232162] ? lock_downgrade+0x980/0x980 [ 346.236289] kernfs_mount_ns+0x13d/0x8b0 [ 346.240327] ? kernfs_super_ns+0x70/0x70 [ 346.244367] sysfs_mount+0xc2/0x1c0 [ 346.247970] ? sysfs_kill_sb+0x40/0x40 [ 346.251836] ? alloc_pages_current+0xbe/0x1e0 [ 346.256308] ? security_sb_copy_data+0x81/0xb0 [ 346.260868] mount_fs+0x66/0x2d0 [ 346.264219] vfs_kern_mount.part.26+0xc6/0x4a0 [ 346.268780] ? may_umount+0xa0/0xa0 [ 346.272383] ? _raw_read_unlock+0x22/0x30 [ 346.276509] ? __get_fs_type+0x8a/0xc0 [ 346.280372] do_mount+0xea4/0x2bb0 [ 346.283892] ? copy_mount_string+0x40/0x40 [ 346.288105] ? rcu_pm_notify+0xc0/0xc0 [ 346.291972] ? copy_mount_options+0x5f/0x2e0 [ 346.296356] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.301348] ? kmem_cache_alloc_trace+0x459/0x740 [ 346.306168] ? kasan_check_write+0x14/0x20 [ 346.310376] ? _copy_from_user+0x99/0x110 [ 346.314499] ? copy_mount_options+0x1f7/0x2e0 [ 346.318972] SyS_mount+0xab/0x120 [ 346.322400] ? copy_mnt_ns+0xb30/0xb30 [ 346.326262] do_syscall_64+0x281/0x940 [ 346.330125] ? vmalloc_sync_all+0x30/0x30 [ 346.334248] ? _raw_spin_unlock_irq+0x27/0x70 [ 346.338722] ? finish_task_switch+0x1c1/0x7e0 [ 346.343192] ? syscall_return_slowpath+0x550/0x550 [ 346.348115] ? syscall_return_slowpath+0x2ac/0x550 [ 346.353025] ? prepare_exit_to_usermode+0x350/0x350 [ 346.358025] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 346.363367] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 346.368187] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 346.373349] RIP: 0033:0x454e79 [ 346.376512] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 346.384196] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 346.391443] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 346.398700] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 346.405945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 346.413190] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000000c 2033/05/18 03:37:46 executing program 1 (fault-call:4 fault-nth:13): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 346.487735] FAULT_INJECTION: forcing a failure. [ 346.487735] name failslab, interval 1, probability 0, space 0, times 0 [ 346.499081] CPU: 0 PID: 23581 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 346.506263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.515605] Call Trace: [ 346.518194] dump_stack+0x194/0x24d [ 346.521818] ? arch_local_irq_restore+0x53/0x53 [ 346.526480] ? __save_stack_trace+0x7e/0xd0 [ 346.530801] should_fail+0x8c0/0xa40 [ 346.534509] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 346.539619] ? kasan_kmalloc+0xad/0xe0 [ 346.543506] ? kmem_cache_alloc_trace+0x136/0x740 [ 346.548350] ? __memcg_init_list_lru_node+0x169/0x270 [ 346.553516] ? __list_lru_init+0x544/0x750 [ 346.557727] ? sget_userns+0x691/0xe40 [ 346.561603] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 346.566339] ? do_mount+0xea4/0x2bb0 [ 346.570038] ? SyS_mount+0xab/0x120 [ 346.573657] ? do_syscall_64+0x281/0x940 [ 346.577716] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 346.583084] ? find_held_lock+0x35/0x1d0 [ 346.587147] ? __lock_is_held+0xb6/0x140 [ 346.591206] ? check_same_owner+0x320/0x320 [ 346.595522] ? rcu_note_context_switch+0x710/0x710 [ 346.600447] should_failslab+0xec/0x120 [ 346.604408] kmem_cache_alloc_trace+0x4b/0x740 [ 346.608990] ? __kmalloc_node+0x33/0x70 [ 346.612962] ? __kmalloc_node+0x33/0x70 [ 346.616935] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.621954] __memcg_init_list_lru_node+0x169/0x270 [ 346.626967] ? list_lru_add+0x7c0/0x7c0 [ 346.630929] ? __kmalloc_node+0x47/0x70 [ 346.635341] __list_lru_init+0x544/0x750 [ 346.639399] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 346.645283] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 346.650301] ? __lockdep_init_map+0xe4/0x650 [ 346.654717] ? lockdep_init_map+0x9/0x10 [ 346.658771] sget_userns+0x691/0xe40 [ 346.662468] ? kernfs_sop_show_path+0x190/0x190 [ 346.667139] ? kernfs_sop_show_options+0x180/0x180 [ 346.672065] ? destroy_unused_super.part.6+0xd0/0xd0 [ 346.677170] ? check_same_owner+0x320/0x320 [ 346.681491] ? rcu_pm_notify+0xc0/0xc0 [ 346.685387] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.690393] ? kmem_cache_alloc_trace+0x459/0x740 [ 346.695226] ? lock_downgrade+0x980/0x980 [ 346.699367] kernfs_mount_ns+0x13d/0x8b0 [ 346.703418] ? kernfs_super_ns+0x70/0x70 [ 346.707478] sysfs_mount+0xc2/0x1c0 [ 346.711095] ? sysfs_kill_sb+0x40/0x40 [ 346.714977] ? alloc_pages_current+0xbe/0x1e0 [ 346.719461] ? security_sb_copy_data+0x81/0xb0 [ 346.724040] mount_fs+0x66/0x2d0 [ 346.727393] vfs_kern_mount.part.26+0xc6/0x4a0 [ 346.731955] ? may_umount+0xa0/0xa0 [ 346.735561] ? _raw_read_unlock+0x22/0x30 [ 346.739688] ? __get_fs_type+0x8a/0xc0 [ 346.743569] do_mount+0xea4/0x2bb0 [ 346.747101] ? copy_mount_string+0x40/0x40 [ 346.751328] ? rcu_pm_notify+0xc0/0xc0 [ 346.755213] ? copy_mount_options+0x5f/0x2e0 [ 346.759613] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.764629] ? kmem_cache_alloc_trace+0x459/0x740 [ 346.769471] ? kasan_check_write+0x14/0x20 [ 346.773687] ? _copy_from_user+0x99/0x110 [ 346.777820] ? copy_mount_options+0x1f7/0x2e0 [ 346.782317] SyS_mount+0xab/0x120 [ 346.785754] ? copy_mnt_ns+0xb30/0xb30 [ 346.789630] do_syscall_64+0x281/0x940 [ 346.793506] ? vmalloc_sync_all+0x30/0x30 [ 346.797640] ? _raw_spin_unlock_irq+0x27/0x70 [ 346.802113] ? finish_task_switch+0x1c1/0x7e0 [ 346.806587] ? syscall_return_slowpath+0x550/0x550 [ 346.811501] ? syscall_return_slowpath+0x2ac/0x550 [ 346.816422] ? prepare_exit_to_usermode+0x350/0x350 [ 346.822435] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 346.827801] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 346.832647] entry_SYSCALL_64_after_hwframe+0x42/0xb7 2033/05/18 03:37:47 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:47 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 346.837841] RIP: 0033:0x454e79 [ 346.841024] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 346.848731] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 346.855989] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 346.863252] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 346.870517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 346.877781] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000000d 2033/05/18 03:37:47 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)=ANY=[@ANYBLOB="0000080200000000"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:47 executing program 1 (fault-call:4 fault-nth:14): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:47 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000440)='/dev/hwrng\x00', 0x80, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000100), &(0x7f0000000200)=0xc) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:47 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040), 0x0, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 347.002648] FAULT_INJECTION: forcing a failure. [ 347.002648] name failslab, interval 1, probability 0, space 0, times 0 [ 347.013995] CPU: 0 PID: 23605 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 347.021189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.030539] Call Trace: [ 347.033113] dump_stack+0x194/0x24d [ 347.036722] ? arch_local_irq_restore+0x53/0x53 [ 347.041369] ? finish_task_switch+0x1c1/0x7e0 [ 347.045838] ? finish_task_switch+0x182/0x7e0 [ 347.050319] should_fail+0x8c0/0xa40 [ 347.054030] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 347.059130] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 347.063865] ? __sched_text_start+0x8/0x8 [ 347.067990] ? find_held_lock+0x35/0x1d0 [ 347.072042] ? __lock_is_held+0xb6/0x140 [ 347.076086] ? check_same_owner+0x320/0x320 [ 347.080390] should_failslab+0xec/0x120 [ 347.084345] kmem_cache_alloc_trace+0x4b/0x740 [ 347.088907] ? __kmalloc_node+0x33/0x70 [ 347.092862] ? __kmalloc_node+0x33/0x70 [ 347.096813] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.101808] __memcg_init_list_lru_node+0x169/0x270 [ 347.106805] ? list_lru_add+0x7c0/0x7c0 [ 347.110755] ? __kmalloc_node+0x47/0x70 [ 347.114710] __list_lru_init+0x544/0x750 [ 347.118837] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 347.124699] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 347.129694] ? __lockdep_init_map+0xe4/0x650 [ 347.134082] ? lockdep_init_map+0x9/0x10 [ 347.138208] sget_userns+0x691/0xe40 [ 347.141898] ? kernfs_sop_show_path+0x190/0x190 [ 347.146570] ? kernfs_sop_show_options+0x180/0x180 [ 347.151481] ? destroy_unused_super.part.6+0xd0/0xd0 [ 347.156568] ? check_same_owner+0x320/0x320 [ 347.160869] ? rcu_pm_notify+0xc0/0xc0 [ 347.164737] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.169735] ? kmem_cache_alloc_trace+0x459/0x740 [ 347.174555] ? lock_downgrade+0x980/0x980 [ 347.178686] kernfs_mount_ns+0x13d/0x8b0 [ 347.182723] ? kernfs_super_ns+0x70/0x70 [ 347.186762] sysfs_mount+0xc2/0x1c0 [ 347.190367] ? sysfs_kill_sb+0x40/0x40 [ 347.194231] ? alloc_pages_current+0xbe/0x1e0 [ 347.198707] ? security_sb_copy_data+0x81/0xb0 [ 347.203264] mount_fs+0x66/0x2d0 [ 347.206608] vfs_kern_mount.part.26+0xc6/0x4a0 [ 347.211168] ? may_umount+0xa0/0xa0 [ 347.214772] ? _raw_read_unlock+0x22/0x30 [ 347.218894] ? __get_fs_type+0x8a/0xc0 [ 347.222764] do_mount+0xea4/0x2bb0 [ 347.226281] ? copy_mount_string+0x40/0x40 [ 347.230493] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 347.235507] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 347.240242] ? retint_kernel+0x10/0x10 [ 347.244108] ? copy_mount_options+0x18b/0x2e0 [ 347.248580] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 347.253401] ? copy_mount_options+0x1f7/0x2e0 [ 347.257873] SyS_mount+0xab/0x120 [ 347.261305] ? copy_mnt_ns+0xb30/0xb30 [ 347.265172] do_syscall_64+0x281/0x940 [ 347.269040] ? vmalloc_sync_all+0x30/0x30 [ 347.273164] ? _raw_spin_unlock_irq+0x27/0x70 [ 347.277645] ? finish_task_switch+0x1c1/0x7e0 [ 347.282120] ? syscall_return_slowpath+0x550/0x550 [ 347.287028] ? syscall_return_slowpath+0x2ac/0x550 [ 347.291933] ? prepare_exit_to_usermode+0x350/0x350 [ 347.296926] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 347.302268] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 347.307088] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 347.312255] RIP: 0033:0x454e79 [ 347.315423] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 347.323107] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 347.330353] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 347.337599] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 347.344843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 2033/05/18 03:37:47 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x41}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x276, 0x200040) ioctl$DRM_IOCTL_GET_UNIQUE(r4, 0xc0106401, &(0x7f00000000c0)={0x1000, &(0x7f00000001c0)=""/4096}) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) getpeername$ax25(r4, &(0x7f0000000100), &(0x7f0000000140)=0x10) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB]) tkill(r0, 0x15) 2033/05/18 03:37:47 executing program 1 (fault-call:4 fault-nth:15): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 347.352089] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000000e 2033/05/18 03:37:47 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 347.406246] FAULT_INJECTION: forcing a failure. [ 347.406246] name failslab, interval 1, probability 0, space 0, times 0 [ 347.417544] CPU: 0 PID: 23617 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 347.424727] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.434081] Call Trace: [ 347.436676] dump_stack+0x194/0x24d [ 347.440313] ? arch_local_irq_restore+0x53/0x53 [ 347.444992] ? __save_stack_trace+0x7e/0xd0 [ 347.449328] should_fail+0x8c0/0xa40 [ 347.453050] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 347.458168] ? kasan_kmalloc+0xad/0xe0 [ 347.462059] ? kmem_cache_alloc_trace+0x136/0x740 [ 347.466907] ? __memcg_init_list_lru_node+0x169/0x270 [ 347.472091] ? __list_lru_init+0x544/0x750 [ 347.476323] ? sget_userns+0x691/0xe40 [ 347.480201] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 347.484943] ? do_mount+0xea4/0x2bb0 [ 347.488650] ? SyS_mount+0xab/0x120 [ 347.492265] ? do_syscall_64+0x281/0x940 [ 347.496320] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 347.501692] ? find_held_lock+0x35/0x1d0 [ 347.505747] ? __lock_is_held+0xb6/0x140 [ 347.509800] ? check_same_owner+0x320/0x320 [ 347.514114] ? rcu_note_context_switch+0x710/0x710 [ 347.519053] should_failslab+0xec/0x120 [ 347.523036] kmem_cache_alloc_trace+0x4b/0x740 [ 347.527615] ? __kmalloc_node+0x33/0x70 [ 347.531587] ? __kmalloc_node+0x33/0x70 [ 347.535648] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.540649] __memcg_init_list_lru_node+0x169/0x270 [ 347.545672] ? list_lru_add+0x7c0/0x7c0 [ 347.549626] ? __kmalloc_node+0x47/0x70 [ 347.553586] __list_lru_init+0x544/0x750 [ 347.557642] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 347.563526] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 347.568540] ? __lockdep_init_map+0xe4/0x650 [ 347.572932] ? lockdep_init_map+0x9/0x10 [ 347.576972] sget_userns+0x691/0xe40 [ 347.580668] ? kernfs_sop_show_path+0x190/0x190 [ 347.585335] ? kernfs_sop_show_options+0x180/0x180 [ 347.590261] ? destroy_unused_super.part.6+0xd0/0xd0 [ 347.595385] ? check_same_owner+0x320/0x320 [ 347.599697] ? rcu_pm_notify+0xc0/0xc0 [ 347.603585] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.608593] ? kmem_cache_alloc_trace+0x459/0x740 [ 347.613421] ? lock_downgrade+0x980/0x980 [ 347.617557] kernfs_mount_ns+0x13d/0x8b0 [ 347.621605] ? kernfs_super_ns+0x70/0x70 [ 347.625663] sysfs_mount+0xc2/0x1c0 [ 347.629281] ? sysfs_kill_sb+0x40/0x40 [ 347.633158] ? alloc_pages_current+0xbe/0x1e0 [ 347.637638] ? security_sb_copy_data+0x81/0xb0 [ 347.642202] mount_fs+0x66/0x2d0 [ 347.645588] vfs_kern_mount.part.26+0xc6/0x4a0 [ 347.650167] ? may_umount+0xa0/0xa0 [ 347.653773] ? _raw_read_unlock+0x22/0x30 [ 347.657907] ? __get_fs_type+0x8a/0xc0 [ 347.661779] do_mount+0xea4/0x2bb0 [ 347.665299] ? copy_mount_string+0x40/0x40 [ 347.669509] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 347.674509] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 347.679344] ? retint_kernel+0x10/0x10 [ 347.683224] ? copy_mount_options+0x18b/0x2e0 [ 347.687714] ? audit_kill_trees+0x430/0x430 [ 347.692032] ? copy_mount_options+0x1f7/0x2e0 [ 347.696521] SyS_mount+0xab/0x120 [ 347.699957] ? copy_mnt_ns+0xb30/0xb30 [ 347.703821] do_syscall_64+0x281/0x940 [ 347.707689] ? vmalloc_sync_all+0x30/0x30 [ 347.711819] ? _raw_spin_unlock_irq+0x27/0x70 [ 347.716292] ? finish_task_switch+0x1c1/0x7e0 [ 347.720765] ? syscall_return_slowpath+0x550/0x550 [ 347.725679] ? syscall_return_slowpath+0x2ac/0x550 [ 347.730596] ? prepare_exit_to_usermode+0x350/0x350 [ 347.735600] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 347.740952] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 347.745789] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 347.750970] RIP: 0033:0x454e79 2033/05/18 03:37:48 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x0, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:48 executing program 1 (fault-call:4 fault-nth:16): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 347.754144] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 347.761837] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 347.769105] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 347.776366] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 347.783631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 347.790975] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000000f [ 347.849528] FAULT_INJECTION: forcing a failure. [ 347.849528] name failslab, interval 1, probability 0, space 0, times 0 [ 347.860834] CPU: 0 PID: 23632 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 347.868024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.877371] Call Trace: [ 347.879961] dump_stack+0x194/0x24d [ 347.883573] ? arch_local_irq_restore+0x53/0x53 [ 347.888233] ? __save_stack_trace+0x7e/0xd0 [ 347.892551] should_fail+0x8c0/0xa40 2033/05/18 03:37:48 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 347.896263] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 347.901352] ? kasan_kmalloc+0xad/0xe0 [ 347.905227] ? kmem_cache_alloc_trace+0x136/0x740 [ 347.910064] ? __memcg_init_list_lru_node+0x169/0x270 [ 347.915247] ? __list_lru_init+0x544/0x750 [ 347.919480] ? sget_userns+0x691/0xe40 [ 347.923378] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 347.928135] ? do_mount+0xea4/0x2bb0 [ 347.931848] ? SyS_mount+0xab/0x120 [ 347.935484] ? do_syscall_64+0x281/0x940 [ 347.939563] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 347.944914] ? find_held_lock+0x35/0x1d0 [ 347.948971] ? __lock_is_held+0xb6/0x140 [ 347.953037] ? check_same_owner+0x320/0x320 [ 347.957373] ? rcu_note_context_switch+0x710/0x710 [ 347.962294] should_failslab+0xec/0x120 [ 347.966260] kmem_cache_alloc_trace+0x4b/0x740 [ 347.970853] ? __kmalloc_node+0x33/0x70 [ 347.974816] ? __kmalloc_node+0x33/0x70 [ 347.978778] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.983776] __memcg_init_list_lru_node+0x169/0x270 [ 347.988772] ? list_lru_add+0x7c0/0x7c0 [ 347.992739] ? __kmalloc_node+0x47/0x70 [ 347.996703] __list_lru_init+0x544/0x750 [ 348.000745] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 348.006614] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 348.011616] ? __lockdep_init_map+0xe4/0x650 [ 348.016011] ? lockdep_init_map+0x9/0x10 [ 348.020061] sget_userns+0x691/0xe40 [ 348.023767] ? kernfs_sop_show_path+0x190/0x190 [ 348.028416] ? kernfs_sop_show_options+0x180/0x180 [ 348.033331] ? destroy_unused_super.part.6+0xd0/0xd0 [ 348.038436] ? check_same_owner+0x320/0x320 [ 348.042745] ? rcu_pm_notify+0xc0/0xc0 [ 348.046621] ? rcu_read_lock_sched_held+0x108/0x120 [ 348.051626] ? kmem_cache_alloc_trace+0x459/0x740 [ 348.056456] ? lock_downgrade+0x980/0x980 [ 348.060597] kernfs_mount_ns+0x13d/0x8b0 [ 348.064652] ? kernfs_super_ns+0x70/0x70 [ 348.068721] sysfs_mount+0xc2/0x1c0 [ 348.072414] ? sysfs_kill_sb+0x40/0x40 [ 348.076284] ? alloc_pages_current+0xbe/0x1e0 [ 348.080767] ? security_sb_copy_data+0x81/0xb0 [ 348.085342] mount_fs+0x66/0x2d0 [ 348.088709] vfs_kern_mount.part.26+0xc6/0x4a0 [ 348.093279] ? may_umount+0xa0/0xa0 [ 348.096892] ? _raw_read_unlock+0x22/0x30 [ 348.101035] ? __get_fs_type+0x8a/0xc0 [ 348.104906] do_mount+0xea4/0x2bb0 [ 348.108440] ? copy_mount_string+0x40/0x40 [ 348.112676] ? rcu_pm_notify+0xc0/0xc0 [ 348.116556] ? copy_mount_options+0x5f/0x2e0 [ 348.120950] ? rcu_read_lock_sched_held+0x108/0x120 [ 348.125953] ? kmem_cache_alloc_trace+0x459/0x740 [ 348.130786] ? kasan_check_write+0x14/0x20 [ 348.135020] ? _copy_from_user+0x99/0x110 [ 348.139155] ? copy_mount_options+0x1f7/0x2e0 [ 348.143628] SyS_mount+0xab/0x120 [ 348.147069] ? copy_mnt_ns+0xb30/0xb30 [ 348.150942] do_syscall_64+0x281/0x940 [ 348.154823] ? vmalloc_sync_all+0x30/0x30 [ 348.158958] ? _raw_spin_unlock_irq+0x27/0x70 [ 348.163436] ? finish_task_switch+0x1c1/0x7e0 [ 348.167921] ? syscall_return_slowpath+0x550/0x550 [ 348.172846] ? syscall_return_slowpath+0x2ac/0x550 [ 348.177764] ? prepare_exit_to_usermode+0x350/0x350 [ 348.182769] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 348.188118] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 348.192959] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 348.198141] RIP: 0033:0x454e79 2033/05/18 03:37:48 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) r3 = syz_open_dev$vcsa(&(0x7f0000000580)='/dev/vcsa#\x00', 0x41e20c00000, 0x2) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f00000000c0)=0xa, 0x4) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) r4 = semget(0x0, 0x1, 0x1ee) semctl$SEM_INFO(r4, 0x4, 0x13, &(0x7f0000000080)) read(r0, &(0x7f0000465f8e)=""/114, 0x72) munmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000) ioctl$EVIOCGABS20(r3, 0x80184560, &(0x7f0000000140)=""/195) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000100)=ANY=[@ANYBLOB="96000057280ffd82e5cb007f7f00000000c420c47db94600000000000000010fe92df894cb29ae04a5ac8a51054c"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') sendmsg$netrom(r3, &(0x7f0000000540)={&(0x7f0000000040)=@ax25={0x3, {"21c231df30b6b8"}, 0x7fffffff}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000280)="bcb9fedd9c914c6e75e6cd79a51ff22e01", 0x11}, {&(0x7f00000002c0)="57ae4bff47fe894417c156278f5aad10816de986e57df69af1f5c3a7e102066550155a0a28bd2d4a0424fb5c610fd5b1c2e33739659058f8bee369181c9b", 0x3e}, {&(0x7f0000000300)="c27141e091f34f0b19538c34c26bc962519345aaec44d4f94feff194cd95818e07ead431604f7161c0bc1baa29885272f8e6be906ff9798ca7506a4cb032e9feba32da62a872d5982cdf2480031751de066a17e3ed9f71aa9ee01c99d718c4a77142d272ca2b1610f2cda935bc74ae459574ae22bcc16085503a07b44bc040077cf241105afe0c41b1", 0x89}, {&(0x7f00000003c0)="2d6fd34fd9df0433ebb7d49e6e3afccc9c5ef7af0b3bbdec35921aa75c07e2be88ff106d76906bec1f1dea048b9ab02ec5ecab0953942cb0de99f015427174dfb5bdda3b79d3c07406e6074a945e9905493b05f2b9085a5ddb0a27814b898f87349429953027dc0fdf149a9b7c6975f1f0561e1c75d082addbf245436ea67b9e041a677699cbc5433bd8dce5c7860b3b2a22cc528e82824d0982822366604a337c3e8eedff05a2f84eeac3dcb6223b78509f2c612dd68225f803c9527c1cfd78ab6fd912b01c7190f6556e57a7ea9260851084498b87", 0xd6}], 0x4, &(0x7f0000000500)=[{0x40, 0x117, 0x400, "ebc209dc452bfedb0f8a29b34818625967f03e6fe483627fb8bb4d672d98e3b6c49d8497e24c5cc4d03610bdbce36476"}], 0x40, 0x90}, 0x20000000) r5 = request_key(&(0x7f0000000080)='user\x00', &(0x7f00000005c0)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000600)='+@!\x00', 0xfffffffffffffffa) keyctl$invalidate(0x15, r5) r6 = geteuid() getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000640)={{{@in=@rand_addr, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in=@multicast1}}, &(0x7f0000000740)=0xe8) setreuid(r6, r7) setsockopt$bt_hci_HCI_TIME_STAMP(r3, 0x0, 0x3, &(0x7f0000000780)=0xffffffff80000001, 0x4) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) [ 348.201312] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 348.208999] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 348.216258] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 348.223520] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 348.230775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 348.238036] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000010 2033/05/18 03:37:48 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x1, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x2000c12, &(0x7f0000000200), 0xfffffffffffffd7d) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:49 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040), 0x0, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:49 executing program 1 (fault-call:4 fault-nth:17): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:49 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0xfffffffffffffffd, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) r3 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x1, 0x400000) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000200)) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r3, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2800}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r4, 0x200, 0x70bd28, 0x25dfdbfd, {0xd}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040000}, 0x800) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) fcntl$addseals(r1, 0x409, 0xa) 2033/05/18 03:37:49 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x0, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:49 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x0, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:49 executing program 2: ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f00000003c0)={[0x2, 0x3002, 0x3000, 0x5000], 0x2, 0x80, 0x800}) r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) r4 = shmget$private(0x0, 0x3000, 0x100, &(0x7f0000ffd000/0x3000)=nil) r5 = getuid() fstat(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in6=@loopback}}, &(0x7f00000002c0)=0xe8) getgroups(0x1, &(0x7f0000000300)=[0xffffffffffffffff]) r9 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/net/pfkey\x00', 0x400, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r9, 0x0, 0x10, &(0x7f0000000480)={{{@in6, @in=@broadcast}}, {{@in=@broadcast}, 0x0, @in=@multicast2}}, &(0x7f0000000580)=0xe8) capset(&(0x7f0000000080)={0x20080522, r0}, &(0x7f00000000c0)={0xed, 0x4, 0x4, 0x1, 0x7, 0xa}) shmctl$IPC_SET(r4, 0x1, &(0x7f0000000340)={{0x18, r5, r6, r7, r8, 0x38, 0x7}, 0x1ff, 0x1, 0xffffffffffffffff, 0x62017d92, r0, r0, 0x3f}) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:49 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:49 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000612000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) ioctl$KVM_CREATE_DEVICE(0xffffffffffffff9c, 0xc00caee0, &(0x7f0000000100)={0x1, r0, 0x1}) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f0000000200)) getsockname$packet(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0x14) setsockopt$packet_drop_memb(r2, 0x107, 0x2, &(0x7f00000002c0)={r3, 0x1, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) write$evdev(r4, &(0x7f00000003c0)=[{{r5, r6/1000+10000}, 0x100000000, 0x7, 0x7}, {{}, 0x3f, 0x2, 0x200}, {{0x0, 0x2710}, 0x0, 0xe0f, 0x3f}], 0x48) ioctl$TCSETAF(r4, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r4, 0xc008ae91, &(0x7f0000000300)=ANY=[@ANYBLOB="0300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000038c0592b0000000000000000000000000000000000000000000000000000000000000000000000000000000000fb000000000000000000000000000000000000000000aa6c38a64b38fe2f4551ac83b9fae8d13a5aaec884b020e481a9bb60c50be3e80bad6a2df15b5942eb"]) [ 349.192410] FAULT_INJECTION: forcing a failure. [ 349.192410] name failslab, interval 1, probability 0, space 0, times 0 [ 349.203861] CPU: 1 PID: 23660 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 349.211051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.220404] Call Trace: [ 349.222991] dump_stack+0x194/0x24d [ 349.226612] ? arch_local_irq_restore+0x53/0x53 [ 349.231262] ? __save_stack_trace+0x7e/0xd0 [ 349.235570] should_fail+0x8c0/0xa40 [ 349.239261] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 349.244341] ? kasan_kmalloc+0xad/0xe0 [ 349.248207] ? kmem_cache_alloc_trace+0x136/0x740 [ 349.253035] ? __memcg_init_list_lru_node+0x169/0x270 [ 349.258202] ? __list_lru_init+0x544/0x750 [ 349.262417] ? sget_userns+0x691/0xe40 [ 349.266286] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 349.271025] ? do_mount+0xea4/0x2bb0 [ 349.274716] ? SyS_mount+0xab/0x120 [ 349.278323] ? do_syscall_64+0x281/0x940 [ 349.282364] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 349.287710] ? find_held_lock+0x35/0x1d0 [ 349.291751] ? __lock_is_held+0xb6/0x140 [ 349.295794] ? check_same_owner+0x320/0x320 [ 349.300107] ? rcu_note_context_switch+0x710/0x710 [ 349.305022] should_failslab+0xec/0x120 [ 349.308975] kmem_cache_alloc_trace+0x4b/0x740 [ 349.313536] ? __kmalloc_node+0x33/0x70 [ 349.317490] ? __kmalloc_node+0x33/0x70 [ 349.321442] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.326443] __memcg_init_list_lru_node+0x169/0x270 [ 349.331442] ? list_lru_add+0x7c0/0x7c0 [ 349.335395] ? __kmalloc_node+0x47/0x70 [ 349.339351] __list_lru_init+0x544/0x750 [ 349.343394] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 349.349261] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 349.354255] ? __lockdep_init_map+0xe4/0x650 [ 349.358640] ? lockdep_init_map+0x9/0x10 [ 349.362680] sget_userns+0x691/0xe40 [ 349.366370] ? kernfs_sop_show_path+0x190/0x190 [ 349.371026] ? kernfs_sop_show_options+0x180/0x180 [ 349.375934] ? destroy_unused_super.part.6+0xd0/0xd0 [ 349.381022] ? check_same_owner+0x320/0x320 [ 349.385327] ? rcu_pm_notify+0xc0/0xc0 [ 349.389194] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.394191] ? kmem_cache_alloc_trace+0x459/0x740 [ 349.399015] ? lock_downgrade+0x980/0x980 [ 349.403149] kernfs_mount_ns+0x13d/0x8b0 [ 349.407274] ? kernfs_super_ns+0x70/0x70 [ 349.411316] sysfs_mount+0xc2/0x1c0 [ 349.414924] ? sysfs_kill_sb+0x40/0x40 [ 349.418792] ? alloc_pages_current+0xbe/0x1e0 [ 349.423266] ? security_sb_copy_data+0x81/0xb0 [ 349.427830] mount_fs+0x66/0x2d0 [ 349.431175] vfs_kern_mount.part.26+0xc6/0x4a0 [ 349.435733] ? may_umount+0xa0/0xa0 [ 349.439338] ? _raw_read_unlock+0x22/0x30 [ 349.443464] ? __get_fs_type+0x8a/0xc0 [ 349.447328] do_mount+0xea4/0x2bb0 [ 349.450850] ? copy_mount_string+0x40/0x40 [ 349.455059] ? rcu_pm_notify+0xc0/0xc0 [ 349.458924] ? copy_mount_options+0x5f/0x2e0 [ 349.463309] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.468302] ? kmem_cache_alloc_trace+0x459/0x740 [ 349.473120] ? kasan_check_write+0x14/0x20 [ 349.477335] ? _copy_from_user+0x99/0x110 [ 349.481462] ? copy_mount_options+0x1f7/0x2e0 [ 349.485938] SyS_mount+0xab/0x120 [ 349.489370] ? copy_mnt_ns+0xb30/0xb30 [ 349.493257] do_syscall_64+0x281/0x940 [ 349.497120] ? vmalloc_sync_all+0x30/0x30 [ 349.501245] ? _raw_spin_unlock_irq+0x27/0x70 [ 349.505717] ? finish_task_switch+0x1c1/0x7e0 [ 349.510188] ? syscall_return_slowpath+0x550/0x550 [ 349.515100] ? syscall_return_slowpath+0x2ac/0x550 [ 349.520013] ? prepare_exit_to_usermode+0x350/0x350 [ 349.525014] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 349.530360] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 349.535186] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 349.540356] RIP: 0033:0x454e79 2033/05/18 03:37:50 executing program 1 (fault-call:4 fault-nth:18): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 349.543524] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 349.551217] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 349.558463] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 349.565709] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 349.572955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 349.580207] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000011 [ 349.632541] FAULT_INJECTION: forcing a failure. [ 349.632541] name failslab, interval 1, probability 0, space 0, times 0 [ 349.643886] CPU: 1 PID: 23677 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 349.651072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.661227] Call Trace: [ 349.663806] dump_stack+0x194/0x24d [ 349.667413] ? arch_local_irq_restore+0x53/0x53 [ 349.672062] ? __save_stack_trace+0x7e/0xd0 [ 349.676370] should_fail+0x8c0/0xa40 [ 349.680068] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 349.685150] ? kasan_kmalloc+0xad/0xe0 [ 349.689019] ? kmem_cache_alloc_trace+0x136/0x740 [ 349.693839] ? __memcg_init_list_lru_node+0x169/0x270 [ 349.699004] ? __list_lru_init+0x544/0x750 [ 349.703223] ? sget_userns+0x691/0xe40 [ 349.707092] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 349.711821] ? do_mount+0xea4/0x2bb0 [ 349.715509] ? SyS_mount+0xab/0x120 [ 349.719112] ? do_syscall_64+0x281/0x940 [ 349.723154] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 349.728502] ? find_held_lock+0x35/0x1d0 [ 349.732546] ? __lock_is_held+0xb6/0x140 [ 349.736593] ? check_same_owner+0x320/0x320 [ 349.740894] ? rcu_note_context_switch+0x710/0x710 [ 349.745806] should_failslab+0xec/0x120 [ 349.749758] kmem_cache_alloc_trace+0x4b/0x740 [ 349.754319] ? __kmalloc_node+0x33/0x70 [ 349.758271] ? __kmalloc_node+0x33/0x70 [ 349.762229] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.767231] __memcg_init_list_lru_node+0x169/0x270 [ 349.772228] ? list_lru_add+0x7c0/0x7c0 [ 349.776187] ? __kmalloc_node+0x47/0x70 [ 349.780142] __list_lru_init+0x544/0x750 [ 349.784186] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 349.790047] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 349.795042] ? __lockdep_init_map+0xe4/0x650 [ 349.799429] ? lockdep_init_map+0x9/0x10 [ 349.803470] sget_userns+0x691/0xe40 [ 349.807160] ? kernfs_sop_show_path+0x190/0x190 [ 349.811807] ? kernfs_sop_show_options+0x180/0x180 [ 349.816712] ? destroy_unused_super.part.6+0xd0/0xd0 [ 349.821796] ? check_same_owner+0x320/0x320 [ 349.826095] ? rcu_pm_notify+0xc0/0xc0 [ 349.829961] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.834953] ? kmem_cache_alloc_trace+0x459/0x740 [ 349.839770] ? lock_downgrade+0x980/0x980 [ 349.843899] kernfs_mount_ns+0x13d/0x8b0 [ 349.847935] ? kernfs_super_ns+0x70/0x70 [ 349.851974] sysfs_mount+0xc2/0x1c0 [ 349.855579] ? sysfs_kill_sb+0x40/0x40 [ 349.859445] ? alloc_pages_current+0xbe/0x1e0 [ 349.863918] ? security_sb_copy_data+0x81/0xb0 [ 349.868477] mount_fs+0x66/0x2d0 [ 349.871821] vfs_kern_mount.part.26+0xc6/0x4a0 [ 349.876380] ? may_umount+0xa0/0xa0 [ 349.879990] ? _raw_read_unlock+0x22/0x30 [ 349.884115] ? __get_fs_type+0x8a/0xc0 [ 349.887980] do_mount+0xea4/0x2bb0 [ 349.891502] ? copy_mount_string+0x40/0x40 [ 349.895713] ? rcu_pm_notify+0xc0/0xc0 [ 349.899582] ? copy_mount_options+0x5f/0x2e0 [ 349.903966] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.908957] ? kmem_cache_alloc_trace+0x459/0x740 [ 349.913780] ? kasan_check_write+0x14/0x20 [ 349.917992] ? copy_mount_options+0x1f7/0x2e0 [ 349.922471] SyS_mount+0xab/0x120 [ 349.925903] ? copy_mnt_ns+0xb30/0xb30 [ 349.929770] do_syscall_64+0x281/0x940 [ 349.933638] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 349.939156] ? syscall_return_slowpath+0x550/0x550 [ 349.944064] ? syscall_return_slowpath+0x2ac/0x550 [ 349.948972] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 349.954311] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 349.959132] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 349.964295] RIP: 0033:0x454e79 [ 349.967462] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 349.975143] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 2033/05/18 03:37:50 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x4200, 0x0) connect$unix(r1, &(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000000140)={0x101, 0x7}) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000080)=ANY=[@ANYBLOB="bd2c7340a502"]) socket$nl_xfrm(0x10, 0x3, 0x6) tkill(r0, 0x15) 2033/05/18 03:37:50 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x0, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:50 executing program 1 (fault-call:4 fault-nth:19): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 349.982391] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 349.989637] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 349.996882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 350.004131] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000012 [ 350.075650] FAULT_INJECTION: forcing a failure. [ 350.075650] name failslab, interval 1, probability 0, space 0, times 0 [ 350.086980] CPU: 1 PID: 23689 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 350.094166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.103500] Call Trace: [ 350.106069] dump_stack+0x194/0x24d [ 350.109673] ? arch_local_irq_restore+0x53/0x53 [ 350.114321] ? __save_stack_trace+0x7e/0xd0 [ 350.118625] should_fail+0x8c0/0xa40 [ 350.122317] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 350.127395] ? kasan_kmalloc+0xad/0xe0 [ 350.131260] ? kmem_cache_alloc_trace+0x136/0x740 [ 350.136076] ? __memcg_init_list_lru_node+0x169/0x270 [ 350.141238] ? __list_lru_init+0x544/0x750 [ 350.145446] ? sget_userns+0x691/0xe40 [ 350.149309] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 350.154043] ? do_mount+0xea4/0x2bb0 [ 350.157748] ? SyS_mount+0xab/0x120 [ 350.161355] ? do_syscall_64+0x281/0x940 [ 350.165399] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 350.170741] ? find_held_lock+0x35/0x1d0 [ 350.174779] ? __lock_is_held+0xb6/0x140 [ 350.178819] ? check_same_owner+0x320/0x320 [ 350.183120] ? rcu_note_context_switch+0x710/0x710 [ 350.188038] should_failslab+0xec/0x120 [ 350.191992] kmem_cache_alloc_trace+0x4b/0x740 [ 350.196554] ? __kmalloc_node+0x33/0x70 [ 350.200506] ? __kmalloc_node+0x33/0x70 [ 350.204458] ? rcu_read_lock_sched_held+0x108/0x120 [ 350.209452] __memcg_init_list_lru_node+0x169/0x270 [ 350.214448] ? list_lru_add+0x7c0/0x7c0 [ 350.218398] ? __kmalloc_node+0x47/0x70 [ 350.222364] __list_lru_init+0x544/0x750 [ 350.226401] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 350.232263] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 350.237255] ? __lockdep_init_map+0xe4/0x650 [ 350.241639] ? lockdep_init_map+0x9/0x10 [ 350.245677] sget_userns+0x691/0xe40 [ 350.249368] ? kernfs_sop_show_path+0x190/0x190 [ 350.254017] ? kernfs_sop_show_options+0x180/0x180 [ 350.258925] ? destroy_unused_super.part.6+0xd0/0xd0 [ 350.264008] ? check_same_owner+0x320/0x320 [ 350.268312] ? rcu_pm_notify+0xc0/0xc0 [ 350.272182] ? rcu_read_lock_sched_held+0x108/0x120 [ 350.277174] ? kmem_cache_alloc_trace+0x459/0x740 [ 350.281989] ? lock_downgrade+0x980/0x980 [ 350.286118] kernfs_mount_ns+0x13d/0x8b0 [ 350.290161] ? kernfs_super_ns+0x70/0x70 [ 350.294200] sysfs_mount+0xc2/0x1c0 [ 350.297803] ? sysfs_kill_sb+0x40/0x40 [ 350.301666] ? alloc_pages_current+0xbe/0x1e0 [ 350.306141] ? security_sb_copy_data+0x81/0xb0 [ 350.310699] mount_fs+0x66/0x2d0 [ 350.314042] vfs_kern_mount.part.26+0xc6/0x4a0 [ 350.318600] ? may_umount+0xa0/0xa0 [ 350.322205] ? _raw_read_unlock+0x22/0x30 [ 350.326330] ? __get_fs_type+0x8a/0xc0 [ 350.330195] do_mount+0xea4/0x2bb0 [ 350.333712] ? copy_mount_string+0x40/0x40 [ 350.337922] ? rcu_pm_notify+0xc0/0xc0 [ 350.341788] ? copy_mount_options+0x5f/0x2e0 [ 350.346170] ? rcu_read_lock_sched_held+0x108/0x120 [ 350.351163] ? kmem_cache_alloc_trace+0x459/0x740 [ 350.355983] ? copy_mount_options+0x1f7/0x2e0 [ 350.360456] SyS_mount+0xab/0x120 [ 350.363884] ? copy_mnt_ns+0xb30/0xb30 [ 350.367747] do_syscall_64+0x281/0x940 [ 350.371609] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 350.377127] ? syscall_return_slowpath+0x550/0x550 [ 350.382036] ? syscall_return_slowpath+0x2ac/0x550 [ 350.386966] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 350.392311] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 350.397138] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 350.402304] RIP: 0033:0x454e79 [ 350.405472] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 350.413159] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 350.420407] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 350.427652] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 350.434899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 350.442143] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000013 2033/05/18 03:37:51 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000080)=ANY=[@ANYBLOB="56cd8f47bcc7753cddf632dc04"]) tkill(r0, 0x15) 2033/05/18 03:37:51 executing program 1 (fault-call:4 fault-nth:20): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:51 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e22, 0x1000, @empty, 0x7ff}}, [0x1ff, 0x0, 0x10001, 0x0, 0x40, 0x5, 0x2, 0x4000000000, 0x1, 0x7fffffff, 0x4, 0x0, 0x13b4, 0x5, 0x1]}, &(0x7f0000000180)=0x100) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000001c0)={0x100000000, 0x202, 0x1, 0x7, r3}, &(0x7f0000000200)=0x10) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000280)=ANY=[@ANYBLOB="00004613e9ef4369691d6b7f7756cc0fedf87ceaada5be5b08c4a7a4e358863efbffff"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:51 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x0, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:51 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x0, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:51 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:51 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040), 0x0, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 350.996706] FAULT_INJECTION: forcing a failure. [ 350.996706] name failslab, interval 1, probability 0, space 0, times 0 [ 351.008110] CPU: 1 PID: 23711 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 351.015300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.024640] Call Trace: [ 351.027218] dump_stack+0x194/0x24d [ 351.030827] ? arch_local_irq_restore+0x53/0x53 [ 351.035479] ? __save_stack_trace+0x7e/0xd0 [ 351.039790] should_fail+0x8c0/0xa40 [ 351.043486] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 351.048571] ? kasan_kmalloc+0xad/0xe0 [ 351.052432] ? kmem_cache_alloc_trace+0x136/0x740 [ 351.057249] ? __memcg_init_list_lru_node+0x169/0x270 [ 351.062413] ? __list_lru_init+0x544/0x750 [ 351.066622] ? sget_userns+0x691/0xe40 [ 351.070488] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 351.075217] ? do_mount+0xea4/0x2bb0 [ 351.078904] ? SyS_mount+0xab/0x120 [ 351.082507] ? do_syscall_64+0x281/0x940 [ 351.086545] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 351.091892] ? find_held_lock+0x35/0x1d0 [ 351.095936] ? __lock_is_held+0xb6/0x140 [ 351.099981] ? check_same_owner+0x320/0x320 [ 351.104282] ? rcu_note_context_switch+0x710/0x710 [ 351.109196] should_failslab+0xec/0x120 [ 351.113152] kmem_cache_alloc_trace+0x4b/0x740 [ 351.117712] ? __kmalloc_node+0x33/0x70 [ 351.121665] ? __kmalloc_node+0x33/0x70 [ 351.125617] ? rcu_read_lock_sched_held+0x108/0x120 [ 351.130612] __memcg_init_list_lru_node+0x169/0x270 [ 351.135608] ? list_lru_add+0x7c0/0x7c0 [ 351.139559] ? __kmalloc_node+0x47/0x70 [ 351.143511] __list_lru_init+0x544/0x750 [ 351.147554] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 351.153421] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 351.158418] ? __lockdep_init_map+0xe4/0x650 [ 351.162853] ? lockdep_init_map+0x9/0x10 [ 351.166893] sget_userns+0x691/0xe40 [ 351.170586] ? kernfs_sop_show_path+0x190/0x190 [ 351.175233] ? kernfs_sop_show_options+0x180/0x180 [ 351.180139] ? destroy_unused_super.part.6+0xd0/0xd0 [ 351.185222] ? check_same_owner+0x320/0x320 [ 351.189521] ? rcu_pm_notify+0xc0/0xc0 [ 351.193390] ? rcu_read_lock_sched_held+0x108/0x120 [ 351.198382] ? kmem_cache_alloc_trace+0x459/0x740 [ 351.203204] ? lock_downgrade+0x980/0x980 [ 351.207334] kernfs_mount_ns+0x13d/0x8b0 [ 351.211373] ? kernfs_super_ns+0x70/0x70 [ 351.215414] sysfs_mount+0xc2/0x1c0 [ 351.219023] ? sysfs_kill_sb+0x40/0x40 [ 351.222888] ? alloc_pages_current+0xbe/0x1e0 [ 351.227360] ? security_sb_copy_data+0x81/0xb0 [ 351.231918] mount_fs+0x66/0x2d0 [ 351.235262] vfs_kern_mount.part.26+0xc6/0x4a0 [ 351.239819] ? may_umount+0xa0/0xa0 [ 351.243427] ? _raw_read_unlock+0x22/0x30 [ 351.247553] ? __get_fs_type+0x8a/0xc0 [ 351.251417] do_mount+0xea4/0x2bb0 [ 351.254943] ? copy_mount_string+0x40/0x40 [ 351.259157] ? rcu_pm_notify+0xc0/0xc0 [ 351.263028] ? copy_mount_options+0x5f/0x2e0 [ 351.267414] ? rcu_read_lock_sched_held+0x108/0x120 [ 351.272404] ? kmem_cache_alloc_trace+0x459/0x740 [ 351.277223] ? kasan_check_write+0x14/0x20 [ 351.281436] ? copy_mount_options+0x1f7/0x2e0 [ 351.285908] SyS_mount+0xab/0x120 [ 351.289336] ? copy_mnt_ns+0xb30/0xb30 [ 351.293199] do_syscall_64+0x281/0x940 [ 351.297064] ? vmalloc_sync_all+0x30/0x30 [ 351.301189] ? _raw_spin_unlock_irq+0x27/0x70 [ 351.305670] ? finish_task_switch+0x1c1/0x7e0 [ 351.310143] ? syscall_return_slowpath+0x550/0x550 [ 351.315057] ? syscall_return_slowpath+0x2ac/0x550 [ 351.319963] ? prepare_exit_to_usermode+0x350/0x350 [ 351.324956] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 351.330300] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 351.335121] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 351.340291] RIP: 0033:0x454e79 2033/05/18 03:37:51 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x1ff) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) r2 = msgget(0x1, 0x10) msgctl$IPC_INFO(r2, 0x3, &(0x7f0000000200)=""/117) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x4c) ioctl$sock_bt_cmtp_CMTPGETCONNLIST(r3, 0x800443d2, &(0x7f0000000340)={0x9, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}, {}, {}, {}]}) timer_getoverrun(0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r3, 0x4010ae74, &(0x7f00000000c0)={0x2, 0xc, 0x8}) socketpair$ax25(0x3, 0x2, 0x1, &(0x7f0000000380)) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r4, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:51 executing program 1 (fault-call:4 fault-nth:21): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 351.343457] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 351.351319] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 351.358566] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 351.365813] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 351.373060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 351.380304] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000014 [ 351.432259] FAULT_INJECTION: forcing a failure. [ 351.432259] name failslab, interval 1, probability 0, space 0, times 0 [ 351.443668] CPU: 1 PID: 23721 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 351.450848] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.460193] Call Trace: [ 351.462782] dump_stack+0x194/0x24d [ 351.466399] ? arch_local_irq_restore+0x53/0x53 [ 351.471060] ? __save_stack_trace+0x7e/0xd0 [ 351.475381] should_fail+0x8c0/0xa40 [ 351.479093] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 351.484186] ? kasan_kmalloc+0xad/0xe0 [ 351.488064] ? kmem_cache_alloc_trace+0x136/0x740 [ 351.492898] ? __memcg_init_list_lru_node+0x169/0x270 [ 351.498075] ? __list_lru_init+0x544/0x750 [ 351.502306] ? sget_userns+0x691/0xe40 [ 351.506187] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 351.510918] ? do_mount+0xea4/0x2bb0 [ 351.514617] ? SyS_mount+0xab/0x120 [ 351.518244] ? do_syscall_64+0x281/0x940 [ 351.522297] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 351.527666] ? find_held_lock+0x35/0x1d0 [ 351.531719] ? __lock_is_held+0xb6/0x140 [ 351.535764] ? check_same_owner+0x320/0x320 [ 351.540085] ? rcu_note_context_switch+0x710/0x710 [ 351.545012] should_failslab+0xec/0x120 [ 351.548988] kmem_cache_alloc_trace+0x4b/0x740 [ 351.553567] __memcg_init_list_lru_node+0x169/0x270 [ 351.558576] ? list_lru_add+0x7c0/0x7c0 [ 351.562542] ? __kmalloc_node+0x47/0x70 [ 351.566503] __list_lru_init+0x544/0x750 [ 351.570555] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 351.576420] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 351.581425] ? __lockdep_init_map+0xe4/0x650 [ 351.585823] ? lockdep_init_map+0x9/0x10 [ 351.589863] sget_userns+0x691/0xe40 [ 351.593555] ? kernfs_sop_show_path+0x190/0x190 [ 351.598215] ? kernfs_sop_show_options+0x180/0x180 [ 351.603146] ? destroy_unused_super.part.6+0xd0/0xd0 [ 351.608244] ? check_same_owner+0x320/0x320 [ 351.612561] ? rcu_pm_notify+0xc0/0xc0 [ 351.616430] ? rcu_read_lock_sched_held+0x108/0x120 [ 351.621425] ? kmem_cache_alloc_trace+0x459/0x740 [ 351.626254] ? lock_downgrade+0x980/0x980 [ 351.630400] kernfs_mount_ns+0x13d/0x8b0 [ 351.634450] ? kernfs_super_ns+0x70/0x70 [ 351.638511] sysfs_mount+0xc2/0x1c0 [ 351.642131] ? sysfs_kill_sb+0x40/0x40 [ 351.646036] ? alloc_pages_current+0xbe/0x1e0 [ 351.650526] ? security_sb_copy_data+0x81/0xb0 [ 351.655752] mount_fs+0x66/0x2d0 [ 351.659113] vfs_kern_mount.part.26+0xc6/0x4a0 [ 351.663672] ? may_umount+0xa0/0xa0 [ 351.667279] ? _raw_read_unlock+0x22/0x30 [ 351.671410] ? __get_fs_type+0x8a/0xc0 [ 351.675276] do_mount+0xea4/0x2bb0 [ 351.678815] ? copy_mount_string+0x40/0x40 [ 351.683042] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 351.688049] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 351.692803] ? retint_kernel+0x10/0x10 [ 351.696677] ? copy_mount_options+0x18b/0x2e0 [ 351.701156] ? copy_mount_options+0x196/0x2e0 [ 351.705642] ? copy_mount_options+0x1f7/0x2e0 [ 351.710119] SyS_mount+0xab/0x120 [ 351.713553] ? copy_mnt_ns+0xb30/0xb30 [ 351.717422] do_syscall_64+0x281/0x940 [ 351.721294] ? vmalloc_sync_all+0x30/0x30 [ 351.725425] ? finish_task_switch+0x1c1/0x7e0 [ 351.729898] ? syscall_return_slowpath+0x550/0x550 [ 351.734812] ? syscall_return_slowpath+0x2ac/0x550 [ 351.739739] ? prepare_exit_to_usermode+0x350/0x350 [ 351.744739] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 351.750090] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 351.754930] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 351.760096] RIP: 0033:0x454e79 [ 351.763265] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 351.770962] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 2033/05/18 03:37:52 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x0, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 351.778234] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 351.785492] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 351.792751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 351.800008] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000015 2033/05/18 03:37:52 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:52 executing program 1 (fault-call:4 fault-nth:22): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:52 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x4, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:52 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x40400, 0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f000019c000/0x2000)=nil, 0x2000}, 0x3}) r2 = userfaultfd(0x0) r3 = getpgid(0x0) sched_setattr(r3, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000180)={r1, 0x50, &(0x7f0000000100)}, 0x10) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000200)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r2, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) get_thread_area(&(0x7f00000001c0)={0x6, 0x0, 0x1000, 0xd3c, 0x80000000, 0xfffffffffffffffd, 0x4, 0xdd63, 0x100000000, 0x3}) 2033/05/18 03:37:52 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 351.892962] FAULT_INJECTION: forcing a failure. [ 351.892962] name failslab, interval 1, probability 0, space 0, times 0 [ 351.904288] CPU: 1 PID: 23741 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 351.911481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.920836] Call Trace: [ 351.923432] dump_stack+0x194/0x24d [ 351.927069] ? arch_local_irq_restore+0x53/0x53 [ 351.931744] ? kernel_text_address+0xd1/0xe0 [ 351.936159] ? __unwind_start+0x169/0x330 [ 351.940317] should_fail+0x8c0/0xa40 [ 351.944042] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 351.949152] ? save_stack+0x43/0xd0 [ 351.952785] ? kasan_kmalloc+0xad/0xe0 [ 351.956664] ? __kmalloc+0x162/0x760 [ 351.960362] ? __list_lru_init+0xcf/0x750 [ 351.964501] ? find_held_lock+0x35/0x1d0 [ 351.968547] ? __lock_is_held+0xb6/0x140 [ 351.972595] ? check_same_owner+0x320/0x320 [ 351.976902] ? rcu_note_context_switch+0x710/0x710 [ 351.981817] should_failslab+0xec/0x120 [ 351.985772] kmem_cache_alloc_node_trace+0x5a/0x760 [ 351.990765] ? mark_held_locks+0xaf/0x100 [ 351.994890] ? __raw_spin_lock_init+0x1c/0x100 [ 351.999451] __kmalloc_node+0x33/0x70 [ 352.003238] kvmalloc_node+0x99/0xd0 [ 352.006930] __list_lru_init+0x5d5/0x750 [ 352.010973] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 352.016839] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 352.021881] ? lockdep_init_map+0x9/0x10 [ 352.025926] sget_userns+0x6b1/0xe40 [ 352.029617] ? kernfs_sop_show_path+0x190/0x190 [ 352.034269] ? kernfs_sop_show_options+0x180/0x180 [ 352.039177] ? destroy_unused_super.part.6+0xd0/0xd0 [ 352.044263] ? check_same_owner+0x320/0x320 [ 352.048566] ? rcu_pm_notify+0xc0/0xc0 [ 352.052435] ? rcu_read_lock_sched_held+0x108/0x120 [ 352.057427] ? kmem_cache_alloc_trace+0x459/0x740 [ 352.062591] ? lock_downgrade+0x980/0x980 [ 352.066723] kernfs_mount_ns+0x13d/0x8b0 [ 352.070761] ? kernfs_super_ns+0x70/0x70 [ 352.074803] sysfs_mount+0xc2/0x1c0 [ 352.078407] ? sysfs_kill_sb+0x40/0x40 [ 352.082270] ? alloc_pages_current+0xbe/0x1e0 [ 352.086741] ? security_sb_copy_data+0x81/0xb0 [ 352.091302] mount_fs+0x66/0x2d0 [ 352.094646] vfs_kern_mount.part.26+0xc6/0x4a0 [ 352.099215] ? may_umount+0xa0/0xa0 [ 352.102818] ? _raw_read_unlock+0x22/0x30 [ 352.106941] ? __get_fs_type+0x8a/0xc0 [ 352.110805] do_mount+0xea4/0x2bb0 [ 352.114323] ? copy_mount_string+0x40/0x40 [ 352.118536] ? rcu_pm_notify+0xc0/0xc0 [ 352.122406] ? copy_mount_options+0x5f/0x2e0 [ 352.126790] ? rcu_read_lock_sched_held+0x108/0x120 [ 352.131793] ? kmem_cache_alloc_trace+0x459/0x740 [ 352.136614] ? copy_mount_options+0x1f7/0x2e0 [ 352.141085] SyS_mount+0xab/0x120 [ 352.144692] ? copy_mnt_ns+0xb30/0xb30 [ 352.148555] do_syscall_64+0x281/0x940 [ 352.152428] ? vmalloc_sync_all+0x30/0x30 [ 352.156553] ? _raw_spin_unlock_irq+0x27/0x70 [ 352.161033] ? finish_task_switch+0x1c1/0x7e0 [ 352.165514] ? syscall_return_slowpath+0x550/0x550 [ 352.170419] ? syscall_return_slowpath+0x2ac/0x550 [ 352.175325] ? prepare_exit_to_usermode+0x350/0x350 [ 352.180318] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 352.185660] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:37:52 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_RUN(r1, 0xae80, 0x0) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x103001, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000300)={r2, &(0x7f0000000240)="a1f2cede041f4726ddfc70df9eac07da23ebe7e8e491d0152d16fab91dcc2306ba379cf287d2167fbf2e6c4a0355629e3f9d6bd9ec569e135dbfbdb91f997e97ff9366129170539f1a858f5566503f8a", &(0x7f00000002c0)=""/39}, 0x18) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20010200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="000627bd7000ffdbdf250e0000000a0006000000000008001b00df0200000800060000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x8000) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r1, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r1, 0xc008aeb0, &(0x7f0000000340)=ANY=[@ANYBLOB="ef2423156973cf7f64fe1d10a53a476ce8741c6647f335709897cd1bd62312b1859973d804000000000000002366927a8d5a8d39726627073527831097cc3bef85824ce1b57519fefdaf6bc310bfbd3fe9"]) tkill(r0, 0x15) [ 352.190482] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 352.195649] RIP: 0033:0x454e79 [ 352.198814] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 352.206496] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 352.213743] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 352.220991] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 352.228241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 352.235484] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000016 2033/05/18 03:37:53 executing program 1 (fault-call:4 fault-nth:23): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:53 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:53 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x2c) r1 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000080071, &(0x7f0000654ff8)={0x2}, 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82) 2033/05/18 03:37:53 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x0, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:53 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(0xffffffffffffffff, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:53 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000000080)) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:53 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x406000, 0x0) gettid() ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f00000000c0)={{0x2, 0x4e21, @local={0xac, 0x14, 0x14, 0xaa}}, {0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x6a, {0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}, 'dummy0\x00'}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_RUN(r4, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f0000000140)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r1, 0xc018620b, &(0x7f00000001c0)={r5}) ioctl$KVM_TRANSLATE(r4, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r4, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00']) tkill(r0, 0x15) 2033/05/18 03:37:53 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x0, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:53 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x204000, 0x0) ioctl$KVM_ASSIGN_DEV_IRQ(r2, 0x4040ae70, &(0x7f0000000200)={0x7, 0x100, 0x6, 0x4}) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 352.902880] FAULT_INJECTION: forcing a failure. [ 352.902880] name failslab, interval 1, probability 0, space 0, times 0 [ 352.914196] CPU: 1 PID: 23779 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 352.921387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.930741] Call Trace: [ 352.933339] dump_stack+0x194/0x24d [ 352.936976] ? arch_local_irq_restore+0x53/0x53 [ 352.941653] should_fail+0x8c0/0xa40 [ 352.945371] ? is_bpf_text_address+0xa4/0x120 [ 352.949871] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 352.954984] ? __kernel_text_address+0xd/0x40 [ 352.959484] ? unwind_get_return_address+0x61/0xa0 [ 352.964430] ? find_held_lock+0x35/0x1d0 [ 352.969545] ? __lock_is_held+0xb6/0x140 [ 352.973612] ? check_same_owner+0x320/0x320 [ 352.977948] ? rcu_note_context_switch+0x710/0x710 [ 352.982876] should_failslab+0xec/0x120 [ 352.986849] kmem_cache_alloc_trace+0x4b/0x740 [ 352.991418] ? __kmalloc_node+0x33/0x70 [ 352.995380] ? __kmalloc_node+0x33/0x70 [ 352.999345] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.004367] __memcg_init_list_lru_node+0x169/0x270 [ 353.009396] ? list_lru_add+0x7c0/0x7c0 [ 353.013361] ? __kmalloc_node+0x47/0x70 [ 353.017329] __list_lru_init+0x544/0x750 [ 353.021384] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 353.027270] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 353.032283] ? lockdep_init_map+0x9/0x10 [ 353.036345] sget_userns+0x6b1/0xe40 [ 353.040056] ? kernfs_sop_show_path+0x190/0x190 [ 353.044727] ? kernfs_sop_show_options+0x180/0x180 [ 353.049646] ? destroy_unused_super.part.6+0xd0/0xd0 [ 353.054742] ? check_same_owner+0x320/0x320 [ 353.059060] ? rcu_pm_notify+0xc0/0xc0 [ 353.062941] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.068033] ? kmem_cache_alloc_trace+0x459/0x740 [ 353.072863] ? lock_downgrade+0x980/0x980 [ 353.076996] kernfs_mount_ns+0x13d/0x8b0 [ 353.081058] ? kernfs_super_ns+0x70/0x70 [ 353.085120] sysfs_mount+0xc2/0x1c0 [ 353.088735] ? sysfs_kill_sb+0x40/0x40 [ 353.092606] ? alloc_pages_current+0xbe/0x1e0 [ 353.097090] ? security_sb_copy_data+0x81/0xb0 [ 353.101660] mount_fs+0x66/0x2d0 [ 353.105011] vfs_kern_mount.part.26+0xc6/0x4a0 [ 353.109595] ? may_umount+0xa0/0xa0 [ 353.113217] ? _raw_read_unlock+0x22/0x30 [ 353.117355] ? __get_fs_type+0x8a/0xc0 [ 353.121245] do_mount+0xea4/0x2bb0 [ 353.124772] ? copy_mount_string+0x40/0x40 [ 353.128999] ? rcu_pm_notify+0xc0/0xc0 [ 353.132890] ? copy_mount_options+0x5f/0x2e0 [ 353.137301] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.142301] ? kmem_cache_alloc_trace+0x459/0x740 [ 353.147131] ? kasan_check_write+0x14/0x20 [ 353.151359] ? _copy_from_user+0x99/0x110 [ 353.155510] ? copy_mount_options+0x1f7/0x2e0 [ 353.159996] SyS_mount+0xab/0x120 [ 353.163438] ? copy_mnt_ns+0xb30/0xb30 [ 353.167314] do_syscall_64+0x281/0x940 [ 353.171198] ? vmalloc_sync_all+0x30/0x30 [ 353.175332] ? _raw_spin_unlock_irq+0x27/0x70 [ 353.179804] ? finish_task_switch+0x1c1/0x7e0 [ 353.184281] ? syscall_return_slowpath+0x550/0x550 [ 353.189196] ? syscall_return_slowpath+0x2ac/0x550 [ 353.194115] ? prepare_exit_to_usermode+0x350/0x350 [ 353.199201] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 353.204556] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 353.209390] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 353.214563] RIP: 0033:0x454e79 [ 353.217729] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 353.225431] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 353.232688] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 353.239937] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 353.247192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 2033/05/18 03:37:53 executing program 1 (fault-call:4 fault-nth:24): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 353.254447] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000017 [ 353.295835] FAULT_INJECTION: forcing a failure. [ 353.295835] name failslab, interval 1, probability 0, space 0, times 0 [ 353.307183] CPU: 1 PID: 23792 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 353.314373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.323722] Call Trace: [ 353.326322] dump_stack+0x194/0x24d [ 353.329940] ? arch_local_irq_restore+0x53/0x53 [ 353.334601] ? __save_stack_trace+0x7e/0xd0 [ 353.338935] should_fail+0x8c0/0xa40 [ 353.342648] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 353.347740] ? kasan_kmalloc+0xad/0xe0 [ 353.351610] ? kmem_cache_alloc_trace+0x136/0x740 [ 353.356435] ? __memcg_init_list_lru_node+0x169/0x270 [ 353.361616] ? __list_lru_init+0x544/0x750 [ 353.365846] ? sget_userns+0x6b1/0xe40 [ 353.369730] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 353.374476] ? do_mount+0xea4/0x2bb0 [ 353.378178] ? SyS_mount+0xab/0x120 [ 353.381812] ? do_syscall_64+0x281/0x940 [ 353.385868] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 353.391234] ? find_held_lock+0x35/0x1d0 [ 353.395292] ? __lock_is_held+0xb6/0x140 [ 353.399354] ? check_same_owner+0x320/0x320 [ 353.403674] ? rcu_note_context_switch+0x710/0x710 [ 353.408605] should_failslab+0xec/0x120 [ 353.412571] kmem_cache_alloc_trace+0x4b/0x740 [ 353.417141] ? __kmalloc_node+0x33/0x70 [ 353.421116] ? __kmalloc_node+0x33/0x70 [ 353.425086] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.430104] __memcg_init_list_lru_node+0x169/0x270 [ 353.435147] ? list_lru_add+0x7c0/0x7c0 [ 353.439121] ? __kmalloc_node+0x47/0x70 [ 353.443100] __list_lru_init+0x544/0x750 [ 353.447177] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 353.453064] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 353.458076] ? lockdep_init_map+0x9/0x10 [ 353.462138] sget_userns+0x6b1/0xe40 [ 353.465890] ? kernfs_sop_show_path+0x190/0x190 [ 353.470553] ? kernfs_sop_show_options+0x180/0x180 [ 353.475473] ? destroy_unused_super.part.6+0xd0/0xd0 [ 353.480574] ? check_same_owner+0x320/0x320 [ 353.484894] ? rcu_pm_notify+0xc0/0xc0 [ 353.488781] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.493965] ? kmem_cache_alloc_trace+0x459/0x740 [ 353.498809] ? lock_downgrade+0x980/0x980 [ 353.502960] kernfs_mount_ns+0x13d/0x8b0 [ 353.507021] ? kernfs_super_ns+0x70/0x70 [ 353.511082] sysfs_mount+0xc2/0x1c0 [ 353.514709] ? sysfs_kill_sb+0x40/0x40 [ 353.518583] ? alloc_pages_current+0xbe/0x1e0 [ 353.523070] ? security_sb_copy_data+0x81/0xb0 [ 353.527650] mount_fs+0x66/0x2d0 [ 353.531018] vfs_kern_mount.part.26+0xc6/0x4a0 [ 353.535597] ? may_umount+0xa0/0xa0 [ 353.539222] ? _raw_read_unlock+0x22/0x30 [ 353.543365] ? __get_fs_type+0x8a/0xc0 [ 353.547242] do_mount+0xea4/0x2bb0 [ 353.550771] ? copy_mount_string+0x40/0x40 [ 353.555005] ? rcu_pm_notify+0xc0/0xc0 [ 353.558891] ? copy_mount_options+0x5f/0x2e0 [ 353.563284] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.568299] ? kmem_cache_alloc_trace+0x459/0x740 [ 353.573136] ? kasan_check_write+0x14/0x20 [ 353.577355] ? _copy_from_user+0x99/0x110 [ 353.581498] ? copy_mount_options+0x1f7/0x2e0 [ 353.585996] SyS_mount+0xab/0x120 [ 353.589439] ? copy_mnt_ns+0xb30/0xb30 [ 353.593320] do_syscall_64+0x281/0x940 [ 353.597203] ? vmalloc_sync_all+0x30/0x30 [ 353.601339] ? finish_task_switch+0x1c1/0x7e0 [ 353.605820] ? syscall_return_slowpath+0x550/0x550 [ 353.610729] ? syscall_return_slowpath+0x2ac/0x550 [ 353.615637] ? prepare_exit_to_usermode+0x350/0x350 [ 353.620638] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 353.625997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 353.630849] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 353.636036] RIP: 0033:0x454e79 [ 353.639207] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:54 executing program 1 (fault-call:4 fault-nth:25): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:54 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x0, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 353.646906] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 353.654813] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 353.662077] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 353.669333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 353.676590] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000018 2033/05/18 03:37:54 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) [ 353.739270] FAULT_INJECTION: forcing a failure. [ 353.739270] name failslab, interval 1, probability 0, space 0, times 0 [ 353.750566] CPU: 1 PID: 23805 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 353.757754] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.767109] Call Trace: [ 353.769698] dump_stack+0x194/0x24d [ 353.773334] ? arch_local_irq_restore+0x53/0x53 [ 353.778004] ? __save_stack_trace+0x7e/0xd0 [ 353.782331] should_fail+0x8c0/0xa40 [ 353.786047] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 353.791154] ? kasan_kmalloc+0xad/0xe0 [ 353.795044] ? kmem_cache_alloc_trace+0x136/0x740 [ 353.799890] ? __memcg_init_list_lru_node+0x169/0x270 [ 353.805076] ? __list_lru_init+0x544/0x750 [ 353.809313] ? sget_userns+0x6b1/0xe40 [ 353.813208] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 353.817967] ? do_mount+0xea4/0x2bb0 [ 353.821679] ? SyS_mount+0xab/0x120 [ 353.825309] ? do_syscall_64+0x281/0x940 [ 353.829371] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 353.834734] ? find_held_lock+0x35/0x1d0 2033/05/18 03:37:54 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x41}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 353.838798] ? __lock_is_held+0xb6/0x140 [ 353.842872] ? check_same_owner+0x320/0x320 [ 353.847984] ? rcu_note_context_switch+0x710/0x710 [ 353.852928] should_failslab+0xec/0x120 [ 353.856991] kmem_cache_alloc_trace+0x4b/0x740 [ 353.861571] ? __kmalloc_node+0x33/0x70 [ 353.865541] ? __kmalloc_node+0x33/0x70 [ 353.869520] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.874538] __memcg_init_list_lru_node+0x169/0x270 [ 353.879557] ? list_lru_add+0x7c0/0x7c0 [ 353.883533] ? __kmalloc_node+0x47/0x70 [ 353.887514] __list_lru_init+0x544/0x750 [ 353.891577] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 353.897447] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 353.902447] ? lockdep_init_map+0x9/0x10 [ 353.906489] sget_userns+0x6b1/0xe40 [ 353.910179] ? kernfs_sop_show_path+0x190/0x190 [ 353.914828] ? kernfs_sop_show_options+0x180/0x180 [ 353.919733] ? destroy_unused_super.part.6+0xd0/0xd0 [ 353.924822] ? check_same_owner+0x320/0x320 [ 353.929125] ? rcu_pm_notify+0xc0/0xc0 [ 353.932994] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.938253] ? kmem_cache_alloc_trace+0x459/0x740 [ 353.943071] ? lock_downgrade+0x980/0x980 [ 353.947200] kernfs_mount_ns+0x13d/0x8b0 [ 353.952193] ? kernfs_super_ns+0x70/0x70 [ 353.956236] sysfs_mount+0xc2/0x1c0 [ 353.959841] ? sysfs_kill_sb+0x40/0x40 [ 353.963705] ? alloc_pages_current+0xbe/0x1e0 [ 353.968176] ? security_sb_copy_data+0x81/0xb0 [ 353.972739] mount_fs+0x66/0x2d0 [ 353.976085] vfs_kern_mount.part.26+0xc6/0x4a0 [ 353.980644] ? may_umount+0xa0/0xa0 [ 353.984247] ? _raw_read_unlock+0x22/0x30 [ 353.988374] ? __get_fs_type+0x8a/0xc0 [ 353.992241] do_mount+0xea4/0x2bb0 [ 353.995761] ? copy_mount_string+0x40/0x40 [ 353.999973] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 354.004965] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 354.009701] ? retint_kernel+0x10/0x10 [ 354.013567] ? copy_mount_options+0x149/0x2e0 [ 354.018042] ? __sanitizer_cov_trace_pc+0x44/0x50 [ 354.022887] ? copy_mount_options+0x1f7/0x2e0 [ 354.027360] SyS_mount+0xab/0x120 [ 354.030792] ? copy_mnt_ns+0xb30/0xb30 [ 354.034658] do_syscall_64+0x281/0x940 [ 354.038521] ? vmalloc_sync_all+0x30/0x30 [ 354.042646] ? _raw_spin_unlock_irq+0x27/0x70 [ 354.047117] ? finish_task_switch+0x1c1/0x7e0 [ 354.051587] ? syscall_return_slowpath+0x550/0x550 [ 354.056494] ? syscall_return_slowpath+0x2ac/0x550 [ 354.061426] ? prepare_exit_to_usermode+0x350/0x350 [ 354.066422] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 354.071767] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 354.076589] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 354.081757] RIP: 0033:0x454e79 2033/05/18 03:37:54 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x0, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:54 executing program 1 (fault-call:4 fault-nth:26): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 354.084923] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 354.092609] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 354.099855] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 354.107105] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 354.114349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 354.121593] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000019 2033/05/18 03:37:54 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x2003, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_S390_VCPU_FAULT(r3, 0x4008ae52, &(0x7f0000000040)=0x1ff) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f00000001c0)=ANY=[@ANYBLOB="fd9f968f56f1e5075028049be6a43be88abdfe374a01373ebcfd1388d1e452c1f6a0f6b9f441d24d002873ee7f2949e6e30602ade4cfab636107c9a97b91f382e7a9777a1a4a8121a721691f4979b3b603302dfa71481a9d56d99a54dd3b99b0b65e8f40493a49fc06536a747aeb4ca326dcb94142556424b2f8d31668a857ea0a48067d5c6f341e5744d5c4a9"]) tkill(r0, 0x15) 2033/05/18 03:37:54 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x800) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:54 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) creat(&(0x7f0000000200)='./file0\x00', 0x10) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x200900, 0x0) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000240)=ANY=[@ANYBLOB="0300000000f0ffffff0000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000001000000000000000001d00000000000000000000000000000000000000000000000000000000000000000075f288a7c5a9c5b94541d02abb88a08f84e5f352e14eca1f766b16bf4b55c9ebe194093280db4755667d50"]) [ 354.211449] FAULT_INJECTION: forcing a failure. [ 354.211449] name failslab, interval 1, probability 0, space 0, times 0 [ 354.222792] CPU: 0 PID: 23825 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 354.229991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 354.239335] Call Trace: [ 354.241913] dump_stack+0x194/0x24d [ 354.245519] ? arch_local_irq_restore+0x53/0x53 [ 354.250164] ? __save_stack_trace+0x7e/0xd0 [ 354.254467] should_fail+0x8c0/0xa40 [ 354.258166] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 354.263260] ? kasan_kmalloc+0xad/0xe0 [ 354.267130] ? kmem_cache_alloc_trace+0x136/0x740 [ 354.271953] ? __memcg_init_list_lru_node+0x169/0x270 [ 354.277117] ? __list_lru_init+0x544/0x750 [ 354.281330] ? sget_userns+0x6b1/0xe40 [ 354.285201] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 354.289942] ? do_mount+0xea4/0x2bb0 [ 354.293632] ? SyS_mount+0xab/0x120 [ 354.297233] ? do_syscall_64+0x281/0x940 [ 354.301270] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 354.306616] ? find_held_lock+0x35/0x1d0 [ 354.310656] ? __lock_is_held+0xb6/0x140 [ 354.314697] ? check_same_owner+0x320/0x320 [ 354.318997] ? rcu_note_context_switch+0x710/0x710 [ 354.323913] should_failslab+0xec/0x120 [ 354.327957] kmem_cache_alloc_trace+0x4b/0x740 [ 354.332531] ? __kmalloc_node+0x33/0x70 [ 354.336487] ? __kmalloc_node+0x33/0x70 [ 354.340456] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.345451] __memcg_init_list_lru_node+0x169/0x270 [ 354.350443] ? list_lru_add+0x7c0/0x7c0 [ 354.354399] ? __kmalloc_node+0x47/0x70 [ 354.358363] __list_lru_init+0x544/0x750 [ 354.362404] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 354.368354] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 354.373350] ? lockdep_init_map+0x9/0x10 [ 354.377387] sget_userns+0x6b1/0xe40 [ 354.381086] ? kernfs_sop_show_path+0x190/0x190 [ 354.385732] ? kernfs_sop_show_options+0x180/0x180 [ 354.390638] ? destroy_unused_super.part.6+0xd0/0xd0 [ 354.395725] ? check_same_owner+0x320/0x320 [ 354.400030] ? rcu_pm_notify+0xc0/0xc0 [ 354.403897] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.408890] ? kmem_cache_alloc_trace+0x459/0x740 [ 354.413707] ? lock_downgrade+0x980/0x980 [ 354.417833] kernfs_mount_ns+0x13d/0x8b0 [ 354.421872] ? kernfs_super_ns+0x70/0x70 [ 354.425912] sysfs_mount+0xc2/0x1c0 [ 354.429514] ? sysfs_kill_sb+0x40/0x40 [ 354.433378] ? alloc_pages_current+0xbe/0x1e0 [ 354.437850] ? security_sb_copy_data+0x81/0xb0 [ 354.442407] mount_fs+0x66/0x2d0 [ 354.445751] vfs_kern_mount.part.26+0xc6/0x4a0 [ 354.450309] ? may_umount+0xa0/0xa0 [ 354.453912] ? _raw_read_unlock+0x22/0x30 [ 354.458034] ? __get_fs_type+0x8a/0xc0 [ 354.461900] do_mount+0xea4/0x2bb0 [ 354.465425] ? copy_mount_string+0x40/0x40 [ 354.469635] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 354.474630] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 354.479369] ? retint_kernel+0x10/0x10 [ 354.483238] ? copy_mount_options+0x149/0x2e0 [ 354.487713] ? __sanitizer_cov_trace_pc+0x32/0x50 [ 354.492533] ? copy_mount_options+0x1f7/0x2e0 [ 354.497007] SyS_mount+0xab/0x120 [ 354.500438] ? copy_mnt_ns+0xb30/0xb30 [ 354.504303] do_syscall_64+0x281/0x940 [ 354.508168] ? vmalloc_sync_all+0x30/0x30 [ 354.512292] ? _raw_spin_unlock_irq+0x27/0x70 [ 354.516762] ? finish_task_switch+0x1c1/0x7e0 [ 354.521236] ? syscall_return_slowpath+0x550/0x550 [ 354.526143] ? syscall_return_slowpath+0x2ac/0x550 [ 354.531050] ? prepare_exit_to_usermode+0x350/0x350 [ 354.536043] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 354.541385] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 354.546207] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 354.551371] RIP: 0033:0x454e79 [ 354.554536] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:55 executing program 1 (fault-call:4 fault-nth:27): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 354.562222] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 354.569731] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 354.576981] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 354.584229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 354.591478] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000001a [ 354.642279] FAULT_INJECTION: forcing a failure. [ 354.642279] name failslab, interval 1, probability 0, space 0, times 0 [ 354.653594] CPU: 1 PID: 23837 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 354.660785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 354.670136] Call Trace: [ 354.672731] dump_stack+0x194/0x24d [ 354.676372] ? arch_local_irq_restore+0x53/0x53 [ 354.681045] ? __save_stack_trace+0x7e/0xd0 [ 354.685373] should_fail+0x8c0/0xa40 [ 354.689098] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 354.694209] ? kasan_kmalloc+0xad/0xe0 [ 354.698103] ? kmem_cache_alloc_trace+0x136/0x740 [ 354.702960] ? __memcg_init_list_lru_node+0x169/0x270 [ 354.708138] ? __list_lru_init+0x544/0x750 [ 354.712351] ? sget_userns+0x6b1/0xe40 [ 354.716225] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 354.720969] ? do_mount+0xea4/0x2bb0 [ 354.724661] ? SyS_mount+0xab/0x120 [ 354.728270] ? do_syscall_64+0x281/0x940 [ 354.732321] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 354.737684] ? find_held_lock+0x35/0x1d0 [ 354.741732] ? __lock_is_held+0xb6/0x140 [ 354.745816] ? check_same_owner+0x320/0x320 [ 354.750138] ? rcu_note_context_switch+0x710/0x710 [ 354.755071] should_failslab+0xec/0x120 [ 354.759039] kmem_cache_alloc_trace+0x4b/0x740 [ 354.763621] ? __kmalloc_node+0x33/0x70 [ 354.767581] ? __kmalloc_node+0x33/0x70 [ 354.771536] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.776554] __memcg_init_list_lru_node+0x169/0x270 [ 354.781563] ? list_lru_add+0x7c0/0x7c0 [ 354.785528] ? __kmalloc_node+0x47/0x70 [ 354.789497] __list_lru_init+0x544/0x750 [ 354.793560] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 354.799451] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 354.804466] ? lockdep_init_map+0x9/0x10 [ 354.808521] sget_userns+0x6b1/0xe40 [ 354.812231] ? kernfs_sop_show_path+0x190/0x190 [ 354.816903] ? kernfs_sop_show_options+0x180/0x180 [ 354.821833] ? destroy_unused_super.part.6+0xd0/0xd0 [ 354.826938] ? check_same_owner+0x320/0x320 [ 354.831253] ? rcu_pm_notify+0xc0/0xc0 [ 354.835396] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.840400] ? kmem_cache_alloc_trace+0x459/0x740 [ 354.845219] ? lock_downgrade+0x980/0x980 [ 354.849348] kernfs_mount_ns+0x13d/0x8b0 [ 354.853397] ? kernfs_super_ns+0x70/0x70 [ 354.857449] sysfs_mount+0xc2/0x1c0 [ 354.861062] ? sysfs_kill_sb+0x40/0x40 [ 354.864936] ? alloc_pages_current+0xbe/0x1e0 [ 354.869421] ? security_sb_copy_data+0x81/0xb0 [ 354.873994] mount_fs+0x66/0x2d0 [ 354.877359] vfs_kern_mount.part.26+0xc6/0x4a0 [ 354.881937] ? may_umount+0xa0/0xa0 [ 354.885552] ? _raw_read_unlock+0x22/0x30 [ 354.889692] ? __get_fs_type+0x8a/0xc0 [ 354.893572] do_mount+0xea4/0x2bb0 [ 354.897093] ? copy_mount_string+0x40/0x40 [ 354.901315] ? rcu_pm_notify+0xc0/0xc0 [ 354.905187] ? copy_mount_options+0x5f/0x2e0 [ 354.909577] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.914571] ? kmem_cache_alloc_trace+0x459/0x740 [ 354.919396] ? kasan_check_write+0x14/0x20 [ 354.923622] ? _copy_from_user+0x99/0x110 [ 354.927755] ? copy_mount_options+0x1f7/0x2e0 [ 354.932232] SyS_mount+0xab/0x120 [ 354.935664] ? copy_mnt_ns+0xb30/0xb30 [ 354.939713] do_syscall_64+0x281/0x940 [ 354.943584] ? vmalloc_sync_all+0x30/0x30 [ 354.947738] ? finish_task_switch+0x1c1/0x7e0 [ 354.952218] ? syscall_return_slowpath+0x550/0x550 [ 354.957137] ? syscall_return_slowpath+0x2ac/0x550 [ 354.962058] ? prepare_exit_to_usermode+0x350/0x350 [ 354.967066] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 354.972420] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 354.977248] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 354.982422] RIP: 0033:0x454e79 [ 354.985598] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 354.993283] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 355.000534] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 355.007793] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 355.015042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 355.022296] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000001b 2033/05/18 03:37:55 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200), &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:55 executing program 1 (fault-call:4 fault-nth:28): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:55 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:55 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:55 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x0, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:55 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) syz_open_procfs(r2, &(0x7f0000000780)='pagemap\x00') ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x220100, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f00000001c0)=@broute={'broute\x00', 0x20, 0x3, 0x4e8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000180), &(0x7f0000000280)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x0, 0x34, 0xc, 'gretap0\x00', 'ip6_vti0\x00', 'irlan0\x00', 'dummy0\x00', @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [0x9d418eaa9e44334b, 0x0, 0xff, 0xff, 0x0, 0xff], @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, [0xff, 0xff, 0x0, 0xff, 0xff, 0xff], 0x128, 0x1d8, 0x220, [@ip6={'ip6\x00', 0x50, {{@ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, @mcast1={0xff, 0x1, [], 0x1}, [0x0, 0xff, 0xff, 0xffffffff], [0xffffff00, 0x0, 0xff0000ff, 0xff000000], 0xff, 0x0, 0x50, 0x1, 0x4e22, 0x4e21, 0x4e20, 0x4e24}}}, @connbytes={'connbytes\x00', 0x18, {{0x1, 0x81, 0x3, 0x1}}}]}, [@common=@NFLOG={'NFLOG\x00', 0x50, {{0xfffffffffffff801, 0x9, 0x3, 0x0, 0x0, "3b002b8f5072ac856925f761318db11c45f736ee7d7362c69dbf51dde7a1a167b9d1a92673d0971b19966209835883a16585031bd29f42b045c11b38fa667165"}}}, @common=@mark={'mark\x00', 0x10, {{0xfffffff0, 0xffffffffffffffff}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00', 0x81, 0x8, 0x5}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{{{0x0, 0x2, 0xa05, 'irlan0\x00', 'ifb0\x00', 'bpq0\x00', 'syzkaller1\x00', @random="d5a7f22364dd", [0xff, 0x0, 0x0, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0x0, 0x0, 0x0, 0xff, 0xff], 0xa0, 0x100, 0x138, [@connlabel={'connlabel\x00', 0x8, {{0xfff, 0x2}}}]}, [@common=@CONNSECMARK={'CONNSECMARK\x00', 0x8, {{0x2}}}, @common=@STANDARD={'\x00', 0x8, {0xfffffffffffffffb}}]}, @common=@dnat={'dnat\x00', 0x10, {{@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x2, 0xffffffffffffffff, 0x1, [{{{0x5, 0x10, 0x800, 'erspan0\x00', 'ip6tnl0\x00', 'tunl0\x00', 'dummy0\x00', @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0xff, 0xff, 0x0, 0xff, 0xff, 0xff], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [0x0, 0xff, 0xff, 0xff, 0x0, 0xff], 0xb0, 0xb0, 0x100, [@connbytes={'connbytes\x00', 0x18, {{0x8, 0x1, 0x0, 0x2}}}]}}, @common=@log={'log\x00', 0x28, {{0x0, "f35a5aada574924d961987d6dce93456af759474a06f48fc59150678ca01", 0x4}}}}]}]}, 0x560) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x8000, 0x0) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r4, 0x84, 0x8, &(0x7f00000000c0), &(0x7f0000000100)=0x4) ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:55 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) ioctl$KVM_CREATE_DEVICE(r2, 0xc00caee0, &(0x7f0000000080)={0x3, r2, 0x1}) tkill(r0, 0x15) 2033/05/18 03:37:55 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000380)='/dev/vcsa#\x00', 0x8, 0x2) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000400)={0x0, 0x1c, &(0x7f00000003c0)=[@in6={0xa, 0x4e21, 0x6, @local={0xfe, 0x80, [], 0xaa}, 0x9}]}, &(0x7f0000000440)=0x10) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000480)={r2, @in={{0x2, 0x4e20, @remote={0xac, 0x14, 0x14, 0xbb}}}}, &(0x7f0000000540)=0x84) r3 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r3, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r3, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) r4 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0xf4a, 0x8000) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r4, &(0x7f0000000200)="2ce42071a0840dd643554ce2bfc99159721bf701a43a87e0ec36ccbfb862b3db076e1249e6921e96d1c3567631eea33b2184f7b914f5ced775b839da35c7b8347c0ae232d3501a9add389e6e2f1d559dead41f39079124cd15e5afb3b15fb8ac2a30484a365e29f12dfa8bb5db9c202d0f86d5e0148805db481b4597a2f1ee4ebbfc71668100408fd8a95b775dea10c6af1f92ad050d2f"}, 0x10) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r5, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r5, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000300)=0x0) fcntl$setownex(r0, 0xf, &(0x7f0000000340)={0x0, r6}) [ 355.176850] FAULT_INJECTION: forcing a failure. [ 355.176850] name failslab, interval 1, probability 0, space 0, times 0 [ 355.188181] CPU: 1 PID: 23866 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 355.195366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.204704] Call Trace: [ 355.207278] dump_stack+0x194/0x24d [ 355.210884] ? arch_local_irq_restore+0x53/0x53 [ 355.215529] ? __save_stack_trace+0x7e/0xd0 [ 355.219831] should_fail+0x8c0/0xa40 [ 355.223521] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 355.228601] ? kasan_kmalloc+0xad/0xe0 [ 355.232462] ? kmem_cache_alloc_trace+0x136/0x740 [ 355.237284] ? __memcg_init_list_lru_node+0x169/0x270 [ 355.242451] ? __list_lru_init+0x544/0x750 [ 355.246662] ? sget_userns+0x6b1/0xe40 [ 355.250529] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 355.255261] ? do_mount+0xea4/0x2bb0 [ 355.258950] ? SyS_mount+0xab/0x120 [ 355.262553] ? do_syscall_64+0x281/0x940 [ 355.266678] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 355.272028] ? find_held_lock+0x35/0x1d0 [ 355.276068] ? __lock_is_held+0xb6/0x140 [ 355.280115] ? check_same_owner+0x320/0x320 [ 355.284415] ? rcu_note_context_switch+0x710/0x710 [ 355.289336] should_failslab+0xec/0x120 [ 355.293293] kmem_cache_alloc_trace+0x4b/0x740 [ 355.297850] ? __kmalloc_node+0x33/0x70 [ 355.301800] ? __kmalloc_node+0x33/0x70 [ 355.305755] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.310753] __memcg_init_list_lru_node+0x169/0x270 [ 355.315747] ? list_lru_add+0x7c0/0x7c0 [ 355.319703] ? __kmalloc_node+0x47/0x70 [ 355.323657] __list_lru_init+0x544/0x750 [ 355.327705] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 355.333568] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 355.338564] ? lockdep_init_map+0x9/0x10 [ 355.342604] sget_userns+0x6b1/0xe40 [ 355.346295] ? kernfs_sop_show_path+0x190/0x190 [ 355.350942] ? kernfs_sop_show_options+0x180/0x180 [ 355.355847] ? destroy_unused_super.part.6+0xd0/0xd0 [ 355.360953] ? check_same_owner+0x320/0x320 [ 355.365254] ? rcu_pm_notify+0xc0/0xc0 [ 355.369122] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.374114] ? kmem_cache_alloc_trace+0x459/0x740 [ 355.378932] ? lock_downgrade+0x980/0x980 [ 355.383058] kernfs_mount_ns+0x13d/0x8b0 [ 355.387096] ? kernfs_super_ns+0x70/0x70 [ 355.391136] sysfs_mount+0xc2/0x1c0 [ 355.394740] ? sysfs_kill_sb+0x40/0x40 [ 355.398602] ? alloc_pages_current+0xbe/0x1e0 [ 355.403075] ? security_sb_copy_data+0x81/0xb0 [ 355.407631] mount_fs+0x66/0x2d0 [ 355.410978] vfs_kern_mount.part.26+0xc6/0x4a0 [ 355.415535] ? may_umount+0xa0/0xa0 [ 355.419140] ? _raw_read_unlock+0x22/0x30 [ 355.423265] ? __get_fs_type+0x8a/0xc0 [ 355.427130] do_mount+0xea4/0x2bb0 [ 355.430646] ? copy_mount_string+0x40/0x40 [ 355.434856] ? rcu_pm_notify+0xc0/0xc0 [ 355.438723] ? copy_mount_options+0x5f/0x2e0 [ 355.443107] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.448100] ? kmem_cache_alloc_trace+0x459/0x740 [ 355.452921] ? copy_mount_options+0x1f7/0x2e0 [ 355.457395] SyS_mount+0xab/0x120 [ 355.460827] ? copy_mnt_ns+0xb30/0xb30 [ 355.464695] do_syscall_64+0x281/0x940 [ 355.468559] ? vmalloc_sync_all+0x30/0x30 [ 355.472687] ? _raw_spin_unlock_irq+0x27/0x70 [ 355.477160] ? finish_task_switch+0x1c1/0x7e0 [ 355.481633] ? syscall_return_slowpath+0x550/0x550 [ 355.486538] ? syscall_return_slowpath+0x2ac/0x550 [ 355.491444] ? prepare_exit_to_usermode+0x350/0x350 [ 355.496438] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 355.501778] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 355.506598] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 355.511765] RIP: 0033:0x454e79 [ 355.514929] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:56 executing program 1 (fault-call:4 fault-nth:29): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 355.522616] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 355.529860] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 355.537106] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 355.544348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 355.551593] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000001c [ 355.607848] FAULT_INJECTION: forcing a failure. [ 355.607848] name failslab, interval 1, probability 0, space 0, times 0 [ 355.619184] CPU: 0 PID: 23873 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 355.626365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.635702] Call Trace: [ 355.638278] dump_stack+0x194/0x24d [ 355.641891] ? arch_local_irq_restore+0x53/0x53 [ 355.646540] ? __save_stack_trace+0x7e/0xd0 [ 355.650864] should_fail+0x8c0/0xa40 [ 355.654572] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 355.659665] ? kasan_kmalloc+0xad/0xe0 [ 355.663544] ? kmem_cache_alloc_trace+0x136/0x740 [ 355.668379] ? __memcg_init_list_lru_node+0x169/0x270 [ 355.673569] ? __list_lru_init+0x544/0x750 [ 355.677792] ? sget_userns+0x6b1/0xe40 [ 355.681681] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 355.686426] ? do_mount+0xea4/0x2bb0 [ 355.690120] ? SyS_mount+0xab/0x120 [ 355.693734] ? do_syscall_64+0x281/0x940 [ 355.697786] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 355.703134] ? find_held_lock+0x35/0x1d0 [ 355.707202] ? __lock_is_held+0xb6/0x140 [ 355.711258] ? check_same_owner+0x320/0x320 [ 355.715568] ? rcu_note_context_switch+0x710/0x710 [ 355.720506] should_failslab+0xec/0x120 [ 355.724473] kmem_cache_alloc_trace+0x4b/0x740 [ 355.729034] ? __kmalloc_node+0x33/0x70 [ 355.733001] ? __kmalloc_node+0x33/0x70 [ 355.736970] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.741977] __memcg_init_list_lru_node+0x169/0x270 [ 355.746989] ? list_lru_add+0x7c0/0x7c0 [ 355.750956] ? __kmalloc_node+0x47/0x70 [ 355.754923] __list_lru_init+0x544/0x750 [ 355.758979] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 355.764853] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 355.769864] ? lockdep_init_map+0x9/0x10 [ 355.773907] sget_userns+0x6b1/0xe40 [ 355.777598] ? kernfs_sop_show_path+0x190/0x190 [ 355.782256] ? kernfs_sop_show_options+0x180/0x180 [ 355.787174] ? destroy_unused_super.part.6+0xd0/0xd0 [ 355.792269] ? check_same_owner+0x320/0x320 [ 355.796584] ? rcu_pm_notify+0xc0/0xc0 [ 355.800459] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.805465] ? kmem_cache_alloc_trace+0x459/0x740 [ 355.810297] ? lock_downgrade+0x980/0x980 [ 355.814440] kernfs_mount_ns+0x13d/0x8b0 [ 355.818496] ? kernfs_super_ns+0x70/0x70 [ 355.822548] sysfs_mount+0xc2/0x1c0 [ 355.826164] ? sysfs_kill_sb+0x40/0x40 [ 355.830044] ? alloc_pages_current+0xbe/0x1e0 [ 355.834523] ? security_sb_copy_data+0x81/0xb0 [ 355.839089] mount_fs+0x66/0x2d0 [ 355.842439] vfs_kern_mount.part.26+0xc6/0x4a0 [ 355.847008] ? may_umount+0xa0/0xa0 [ 355.850631] ? _raw_read_unlock+0x22/0x30 [ 355.854764] ? __get_fs_type+0x8a/0xc0 [ 355.858637] do_mount+0xea4/0x2bb0 [ 355.862161] ? copy_mount_string+0x40/0x40 [ 355.866390] ? rcu_pm_notify+0xc0/0xc0 [ 355.870269] ? copy_mount_options+0x5f/0x2e0 [ 355.874670] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.879684] ? kmem_cache_alloc_trace+0x459/0x740 [ 355.884517] ? kasan_check_write+0x14/0x20 [ 355.888744] ? _copy_from_user+0x99/0x110 [ 355.892884] ? copy_mount_options+0x1f7/0x2e0 [ 355.897360] SyS_mount+0xab/0x120 [ 355.900794] ? copy_mnt_ns+0xb30/0xb30 [ 355.904669] do_syscall_64+0x281/0x940 [ 355.908545] ? trace_event_raw_event_sys_exit+0x260/0x260 [ 355.914076] ? syscall_return_slowpath+0x550/0x550 [ 355.919080] ? syscall_return_slowpath+0x2ac/0x550 [ 355.924002] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 355.929358] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 355.934194] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 355.939367] RIP: 0033:0x454e79 [ 355.942545] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 355.950247] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 2033/05/18 03:37:56 executing program 1 (fault-call:4 fault-nth:30): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:56 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200), &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 355.957504] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 355.964758] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 355.972021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 355.979282] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000001d 2033/05/18 03:37:56 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:56 executing program 0: r0 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) r2 = getpgid(0x0) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r0, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') [ 356.069325] FAULT_INJECTION: forcing a failure. [ 356.069325] name failslab, interval 1, probability 0, space 0, times 0 [ 356.080638] CPU: 0 PID: 23888 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 356.087835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.097192] Call Trace: [ 356.099792] dump_stack+0x194/0x24d [ 356.103429] ? arch_local_irq_restore+0x53/0x53 [ 356.108104] ? __save_stack_trace+0x7e/0xd0 [ 356.112441] should_fail+0x8c0/0xa40 2033/05/18 03:37:56 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a620c881099f323ce9a214c9dc3c2f395a2803a26b67970db09ec7b88a1cba4ab98caec30878695521239f7384e7f755ecdd064f3cb1ecc6f0384eeba1436fc", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 356.116164] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 356.121283] ? kasan_kmalloc+0xad/0xe0 [ 356.125180] ? kmem_cache_alloc_trace+0x136/0x740 [ 356.130029] ? __memcg_init_list_lru_node+0x169/0x270 [ 356.135223] ? __list_lru_init+0x544/0x750 [ 356.139464] ? sget_userns+0x6b1/0xe40 [ 356.143351] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 356.148104] ? do_mount+0xea4/0x2bb0 [ 356.151811] ? SyS_mount+0xab/0x120 [ 356.155419] ? do_syscall_64+0x281/0x940 [ 356.159463] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 356.164819] ? find_held_lock+0x35/0x1d0 [ 356.168870] ? __lock_is_held+0xb6/0x140 [ 356.172933] ? check_same_owner+0x320/0x320 [ 356.177259] ? rcu_note_context_switch+0x710/0x710 [ 356.182188] should_failslab+0xec/0x120 [ 356.186161] kmem_cache_alloc_trace+0x4b/0x740 [ 356.190731] ? __kmalloc_node+0x33/0x70 [ 356.194693] ? __kmalloc_node+0x33/0x70 [ 356.198658] ? rcu_read_lock_sched_held+0x108/0x120 [ 356.203673] __memcg_init_list_lru_node+0x169/0x270 [ 356.208683] ? list_lru_add+0x7c0/0x7c0 [ 356.212639] ? __kmalloc_node+0x47/0x70 [ 356.216608] __list_lru_init+0x544/0x750 [ 356.220661] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 356.226537] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 356.231549] ? lockdep_init_map+0x9/0x10 [ 356.235603] sget_userns+0x6b1/0xe40 [ 356.239314] ? kernfs_sop_show_path+0x190/0x190 [ 356.243984] ? kernfs_sop_show_options+0x180/0x180 [ 356.248914] ? destroy_unused_super.part.6+0xd0/0xd0 [ 356.254022] ? check_same_owner+0x320/0x320 [ 356.258344] ? rcu_pm_notify+0xc0/0xc0 [ 356.262234] ? rcu_read_lock_sched_held+0x108/0x120 [ 356.267246] ? kmem_cache_alloc_trace+0x459/0x740 [ 356.272086] ? lock_downgrade+0x980/0x980 [ 356.276238] kernfs_mount_ns+0x13d/0x8b0 [ 356.280291] ? kernfs_super_ns+0x70/0x70 [ 356.284353] sysfs_mount+0xc2/0x1c0 [ 356.287967] ? sysfs_kill_sb+0x40/0x40 [ 356.291855] ? alloc_pages_current+0xbe/0x1e0 [ 356.296352] ? security_sb_copy_data+0x81/0xb0 [ 356.300924] mount_fs+0x66/0x2d0 [ 356.304289] vfs_kern_mount.part.26+0xc6/0x4a0 [ 356.308859] ? may_umount+0xa0/0xa0 [ 356.312476] ? _raw_read_unlock+0x22/0x30 [ 356.316610] ? __get_fs_type+0x8a/0xc0 [ 356.320483] do_mount+0xea4/0x2bb0 [ 356.324010] ? copy_mount_string+0x40/0x40 [ 356.328251] ? rcu_pm_notify+0xc0/0xc0 [ 356.332131] ? copy_mount_options+0x5f/0x2e0 [ 356.336519] ? rcu_read_lock_sched_held+0x108/0x120 [ 356.341517] ? kmem_cache_alloc_trace+0x459/0x740 [ 356.346341] ? kasan_check_write+0x14/0x20 [ 356.350569] ? copy_mount_options+0x1f7/0x2e0 [ 356.355063] SyS_mount+0xab/0x120 [ 356.358503] ? copy_mnt_ns+0xb30/0xb30 [ 356.362373] do_syscall_64+0x281/0x940 [ 356.366249] ? vmalloc_sync_all+0x30/0x30 [ 356.370380] ? _raw_spin_unlock_irq+0x27/0x70 [ 356.374856] ? finish_task_switch+0x1c1/0x7e0 [ 356.379331] ? syscall_return_slowpath+0x550/0x550 [ 356.384246] ? syscall_return_slowpath+0x2ac/0x550 [ 356.389162] ? prepare_exit_to_usermode+0x350/0x350 [ 356.394174] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 356.399534] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 356.404380] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 356.409562] RIP: 0033:0x454e79 [ 356.412742] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 356.420445] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 356.427708] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 356.434972] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 356.442237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 356.449501] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000001e 2033/05/18 03:37:57 executing program 0: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000001000)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000011000/0x1000)=nil, 0x1000}, 0x1}) pselect6(0x40, &(0x7f0000000fc0), &(0x7f0000005fc0), &(0x7f0000002000), &(0x7f0000000000)={0x77359400}, &(0x7f0000011000)={&(0x7f0000011000), 0x8}) mmap(&(0x7f0000000000/0x34000)=nil, 0x34000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_ZEROPAGE(r0, 0x8010aa02, &(0x7f0000001ff0)={&(0x7f0000011000/0x3000)=nil, 0x3000}) r1 = perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x3, 0xa, 0x1, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000200)=[0x0], &(0x7f0000000280)=[0x0], &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x1, 0x5, 0xa}) r3 = userfaultfd(0x0) r4 = getpgid(0x0) sched_setattr(r4, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) r5 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0xc) setregid(0x0, r6) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000fcdfe8)={0xaa}) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040)='/dev/hwrng\x00', 0x2, 0x0) ptrace$getsig(0x4202, r4, 0xc0f4, &(0x7f0000000080)) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f000086c000)={{&(0x7f0000068000/0x800000)=nil, 0x800000}, 0x1}) read(r1, &(0x7f0000465f8e)=""/114, 0x72) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000100)=ANY=[@ANYBLOB="007f373767000000f9cdbc22a3750df9ba3d2a0f8100000000000000a223fd81e35a635475dcf3878809ba6d363f99116687f1ff4f519889332c180d7dc77c6d34a229d79b5b2a4841615ad745c5e09f07cd1b72bd615580d3951a09a0007760900605c1fbac313a1d20830c663625de876310e76cd8071378f25ed7d89a08a0ace7351494"]) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000240)='bcsf0\x00') ioctl$UFFDIO_UNREGISTER(r3, 0x8010aa01, &(0x7f0000c22ff0)={&(0x7f000001d000/0xc00000)=nil, 0xc00000}) 2033/05/18 03:37:57 executing program 1 (fault-call:4 fault-nth:31): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:57 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x2, 0x111c00) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) fstatfs(r0, &(0x7f0000000200)=""/190) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)=ANY=[@ANYBLOB="030000000000000000000000000000000000000000000000000000000000000000000000000000000000000003000000000000000000000000000000000000000000000000000000000000000000c649000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"]) 2033/05/18 03:37:57 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x0, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:57 executing program 2: r0 = gettid() timer_create(0x0, &(0x7f0000000140)={0x0, 0x12, 0x1}, &(0x7f00000000c0)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x5, 0x3, 0x10d000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000000)) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="04"]) tkill(r0, 0x15) 2033/05/18 03:37:57 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) 2033/05/18 03:37:57 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200), &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:57 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1}], 0x1, 0xffffffffffffffff) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 357.191228] FAULT_INJECTION: forcing a failure. [ 357.191228] name failslab, interval 1, probability 0, space 0, times 0 [ 357.202506] CPU: 0 PID: 23920 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 357.209688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.219037] Call Trace: [ 357.221616] dump_stack+0x194/0x24d [ 357.225238] ? arch_local_irq_restore+0x53/0x53 [ 357.229905] ? __save_stack_trace+0x7e/0xd0 [ 357.234232] should_fail+0x8c0/0xa40 [ 357.237940] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 357.243557] ? kasan_kmalloc+0xad/0xe0 [ 357.247438] ? kmem_cache_alloc_trace+0x136/0x740 [ 357.252273] ? __memcg_init_list_lru_node+0x169/0x270 [ 357.257455] ? __list_lru_init+0x544/0x750 [ 357.261673] ? sget_userns+0x6b1/0xe40 [ 357.265551] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 357.270295] ? do_mount+0xea4/0x2bb0 [ 357.273999] ? SyS_mount+0xab/0x120 [ 357.277617] ? do_syscall_64+0x281/0x940 [ 357.281672] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 357.287050] ? find_held_lock+0x35/0x1d0 [ 357.291116] ? __lock_is_held+0xb6/0x140 [ 357.295174] ? check_same_owner+0x320/0x320 [ 357.299497] ? rcu_note_context_switch+0x710/0x710 [ 357.304428] should_failslab+0xec/0x120 [ 357.308395] kmem_cache_alloc_trace+0x4b/0x740 [ 357.312975] ? __kmalloc_node+0x33/0x70 [ 357.316953] ? __kmalloc_node+0x33/0x70 [ 357.320953] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.325959] __memcg_init_list_lru_node+0x169/0x270 [ 357.330968] ? list_lru_add+0x7c0/0x7c0 [ 357.334924] ? __kmalloc_node+0x47/0x70 [ 357.338895] __list_lru_init+0x544/0x750 [ 357.342965] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 357.348833] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 357.353828] ? lockdep_init_map+0x9/0x10 [ 357.357881] sget_userns+0x6b1/0xe40 [ 357.361584] ? kernfs_sop_show_path+0x190/0x190 [ 357.366250] ? kernfs_sop_show_options+0x180/0x180 [ 357.371180] ? destroy_unused_super.part.6+0xd0/0xd0 [ 357.376271] ? check_same_owner+0x320/0x320 [ 357.380579] ? rcu_pm_notify+0xc0/0xc0 [ 357.384456] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.389456] ? kmem_cache_alloc_trace+0x459/0x740 [ 357.394290] ? lock_downgrade+0x980/0x980 [ 357.398423] kernfs_mount_ns+0x13d/0x8b0 [ 357.402469] ? kernfs_super_ns+0x70/0x70 [ 357.406519] sysfs_mount+0xc2/0x1c0 [ 357.410129] ? sysfs_kill_sb+0x40/0x40 [ 357.414270] ? alloc_pages_current+0xbe/0x1e0 [ 357.418749] ? security_sb_copy_data+0x81/0xb0 [ 357.423319] mount_fs+0x66/0x2d0 [ 357.426683] vfs_kern_mount.part.26+0xc6/0x4a0 [ 357.431247] ? may_umount+0xa0/0xa0 [ 357.434852] ? _raw_read_unlock+0x22/0x30 [ 357.438975] ? __get_fs_type+0x8a/0xc0 [ 357.442841] do_mount+0xea4/0x2bb0 [ 357.446368] ? copy_mount_string+0x40/0x40 [ 357.450580] ? rcu_pm_notify+0xc0/0xc0 [ 357.454451] ? copy_mount_options+0x5f/0x2e0 [ 357.458847] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.463844] ? kmem_cache_alloc_trace+0x459/0x740 [ 357.468675] ? kasan_check_write+0x14/0x20 [ 357.472905] ? _copy_from_user+0x99/0x110 [ 357.477051] ? copy_mount_options+0x1f7/0x2e0 [ 357.481543] SyS_mount+0xab/0x120 [ 357.484985] ? copy_mnt_ns+0xb30/0xb30 [ 357.488870] do_syscall_64+0x281/0x940 [ 357.492746] ? vmalloc_sync_all+0x30/0x30 [ 357.496881] ? _raw_spin_unlock_irq+0x27/0x70 [ 357.501361] ? finish_task_switch+0x1c1/0x7e0 [ 357.505834] ? syscall_return_slowpath+0x550/0x550 [ 357.510742] ? syscall_return_slowpath+0x2ac/0x550 [ 357.515650] ? prepare_exit_to_usermode+0x350/0x350 [ 357.520652] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 357.526017] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 357.530847] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 357.536020] RIP: 0033:0x454e79 2033/05/18 03:37:58 executing program 1 (fault-call:4 fault-nth:32): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) [ 357.539198] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 357.546900] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 357.554160] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 357.561413] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 357.568674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 357.575930] R13: 00000000000003fa R14: 00000000006f8010 R15: 000000000000001f [ 357.618044] FAULT_INJECTION: forcing a failure. [ 357.618044] name failslab, interval 1, probability 0, space 0, times 0 [ 357.629377] CPU: 1 PID: 23933 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 357.636565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.645915] Call Trace: [ 357.648502] dump_stack+0x194/0x24d [ 357.652791] ? arch_local_irq_restore+0x53/0x53 [ 357.657456] ? __save_stack_trace+0x7e/0xd0 [ 357.661782] should_fail+0x8c0/0xa40 [ 357.665502] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 357.670600] ? kasan_kmalloc+0xad/0xe0 [ 357.674479] ? kmem_cache_alloc_trace+0x136/0x740 [ 357.679309] ? __memcg_init_list_lru_node+0x169/0x270 [ 357.684483] ? __list_lru_init+0x544/0x750 [ 357.688715] ? sget_userns+0x6b1/0xe40 [ 357.692612] ? vfs_kern_mount.part.26+0xc6/0x4a0 [ 357.697352] ? do_mount+0xea4/0x2bb0 [ 357.701050] ? SyS_mount+0xab/0x120 [ 357.704673] ? do_syscall_64+0x281/0x940 [ 357.708736] ? entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 357.714100] ? find_held_lock+0x35/0x1d0 [ 357.718156] ? __lock_is_held+0xb6/0x140 [ 357.722221] ? check_same_owner+0x320/0x320 [ 357.726552] ? rcu_note_context_switch+0x710/0x710 [ 357.731476] should_failslab+0xec/0x120 [ 357.735463] kmem_cache_alloc_trace+0x4b/0x740 [ 357.740051] ? __kmalloc_node+0x33/0x70 [ 357.744022] ? __kmalloc_node+0x33/0x70 [ 357.747986] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.752986] __memcg_init_list_lru_node+0x169/0x270 [ 357.757993] ? list_lru_add+0x7c0/0x7c0 [ 357.761967] ? __kmalloc_node+0x47/0x70 [ 357.765942] __list_lru_init+0x544/0x750 [ 357.769996] ? memcg_destroy_list_lru_node.isra.7+0x110/0x110 [ 357.775878] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 357.780892] ? lockdep_init_map+0x9/0x10 [ 357.784941] sget_userns+0x6b1/0xe40 [ 357.788643] ? kernfs_sop_show_path+0x190/0x190 [ 357.793292] ? kernfs_sop_show_options+0x180/0x180 [ 357.798210] ? destroy_unused_super.part.6+0xd0/0xd0 [ 357.803400] ? check_same_owner+0x320/0x320 [ 357.807722] ? rcu_pm_notify+0xc0/0xc0 [ 357.811599] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.816605] ? kmem_cache_alloc_trace+0x459/0x740 [ 357.821442] ? lock_downgrade+0x980/0x980 [ 357.825590] kernfs_mount_ns+0x13d/0x8b0 [ 357.829904] ? kernfs_super_ns+0x70/0x70 [ 357.833962] sysfs_mount+0xc2/0x1c0 [ 357.837599] ? sysfs_kill_sb+0x40/0x40 [ 357.841472] ? alloc_pages_current+0xbe/0x1e0 [ 357.845959] ? security_sb_copy_data+0x81/0xb0 [ 357.850522] mount_fs+0x66/0x2d0 [ 357.853883] vfs_kern_mount.part.26+0xc6/0x4a0 [ 357.858460] ? may_umount+0xa0/0xa0 [ 357.862082] ? _raw_read_unlock+0x22/0x30 [ 357.866220] ? __get_fs_type+0x8a/0xc0 [ 357.870091] do_mount+0xea4/0x2bb0 [ 357.873614] ? copy_mount_string+0x40/0x40 [ 357.877839] ? rcu_pm_notify+0xc0/0xc0 [ 357.881714] ? copy_mount_options+0x5f/0x2e0 [ 357.886104] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.891110] ? kmem_cache_alloc_trace+0x459/0x740 [ 357.895975] ? copy_mount_options+0x1f7/0x2e0 [ 357.900452] SyS_mount+0xab/0x120 [ 357.903894] ? copy_mnt_ns+0xb30/0xb30 [ 357.907784] do_syscall_64+0x281/0x940 [ 357.911664] ? vmalloc_sync_all+0x30/0x30 [ 357.915828] ? _raw_spin_unlock_irq+0x27/0x70 [ 357.920311] ? finish_task_switch+0x1c1/0x7e0 [ 357.924795] ? syscall_return_slowpath+0x550/0x550 [ 357.929710] ? syscall_return_slowpath+0x2ac/0x550 [ 357.934615] ? prepare_exit_to_usermode+0x350/0x350 [ 357.939610] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 357.944954] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 357.949783] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 357.954967] RIP: 0033:0x454e79 [ 357.958135] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:58 executing program 1 (fault-call:4 fault-nth:33): perf_event_open(&(0x7f0000271000)={0x2, 0x70, 0x49, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x4a, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x0, &(0x7f00000001c0)) chmod(&(0x7f0000000140)='./file0/bus\x00', 0x100) umount2(&(0x7f0000000040)='./file0\x00', 0x0) 2033/05/18 03:37:58 executing program 6: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(0xffffffffffffffff, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:58 executing program 3: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="5366be7b85407078d0c8f9268f1830f27ddc2225fe2ddf42e7b2d6e77197510380fea41139a29199a7102c8591785726ed2717d1cc73ac679f5f13e1e04249338df92a982745c85c37c3b295f193800556184067467ae2665eb325803c0f55a109f8075bc4f4a684447005701c3e576c6e25f584da35eb9c081d3bb425e8fc6faad50c6d83c83d7e2891f432fea0cd8b8aa1997bf55d5d22ea1fc99a53aae297b8281a1136ebd1ef9e1f7683857f99f0298547d510834b3f58fe8a62", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaa"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x2, 0x0, [{}, {}]}) [ 357.965824] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 357.973086] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 357.980345] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 357.987607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 357.994866] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000020 [ 358.064694] FAULT_INJECTION: forcing a failure. [ 358.064694] name failslab, interval 1, probability 0, space 0, times 0 [ 358.076329] CPU: 0 PID: 23950 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 358.083520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.092877] Call Trace: [ 358.095461] dump_stack+0x194/0x24d [ 358.099097] ? arch_local_irq_restore+0x53/0x53 [ 358.103772] ? finish_task_switch+0x1c1/0x7e0 [ 358.108272] ? finish_task_switch+0x182/0x7e0 [ 358.112773] should_fail+0x8c0/0xa40 [ 358.116488] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 358.121601] ? __sched_text_start+0x8/0x8 [ 358.125750] ? find_held_lock+0x35/0x1d0 [ 358.129814] ? __lock_is_held+0xb6/0x140 [ 358.133882] ? check_same_owner+0x320/0x320 [ 358.138208] ? find_held_lock+0x35/0x1d0 [ 358.142276] should_failslab+0xec/0x120 [ 358.146250] __kmalloc+0x63/0x760 [ 358.149705] ? lock_downgrade+0x980/0x980 [ 358.153853] ? _raw_spin_unlock+0x22/0x30 [ 358.157999] ? register_shrinker+0x10e/0x2d0 2033/05/18 03:37:58 executing program 4: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0x0, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:58 executing program 7: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0xffffffffffffffff) epoll_pwait(r1, &(0x7f0000c58000)=[{}], 0x1, 0x8000000000000071, &(0x7f0000654ff8), 0x8) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_getoverrun(0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r2, 0x84, 0x65, &(0x7f0000000100)=[@in6={0xa, 0x4e21, 0xe3c, @loopback={0x0, 0x1}, 0x1}, @in={0x2, 0x4e21, @multicast2=0xe0000002}], 0x2c) ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:58 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0x0) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) 2033/05/18 03:37:58 executing program 5: r0 = perf_event_open(&(0x7f0000014f88)={0x1, 0x70}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f00002c3000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) r1 = epoll_create(0x5) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)) poll(&(0x7f0000000040)=[{r1, 0x41}], 0x1, 0x0) ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0) timer_create(0x7, &(0x7f0000000300)={0x0, 0x35, 0x4, @thr={&(0x7f0000000200)="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", &(0x7f0000000100)="0ea33d67991433e50ec6b71184001eaab34578c03e24c67afc377889d8b07b"}}, &(0x7f0000000340)=0x0) timer_getoverrun(r2) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8000, 0x0) ioctl$TCSETAF(0xffffffffffffffff, 0x5408, &(0x7f00000000c0)={0x9, 0x1, 0xe9, 0x0, 0x6, 0x9, 0x7, 0x1, 0x59d, 0xffffffffffffff0e}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000180)={0x3, 0x0, [{}, {}, {}]}) [ 358.162407] ? trace_event_raw_event_module_request+0x320/0x320 [ 358.168473] register_shrinker+0x10e/0x2d0 [ 358.172714] ? prepare_kswapd_sleep+0x1f0/0x1f0 [ 358.177386] ? memcpy+0x45/0x50 [ 358.180677] sget_userns+0xbbf/0xe40 [ 358.184387] ? kernfs_sop_show_path+0x190/0x190 [ 358.189060] ? kernfs_sop_show_options+0x180/0x180 [ 358.193992] ? destroy_unused_super.part.6+0xd0/0xd0 [ 358.199098] ? check_same_owner+0x320/0x320 [ 358.203424] ? rcu_pm_notify+0xc0/0xc0 [ 358.207319] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.212331] ? kmem_cache_alloc_trace+0x459/0x740 [ 358.217170] ? lock_downgrade+0x980/0x980 [ 358.221325] kernfs_mount_ns+0x13d/0x8b0 [ 358.225386] ? kernfs_super_ns+0x70/0x70 [ 358.229454] sysfs_mount+0xc2/0x1c0 [ 358.233075] ? sysfs_kill_sb+0x40/0x40 [ 358.236964] ? alloc_pages_current+0xbe/0x1e0 [ 358.241451] ? security_sb_copy_data+0x81/0xb0 [ 358.246035] mount_fs+0x66/0x2d0 [ 358.249400] vfs_kern_mount.part.26+0xc6/0x4a0 [ 358.253979] ? may_umount+0xa0/0xa0 [ 358.257599] ? _raw_read_unlock+0x22/0x30 [ 358.261738] ? __get_fs_type+0x8a/0xc0 [ 358.265606] do_mount+0xea4/0x2bb0 [ 358.269125] ? copy_mount_string+0x40/0x40 [ 358.273338] ? rcu_pm_notify+0xc0/0xc0 [ 358.277210] ? copy_mount_options+0x5f/0x2e0 [ 358.281602] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.286602] ? kmem_cache_alloc_trace+0x459/0x740 [ 358.291426] ? kasan_check_write+0x14/0x20 [ 358.295648] ? _copy_from_user+0x99/0x110 [ 358.299775] ? copy_mount_options+0x1f7/0x2e0 [ 358.304244] SyS_mount+0xab/0x120 [ 358.307678] ? copy_mnt_ns+0xb30/0xb30 [ 358.311557] do_syscall_64+0x281/0x940 [ 358.315435] ? vmalloc_sync_all+0x30/0x30 [ 358.319567] ? _raw_spin_unlock_irq+0x27/0x70 [ 358.324049] ? finish_task_switch+0x1c1/0x7e0 [ 358.328524] ? syscall_return_slowpath+0x550/0x550 [ 358.333430] ? syscall_return_slowpath+0x2ac/0x550 [ 358.338335] ? prepare_exit_to_usermode+0x350/0x350 [ 358.343329] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 358.348677] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 358.353513] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 358.358679] RIP: 0033:0x454e79 [ 358.361844] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 358.369537] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 358.376794] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 358.384054] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 358.391305] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 358.398549] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000021 [ 358.415211] kasan: CONFIG_KASAN_INLINE enabled [ 358.420272] kasan: GPF could be caused by NULL-ptr deref or user memory access [ 358.427908] general protection fault: 0000 [#1] SMP KASAN [ 358.433434] Dumping ftrace buffer: [ 358.436951] (ftrace buffer empty) [ 358.440632] Modules linked in: [ 358.443805] CPU: 1 PID: 23950 Comm: syz-executor1 Not tainted 4.16.0-rc7+ #7 [ 358.450961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.460304] RIP: 0010:__list_del_entry_valid+0x7e/0x150 [ 358.465644] RSP: 0018:ffff880177fa7658 EFLAGS: 00010246 [ 358.470989] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 358.478232] RDX: 0000000000000000 RSI: ffff8801b2388418 RDI: ffff8801b2388420 [ 358.485478] RBP: ffff880177fa7670 R08: ffffffff81d268a2 R09: 0000000000000004 [ 358.492735] R10: ffff880177fa7670 R11: 0000000000000000 R12: 0000000000000000 [ 358.500005] R13: ffff8801d7720140 R14: ffff880177fa7700 R15: ffff8801b2388418 [ 358.507256] FS: 00007f43b759b700(0000) GS:ffff8801db100000(0000) knlGS:0000000000000000 [ 358.515453] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 358.521487] CR2: 0000001b9bc21000 CR3: 00000001bbe64003 CR4: 00000000001626e0 [ 358.528730] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 358.535975] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 358.543223] Call Trace: [ 358.545791] ? mutex_lock_nested+0x16/0x20 [ 358.549999] kernfs_kill_sb+0x9e/0x330 [ 358.553871] ? unregister_shrinker+0x22c/0x3a0 [ 358.558435] ? kernfs_mount_ns+0x8b0/0x8b0 [ 358.562648] ? perf_trace_mm_vmscan_writepage+0x790/0x790 [ 358.568162] ? register_shrinker+0x235/0x2d0 [ 358.572564] ? prepare_kswapd_sleep+0x1f0/0x1f0 [ 358.577215] sysfs_kill_sb+0x22/0x40 [ 358.580903] deactivate_locked_super+0x88/0xd0 [ 358.585459] sget_userns+0xbda/0xe40 [ 358.589144] ? kernfs_sop_show_path+0x190/0x190 [ 358.593784] ? kernfs_sop_show_options+0x180/0x180 [ 358.598686] ? destroy_unused_super.part.6+0xd0/0xd0 [ 358.603771] ? check_same_owner+0x320/0x320 [ 358.608073] ? rcu_pm_notify+0xc0/0xc0 [ 358.611941] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.616931] ? kmem_cache_alloc_trace+0x459/0x740 [ 358.621748] ? lock_downgrade+0x980/0x980 [ 358.625870] kernfs_mount_ns+0x13d/0x8b0 [ 358.629904] ? kernfs_super_ns+0x70/0x70 [ 358.633945] sysfs_mount+0xc2/0x1c0 [ 358.637559] ? sysfs_kill_sb+0x40/0x40 [ 358.641426] ? alloc_pages_current+0xbe/0x1e0 [ 358.645893] ? security_sb_copy_data+0x81/0xb0 [ 358.650446] mount_fs+0x66/0x2d0 [ 358.653793] vfs_kern_mount.part.26+0xc6/0x4a0 [ 358.658356] ? may_umount+0xa0/0xa0 [ 358.661961] ? _raw_read_unlock+0x22/0x30 [ 358.666088] ? __get_fs_type+0x8a/0xc0 [ 358.669958] do_mount+0xea4/0x2bb0 [ 358.673470] ? copy_mount_string+0x40/0x40 [ 358.677678] ? rcu_pm_notify+0xc0/0xc0 [ 358.681546] ? copy_mount_options+0x5f/0x2e0 [ 358.685929] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.690932] ? kmem_cache_alloc_trace+0x459/0x740 [ 358.695751] ? kasan_check_write+0x14/0x20 [ 358.699959] ? _copy_from_user+0x99/0x110 [ 358.704083] ? copy_mount_options+0x1f7/0x2e0 [ 358.708552] SyS_mount+0xab/0x120 [ 358.711981] ? copy_mnt_ns+0xb30/0xb30 [ 358.716018] do_syscall_64+0x281/0x940 [ 358.719886] ? vmalloc_sync_all+0x30/0x30 [ 358.724013] ? _raw_spin_unlock_irq+0x27/0x70 [ 358.728486] ? finish_task_switch+0x1c1/0x7e0 [ 358.732958] ? syscall_return_slowpath+0x550/0x550 [ 358.737866] ? syscall_return_slowpath+0x2ac/0x550 [ 358.742777] ? prepare_exit_to_usermode+0x350/0x350 [ 358.747775] ? entry_SYSCALL_64_after_hwframe+0x52/0xb7 [ 358.753112] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 358.757939] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 358.763111] RIP: 0033:0x454e79 [ 358.766278] RSP: 002b:00007f43b759ac68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 358.773954] RAX: ffffffffffffffda RBX: 00007f43b759b6d4 RCX: 0000000000454e79 [ 358.781199] RDX: 0000000020000100 RSI: 0000000020000040 RDI: 0000000020000080 [ 358.788446] RBP: 000000000072bea0 R08: 00000000200001c0 R09: 0000000000000000 [ 358.795704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000016 [ 358.802953] R13: 00000000000003fa R14: 00000000006f8010 R15: 0000000000000021 [ 358.810204] Code: 00 00 00 00 ad de 49 39 c4 74 66 48 b8 00 02 00 00 00 00 ad de 48 89 da 48 39 c3 74 65 48 c1 ea 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 02 00 75 7b 48 8b 13 48 39 f2 75 57 49 8d 7c 24 08 48 b8 [ 358.829328] RIP: __list_del_entry_valid+0x7e/0x150 RSP: ffff880177fa7658 [ 358.836205] ---[ end trace ca2b868c5838d5d4 ]--- [ 358.840968] Kernel panic - not syncing: Fatal exception [ 358.846699] Dumping ftrace buffer: [ 358.850214] (ftrace buffer empty) [ 358.853892] Kernel Offset: disabled [ 358.857487] Rebooting in 86400 seconds..