= 00000000 [ 463.611664][T20172] *** Host State *** [ 463.618839][T20172] RIP = 0xffffffff811b3240 RSP = 0xffff88802f3df8e0 [ 463.632456][T20172] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 463.644086][T20172] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 463.656335][T20172] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 463.667112][T20172] CR0=0000000080050033 CR3=000000004fbf1000 CR4=00000000001426e0 [ 463.682552][T20172] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 03:36:39 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, 0x0, 0x0, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 463.731200][T20172] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 463.767318][T20184] IPVS: ftp: loaded support on port[0] = 21 [ 463.791197][T20188] binder: 20183:20188 transaction failed 29189/-22, size 137439009544-0 line 2994 [ 463.841170][T20172] *** Control State *** [ 463.850273][ T7733] binder: undelivered TRANSACTION_ERROR: 29189 [ 463.869967][T20172] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 463.878975][ T7733] binder: undelivered TRANSACTION_ERROR: 29189 [ 463.889369][T20172] EntryControls=0000d1ff ExitControls=002fefff [ 463.896978][T20172] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 463.906212][T20172] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 463.913998][T20172] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 463.921840][T20172] reason=80000021 qualification=0000000000000000 [ 463.929444][T20172] IDTVectoring: info=00000000 errcode=00000000 [ 463.935708][T20172] TSC Offset = 0xffffff05af2d285b [ 463.941960][T20172] TPR Threshold = 0x00 [ 463.946145][T20172] EPT pointer = 0x00000000932e101e 03:36:41 executing program 4: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(&(0x7f0000000400)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x8, &(0x7f0000000200)=[@flat={0x73622a85}], &(0x7f0000000240)=[0x0]}}], 0x0, 0x0, 0x0}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x84241, 0x0) setsockopt$inet_mreqsrc(r1, 0x0, 0x2e, &(0x7f0000000040)={@multicast1, @loopback, @local}, 0xc) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0) 03:36:41 executing program 5: r0 = socket$kcm(0xa, 0x6, 0x0) close(r0) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x5452, &(0x7f00000000c0)) close(r0) fcntl$setstatus(r1, 0x4, 0x40000) 03:36:41 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x6f, &(0x7f0000000100)=0x3, 0x1) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f00000000c0)=0x7, 0x4) sendto$inet6(r0, &(0x7f00000001c0), 0x1bf, 0x0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000080), 0x4) 03:36:41 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, 0x0, 0x0, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:41 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$KDSKBSENT(r3, 0x4b49, &(0x7f00000001c0)="0b76271752bc2b2773ca2644750b741b967164acf2a8e1de1c739d40909f3a43c3b3bc1f0a309af80bc2526afe7922c851e8c62eb37d08d4dc5449fe08ac0221aa6dc524493c8d48c8293206c52679294edbdc4c91321cef1a541c1f21e70659430b3e4760feb382c9e2adb1863d8f805d27e5749946835014b59e62dc0b256045d3be60da34ce4a5bc0e62b0db0a51ddb7f0c8b8768581852b1866a41f0a57b071f9831fe709e545bc84c6c0f9a958940a53ed3c2441f6e933345a05b2c1e138dcdcdb62ac46fa46761439ff5c86e877ae70d6123e1b101") ioctl$KVM_RUN(r2, 0xae80, 0x0) remap_file_pages(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x4, 0xf1b4e8391b2744fa) ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000000)=r3) ioctl$TUNSETPERSIST(r3, 0x400454cb, 0x1) 03:36:41 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0\x00', &(0x7f0000000280)=@ethtool_rxfh_indir={0x39}}) r1 = accept(r0, &(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000080)=0x80) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r1, 0x84, 0x65, &(0x7f0000000100)=[@in6={0xa, 0x4e20, 0x32, @loopback, 0x3}, @in6={0xa, 0x4e24, 0x8, @mcast1, 0x9}, @in6={0xa, 0x4e23, 0xfffffffffffffffa, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x19}}, 0x4}], 0x54) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000001c0)={0x0, @aes256}) setsockopt$inet_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000180), 0x275) 03:36:41 executing program 1: r0 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x40) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) r1 = syz_open_dev$dmmidi(&(0x7f0000000340)='/dev/dmmidi#\x00', 0x0, 0x0) sched_setaffinity(0x0, 0xfffffffffffffff8, &(0x7f0000000140)=0x40000000000009) shmget$private(0x0, 0x1000, 0x1, &(0x7f0000b60000/0x1000)=nil) syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x1000, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) get_robust_list(0x0, &(0x7f0000000240)=&(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)}, &(0x7f0000000280)=0x18) ioctl$VIDIOC_LOG_STATUS(r1, 0x5646, 0x0) shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000300)={0x0, 0x5}, &(0x7f0000000480)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000004c0)={r2, 0x0, 0x1}, 0x8) r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) r4 = add_key$user(&(0x7f0000000180)='user\x00', &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000380)="58f09ee253cdf1e07b06cc84b1be7ccb5e4264644f976caab75695722db6beecacb52b9f9a7245da30aeb40298b8e0bbd05ac4541960a8d349a64116a9c67f663715fd6c8e67eb6fb43a2315f1b1ca733ba9a3faaa67738be75599c725dfaff0a19a99c1846e05b84b6c2419807871d982e0bd3efc389f3a455e11fc3d8d1bb10f46b0fdc32de4d82ff6a307b08bd62fbf07d9e5a782e6f5bab327102b5af640a435bc3e0d091846e530425cd3292524327ebcb6060f0ec0e99e246bd7f6621a0c75115572142fa916926c1795c308ba4128", 0xd2, 0xfffffffffffffffe) r5 = msgget(0x2, 0x300) msgctl$MSG_STAT(r5, 0xb, &(0x7f0000000500)=""/4096) keyctl$invalidate(0x15, r4) clone(0x4000, &(0x7f0000000380), 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x80a102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000100)=""/52) mount(0x0, &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) r6 = semget$private(0x0, 0x4, 0x84) semctl$GETPID(r6, 0x4, 0xb, &(0x7f0000001500)=""/254) [ 465.956350][T20219] binder: 20211:20219 transaction failed 29189/-22, size 24-8 line 2994 03:36:41 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x74, 0x4) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000680)={0x2, 0x4e23, @local}, 0x10) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r1 = dup2(r0, r0) setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) setsockopt$sock_int(r1, 0x1, 0x1f, &(0x7f0000000080)=0xda9, 0x4) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f00000006c0)={'filter\x00', 0x7, 0x4, 0x458, 0x0, 0x258, 0x258, 0x370, 0x370, 0x370, 0x4, &(0x7f00000000c0), {[{{@arp={@multicast1, @rand_addr=0x8, 0x0, 0xffffffff, @empty, {[0xff, 0xff, 0xff, 0xff, 0x0, 0xff]}, @mac=@random="24c6823a99fe", {[0xff, 0xff]}, 0x10001, 0x6, 0x5, 0x8, 0xd669, 0x7, 'ip6_vti0\x00', 'caif0\x00', {0xff}, {}, 0x0, 0x20}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @mac, @multicast2, @dev={0xac, 0x14, 0x14, 0x16}, 0x1}}}, {{@arp={@broadcast, @multicast1, 0xffffffff, 0xff000000, @mac=@random="0d8abf4d7096", {[0x0, 0xff, 0x0, 0x0, 0xff]}, @mac=@random="03f83ebd7830", {[0xff, 0xff, 0x0, 0x0, 0xff, 0xff]}, 0x800, 0x6, 0x594d8000, 0x11, 0xfa, 0xbc, 'ip6gretap0\x00', 'lo\x00', {}, {0xff}, 0x0, 0x8}, 0xf0, 0x118}, @unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x820, 0x3}}}, {{@uncond, 0xf0, 0x118}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0xfffffffffffffffb, 0x3, 0x2}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4a8) r2 = fcntl$dupfd(r0, 0x0, r0) sendmsg$TIPC_NL_MEDIA_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000001c0)={0x14}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x20000040) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0xff5a) 03:36:41 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 466.003452][T20215] *** Guest State *** [ 466.016891][T20215] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 466.032614][T20227] binder: 20211:20227 transaction failed 29189/-22, size 24-8 line 2994 [ 466.077995][T20215] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 466.087625][T20215] CR3 = 0x0000000000000000 [ 466.087636][T20215] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 466.087652][T20215] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 466.087669][T20215] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 466.087718][T20215] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 466.089957][ T17] binder: undelivered TRANSACTION_ERROR: 29189 03:36:41 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) getsockname(r0, &(0x7f0000000180)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x80) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@ipv4_getnetconf={0x0, 0x52, 0x202, 0x70bd28, 0x25dfdbfb, {}, [@NETCONFA_PROXY_NEIGH={0x0, 0x5, 0xfff}, @NETCONFA_PROXY_NEIGH={0x0, 0x5, 0x6}, @NETCONFA_IFINDEX={0x0, 0x1, r1}, @NETCONFA_FORWARDING={0x0, 0x2, 0x81}]}, 0xfffffffffffffedd}, 0x1, 0x0, 0x0, 0x1}, 0x0) 03:36:41 executing program 4: r0 = syz_open_dev$sndtimer(&(0x7f0000000180)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0x3}}) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0xf, &(0x7f0000000040)='/dev/snd/timer\x00'}, 0x30) r2 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x0, 0x2) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) [ 466.145251][T20215] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 466.172760][T20215] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 466.183302][ T17] binder: undelivered TRANSACTION_ERROR: 29189 [ 466.191004][T20215] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:41 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 466.267841][T20215] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:41 executing program 5: r0 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000100)={0xffffffffffffffff, 0x3, 0x9, 0x3}) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x8000, 0x0) ioctl$VIDIOC_STREAMON(r1, 0x40045612, &(0x7f0000000080)=0xfe) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000140)={0x0, 0x0, 0x20, 0x7, 0x1}, &(0x7f0000000180)=0x18) syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x0, 0x0) [ 466.344324][T20215] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:41 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) [ 466.411640][T20215] GDTR: limit=0x00000000, base=0x0000000000000000 [ 466.447183][T20215] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:41 executing program 3: r0 = perf_event_open(&(0x7f00004e7000)={0x2, 0x70, 0xdf, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000280)='cpu_0xa\x00\x00\x00\x01\x00\x01\x01\x9c\xd3\x0e5\xa0\x1d=\x04\n\x1c`fo\x8d\xccm\\v\xfd\xb6,\xc5\xb4\"7&\xb5yts\xfb\x1d\x83\xf8.- \x00\x00\x00(\xe9`D\x01i\\\x8dl\x86lh\xa8\xfc\x80\xde,Kt\xf4#\xc5]Y;\xc16v\xf9\x89\t\x06\xbe*\xaa&\xbd\x16xQ\x8e\x00\x80\x00\x00\x00\x00\x00\x00\x9b|\xe4\xb7\bE\xed\x97\x80s\x19W\xb7[\xf0%>MM\xf5\x98\xbe^=q!\xa6\x0fp\x012\x00\xbb\xbe\x9dX5\xafep\x10R\v&\xaf\xa8$\x7f7V\xedLJ4\xcf\a\x01\xd5T\n\xca\xc2\x86_\xc1\xce\x8d\xedbS\x8d\xe9t\x82\xf41zwr\xe6o\x88\xe5\xe3\xe7Gcx\xc0\x91I\x01\x00\x00\x00\x01\x00\x00\x00K\x9e\xe5[\xa0\n\x0f\x04\xa6\xb0sE)\x8a\xd0R\xc3\xc1,b \\8\xcefz6\xfeJ~\xda\xd7_\xfe\x1f\xe5\x86\xb1xu&\xfb\xf2\xbf\xe8\x7f\x91\x93\xab\x05\x004\x85\x86l\x8d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00') r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x3, 0x0) ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000080)=0x20d00001c) 03:36:41 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 466.500969][T20215] IDTR: limit=0x00000000, base=0x0000000000000000 [ 466.513749][T20215] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 466.522656][T20215] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 466.545346][T20215] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 466.579420][T20215] Interruptibility = 00000000 ActivityState = 00000000 [ 466.586398][T20215] *** Host State *** [ 466.602117][T20215] RIP = 0xffffffff811b3240 RSP = 0xffff88808acb78e0 [ 466.609052][T20215] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 466.616308][T20215] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 466.638164][T20215] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 466.644940][T20215] CR0=0000000080050033 CR3=0000000099f71000 CR4=00000000001426f0 [ 466.653060][T20215] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 466.660719][T20215] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 466.668989][T20215] *** Control State *** [ 466.673291][T20215] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 466.697759][T20215] EntryControls=0000d1ff ExitControls=002fefff [ 466.710144][T20215] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 466.720592][T20215] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 466.728760][T20215] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 466.736142][T20215] reason=80000021 qualification=0000000000000000 [ 466.751534][T20215] IDTVectoring: info=00000000 errcode=00000000 [ 466.767913][T20215] TSC Offset = 0xffffff040d7aa0d2 [ 466.772945][T20215] TPR Threshold = 0x00 [ 466.777013][T20215] EPT pointer = 0x000000008d86f01e 03:36:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000240)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:42 executing program 1: r0 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x40) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) r1 = syz_open_dev$dmmidi(&(0x7f0000000340)='/dev/dmmidi#\x00', 0x0, 0x0) sched_setaffinity(0x0, 0xfffffffffffffff8, &(0x7f0000000140)=0x40000000000009) shmget$private(0x0, 0x1000, 0x1, &(0x7f0000b60000/0x1000)=nil) syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x1000, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) get_robust_list(0x0, &(0x7f0000000240)=&(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)}, &(0x7f0000000280)=0x18) ioctl$VIDIOC_LOG_STATUS(r1, 0x5646, 0x0) shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000300)={0x0, 0x5}, &(0x7f0000000480)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f00000004c0)={r2, 0x0, 0x1}, 0x8) r3 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) r4 = add_key$user(&(0x7f0000000180)='user\x00', &(0x7f00000002c0)={'syz', 0x2}, &(0x7f0000000380)="58f09ee253cdf1e07b06cc84b1be7ccb5e4264644f976caab75695722db6beecacb52b9f9a7245da30aeb40298b8e0bbd05ac4541960a8d349a64116a9c67f663715fd6c8e67eb6fb43a2315f1b1ca733ba9a3faaa67738be75599c725dfaff0a19a99c1846e05b84b6c2419807871d982e0bd3efc389f3a455e11fc3d8d1bb10f46b0fdc32de4d82ff6a307b08bd62fbf07d9e5a782e6f5bab327102b5af640a435bc3e0d091846e530425cd3292524327ebcb6060f0ec0e99e246bd7f6621a0c75115572142fa916926c1795c308ba4128", 0xd2, 0xfffffffffffffffe) r5 = msgget(0x2, 0x300) msgctl$MSG_STAT(r5, 0xb, &(0x7f0000000500)=""/4096) keyctl$invalidate(0x15, r4) clone(0x4000, &(0x7f0000000380), 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x80a102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000100)=""/52) mount(0x0, &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) r6 = semget$private(0x0, 0x4, 0x84) semctl$GETPID(r6, 0x4, 0xb, &(0x7f0000001500)=""/254) 03:36:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_X86_SET_MCE(r2, 0x4040ae9e, &(0x7f0000000040)={0x8000000000000000, 0x5000, 0x0, 0x8, 0x13}) 03:36:42 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x4, 0x121000) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000040)={{0x2, 0x4e20, @loopback}, {0x6, @remote}, 0x4e, {0x2, 0x4e22, @empty}}) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='ma\xcd\xcc\v') mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2000000000002) getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f00000021c0)={'nat\x00'}, &(0x7f0000002240)=0x78) semget$private(0x0, 0x4, 0x2) 03:36:42 executing program 3: io_setup(0x800000000406, &(0x7f00000000c0)=0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) io_submit(r0, 0x1, &(0x7f0000000440)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x8, 0x0, r1, 0x0}]) 03:36:42 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:42 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:42 executing program 3: r0 = memfd_create(&(0x7f0000000040)='\xe87y\xd8\x0e\xfaE\xbb\x7fH\xbe\xbc\x95\x87\v\xd0\xcd9\xbd(0\xeeG\xaf\xe7\xb3?\xc7x\xbd\xe2R\xc5\r.', 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000700)='./bus\x00', 0x0) r2 = open(&(0x7f0000000140)='./bus\x00', 0x0, 0x0) ftruncate(r1, 0x208200) open(&(0x7f0000000780)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4, 0x4002012, r2, 0x800000000000000) write$sndseq(r0, &(0x7f0000000000)=[{0x21, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}], 0xffffff76) 03:36:42 executing program 4: r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x2, 0x0) close(r0) 03:36:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000001c0)={0x8, 0x0, [{0x6, 0x0, 0x0, 0x0, @irqchip={0x7f, 0x411c}}, {0x7, 0x2, 0x0, 0x0, @adapter={0x2, 0x5, 0x4, 0x1, 0x9}}, {0x81, 0x4, 0x0, 0x0, @msi={0x7, 0x5, 0x6}}, {0x2, 0x7, 0x0, 0x0, @sint={0x7, 0x7fff}}, {0x9, 0x3, 0x0, 0x0, @msi={0x6, 0xa4, 0x1f}}, {0x3, 0x3, 0x0, 0x0, @irqchip={0xffffffffffffffe0, 0x4}}, {0x5, 0x3, 0x0, 0x0, @sint={0x2, 0x10001}}, {0x5, 0x7, 0x0, 0x0, @adapter={0x2, 0x400, 0x2, 0x100000000, 0x81}}]}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 467.285584][ T26] audit: type=1804 audit(2000000202.717:194): pid=20293 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir772113116/syzkaller.IJVvAR/552/bus" dev="sda1" ino=16694 res=1 03:36:42 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000025c0)=0x204, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='lp\x00', 0x3) bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23, @rand_addr=0x2}, 0x10) r1 = openat$zero(0xffffffffffffff9c, 0x0, 0x220200, 0x0) getsockopt$inet_udp_int(r1, 0x11, 0x0, 0x0, &(0x7f00000002c0)) r2 = request_key(&(0x7f0000000000)='cifs.spnego\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f00000001c0)='lp\x00', 0x0) r3 = add_key$user(&(0x7f0000000600)='user\x00', &(0x7f0000000640)={'syz', 0x3}, &(0x7f0000000680)="41ea9170a5c77a225d2a13f52b7fb1d52dde07c2e25985b5df40ac50d7ae3781003fd00fc20f92d8cb0712e9b8e8eb8c76d212c2fa7afe7fb86edf556c72db0ab6a0ff60a77ac6f3174cc2118aa1084ced073b356420c5746b378fc4bf1a58a6ac8ab5e1c9620ed99f4184002421229934ac1ee24f0acc265695eada5d71cbe56f33b72e5f5a3e9a2ae63c0426da2e22e3d2a95c89d740c3a27c00c24a59a89e0bd2a5b9bd22eb2f18a87f8cbb80299bdbf12eb98be5f48e33c25c84a53aba999a1c23924b7fbd6be74f2a2a7b60ed671157e5", 0xd3, 0xfffffffffffffff8) keyctl$instantiate_iov(0x14, r2, &(0x7f00000005c0)=[{&(0x7f0000000480)="6eb95d2743470fb9c77bc4ce26468add7781f8504c739ddbdc4b08e2bb2aad49ed7899b55f4cfa1719c04e94a19f93a68081a8569460531aedf77a867fe9ddab9e228cd3376ce510640b14c8f7e1f70b4f3b4e8389c6b9e7236c263a0119bc721f7976f5a5631fdfbe98bfaf9332a84dc8d40f168447bd0b9e743b86d010218081c605194947dab3ea9ea6a90300b8b48d171318072cdf98", 0x98}, {&(0x7f0000000540)="eb99ed0e26ecb66bd123639d2254d2db6c44d2ebd8dfca3244771e4e3ebf8ec9af34a5c8c795bfa13f30f635911eca0a475d578c806b2a0a6da669548fe3bbb453737351a4b13b72ed1e3d5f5e6b87db03dac4eff8c183c7133a5be30034ad49230005", 0x63}, {&(0x7f0000000340)="0fc17fd9086fab1454b054b6234378a9a7875fc384d8d7636bc32895ad463ac83466c43e2c713a3e573e0103a1a73f7a38f1707e174764079cc378a2e4", 0x3d}, {&(0x7f0000000400)="edfeda95837009c32890713039ea58c7540b3312b360", 0x16}], 0x4, r3) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000140)='9tcI#\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0xe) openat$vsock(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vsock\x00', 0x2200, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000800)={0x0, @in={{0x2, 0x4e24, @local}}, 0x0, 0x0, 0x101, 0x1, 0xfffffffffffffc0e}, 0x0) request_key(&(0x7f0000000280)='dns_resolver\x00', 0x0, &(0x7f0000000380)='/dev/vsock\x00', 0xfffffffffffffffc) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, 0x0, &(0x7f0000006b00)) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100)=0x3e0, 0x4) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000780), 0x4) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 467.451533][ T26] audit: type=1804 audit(2000000202.717:195): pid=20297 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir772113116/syzkaller.IJVvAR/552/bus" dev="sda1" ino=16694 res=1 [ 467.472910][T20304] *** Guest State *** 03:36:42 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x100000000000000b, 0x40, 0xa9, 0xa37, 0x1, 0x1}, 0x2c) timer_create(0x3, &(0x7f00000001c0)={0x0, 0x6, 0x0, @thr={&(0x7f0000000080)="a0a5a5", &(0x7f0000000180)="eb6c7235abd2522031"}}, &(0x7f0000000280)=0x0) timer_settime(r1, 0x0, &(0x7f00000002c0)={{}, {0x0, 0x989680}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000029ca2c5068c6c6810000000095"], 0x0}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xc, 0x4, &(0x7f0000000040)=@raw=[@map={0x18, 0x0, 0x1, 0x0, r0}, @call={0x85, 0x0, 0x0, 0x5}], &(0x7f0000000140)='GPL\x00', 0x41, 0xffc4, &(0x7f00000004c0)=""/167}, 0x48) getsockname$packet(0xffffffffffffff9c, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000580)=0x14) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x3, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000047630000000000950000000000000000120000000000000000000000c37a91bc0b3527803bd4175ee5f6b48946cca440ce225e8c2b0a6d513b5f20216c6e7e0d97bec7cc39163b93cbc9828c59ae286d3ec2e4184bc76bae01856dc21f338c7b089b0fe2d9e2abf7e46d20e11be123c0b2a654913b9d0f1b5a75cdbc9692dc1fdc1f560fcf802e3b2818693facdfc07dc8a3c1f2"], &(0x7f00000000c0)='GPL\x00', 0x1000, 0xb1, &(0x7f0000000340)=""/177, 0x41000, 0x1, [], r3, 0xb}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r2, 0x0, 0xe, 0x0, &(0x7f0000000300)="a7ad5699603372a3dbadf3e39e7a", 0x0, 0xa09c}, 0x28) [ 467.517152][T20304] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 467.526766][T20304] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:36:43 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 467.612318][T20304] CR3 = 0x0000000000000000 [ 467.661944][T20304] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 03:36:43 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 467.728442][T20304] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 467.747204][T20304] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 467.825196][T20304] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 467.825526][T20302] syz-executor.3 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 467.880110][T20302] CPU: 0 PID: 20302 Comm: syz-executor.3 Not tainted 5.0.0-rc7-next-20190222 #41 [ 467.889224][T20302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 467.895791][T20304] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 467.899276][T20302] Call Trace: [ 467.899300][T20302] dump_stack+0x172/0x1f0 [ 467.899322][T20302] dump_header+0x10f/0xba6 [ 467.899343][T20302] ? _raw_spin_unlock_irqrestore+0xa4/0xe0 [ 467.899358][T20302] ? ___ratelimit+0x60/0x595 [ 467.899375][T20302] ? do_raw_spin_unlock+0x57/0x270 [ 467.899403][T20302] oom_kill_process.cold+0x10/0x15 [ 467.940662][T20302] out_of_memory+0x79a/0x1280 [ 467.945345][T20302] ? lock_downgrade+0x880/0x880 [ 467.950198][T20302] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 467.953398][T20304] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 467.956447][T20302] ? oom_killer_disable+0x280/0x280 [ 467.956462][T20302] ? find_held_lock+0x35/0x130 [ 467.956489][T20302] mem_cgroup_out_of_memory+0x1ca/0x230 [ 467.956504][T20302] ? memcg_event_wake+0x230/0x230 [ 467.956526][T20302] ? do_raw_spin_unlock+0x57/0x270 [ 467.990825][T20302] ? _raw_spin_unlock+0x2d/0x50 [ 467.995703][T20302] try_charge+0x118d/0x1790 [ 468.000217][T20302] ? mem_cgroup_oom_trylock+0x1a0/0x1a0 [ 468.005768][T20302] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 468.012027][T20302] ? kasan_check_read+0x11/0x20 [ 468.013251][T20304] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 468.016898][T20302] ? get_mem_cgroup_from_mm+0x128/0x2b0 [ 468.016920][T20302] mem_cgroup_try_charge+0x24d/0x5e0 [ 468.016943][T20302] mem_cgroup_try_charge_delay+0x1f/0xa0 [ 468.016963][T20302] shmem_getpage_gfp+0x69e/0x2500 [ 468.016992][T20302] ? shmem_unuse_inode.constprop.0+0xfd0/0xfd0 [ 468.017006][T20302] ? __set_page_dirty_no_writeback+0x1ea/0x370 [ 468.017019][T20302] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 468.017035][T20302] ? balance_dirty_pages_ratelimited+0x168/0x1f60 [ 468.017047][T20302] ? do_writepages+0x2a0/0x2a0 [ 468.017059][T20302] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 468.017076][T20302] ? iov_iter_fault_in_readable+0x22c/0x450 [ 468.017083][ C1] net_ratelimit: 20 callbacks suppressed [ 468.017097][T20302] shmem_write_begin+0x105/0x1e0 [ 468.017103][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 468.017190][T20302] generic_perform_write+0x231/0x530 [ 468.017196][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 468.017218][T20302] ? page_endio+0x780/0x780 [ 468.017234][T20302] ? current_time+0x140/0x140 [ 468.017251][T20302] ? lock_acquire+0x16f/0x3f0 [ 468.017274][T20302] __generic_file_write_iter+0x25e/0x630 [ 468.017289][T20302] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 468.017310][T20302] generic_file_write_iter+0x360/0x610 [ 468.017333][T20302] ? __generic_file_write_iter+0x630/0x630 [ 468.040179][T20304] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 468.042421][T20302] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 468.042437][T20302] ? iov_iter_init+0xea/0x220 [ 468.042459][T20302] new_sync_write+0x4c7/0x760 [ 468.042480][T20302] ? default_llseek+0x2e0/0x2e0 [ 468.075298][T20304] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 468.077191][T20302] __vfs_write+0xe4/0x110 [ 468.077213][T20302] vfs_write+0x20c/0x580 [ 468.077234][T20302] ksys_write+0xea/0x1f0 [ 468.077252][T20302] ? __ia32_sys_read+0xb0/0xb0 [ 468.077272][T20302] ? do_syscall_64+0x26/0x610 [ 468.077290][T20302] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 468.077304][T20302] ? do_syscall_64+0x26/0x610 [ 468.077323][T20302] __x64_sys_write+0x73/0xb0 [ 468.077345][T20302] do_syscall_64+0x103/0x610 [ 468.093707][T20304] GDTR: limit=0x00000000, base=0x0000000000000000 [ 468.095086][T20302] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 468.095100][T20302] RIP: 0033:0x457e29 [ 468.095116][T20302] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 468.095124][T20302] RSP: 002b:00007f2a3aaaac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 468.095146][T20302] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457e29 [ 468.124523][T20304] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 468.126378][T20302] RDX: 00000000ffffff76 RSI: 0000000020000000 RDI: 0000000000000003 [ 468.126387][T20302] RBP: 000000000073c040 R08: 0000000000000000 R09: 0000000000000000 [ 468.126397][T20302] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2a3aaab6d4 [ 468.126407][T20302] R13: 00000000004c73d7 R14: 00000000004dcfe0 R15: 00000000ffffffff 03:36:43 executing program 4: r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000000)=0x8) write$eventfd(r0, &(0x7f0000000080), 0xfffffe5e) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f00000000c0)=0xfffffffffffffffe) accept4$packet(r0, &(0x7f00000001c0)={0x11, 0x0, 0x0}, &(0x7f0000000240)=0x14, 0x800) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f00000004c0)) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000280)={{{@in=@local, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@empty}}, &(0x7f0000000380)=0xe8) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@remote, @in=@multicast1, 0x4e22, 0x8, 0x4e22, 0x101, 0xa, 0x80, 0xa0, 0x7e, r1, r2}, {0xffffffffffffffff, 0x6, 0x20, 0x5, 0x9, 0xf89e, 0x101, 0x4b}, {0x0, 0x7, 0x8}, 0x7, 0x6e6bb2, 0x3, 0x0, 0x1, 0x1}, {{@in=@loopback, 0x4d4, 0x32}, 0x0, @in=@local, 0x0, 0x0, 0x0, 0x2, 0x8, 0xfffffffffffffffe, 0x3}}, 0xe8) ioctl$DRM_IOCTL_MODESET_CTL(r0, 0x40086408, &(0x7f0000000180)={0x0, 0x8}) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000100)='trusted.overlay.opaque\x00', 0x0, 0x0, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r0, 0x4018aee2, &(0x7f0000000140)={0x0, 0x1, 0x100000000, &(0x7f0000000040)=0x401}) [ 468.126897][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 468.155659][T20304] IDTR: limit=0x00000000, base=0x0000000000000000 [ 468.162461][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 468.350987][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 468.356779][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 468.364618][T20302] memory: usage 307196kB, limit 307200kB, failcnt 275 [ 468.371885][T20302] memory+swap: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 468.379457][T20302] kmem: usage 0kB, limit 9007199254740988kB, failcnt 0 [ 468.386531][T20302] Memory cgroup stats for /syz3: cache:3224KB rss:275992KB rss_huge:266240KB shmem:3340KB mapped_file:132KB dirty:0KB writeback:0KB swap:0KB inactive_anon:3412KB active_anon:275992KB inactive_file:20KB active_file:0KB unevictable:16KB [ 468.410043][T20302] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=syz3,mems_allowed=0-1,oom_memcg=/syz3,task_memcg=/syz3,task=syz-executor.3,pid=11589,uid=0 [ 468.428163][T20302] Memory cgroup out of memory: Killed process 11589 (syz-executor.3) total-vm:72444kB, anon-rss:2200kB, file-rss:34816kB, shmem-rss:0kB [ 468.465132][T20304] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 468.493662][T20304] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 468.556833][T20304] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 468.579294][T20304] Interruptibility = 00000000 ActivityState = 00000000 [ 468.612320][T20304] *** Host State *** [ 468.625072][ T26] audit: type=1804 audit(2000000204.057:196): pid=20332 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir772113116/syzkaller.IJVvAR/552/bus" dev="sda1" ino=16694 res=1 [ 468.652358][T20304] RIP = 0xffffffff811b3240 RSP = 0xffff88809d29f8e0 [ 468.654297][T20293] syz-executor.3 (20293) used greatest stack depth: 20896 bytes left [ 468.661400][T20304] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 468.686273][ T26] audit: type=1804 audit(2000000204.067:197): pid=20331 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir772113116/syzkaller.IJVvAR/552/bus" dev="sda1" ino=16694 res=1 [ 468.719525][T20304] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 468.735253][T20304] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 468.742025][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 468.742077][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 468.742160][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 468.742199][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:36:44 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:44 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:44 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:44 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz'}, 0x0, 0x0, 0xfffffffffffffffd) r1 = syz_open_dev$radio(&(0x7f0000000680)='/dev/radio#\x00', 0x0, 0x2) getsockname$netrom(r1, &(0x7f0000000380)={{0x3, @bcast}, [@netrom, @netrom, @null, @bcast, @netrom, @default, @bcast, @null]}, &(0x7f0000000400)=0x48) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x800, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) close(r2) bind$bt_rfcomm(r3, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x0, 0x0) set_mempolicy(0x4003, &(0x7f0000000140)=0x6, 0x9) r4 = creat(&(0x7f0000000280)='./bus\x00', 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) r5 = perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r4, 0x0, 0x0, 0xa6ba0) io_submit(0x0, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x804000000000000, 0x0, 0x8, 0x0, 0x90030000002000, r4, 0x0, 0x0, 0xc00}]) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x5c831, 0xffffffffffffffff, 0x0) syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x400000) write(0xffffffffffffffff, &(0x7f0000000440)="d30cb33f6fa967b99c86c9053fb3f203a05dd8637dbdbc92824ae00e1a2fbe732b89afefccc124f153eb18e16f0c51dd41b7aee93f801b5eaf8e83ba1841399bd5634b29766b7095", 0x48) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$kcm(0x29, 0x40000000002, 0x0) getresuid(&(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000240)=0x0) getresgid(&(0x7f00000004c0), &(0x7f0000000500)=0x0, &(0x7f0000000580)) fchown(r5, r7, r8) lsetxattr$security_capability(&(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f0000000640)=@v1={0x1000000, [{0xb78e, 0xfffffffffffff800}]}, 0xc, 0x1) setsockopt$sock_attach_bpf(r6, 0x1, 0x14, &(0x7f0000000080), 0x2cb) keyctl$get_persistent(0x16, 0x0, r0) r9 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x9, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={0x0, 0x8001, 0x10, 0x0, 0xffffffffffffc2db}, 0x0) ioctl$RNDCLEARPOOL(r9, 0x5206, &(0x7f0000000200)=0x1) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r9, 0x84, 0x19, &(0x7f0000000140)={r10, 0x3}, 0x8) [ 468.766085][ T26] audit: type=1804 audit(2000000204.067:198): pid=20332 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir772113116/syzkaller.IJVvAR/552/bus" dev="sda1" ino=16694 res=1 [ 468.887578][T20304] CR0=0000000080050033 CR3=00000000994fb000 CR4=00000000001426e0 [ 468.895520][T20304] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 468.903515][T20304] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 468.910528][T20304] *** Control State *** [ 468.914923][T20304] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 468.922590][T20304] EntryControls=0000d1ff ExitControls=002fefff [ 468.931748][T20304] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 468.942718][T20304] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 468.953360][T20304] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 03:36:44 executing program 1: r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r0, 0x2, 0x1, 0x3, &(0x7f0000000000)=[0x0, 0x0], 0x2}, 0x20) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) close(r0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/btrfs-control\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/btrfs-control\x00', 0x40400, 0x0) ioctl$sock_ifreq(r3, 0x8978, &(0x7f0000000140)={'bridge_slave_1\x00', @ifru_mtu=0x1}) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r3, 0x84, 0x75, &(0x7f00000001c0)={0x0, 0x5}, &(0x7f0000000200)=0x8) getsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000240)={r5, 0x2}, &(0x7f0000000280)=0x8) syz_kvm_setup_cpu$x86(r0, r4, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xfffffffffffffe1a, 0x0, 0x0, 0x27e) 03:36:44 executing program 5: io_setup(0x9, &(0x7f0000000040)=0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x0, 0x0) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000140)=0x4) r2 = socket$inet_udp(0x2, 0x2, 0x0) io_submit(r0, 0x2, &(0x7f0000002a40)=[&(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0}, &(0x7f00000012c0)={0x0, 0x0, 0x7, 0x3, 0x0, 0xffffffffffffffff, 0x0}]) socket$inet_udp(0x2, 0x2, 0x0) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000000c0)=0x0) ptrace$getregs(0xc, r3, 0x699e, &(0x7f0000000280)=""/167) r4 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x7f, 0x0) dup(r2) ioctl$SIOCAX25NOUID(r4, 0x89e3, &(0x7f0000000080)=0x1) dup2(r2, r4) [ 468.985277][T20304] reason=80000021 qualification=0000000000000000 [ 469.008594][T20304] IDTVectoring: info=00000000 errcode=00000000 [ 469.015722][T20304] TSC Offset = 0xffffff0341afac43 [ 469.044401][T20304] TPR Threshold = 0x00 [ 469.049173][T20304] EPT pointer = 0x0000000050c1201e 03:36:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x0, 0x0) getsockopt$bt_BT_SNDMTU(r3, 0x112, 0xc, &(0x7f0000000040)=0x8, &(0x7f00000000c0)=0x2) 03:36:44 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:44 executing program 1: r0 = socket$kcm(0x10, 0x7fffffffff, 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="18000000140081ae00d175040f62b04a2c546fc54c1960b8", 0x18}], 0x1}, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/autofs\x00', 0x0, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000540)={r1, 0x10, &(0x7f0000000500)={&(0x7f0000000080)=""/24, 0x18, 0xffffffffffffffff}}, 0x10) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r1, 0x10, &(0x7f0000000580)={&(0x7f0000000440)=""/159, 0x9f, r2}}, 0x10) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@mcast2, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@empty}}, &(0x7f00000001c0)=0xe8) sendto$packet(r1, &(0x7f0000000240)="d81139a2ab3e7f6c57564448a5eefb956f4e4ba226a046b14c50c0008b94f8a0b3b9d442facde9308e946538c244942c623f3be0222e96e3e769f19e9d7b07b47df2715b9ade42b5b23c5910b72e42b80d68aee77c2cd004e253c2c672914b9e050d", 0x62, 0x10, &(0x7f00000003c0)={0x11, 0xf7, r3, 0x1, 0x81, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x14) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000400)='/dev/rtc0\x00', 0x100, 0x0) ioctl$VIDIOC_G_DV_TIMINGS(r4, 0xc0845658, &(0x7f00000000c0)={0x0, @reserved}) chmod(&(0x7f0000000600)='./file0\x00', 0x0) 03:36:44 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x400040, 0x0) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f00000000c0)) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") syz_emit_ethernet(0xffffffffffffffea, &(0x7f0000000000)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x2ce, 0x0, 0x0, 0x0, 0x29, 0x0, @rand_addr, @multicast1}, @icmp=@address_reply={0x8, 0x0, 0x0, 0x600}}}}}, &(0x7f0000000040)={0x0, 0x3, [0x0, 0x2d9, 0x3]}) 03:36:44 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x9) getsockopt$inet6_int(r0, 0x3a, 0x0, &(0x7f0000001e80), &(0x7f0000000000)=0x4) fsetxattr$security_evm(r0, &(0x7f0000000080)='security.evm\x00', &(0x7f00000000c0)=@sha1={0x1, "e646fc3a061b2de0dde3a4d34b5148bbddc1f932"}, 0x15, 0x1) syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x7, 0x40) [ 469.228668][T20355] *** Guest State *** [ 469.241421][T20355] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 469.282765][T20355] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 469.326221][T20355] CR3 = 0x0000000000000000 [ 469.331028][T20355] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 469.359755][T20355] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:36:44 executing program 4: openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x1, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000180)='/dev/dri/card#\x00', 0x0, 0x0) syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x400, 0x18600) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000540)="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") 03:36:44 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:44 executing program 1: getpid() openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x40, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1, 0x2) fsetxattr$trusted_overlay_origin(r0, 0x0, &(0x7f0000000280)='y\x00', 0x2, 0x1) ioctl$int_in(r1, 0x800000c004500a, &(0x7f0000000100)=0x80000002) write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f00000000c0)={0x30, 0x12, 0x10000000b000200}, 0x30) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, 0x0) lsetxattr$security_selinux(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='security.selinux\x00', 0x0, 0xb737dc9dec5a538e, 0x2) time(&(0x7f00000001c0)) sync() 03:36:44 executing program 5: r0 = syz_open_dev$sndseq(&(0x7f0000000100)='/dev/snd/seq\x00', 0x0, 0x0) r1 = dup2(r0, r0) mlock(&(0x7f0000ffb000/0x4000)=nil, 0x4000) write$P9_RVERSION(r1, &(0x7f0000000180)={0xfffffe35, 0x65, 0xffff, 0x3, 0xfffffffffffffef6, '9h\x7f\xed:Gh4\xbe\x9a~xX\xd8t\xdf\x82(\x1f\xf2\x14IKAP2000\xda8\xde\xc1\x9a/U\xe3\xb8\xef\x0e\x86P\x93:\r\xffpC\x10\"\xe8\xd5\x8b\xad\xc5\x1a\xc6I\x8c\x98\xb3o_\xdfM\xee]\x8eO\xebgW;>\xb0 ^\xb7\xcb\xdf\x99~\x86\xeb\r\xd9\xfaU,T\x03\xbb\xfe\xdc\xc5\xa3\x1f\n\x92Y\\\x83&\x1c>\xe4\xd3OpiL\x8b^\xbf\xec\x13\x93;\xa5R\'\xee\xd9W\xef\xe6\xfd+y\x17\xb2\x81\xe1\xe2\xf9f+\xfc|\x8b\xe7\x020g&\x94\xd1\xf5D\x0e\x11T\x8f\xda\xde\xa7\x9e\xbe\xd1\x104]\xde\xe6\xf7\x9e\xeet\x8cy\x81\xeb\x8d\xe43:\xc2\x01l\xe5\'\xc60]\x94\xd8o\xa1\x9aG\x11\x93K\xef\x1e'}, 0x13) setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, &(0x7f00000000c0)=0x4, 0x4) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r1, 0xc0a85322, &(0x7f0000000000)={0x0, 0x0, 0x0, 'queue0\x00'}) [ 469.385199][T20355] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 469.413343][T20355] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.535827][T20355] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.679837][T20355] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.714910][T20355] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.727104][T20355] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.736032][T20355] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.744770][T20355] GDTR: limit=0x00000000, base=0x0000000000000000 [ 469.753622][T20355] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.763008][T20355] IDTR: limit=0x00000000, base=0x0000000000000000 [ 469.772454][T20355] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 469.781313][T20355] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 469.789469][T20355] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 469.797809][T20355] Interruptibility = 00000000 ActivityState = 00000000 [ 469.804802][T20355] *** Host State *** [ 469.808982][T20355] RIP = 0xffffffff811b3240 RSP = 0xffff88808aa678e0 03:36:45 executing program 3: modify_ldt$read_default(0x2, 0xffffffffffffffff, 0xa2b591b8c1a2ce81) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x482, 0x0) ioctl$VHOST_GET_VRING_ENDIAN(r0, 0x4008af14, &(0x7f0000000080)={0x3, 0x5a4b}) clock_gettime(0x20, &(0x7f0000000000)) 03:36:45 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) prctl$PR_GET_DUMPABLE(0x3) openat$ion(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ion\x00', 0x8000, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000140)=0x1953, 0x4) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x200408d4, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000440)=""/236, 0xec}, {&(0x7f00000002c0)=""/37, 0x25}], 0x2, 0x0) sendto$inet6(r0, &(0x7f0000000180)="bb", 0x1, 0x0, 0x0, 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000240)='/dev/amidi#\x00', 0x207, 0x100) getsockopt$bt_BT_VOICE(r1, 0x112, 0xb, &(0x7f00000003c0)=0x200000a, &(0x7f0000000400)=0xfffffe39) r2 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$int_in(r2, 0xc54c88e68b0767f2, &(0x7f0000000200)=0x7) fcntl$setlease(r2, 0x400, 0x3) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000280)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) syz_mount_image$hfs(&(0x7f0000000740)='hfs\x00', &(0x7f0000000780)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000000)="cc", 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x0, 0x2) accept$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @dev}, &(0x7f0000000100)=0x10) 03:36:45 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001640)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000040)={'veth1_to_bond:\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="1df60c90d4dfe82c9d9591b3e97931dc6309dc91855ae875a6d8645a4f020118583f7794cc7c4ef505d3201b92b06e8abd95663876f179829eba6678fe65c5920af95a0820c1dc58c709489aca1fce0d7a55ca30b168f48958b7589569f183f536"]}) close(r2) close(r1) [ 469.826219][T20355] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 469.833385][T20355] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 469.845747][T20355] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 469.873538][T20355] CR0=0000000080050033 CR3=0000000086c17000 CR4=00000000001426e0 [ 469.893461][T20355] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 469.901450][T20355] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 469.908593][T20355] *** Control State *** [ 469.916892][T20355] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 469.956943][T20355] EntryControls=0000d1ff ExitControls=002fefff [ 469.975154][T20355] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 470.001141][T20392] hfs: can't find a HFS filesystem on dev loop4 [ 470.013579][T20355] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 470.041418][T20355] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 470.054721][T20355] reason=80000021 qualification=0000000000000000 [ 470.062907][T20355] IDTVectoring: info=00000000 errcode=00000000 [ 470.097413][T20355] TSC Offset = 0xffffff0250d63b55 [ 470.104295][T20405] hfs: can't find a HFS filesystem on dev loop4 [ 470.125881][T20355] TPR Threshold = 0x00 [ 470.144017][T20355] EPT pointer = 0x0000000094ecd01e 03:36:45 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x252000, 0x0) ioctl$TCSBRK(r3, 0x5409, 0x8) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x100, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r4, 0xc02c5341, &(0x7f0000000040)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:45 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:45 executing program 1: r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)="585ccbe4ed83b836", 0x8, 0xfffffffffffffffe) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x40000, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000100}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)={0x78, r2, 0xc20, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x4}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}]}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0xd}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x9}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}]}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x62}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast1}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000000}, 0x40) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x0, 0x0) r3 = semget$private(0x0, 0x0, 0x0) semctl$IPC_STAT(r3, 0x0, 0x2, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0x40a85323, &(0x7f0000000600)={{0x100000001, 0x7}, 'port1\x00', 0x20, 0x400, 0x8, 0xffff, 0x2, 0x8, 0x8, 0x0, 0x5}) r4 = request_key(&(0x7f0000000540)='.request_key_auth\x00', 0x0, 0x0, 0xfffffffffffffffa) r5 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000000080)={0xa, 0x4e20}, 0x1b) r6 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r6, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f3188b070") listen(r5, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x7ffffff2}}}}}}}, 0x0) add_key$keyring(&(0x7f0000000140)='keyring\x00', 0x0, 0x0, 0x0, r4) sysinfo(0x0) keyctl$update(0x2, r0, &(0x7f0000000440)="c0ca1cdbaa1aedbbed80dddaa28e15b9449e2e82cca4244c40ffd0fd4e6631c7d3d86e1339de17344340b02dd527f2d8b3ae6c1db3594e657da33c3ec668f143974a65753472df5319a6b83e1e86b8f2666c61a2e700d1c1e0ae1fc52494bd4885a5c64e9007d39fa11313805290dd6342f9775f01a02ec88f6bee22f25a377a9b143abba1264586d2779088006d5f9be82b00f10287031623f73470264cc5897f18f357aad6deb3883da88ae2266664933785a3ce72bb224a441437ea93c21782d4501b9dfbf48a9f3ea14cb792a7876f17297a8c870d7a2d46a36a2cd3e33e21894d91caa64b131dbf5c53066c1ac83ceb", 0xf2) r7 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000005c0)={'syz'}, &(0x7f00000000c0), 0x9a, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000080)={r7, r0, r7}, &(0x7f0000000240)=""/240, 0xf0, 0x0) 03:36:45 executing program 3: r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video36\x00', 0x2, 0x0) r1 = syz_init_net_socket$llc(0x1a, 0x3, 0x0) ioctl$VIDIOC_S_AUDOUT(r0, 0x40345632, &(0x7f00000000c0)={0x3f, "1f2e1b495af031b17a0f9dd550cae5c0a9a9d7af275240680caff62ed0564aa3", 0x3, 0x1}) getsockopt$llc_int(r1, 0x10c, 0x5, &(0x7f0000000040), &(0x7f0000000080)=0x4) 03:36:45 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="38010000100013070000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="f00000007721000000000000ffffffffffff000000003200000000000000000000000000ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000175bd7cff3000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000002000400000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000361bbfc544cc7ede261ca55c1f6bd00c9033c49bf76f1f507996694eb379f1d6f225d26baa09c54f14216fdbd24d83fd08e3259dc53d2fbdafdc2ab8262fa3f129caf841c280a18a"], 0x138}}, 0x0) 03:36:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000480)="5dfea6bd826362240286c5d245037625fd3c7ac3", 0x14, 0xfffffffffffffffe) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) r1 = add_key$user(&(0x7f0000000640)='user\x00', &(0x7f0000000540)={'syz'}, &(0x7f00000000c0), 0xc6, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000300)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={'poly1305-generic\x00'}}) syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x44d, 0x0) syz_open_dev$sndctrl(0x0, 0xfff, 0x0) [ 470.275752][T20413] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.5'. [ 470.343192][T20422] *** Guest State *** 03:36:45 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 470.387842][T20422] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:36:45 executing program 5: r0 = socket$inet(0x10, 0xfffffffffffffffd, 0x40000000000010) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000980)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000480)="240000001d0003ffff3cc0023da2830101faffffff86c436271d8568b51ba3a2d188737e", 0x24}], 0x1}, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000), &(0x7f0000000040)=0x4) recvmmsg(r0, &(0x7f0000002300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) [ 470.449870][T20422] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 470.475673][T20422] CR3 = 0x0000000000000000 03:36:45 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mlock(&(0x7f0000b4f000/0x1000)=nil, 0x1000) getitimer(0x0, &(0x7f0000000040)) madvise(&(0x7f000079c000/0x800000)=nil, 0x800000, 0x11) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000080)=0xc) 03:36:45 executing program 3: ioctl$VIDIOC_SUBDEV_G_EDID(0xffffffffffffffff, 0xc0285628, &(0x7f0000001400)={0x0, 0xec4, 0x3a, [], &(0x7f00000013c0)=0x1}) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x5) ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x20000, 0x0) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f0000001480)) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x0, 0x2) getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x1, &(0x7f00000003c0)=""/4096, &(0x7f0000000100)=0x1000) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) dup(0xffffffffffffffff) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180)='/dev/vhost-net\x00', 0x2, 0x0) dup(r1) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xdc, 0xf4, 0x4, {"22788660d6ab90beaab98963d1bd3cb23508d015589d55325e25a0125401bda54c526234c373cb26a451ec4e1432d87f0e16153d767ceac58bb99bc1eef0c784aea3e8a4bddae04ffc25f68a6ec368ef4517bc93016b3c49a57dbaf1bde8a42b5c0407f174290aa6be81b3488b83232110c50566a09f254171f138ab91d373f3ca1366c87eb61d289af74884cb080c8f1654437e7dbb72c87b0ef00d9fd3331b3d0882dd0a14aca19593462a6f2ded3a1061dd85003e415a85292ccf51da1f4abbc25165f73c240d1308102ec54ea93fd0e421bfd207d5799c5b5101"}}, {0x0, "8e62c972cc9f0c19a65fab989c74fcc679dd02714179d72e09d63ba530c9f271552dc5ee0f26f3dd8dffc9307d3cd59722eb6f2465e3d2dc8caed38a074008ab65a3d8837bbae30e6b72"}}, 0x0, 0x140}, 0x20) ioctl$VHOST_RESET_OWNER(r1, 0xaf02, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000001440)='/dev/btrfs-control\x00', 0x400000, 0x0) [ 470.496098][T20422] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 470.503381][T20422] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 470.522332][T20422] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 470.530031][T20422] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:45 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000480)="5dfea6bd826362240286c5d245037625fd3c7ac3", 0x14, 0xfffffffffffffffe) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) r1 = add_key$user(&(0x7f0000000640)='user\x00', &(0x7f0000000540)={'syz'}, &(0x7f00000000c0), 0xc6, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000300)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={'poly1305-generic\x00'}}) syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x44d, 0x0) syz_open_dev$sndctrl(0x0, 0xfff, 0x0) [ 470.549170][T20422] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:46 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 470.645770][T20422] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 470.682516][T20422] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 470.727781][T20422] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 470.736946][T20422] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 470.746387][T20422] GDTR: limit=0x00000000, base=0x0000000000000000 [ 470.755291][T20422] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 470.771145][T20422] IDTR: limit=0x00000000, base=0x0000000000000000 [ 470.782403][T20422] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 470.805547][T20422] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 470.827063][T20422] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 470.835275][T20422] Interruptibility = 00000000 ActivityState = 00000000 [ 470.844750][T20422] *** Host State *** [ 470.858177][T20422] RIP = 0xffffffff811b3240 RSP = 0xffff88808a3df8e0 [ 470.864940][T20422] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 470.881143][T20422] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 470.890153][T20422] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 470.896983][T20422] CR0=0000000080050033 CR3=000000008965d000 CR4=00000000001426f0 [ 470.904765][T20422] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 470.912418][T20422] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 470.919392][T20422] *** Control State *** [ 470.923615][T20422] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 470.931377][T20422] EntryControls=0000d1ff ExitControls=002fefff [ 470.937748][T20422] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 470.945543][T20422] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 470.952970][T20422] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 470.961220][T20422] reason=80000021 qualification=0000000000000000 [ 470.968608][T20422] IDTVectoring: info=00000000 errcode=00000000 [ 470.974815][T20422] TSC Offset = 0xffffff01b768d09f [ 470.980136][T20422] TPR Threshold = 0x00 [ 470.984285][T20422] EPT pointer = 0x0000000090f1601e 03:36:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$BLKALIGNOFF(r2, 0x127a, &(0x7f0000000040)) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x208400, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)={{}, {}, {}, {}, {}, {}, {}, {0x0, 0x80000000000000}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:46 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = msgget$private(0x0, 0x54) fcntl$notify(r0, 0x402, 0x28) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x210801, 0x0) r3 = getpid() perf_event_open(&(0x7f0000000040)={0x6, 0x70, 0x5, 0x3, 0x7, 0x7, 0x0, 0x3ff, 0x2, 0x2, 0x2, 0x9, 0x9, 0x5, 0x2, 0x6, 0x100, 0xe96, 0x6, 0xf6b0, 0x4, 0x1ca7, 0x6, 0x0, 0xa2d, 0x3, 0x2, 0x200, 0x2, 0x4, 0x3, 0x4, 0x401, 0x7fff, 0x100000001, 0x10000, 0x401, 0x9, 0x0, 0x7, 0x4, @perf_config_ext={0x7, 0xd6}, 0x0, 0xb81d, 0x7fffffff, 0x1, 0x6, 0x5, 0x100}, r3, 0xd, r2, 0x2) msgctl$IPC_RMID(r1, 0x0) writev(r0, &(0x7f0000000080), 0xfffffffffffff20) 03:36:46 executing program 1: r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0x40045407, 0x0) accept4(r0, &(0x7f0000000000)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000000080)=0x80, 0x80000) bind$xdp(r0, &(0x7f00000000c0)={0x2c, 0x4, r1, 0x12}, 0x10) openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000140)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) 03:36:46 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000480)="5dfea6bd826362240286c5d245037625fd3c7ac3", 0x14, 0xfffffffffffffffe) openat$audio(0xffffffffffffff9c, &(0x7f0000000180)='/dev/audio\x00', 0x0, 0x0) r1 = add_key$user(&(0x7f0000000640)='user\x00', &(0x7f0000000540)={'syz'}, &(0x7f00000000c0), 0xc6, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000300)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)={'poly1305-generic\x00'}}) syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x44d, 0x0) syz_open_dev$sndctrl(0x0, 0xfff, 0x0) 03:36:46 executing program 4: r0 = userfaultfd(0x80000) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) mmap(&(0x7f0000166000/0x4000)=nil, 0x4000, 0x0, 0x88010, r0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) 03:36:46 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 471.172592][T20462] *** Guest State *** 03:36:46 executing program 1: r0 = socket$inet6(0xa, 0x80002, 0x100000000000088) bind$inet6(r0, &(0x7f0000d85fe4)={0xa, 0x4e23}, 0x1c) r1 = socket$inet6(0xa, 0x0, 0x88) setsockopt$inet6_udp_int(r1, 0x11, 0x100000000a, &(0x7f00000003c0)=0x800000001, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x8800, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4}, 0x1c) sendto$inet6(r1, &(0x7f00000000c0)="dd", 0x1, 0x0, 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x1, &(0x7f0000000080)='\x00', 0xffffffffffffffff}, 0x30) ptrace$cont(0x1f, r2, 0x9, 0x0) fcntl$getownex(r1, 0x10, &(0x7f0000000040)) read(r0, &(0x7f0000000180)=""/161, 0xa1) [ 471.200083][T20462] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:36:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup2(r0, r0) clone(0x2102001ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$EBT_SO_SET_COUNTERS(r1, 0x0, 0x81, &(0x7f00000000c0)=ANY=[@ANYBLOB="62726f75746500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x88) 03:36:46 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_DUMPABLE(0x4, 0x1) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000002080)={0x0, 0x0, 0x2080, {0x0, 0x0, 0x500}, [], "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", "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"}) r3 = syz_open_dev$admmidi(&(0x7f0000000040)='/dev/admmidi#\x00', 0x4, 0x20000) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000080)={0x0, 0x979}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000180)={r4, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x12}}}, 0x1, 0x1, 0x498, 0x4, 0x3d28}, &(0x7f0000000100)=0x98) r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x4002, 0x0) ioctl$PPPIOCSCOMPRESS(r5, 0x4010744d) 03:36:46 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 471.250152][T20462] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 471.314422][T20462] CR3 = 0x0000000000000000 [ 471.325424][T20462] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 471.361673][T20478] kernel msg: ebtables bug: please report to author: Wrong nr of counters [ 471.385004][T20462] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 471.396358][T20462] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:36:46 executing program 3: setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) close(r0) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='vcan0\x00', 0x10) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x3de) write(r1, &(0x7f0000000040)="4d69a5bc2609d41c5c6a6f618163f2c4ef4f6891eaded100425ee1fd6d0a2510fb102696766258a096f2b027dc371895981eff8b5b0d60b2cef5ac7d", 0x3c) sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="0000000000000004000000000000"], 0x1}}, 0x5000000) 03:36:46 executing program 5: pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0xb9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, r0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x10, 0x4, 0x4, 0xb}, 0x2c) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000c88000)={r1, 0x0, &(0x7f000089b000)}, 0x18) [ 471.404424][T20462] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.429527][T20462] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.442599][T20462] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.453102][T20462] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.462138][T20462] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.513670][T20462] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.574181][T20462] GDTR: limit=0x00000000, base=0x0000000000000000 [ 471.594632][T20462] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.636390][T20462] IDTR: limit=0x00000000, base=0x0000000000000000 [ 471.650848][T20462] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.660981][T20462] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 471.674053][T20462] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 471.693549][T20462] Interruptibility = 00000000 ActivityState = 00000000 [ 471.701913][T20462] *** Host State *** [ 471.710945][T20462] RIP = 0xffffffff811b3240 RSP = 0xffff88809d0778e0 [ 471.720171][T20462] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 471.729114][T20462] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 471.739941][T20462] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 471.747001][T20462] CR0=0000000080050033 CR3=0000000095ac9000 CR4=00000000001426f0 [ 471.754715][T20462] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 471.762161][T20462] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 471.768961][T20462] *** Control State *** [ 471.773567][T20462] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 471.781032][T20462] EntryControls=0000d1ff ExitControls=002fefff [ 471.787229][T20462] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 471.794944][T20462] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 471.802310][T20462] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 471.809623][T20462] reason=80000021 qualification=0000000000000000 [ 471.816712][T20462] IDTVectoring: info=00000000 errcode=00000000 [ 471.822873][T20462] TSC Offset = 0xffffff014588d70b [ 471.827973][T20462] TPR Threshold = 0x00 [ 471.832041][T20462] EPT pointer = 0x000000005aaeb01e [ 471.848929][T20462] *** Guest State *** [ 471.852924][T20462] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 471.852938][T20462] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 471.852945][T20462] CR3 = 0x0000000000000000 [ 471.852954][T20462] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 471.852964][T20462] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 471.852986][T20462] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 471.878430][T20462] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.909644][T20462] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.918670][T20462] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.927607][T20462] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.936915][T20462] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.945658][T20462] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.954434][T20462] GDTR: limit=0x00000000, base=0x0000000000000000 [ 471.963187][T20462] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.971909][T20462] IDTR: limit=0x00000000, base=0x0000000000000000 [ 471.980649][T20462] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 471.989394][T20462] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 471.996629][T20462] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 472.005671][T20462] Interruptibility = 00000000 ActivityState = 00000000 [ 472.012604][T20462] *** Host State *** [ 472.016541][T20462] RIP = 0xffffffff811b3240 RSP = 0xffff88809d0778e0 [ 472.023219][T20462] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 472.030395][T20462] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 472.038921][T20462] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 472.045569][T20462] CR0=0000000080050033 CR3=0000000095ac9000 CR4=00000000001426e0 [ 472.053291][T20462] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 472.060705][T20462] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 472.067544][T20462] *** Control State *** [ 472.071709][T20462] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 472.081965][T20462] EntryControls=0000d1ff ExitControls=002fefff [ 472.089177][T20462] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:36:47 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000640)=0x14) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x1a, 0x8, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0xffffffffffffffff}, [@call={0x85, 0x0, 0x0, 0x7}, @exit, @alu={0x7, 0x7, 0x5, 0xf, 0x5, 0x40, 0xfffffffffffffff0}, @initr0={0x18, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x9197}]}, &(0x7f0000000080)='syzkaller\x00', 0x5, 0xe5, &(0x7f0000000280)=""/229, 0x41100, 0x1, [], r1}, 0x48) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000000c0)) r4 = syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f00000001c0)={0x5, 0x5, 0x2, 'queue0\x00', 0x5}) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_GET_NESTED_STATE(r4, 0xc080aebe, &(0x7f0000000700)={0x0, 0x0, 0x2080}) setxattr$security_smack_entry(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='security.SMACK64IPIN\x00', &(0x7f0000000540)='/dev/swradio#\x00', 0xe, 0x1) ioctl$BLKSECTGET(r4, 0x1267, &(0x7f0000000140)) 03:36:47 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:47 executing program 3: r0 = socket(0x10, 0x3, 0x0) time(&(0x7f0000000000)) write(r0, &(0x7f00000000c0)="2400000052001f0014000000000000000200071008000100ffffffff0800000000000000", 0x24) 03:36:47 executing program 5: syz_emit_ethernet(0x2a, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200009078ac1c14bbac14141285fb157012977799c46e21d4000000ddd18733f6c9a166fc066dc140378c9038fb4a00c8d09926791459cba33fc684a9a88b98140d6dd3b6972aaf6b4c6c113f21002379ce8fdcf49cdab2f806071eb2fd2fa9000000000000000000000000000000000000000000"], 0x0) io_setup(0x80, &(0x7f00000000c0)=0x0) r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000340)='/dev/video2\x00', 0x2, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer2\x00', 0x4400, 0x0) io_cancel(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x7, 0x20, r1, &(0x7f0000000380)="ff7a7d6c128befa75d6bb71b742b12fb269bd7da05c59fb64acd2c60cd2d61f268090028270390df1cc286e8900983aa69b8126de148a7730b7f88e35243b91e852f6e0f1e3cd2c381c83a563777fb432980e590b933c9bf1803a73db341f2856762422f8ccbe5a2d4a0f5f9596a97ef1cbe9be436c9b62e9202557280378c915f588fec0635", 0x86, 0x1, 0x0, 0x3, r2}, &(0x7f00000004c0)) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240)='/dev/hwrng\x00', 0x400100, 0x0) connect$inet6(r3, &(0x7f0000000280)={0xa, 0x4e24, 0x5, @empty, 0x3}, 0x1c) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x200200, 0x0) getsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000040), &(0x7f0000000080)=0x8) mount$9p_rdma(&(0x7f0000000100)='127.0.0.1\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x0, &(0x7f00000001c0)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@rq={'rq', 0x3d, 0xaa}}, {@common=@uname={'uname', 0x3d, '/dev/null\x00'}}, {@rq={'rq', 0x3d, 0x1f2}}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}]}}) 03:36:47 executing program 4: r0 = userfaultfd(0x80000) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) mmap(&(0x7f0000166000/0x4000)=nil, 0x4000, 0x0, 0x88010, r0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) 03:36:47 executing program 1: r0 = fanotify_init(0x0, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000080)={0x3, 0x70, 0xfffffffffffffff7, 0x0, 0x80000001, 0x4, 0x0, 0x1, 0x40010, 0xc, 0xffffffffffffff80, 0x0, 0xfffffffffffffff9, 0x8, 0x2, 0xffffffffffffb1e2, 0x65f, 0x8, 0x7ff, 0x5, 0x1, 0x6, 0x6, 0x20, 0x0, 0x8, 0xffff, 0x1f, 0x4, 0x0, 0x7, 0x9, 0x59e, 0x1f, 0x659, 0x97, 0x401, 0x7, 0x0, 0xa1, 0x4, @perf_config_ext={0x4, 0x100000000}, 0x8000, 0x5, 0x7f, 0x9, 0x8, 0x6, 0x1}) write$FUSE_NOTIFY_POLL(r1, &(0x7f0000000040)={0x18, 0x1, 0x0, {0xa0000000000000}}, 0x3f0) [ 472.096962][T20462] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 472.104337][T20462] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 472.111689][T20462] reason=80000021 qualification=0000000000000000 [ 472.120002][T20462] IDTVectoring: info=00000000 errcode=00000000 [ 472.126230][T20462] TSC Offset = 0xffffff014588d70b [ 472.131247][T20462] TPR Threshold = 0x00 [ 472.136232][T20462] EPT pointer = 0x000000005aaeb01e 03:36:47 executing program 3: setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0x8, &(0x7f0000000180), 0x4) setsockopt$RDS_FREE_MR(0xffffffffffffffff, 0x114, 0x3, &(0x7f0000000000), 0x10) 03:36:47 executing program 1: r0 = socket$key(0xf, 0x3, 0x2) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x200000, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r1, 0x408c5333, &(0x7f00000000c0)={0x400, 0x100000000, 0x4, 'queue1\x00', 0x9}) sendmsg$key(r0, &(0x7f0000360000)={0x0, 0x0, &(0x7f000035d000)={&(0x7f0000000000)={0x2, 0xd, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @loopback}}, @sadb_address={0x3, 0x5}, @sadb_x_policy={0x8, 0x12, 0x2, 0x1, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@mcast1, @in6=@ipv4={[], [], @multicast1}}}]}, 0x80}}, 0x0) 03:36:47 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1) recvmmsg(r1, &(0x7f0000008180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000000)={0x6, 0x7, 0x4, 0x6, 0x2, [{0x3, 0x74, 0x7fffffff, 0x0, 0x0, 0x908}, {0xd8, 0x2, 0x7, 0x0, 0x0, 0x1002}]}) 03:36:47 executing program 5: mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x40031, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000002000/0x1000)=nil, 0x1000, 0xbcda34450b800b5a, 0x40000000000a132, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, &(0x7f0000000080), &(0x7f00000000c0)=0xc) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x80, 0x0) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x60, &(0x7f0000000040)={0x0, @multicast2, 0x0, 0x0, 'none\x00', 0x0, 0x0, 0x40004000}, 0x2c) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) getsockopt$bt_BT_SECURITY(r1, 0x112, 0x4, &(0x7f0000000100), 0x2) 03:36:47 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:47 executing program 1: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) seccomp(0x1, 0x2, &(0x7f0000007ff0)={0x1, &(0x7f0000004fe8)=[{0x6, 0x0, 0x0, 0x50000}]}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) syz_open_dev$sndpcmc(0x0, 0x0, 0x0) openat$userio(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = request_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0xfffffffffffffff8) r1 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff9) keyctl$unlink(0x9, r0, r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x11) eventfd2(0x5, 0x80000) 03:36:48 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = getegid() r2 = getuid() stat(&(0x7f00000014c0)='./file0\x00', &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$hfs(&(0x7f0000000000)='hfs\x00', &(0x7f0000000040)='./file0\x00', 0x401, 0x5, &(0x7f0000000300)=[{&(0x7f00000004c0)="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", 0x1000, 0x1}, {&(0x7f00000001c0)="517203925c44dbc4b5cb67e61939e119fa218cf035217817d32aab1caf4041829395270b761ec328bbfd9ebc25da19ad157d18e4d2f85f45899e5e1aaa31f0298d21ab135f7acdcfa4218944e7a9118d3fa6b433d0850831c1766365ce9e3b6f4ab6c9a867ba3b5570f078a7978cfdd5c6874fa9272bf468d294e625e490e110129381d998f94d15bcd6f777d11f771300303131af73f2a4f0a0637281cef39db253d70dd876edbbf2f5bd1706ca07c2852bb4d1c409e6cc5cc98ceed8f3dbcb79281d690cb81c13da345284226c55801929", 0xd2, 0x81}, {&(0x7f0000000080)="d869f47a4d818b73f3d59ed3b24c332e36f0cc38dde0c286f584dd5d13bc412b80a2ddfe", 0x24, 0x1}, {&(0x7f0000000140)="ed3ca577eb73842b45423867cffa3e2142ebc6cb076db9ee730c7fe56b14c9c5ea7936e101292dc77312a4d21742e84385e53590a5045a6ce26098f79d5c", 0x3e, 0xac25}, {&(0x7f00000002c0)="54903adb861a", 0x6, 0x9}], 0x2231860, &(0x7f0000001580)={[{@gid={'gid', 0x3d, r1}}, {@quiet='quiet'}], [{@fsname={'fsname', 0x3d, '/dev/kvm\x00'}}, {@fowner_lt={'fowner<', r2}}, {@euid_gt={'euid>', r3}}]}) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r5, 0xae80, 0x0) 03:36:48 executing program 3: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x4) r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x3, 0x2) ioctl$VIDIOC_G_STD(r0, 0x80085617, &(0x7f00000000c0)) socket$nl_route(0x10, 0x3, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @local, 0x8}, 0x1c) r1 = socket$inet6(0xa, 0x80003, 0x2c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x10000, @local, 0x9}, 0x1c) sendmmsg(r1, &(0x7f0000000c40)=[{{0x0, 0xc000002000000000, &(0x7f00000009c0), 0x3e8, &(0x7f00000000c0), 0x0, 0x900}}], 0x40000000000026a, 0x0) 03:36:48 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = syz_open_dev$midi(&(0x7f0000000000)='/dev/midi#\x00', 0x9, 0x20000) ioctl$EVIOCSABS2F(r1, 0x401845ef, &(0x7f0000000040)={0x9, 0xffffffffffffffff, 0x1, 0x3, 0xffffffffffff7fff, 0x2}) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000040)={@empty, r3}, 0x14) fcntl$lock(r0, 0x6, &(0x7f00000001c0)={0x0, 0x0, 0xffffffff, 0xfffffffffffffffe}) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f00000000c0), &(0x7f0000000100)=0x4) getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000180)={'ipvs\x00'}, &(0x7f0000000200)=0x1e) ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f0000000080)={0x5, 0xc2, 0xffffffffffffffff, 0x3, 0x400}) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000240)={'vcan0\x00', 0x0}) setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f00000002c0)={@multicast2, @multicast2, r4}, 0xc) prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000140)) 03:36:48 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 472.742452][T20541] *** Guest State *** [ 472.790256][T20541] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 472.821569][T20541] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 472.840161][T20541] CR3 = 0x0000000000000000 [ 472.845006][ T26] audit: type=1326 audit(2000000208.279:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=228 compat=0 ip=0x45ac8a code=0x50000 [ 472.854522][T20541] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 472.886221][ T26] audit: type=1326 audit(2000000208.309:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 472.921364][T20541] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 472.932259][T20541] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 472.942159][T20541] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 472.969461][ T26] audit: type=1326 audit(2000000208.309:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 03:36:48 executing program 4: r0 = userfaultfd(0x80000) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) mmap(&(0x7f0000166000/0x4000)=nil, 0x4000, 0x0, 0x88010, r0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) 03:36:48 executing program 3: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000180)={0x0, 0x6}, 0x4) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket(0x200000000000011, 0x4000000000080002, 0x0) connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x80000000, {0x2000000000000, 0x8, 0x1, 0x5, 0x4, 0x45}, 0x4}, 0xe) openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x48000, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'lo\x00', 0x0}) bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14) sendmmsg(r1, &(0x7f0000000d00), 0x400004e, 0x0) 03:36:48 executing program 5: r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="2e0000002e008183ad5de0713c444d00060000001000034001000000053582c137153e370000000000000000d1bd", 0x2e}], 0x1}, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x80, 0x0) ioctl$KVM_GET_REGS(r1, 0x8090ae81, &(0x7f00000000c0)) 03:36:48 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 473.002298][T20541] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 473.023271][T20541] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 473.071203][ T26] audit: type=1326 audit(2000000208.319:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.113376][T20541] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 473.167472][T20541] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:48 executing program 5: r0 = socket(0x1e, 0x4, 0x0) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)={0xd8, r2, 0x3, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x34, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x5}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x7fff}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_SERVICE={0x28, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x5, 0x2}}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8}]}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8fe60000000}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x100}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x100000001}]}, @IPVS_CMD_ATTR_DAEMON={0x24, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x5}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfb}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}]}, 0xd8}, 0x1, 0x0, 0x0, 0x41}, 0x41) sendmmsg(r1, &(0x7f0000000080), 0x153, 0x0) close(r0) bind$vsock_dgram(r1, 0x0, 0x0) [ 473.211203][T20541] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 473.218039][ T26] audit: type=1326 audit(2000000208.319:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.248996][T20541] GDTR: limit=0x00000000, base=0x0000000000000000 03:36:48 executing program 4: r0 = userfaultfd(0x80000) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) mmap(&(0x7f0000166000/0x4000)=nil, 0x4000, 0x0, 0x88010, r0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_REGISTER(r0, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f00005e3000/0x800000)=nil, 0x730000}, 0x200000}) [ 473.284307][T20541] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 473.293032][T20541] IDTR: limit=0x00000000, base=0x0000000000000000 [ 473.357021][ T26] audit: type=1326 audit(2000000208.319:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.397030][T20541] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:48 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(0x0, 0x400002) [ 473.440726][T20541] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 473.481843][ T26] audit: type=1326 audit(2000000208.329:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.515700][T20541] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 473.567935][T20541] Interruptibility = 00000000 ActivityState = 00000000 [ 473.589364][ T26] audit: type=1326 audit(2000000208.339:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.643449][T20541] *** Host State *** [ 473.659013][T20541] RIP = 0xffffffff811b3240 RSP = 0xffff8880515978e0 [ 473.688627][T20541] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 473.701568][ T26] audit: type=1326 audit(2000000208.339:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.765422][T20541] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 473.806402][T20541] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 473.820186][ T26] audit: type=1326 audit(2000000208.339:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=20533 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x457e29 code=0x50000 [ 473.856408][T20541] CR0=0000000080050033 CR3=000000009ed78000 CR4=00000000001426e0 [ 473.891831][T20541] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 473.917137][T20541] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 473.972283][T20541] *** Control State *** [ 473.998124][T20541] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 474.014486][T20541] EntryControls=0000d1ff ExitControls=002fefff [ 474.020660][T20541] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 474.063879][T20541] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 474.071280][T20541] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 03:36:49 executing program 1: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) seccomp(0x1, 0x2, &(0x7f0000007ff0)={0x1, &(0x7f0000004fe8)=[{0x6, 0x0, 0x0, 0x50000}]}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) syz_open_dev$sndpcmc(0x0, 0x0, 0x0) openat$userio(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = request_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0xfffffffffffffff8) r1 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff9) keyctl$unlink(0x9, r0, r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x11) eventfd2(0x5, 0x80000) [ 474.142769][T20541] reason=80000021 qualification=0000000000000000 [ 474.151055][T20541] IDTVectoring: info=00000000 errcode=00000000 [ 474.163506][T20541] TSC Offset = 0xffffff006e4296f9 [ 474.169609][T20541] TPR Threshold = 0x00 [ 474.177997][T20541] EPT pointer = 0x000000008ef0501e 03:36:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) r3 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x4, 0x111040) recvfrom$x25(r3, &(0x7f0000000040)=""/108, 0x6c, 0x100, &(0x7f00000000c0)={0x9, @remote={[], 0x0}}, 0x12) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000200)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:49 executing program 5: r0 = creat(&(0x7f0000000680)='./bus\x00', 0x0) ftruncate(r0, 0x8200) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x101002, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r1, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000d83ff8), 0x0) r2 = memfd_create(&(0x7f00003ce000)='}\x00', 0x0) mmap(&(0x7f00002e4000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) name_to_handle_at(r2, &(0x7f00002e4000)='./file\xff\xff', &(0x7f0000000000)=ANY=[@ANYBLOB="2a00001c855ed500"], &(0x7f0000001ffc), 0x1400) lsetxattr(&(0x7f0000000040)='./file\xff\xff\x00', &(0x7f0000000080)=@random={'security.', '}\x00'}, &(0x7f00000000c0)='self-vmnet0]]@\x00', 0xf, 0x2) 03:36:49 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(0x0, 0x400002) 03:36:49 executing program 4: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x240000, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x220102, 0x0) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000100)=r1) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0x0, 0x0) write$binfmt_elf64(r2, 0x0, 0x0) recvmmsg(r3, &(0x7f0000000300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0) [ 474.253759][ C1] net_ratelimit: 20 callbacks suppressed [ 474.253768][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 474.265301][ C1] protocol 88fb is buggy, dev hsr_slave_1 03:36:49 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) seccomp(0x1, 0x2, &(0x7f0000007ff0)={0x1, &(0x7f0000004fe8)=[{0x6, 0x0, 0x0, 0x50000}]}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) syz_open_dev$sndpcmc(0x0, 0x0, 0x0) openat$userio(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = request_key(&(0x7f0000000000)='cifs.idmap\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)='\x00', 0xfffffffffffffff8) r1 = add_key$keyring(&(0x7f00000000c0)='keyring\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff9) keyctl$unlink(0x9, r0, r1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0) ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x11) eventfd2(0x5, 0x80000) [ 474.334479][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 474.340963][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 474.367678][T20598] *** Guest State *** [ 474.374581][T20598] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:36:49 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x4000, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000380)=@mangle={'mangle\x00', 0x1f, 0x6, 0x540, 0xf0, 0xf0, 0x388, 0x0, 0x0, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0xc8, 0xf0, 0x0, {}, [@common=@inet=@ipcomp={0x30, 'ipcomp\x00', 0x0, {0x4d5, 0x4d3, 0x1}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x33}}}, {{@uncond, 0x0, 0x98, 0xc0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@local, @local, 0x0, 0xffffff00, 'team_slave_0\x00', 'gre0\x00', {0xff}, {0xff}, 0xff, 0x1, 0x71}, 0x0, 0x98, 0xc0}, @TTL={0x28, 'TTL\x00', 0x0, {0x3, 0x8}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x200, 0x20, 0x0, 0x1}}, @inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@rand_addr="134d201e3a59ec90b91a1b8cd265e1f2", [0xff, 0xffffffff, 0xff, 0xff], 0x4e24, 0x4e21, 0x4e23, 0x4e20, 0x1, 0x401, 0x9e, 0x1, 0x800}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:49 executing program 5: r0 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x5304, 0x200400) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x570}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={r1, 0x7d, 0x30}, &(0x7f0000000100)=0xc) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140)=0x0) ptrace$poke(0x4, r2, &(0x7f0000000180), 0x8001) ioctl$BLKROSET(r0, 0x125d, &(0x7f00000001c0)=0x10001) write$FUSE_INTERRUPT(r0, &(0x7f0000000200)={0x10, 0x0, 0x2}, 0x10) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x4000, 0x4) r4 = syz_open_procfs$namespace(r2, &(0x7f0000000280)='ns/uts\x00') r5 = dup(r4) ioctl$sock_proto_private(r5, 0x89ea, &(0x7f00000002c0)="704068f9b49bcd929d5e819e42417c3c74d250286e98b2dcd95d4732c24efb21b9bbc11e3112e90fe730523656a57eb59e62e625915f29df05b4f3c9c78cd9dadc8ab8db48b1840d613bebfad01f90627fc2668484cc44e7201ef86334683fee545c822c412d353c44debc17a990ad0589cda44c2a229731ca180bf92de4c0ca44fd3125f1bfb74c90bde2c88e48b3bbfd9287718abeca86872c3c39d9867940eb9bd30fb4b883f83c36323e22e0ca99b35f2ead199df7d3730b14193eb43a6c800c394674608bbc6c7eac216d0e7c") pivot_root(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='./file0\x00') openat$uhid(0xffffffffffffff9c, &(0x7f0000000440)='/dev/uhid\x00', 0x0, 0x0) recvmmsg(r5, &(0x7f0000001880)=[{{&(0x7f0000000480)=@tipc=@name, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000500)=""/171, 0xab}, {&(0x7f00000005c0)=""/237, 0xed}, {&(0x7f00000006c0)=""/253, 0xfd}, {&(0x7f00000007c0)=""/4096, 0x1000}], 0x4, &(0x7f0000001800)=""/108, 0x6c}, 0x4102}], 0x1, 0x63, 0x0) r6 = dup3(r4, r3, 0x80000) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000018c0)={'ip6gretap0\x00', 0x10}) setxattr$trusted_overlay_upper(&(0x7f0000001900)='./file0\x00', &(0x7f0000001940)='trusted.overlay.upper\x00', &(0x7f0000001980)={0x0, 0xfb, 0x7b, 0x4, 0x5, "e9cab0c8eed35385eb1a42fefc613caf", "7ce96866631df8a860933c8fdb918cfda1241a3bbb1878934786ab98d5b00dc15bc295130ced904f54ae29da9f846f2ffcfe5b8897528f434de5c7d5fdb73f1674a50a045232485032fb276c38ec8f02632a601f0070ab0207831f00137cd56247d8a90cff6a"}, 0x7b, 0x2) openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/mISDNtimer\x00', 0x4000, 0x0) r7 = semget(0x3, 0x7, 0x80) semtimedop(r7, &(0x7f0000001a40)=[{0x1, 0x1, 0x1000}, {0x1, 0xa}, {0x2, 0x8000, 0x1000}, {0x0, 0x200, 0x1800}, {0x0, 0x2, 0x1000}, {0x4, 0x5, 0x1800}, {0x0, 0x0, 0x1800}, {0x0, 0xfffffffffffff000, 0x800}, {0x3, 0x1, 0x800}, {0x2, 0x4, 0x1000}], 0xa, &(0x7f0000001a80)={0x0, 0x989680}) getsockopt$EBT_SO_GET_INIT_ENTRIES(r5, 0x0, 0x83, &(0x7f0000001bc0)={'nat\x00', 0x0, 0x3, 0x9a, [], 0x4, &(0x7f0000001ac0)=[{}, {}, {}, {}], &(0x7f0000001b00)=""/154}, &(0x7f0000001c40)=0x78) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000001c80)={0x0, 0x0, 0x1, r5}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000002000)={0x5, 0x0, [{0x6000, 0xf0, &(0x7f0000001cc0)=""/240}, {0x0, 0x22, &(0x7f0000001dc0)=""/34}, {0xf000, 0x57, &(0x7f0000001e00)=""/87}, {0x10000, 0xb1, &(0x7f0000001e80)=""/177}, {0xd000, 0xb6, &(0x7f0000001f40)=""/182}]}) ioctl$VT_ACTIVATE(r6, 0x5606, 0x9) io_setup(0x0, &(0x7f00000020c0)=0x0) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000002100)=0x6, 0x4) lsetxattr$trusted_overlay_opaque(&(0x7f0000002140)='./file0\x00', &(0x7f0000002180)='trusted.overlay.opaque\x00', &(0x7f00000021c0)='y\x00', 0x2, 0x2) r9 = syz_open_dev$amidi(&(0x7f0000002200)='/dev/amidi#\x00', 0x2, 0x509000) ioctl$VIDIOC_G_ENC_INDEX(r9, 0x8818564c, &(0x7f0000002240)) io_cancel(r8, &(0x7f0000003a80)={0x0, 0x0, 0x0, 0x7, 0x3, r3, &(0x7f0000002a80)="ddb0ca9cf48f6a91b34285cdba27beb8efbc84776b0cfbc50889bc3d10e4c86a7af17d55ca5e17238445aa3a3d6f681d39da536315b736df16f422cd1a233e0c843d3e7c03d19b3cbdddddccfbf72002fbdafc4f010cd43c39a1ad46e06bcf540f8b5f7e4dbe7b28a3c28df6b4c4a6835c27f27358871c96abf4cfac31a4591aa178959d06b0e13869f0c7ba41286b0e9bcec34ed423862d5757c39ea7939315a233fcb7c9abb20a4e4036aa0aab83680fe40b6e3144949a759adb19f415869b1894820377717152f079fa5fe7a3ab36c99e2d915edbe1d3f73a4c3cb359a88b662d10e66dec3277b1b08a8e16dddcc9864166c1893aa2e2e26443fe72081f62718f9c7fea36fb109e9f6b44e30e729fa3b71cfdc24fe24cd67f4837722ef872aafdb1c8dda974075ba6edc6319de291554b0a8c2e69f9e19475d979f5c9f2cf1450b2d03b1993a1e6c099bc023756237183b182e5dad00689bae7f16648fa68cbc5c2956caa97e908a253198ccd2264a37b8b0ece826f6e4df2e6b961d49c43277ad62dbfcf37ac9b806693570299bbc6917ec514293204fcbd597654988c715bdd0f75607b491bed0de7dac0d2c77ff0b251be3396c6dd46b5b0ad6bc632ada443271ee5bdec3737da7c4d78e74ac6432799d0ba50bb62a900b81b47d73e657d4111083ee226392d7a4079883a17e05ed2f4ba793601e7f86544ad1868aa3e78ca76c1964fdaa4ff5963b6ccd69e6d6244b7ef3d1ff0bd6255830f08e01456747ecee4b97ae7f737605f43d7d942fbd2d114945bede445a9cceb0a7c91554f28fd7b24d715416d2ec67ca1a09c367417bfdda599307d2c239d000033e5d433d43c1fa5114f6b84480f88a1192501ea24503c2da2676fa072c4e064fe55389d5520d0556de5a6f4b3f82c2328caf1d61e7adeece5f6af4ea1be4d80b6960e1ef8040e8297af65efe2d989556e759b874c572d118134b783bc9b54c7469026d60a50319e7cafbe699fd3ab6472114a8ed497b680a60153982b0786adf2d201ec3fd9c49f809c88245370baf943b3e5d9334190e62bc4107d90f119e70c1b4fba135b89be662c414f282f0f4e599bd0b9228339a7062be9503fdb7258cc5371b701e5472f60af72e0375cb46ab2b416def5a10f2cc09b4edf31849d139c7f65a928e2b882808e6496f5345b01e7585bdb908fbf045f7af723d172c4eeaabffea704b33ec8db94401bcb8fe2e40fa58478ebf039e2f5f49c41049146fad01198abe7d6191ad6166fca475f8a1101e1e78de860acffbe66c73a698d7122ec1b9a0627d04a1a067997950f3a7b50b80db980a1a986f35c68b6efa9cacbf09e69de674d0eed99bb191dbf2610b4e19568f4c952955fff21eb1d0c5b858d0d390e557109abc57650deaeef19919adeaf8b8dc77dbe9fd9c9b3a185e2ace70f92cf2540b742b6f06175dffe8b78ccd9b9d49b406c641abd552c098704d8dd7b158c4975fc4aa21f64f262202abb28eb3f171ab5de9ab5027f1c111be0ef78fc41f01a942006a94e0fe6d47b5971fe254db360c37b1d9d32b982755dfb39e273699197d3a607515553391ff77c352991c4492d61ebbba37be7cb52a3704e9febc424fcf8f6b9d5f35cddebd4a263d51dd3130c6a7dfb6b7408bb5b1997326a06a35630108b64858414ffd4f601e62f12be2390b1c50576e44a83a5bb32103bae358c418dbcc14f9843c8edfffe326be4159f5303b78a3c8f002ab990830674b337cd054aea22ebcce5c8dfd10588a9b6d72be573ebe897ab6cff2d4fae67125174beaa86cc8b4037882ea2835f6c0255842d577198e553382419f89c99e0401269dfaba5909d03966c1396a95bb03d4f8d5f1b1e0cb3ca4821b88b8d27b1691bbe40035a8fa33a369e0841648c9be9bbb027ca4dd6b0ecd5132063646c72590a419c6d741f05dc035efbd19d8c0b883c0f394aba57e0ae58813d8a5ed2ef8df5e436002f4633ea042b5aac89ff25b9519fdb03f19906e6958eabbc1d583f76729d38bc354d367eec036d52514df233515ffe32c0a04a69e4fe0c23a669c6d4dad2bdca946404cd51798a9e714b15f44a54b9052c7ef6a4458cdf09f191452c3cf5ad4b3ad9d1a513a570f500f00e1876941e5aeeab9621a933ac02495e77aa96d271310d4436029d2404953c8a29b7ca5e2d3f4c30537f9d9f3e1d4c4d2b5ca0bf6395a580857e0f5142d91eac4ec1d57b5ea9fd3bef9c25828a20f12ee9bd775ee3d025c9d1291b26cfa8a41fc18f19a64c0881182e7c03e9408e231173ab7c8bd56882908da14d4af31eefdd384c12dfdcdcdad93ac231306883d57669879ec858af4704f9ff134be35db41afbdbcd0cfeecdfcafc3569203c758d797822fb42b97023f74255f67b6326168f5664c426fefc3853ea68376e78ca4d8b30659ce2f7d2d9c7f1a0bc1e1e03a0db92579923ff1fb550077fb51dcb2d0fc0ea00b96f51b1fbe553e9002278b3ab556663004f0217c9364545adce01898c335a15bbcdc42ee653301b36a907a3042f8e8969b96223f612ba1b4c20cac0c84cc5d8ec579fbbfb0e7febc2658d3d1c7eb90f714012664c2fbc157f390ad25d252001f9a381a8931f26bc82ed625c257ad89f95a24357bc0d617c961a531f560b311304d851d2d40d596504328cc3ee8f13c930aae3470167e4c5c567438fb8cf1d4bb5f28a826d77ddd02f45c611de86b4b914fde376bbfacf4120ccd67184668416990d10597b830533d47261a102286233d2230c0746d4e3186816dfc89389e861a66093721c3d2feec7323f165759146c74d62db129b9764921f9a87cd59069883cd0242f66e83a0caa0fc9542d347a3c9f9572424a02cce878abde950cebccd800390c3864ffb431491b2053d67e66ab74baff85ce30bc151a43cdad0cca04685b2783f787fadf0c94d7bf3b0bdd40102da55ccc39f1b2c478a26e7fce61abf5051f8b4c3f1dd5d0bbef2e0bc36b3d979517fe6f532a41d0ef2ef0abbb9c256e7207d4509bf30ffea19aaf90aa7fc3fb7132179d02278cf6054350d81119ecb488933f88c787e6f3160840623c0691f2c6149b88be5d140252ba65b83fc7442c17f7ce083f8d24ea68f0747b9146f69dbde5159271aaff081c140085b275d4debfa78c8f98d37531625c34cfa5ccd5fa41833d6e4c5600611e2fb6158dc1e0b234cd8575b622b88a9405575d97d16b36953abd04f9621ea42ce78557cda656767e5905953a8d58c264dcd2f424634f90feff36458b4f68eb9fc1e56edf07e3038e6c8cd84cc0d0793338466d899f229e8b5b4639478f7a94295f05cffcf6ddfa7f7e5758b18ddbb2e6f0561ad435c4ac45083654828563829fbc78ba3e1d80f8645a46e4c384457879f7d2f5db49268f28d52bcb62550e5c1f6b5a77dc6f58af5211ed13ab82134f5c92816c57ca295df49af98cb7849c652d21db9d875d078a9647bd2ea7e51a96f0b4168b321867d9ce5b4e8b16a00aba05bc10ca86c259fa760eb8ea9fcb0f043ba8d7ee15c63f0489a2ef8df67c983b98a6ebed9ec2188beccb05abe629272fa7e440949b417af4b0184341708564d9566b76dcc41be70544a5943987fe95f2168e88878030d9299a8a604b6a1da5c1d844a4667d0dc5f6f192725383bb3d2f1edfd83dc7f37358dabc1db592c30af173dcb51cfdf2275e6eb08aac22829b25a4f3b3330477327d8ff1c0a15a7d75545ec5866205a00ec5e552409b5436b6ac9dc0104f39a5c9f5b264df15157f9960bb46a5dfbfe0b181b6acccb2c64262a233dfa766551d808555afdd27055d478bf1ca114fcd02c02e7d7fe739a98c5457555c2d9e09c4f49da294b71159e9b509c5e060d2285787dae1a3acea7e259fab55b44cba4a4abecb2c8dabba122bc215478b81e807017ac898c82ab714dc70af44d80828f330b5de9f8853c408fb2b7aea0d9c805cdf6d92ec7f2183cf9470cdcacae60722bab9a4eb593705e38707b20616143bfd540f99d12619f91fdf4f081d0d134933530706792e01beaa831d5b5fd5f565ffa8a6a7256032d3d84b4d9ef6ca3a4ced6929bc992cb4840f4126c80d294a81d95bedb0d79487fa2fb33fda3031baabc655310dc41c97cceabc22566e832eef561ca957613f3d2cd5e5f8cc9902b42e7ee27e3dddfde6134241d78b0239aea35c3217ff03ac078fb4e0102d7c47e5e68592ae0637b3d46abe0d0ff414ce176cbb89bd59f8e8797a959f612f0098d53c1b4ee6afaf0c6f0f408d81bf17af2c292aa2f911dc1aa0573d267b1ea7c8f8d8b3305f6f639154e23bb1429ed11f768f85fbbb4b265cb7fba922911c2f0098cf99c4b93ced3b0a3723d94f7589da956dca7cb42fb2a344d7d1f38b425bde0429013c59983bc0b41076b71be7ae09fab20c4bdef4d27fdae7e8d1b3c4409f6990a7799d56c069a1a2593c24a40a6da6fe68d46e6d622d653b82a5333c5795b1cab1b384873b38dff118d474181ed49838b88b4c229f376f1a8827ec413646c1f6e2ca7583147ff4cfefdfd76ba94e1eb121a640eced68a90996de677b7fb66cb21a8eb0a6f0c44e620d2a346ff302aaeb8793579458784f29a175baadb4241e5011857f70bdd7fd8efa2eff1d76a577951ccdd09d5c7bbf3551a230b59ebe168146aa284fc0ba42a5b484b16ce9b918c6db735fdcef4acbfe6f900897faffbe7f5479995de0de6d10e55f2c57fd8fd3c026209e9be09925895dc385a42ad695dfb78948e1bc5d5e57039308d3cedcc60c2b7c05f1606677c9ede6675fc0b631ede2c1297e7d2543e2e2144c9dd1dd20c670150c89d5e1ec7137ca09ef6ef075c9b8217859c79a3348c2895739536bd0ae1fc04c55ae5531ffd168dd9125311ecb8bbf91c551a0f5199da5834b162bacc09f88729be34653cc1a3d7ece35e39b0c1b4a62da18a2ecb94abca774a5ca37460d083f873a78bf7d154d0465a0adae7041b8a01bb0ef4539e6c4cb2931e214756dbadce1affb03d374f2fb981f2ad4f6779a0bad9a428f0276282e32ee4d6272b45da92bfbc849f686c5b22eb4cea09d588a799790c4b58a0b7f841c66126b790911d391465a5903b0478f2df0d2ccef0f0dd04da84fa86517de829c5457ffbf82b19b25fc5db59b7d7eb1b09cc6b57a3d8aeb6882b448b37b2f85397f3746b6e99d0d50da3421ed0574307b9e69acb98a2a52f9c5e019104b874093c9045d40466d512bfd0b71043c4eccb2175895d2eb785888166366a7b7ed508b9b20e32a1669b464442b88deeb5169c4eb80bc533a3cdf320485e8ad093fe1883cdce103e189b7c5077edd6f5e7df9fe0a5694e9f992907abf1a6ad8528965233938e666fc8ddb40532009cd61d2050170f3d9f63fe33ef160a4caf3b34b5da4e73edcf59cb887f916444b25e0dea4ade85aff7d0064049af04a2a5621bb34a5305eba2731af1ed10fdfed56ffc62d394184627dfe8881906844e85331af6405d36768e8bddfab2cc96784f9084794215b6ad8456aaa005cdf3e03691f2fea9b6ab58c91ed9d67dab24eb2b84483c780383db69a3082fbee2f4845064d32cc2d0b712ad3d929c53292ea6a76d3d02b6a695fe414ca8e4f0e895b63749844229a8fde64c04ef069b9ee8e2d538d1e4c1041cc0dc6ec40e73189880e6af238ee3ba10c472d6946c6b514f0f62077132e5079b1a59a255ae37e5f3bc7a0f9b5b74c69da04b4a945e83fd0f0193b402f1b8b54580471268e522ce14839a772e51e1c2d1cb3787fb17e2137b371e530", 0x1000, 0x1, 0x0, 0x2, r9}, &(0x7f0000003ac0)) [ 474.416758][T20598] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 474.460229][T20598] CR3 = 0x0000000000000000 03:36:49 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(0x0, 0x400002) [ 474.481812][T20598] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 474.528168][T20598] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 474.563745][T20598] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 474.573610][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 474.579465][ C1] protocol 88fb is buggy, dev hsr_slave_1 03:36:50 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(0x0, 0x400002) [ 474.632062][T20598] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 474.679770][T20598] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 474.713118][T20598] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 474.754956][T20598] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:50 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x0) [ 474.800707][T20598] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 474.859574][T20598] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 474.906265][T20598] GDTR: limit=0x00000000, base=0x0000000000000000 [ 474.942239][T20598] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 474.973398][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 474.979229][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 474.981601][T20598] IDTR: limit=0x00000000, base=0x0000000000000000 [ 474.985061][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 474.985100][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:36:50 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000800)='/dev/ptmx\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x28000, 0x0) ioctl$BLKROSET(r1, 0x125d, &(0x7f00000000c0)=0x5) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000440)) ftruncate(0xffffffffffffffff, 0x2007fff) ioctl$TIOCNOTTY(r0, 0x5422) 03:36:50 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000), 0x1c) sendmmsg(r0, &(0x7f0000000140)=[{{&(0x7f0000000440)=@un=@file={0x0, './file0\x00'}, 0x80, &(0x7f0000000400), 0x0, &(0x7f0000000180)}}, {{0x0, 0x0, &(0x7f0000002bc0), 0x0, &(0x7f0000000100)=[{0x10, 0x29, 0x3}], 0x10}}], 0x2, 0x0) r1 = syz_open_dev$adsp(&(0x7f00000000c0)='/dev/adsp#\x00', 0x2, 0x400940) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r1, 0x40045731, &(0x7f0000000080)=0x8) [ 475.029599][T20598] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 475.078723][T20598] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 475.122513][T20598] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 475.165568][T20598] Interruptibility = 00000000 ActivityState = 00000000 [ 475.196126][T20598] *** Host State *** [ 475.225212][T20598] RIP = 0xffffffff811b3240 RSP = 0xffff888059b478e0 [ 475.243263][T20598] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 475.250438][T20598] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 475.268932][T20598] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 475.275632][T20598] CR0=0000000080050033 CR3=0000000028367000 CR4=00000000001426e0 [ 475.284173][T20598] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 475.291540][T20598] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 475.298462][T20598] *** Control State *** [ 475.302618][T20598] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 475.310025][T20598] EntryControls=0000d1ff ExitControls=002fefff [ 475.316242][T20598] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:36:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x50000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = getpgrp(0x0) waitid(0x1, r3, &(0x7f0000000000), 0x40000008, &(0x7f00000001c0)) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000280)="70b179891ddd88b4c00ea679d131ca9918ad504cded382cb7f142f66a8d1d7136e7a3a611916f3243f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc96450aa657546ddc74ecbfefde66d4", 0x4f, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:50 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x0) 03:36:50 executing program 1: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x2000001000008912, &(0x7f0000000100)="0adc1f123c123f3188b070") r2 = socket$inet6(0x10, 0x3, 0x0) sendmsg(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000000c0)="5500000018007f1412fe01b2a4a280930a060b7700a84306910000000b00020035000c00060000001900150006000000000000dc1338d54400009b84136ef75afb83de4411001600c43ab8220000060cec4faba7d4", 0x55}], 0x1}, 0x0) accept4$inet6(r0, 0x0, 0x0, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x200, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socket(0x1d, 0x0, 0x6) 03:36:50 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="649c47ad46390dc86dae79fa409d4d54", 0x10) r1 = accept$alg(r0, 0x0, 0x0) write$P9_RGETATTR(r1, &(0x7f0000000100)={0xa0}, 0xa0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="3679826ebddd8da314d6fc2429358a2ed25d9e6a0a53e51b6734f79e68d8be37c9a0", 0x22) r2 = dup3(r0, r1, 0x80000) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f00000002c0)={{{@in6=@dev, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in=@loopback}}, &(0x7f00000003c0)=0xe8) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000400)={0x0, 0x0, 0x0}, &(0x7f0000000440)=0xc) mount$fuseblk(&(0x7f0000000200)='/dev/loop0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='fuseblk\x00', 0x1000000, &(0x7f0000000480)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r3}, 0x2c, {'group_id', 0x3d, r4}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1a00}}, {@max_read={'max_read', 0x3d, 0x6}}, {@allow_other='allow_other'}], [{@smackfsroot={'smackfsroot'}}, {@smackfshat={'smackfshat', 0x3d, '[(self}'}}, {@measure='measure'}, {@dont_measure='dont_measure'}, {@obj_user={'obj_user', 0x3d, 'aegis128l-generic\x00'}}, {@smackfshat={'smackfshat', 0x3d, 'aead\x00'}}, {@permit_directio='permit_directio'}, {@smackfsdef={'smackfsdef', 0x3d, 'aead\x00'}}]}}) io_setup(0x800000100000005, &(0x7f0000f69000)=0x0) accept$alg(r0, 0x0, 0x0) io_submit(r5, 0x1, &(0x7f0000bd9fe0)=[&(0x7f0000617fc0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f00000000c0)="b3", 0x1}]) 03:36:50 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x4000, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000380)=@mangle={'mangle\x00', 0x1f, 0x6, 0x540, 0xf0, 0xf0, 0x388, 0x0, 0x0, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0xc8, 0xf0, 0x0, {}, [@common=@inet=@ipcomp={0x30, 'ipcomp\x00', 0x0, {0x4d5, 0x4d3, 0x1}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x33}}}, {{@uncond, 0x0, 0x98, 0xc0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@local, @local, 0x0, 0xffffff00, 'team_slave_0\x00', 'gre0\x00', {0xff}, {0xff}, 0xff, 0x1, 0x71}, 0x0, 0x98, 0xc0}, @TTL={0x28, 'TTL\x00', 0x0, {0x3, 0x8}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x200, 0x20, 0x0, 0x1}}, @inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@rand_addr="134d201e3a59ec90b91a1b8cd265e1f2", [0xff, 0xffffffff, 0xff, 0xff], 0x4e24, 0x4e21, 0x4e23, 0x4e20, 0x1, 0x401, 0x9e, 0x1, 0x800}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 475.323955][T20598] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 475.331320][T20598] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 475.338690][T20598] reason=80000021 qualification=0000000000000000 [ 475.345754][T20598] IDTVectoring: info=00000000 errcode=00000000 [ 475.351889][T20598] TSC Offset = 0xfffffeff8feb51c3 [ 475.356992][T20598] TPR Threshold = 0x00 [ 475.361068][T20598] EPT pointer = 0x00000000501ce01e 03:36:50 executing program 4: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000000)={0x0, 0x0}) perf_event_open(0x0, r0, 0x2, 0xffffffffffffffff, 0x9) bpf$OBJ_GET_MAP(0x7, 0x0, 0x0) sendmsg(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000380)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000000980), 0x0, &(0x7f0000000400), 0x0, 0x20000001}, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(0xffffffffffffffff, 0x89e0, &(0x7f0000000540)) socketpair(0x1, 0x1, 0x0, &(0x7f0000000740)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x89f2, &(0x7f0000000080)='ip6tnl0\x00') 03:36:50 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000005d40)={0x0, 0x0, &(0x7f0000005d00)={&(0x7f0000000880)=@newlink={0x48, 0x10, 0xd07, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, @ip6gre={{0xc, 0x1, 'ip6gre\x00'}, {0x18, 0x2, [@IFLA_GRE_LOCAL={0x14, 0xc, @mcast1={0xff, 0x1, [0xc, 0xf0ffff]}}]}}}]}, 0x48}}, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/btrfs-control\x00', 0x104, 0x0) write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000040)={0x29, 0x4, 0x0, {0x0, 0x3, 0x1, 0x0, [0x0]}}, 0x29) ioctl$sock_bt_hci(r1, 0x400448fe, &(0x7f00000000c0)="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") [ 475.452582][T20641] netlink: 'syz-executor.1': attribute type 21 has an invalid length. [ 475.469653][T20641] netlink: 13 bytes leftover after parsing attributes in process `syz-executor.1'. 03:36:51 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x0) [ 475.550094][T20651] netlink: 'syz-executor.4': attribute type 12 has an invalid length. 03:36:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_id=0x0, &(0x7f0000000040)=0x4) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000080)={r3, 0x10000}, &(0x7f0000000140)=0x8) 03:36:51 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000840)=ANY=[@ANYBLOB="31dff57ad5e5905299f0f8261b3e4820bb8797c9347a1a9e6061989d169908a2c27a753a68220a1ad20853e4e4589f90315d7da42924cbe2f008000000000000001d366369d8223be05887b04a2b423b1a017bad1f144975f529571024877dcdd7bf800000e44b23a3a3a73d6100008fa9186d17e7ea7d855a2e52c39793bf679542e557d9530b8bd784c9076c28"], 0x0) r1 = syz_init_net_socket$llc(0x1a, 0x80000000000002, 0x0) sendto$llc(r1, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0) r2 = msgget$private(0x0, 0x0) msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000640)=""/161) write(r1, &(0x7f0000000200), 0x0) recvmmsg(r1, &(0x7f000000cd80)=[{{&(0x7f000000be80)=@ll, 0x80, &(0x7f000000c2c0)=[{&(0x7f000000bf00)=""/139, 0x8b}, {&(0x7f000000bfc0)=""/220, 0xdc}, {&(0x7f000000c0c0)=""/93, 0x5d}, {&(0x7f000000c140)=""/193, 0xc1}, {&(0x7f000000c240)=""/115, 0x73}], 0x5, &(0x7f000000c340)=""/106, 0x6a, 0xffffffff}, 0x6}, {{0x0, 0x0, &(0x7f000000c600)=[{&(0x7f000000c3c0)=""/56, 0x38}, {&(0x7f000000c400)=""/74, 0x4a}, {&(0x7f000000c480)=""/114, 0x72}, {&(0x7f00000000c0)=""/132, 0x84}, {&(0x7f000000c5c0)=""/15, 0xf}], 0x10000000000000f7, 0x0, 0x0, 0x7d48bddc}, 0x100000001}], 0x2, 0x2000, &(0x7f000000cec0)={0x0, 0x1c9c380}) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000480)='/dev/sequencer\x00', 0x10000, 0x0) ioctl$SG_GET_VERSION_NUM(r3, 0x2282, &(0x7f0000000600)) recvmmsg(r1, &(0x7f00000064c0)=[{{0x0, 0x0, &(0x7f0000004200)=[{&(0x7f0000002b80)=""/108}, {&(0x7f0000002c00)=""/51}, {&(0x7f0000002c40)=""/215}, {&(0x7f0000002d40)=""/204}, {&(0x7f0000002e40)=""/197}, {&(0x7f0000002f40)=""/164}, {&(0x7f0000003000)=""/4096}, {&(0x7f0000004000)=""/181}, {&(0x7f00000040c0)=""/216}, {&(0x7f00000041c0)=""/9}], 0x0, &(0x7f00000042c0)=""/17, 0x0, 0xfffffffffffffc00}, 0xd04}, {{&(0x7f0000004300)=@ax25, 0x0, &(0x7f0000005640)=[{&(0x7f0000004380)=""/36}, {&(0x7f00000043c0)=""/249}, {&(0x7f00000044c0)=""/78}, {&(0x7f0000004540)=""/242}, {&(0x7f0000004640)=""/4096}], 0x0, &(0x7f00000056c0)=""/231, 0x0, 0xfff}, 0xc}, {{&(0x7f00000057c0)=@alg, 0x0, &(0x7f0000005a80)=[{&(0x7f0000005840)=""/13}, {&(0x7f0000005880)=""/105}, {&(0x7f0000005900)=""/48}, {&(0x7f0000005940)=""/75}, {&(0x7f00000059c0)=""/175}], 0x0, &(0x7f0000005b00)=""/142, 0x0, 0x2}, 0x6}, {{0x0, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000005bc0)=""/196}], 0x0, &(0x7f0000005d00)=""/193, 0x0, 0xde7}, 0xfffffffffffffe00}, {{&(0x7f0000005e00)=@rc, 0x0, &(0x7f0000006040)=[{&(0x7f0000005e80)=""/158}, {&(0x7f0000005f40)=""/208}], 0x0, 0x0, 0x0, 0x294000000000}, 0x80000001}, {{&(0x7f0000006080)=@nl, 0x0, &(0x7f00000063c0)=[{&(0x7f0000006100)=""/225}, {&(0x7f0000006200)=""/208}, {&(0x7f0000006300)=""/143}], 0x0, &(0x7f0000006400)=""/136, 0x0, 0x8}, 0x7}], 0x7, 0x2000, 0x0) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000540)={0x0, 0x6}, &(0x7f0000000780)=0x8) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f00000007c0)=ANY=[@ANYBLOB="ff00020f00000000"], 0x0) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000440)={'veth0_to_bridge\x00', {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1b}}}) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/qat_adf_ctl\x00', 0x0, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000400)={r1, &(0x7f00000004c0), 0x0}, 0x18) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000200)={0x0, 0x200}, &(0x7f0000000240)=0x8) write$P9_RREADLINK(r3, &(0x7f00000001c0)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)={0x9, 0x52, 0x3, 0x400000bff, 0x0, 0xffffffffffffffff, 0x4}, 0x2c) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r4, &(0x7f0000000040), 0x0}, 0x20) [ 475.600975][T20641] can: request_module (can-proto-6) failed. [ 475.654916][T20651] netlink: 'syz-executor.4': attribute type 12 has an invalid length. [ 475.683594][T20658] netlink: 'syz-executor.1': attribute type 21 has an invalid length. [ 475.691796][T20658] netlink: 13 bytes leftover after parsing attributes in process `syz-executor.1'. 03:36:51 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f0000000080)={'bond_slave_0\x00', &(0x7f0000000040)=ANY=[@ANYBLOB="1b98444dc07bf2e0ba97a0a062fb9880cfc57c290d4700"]}) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x100, 0x2) 03:36:51 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x4000, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000380)=@mangle={'mangle\x00', 0x1f, 0x6, 0x540, 0xf0, 0xf0, 0x388, 0x0, 0x0, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0xc8, 0xf0, 0x0, {}, [@common=@inet=@ipcomp={0x30, 'ipcomp\x00', 0x0, {0x4d5, 0x4d3, 0x1}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x33}}}, {{@uncond, 0x0, 0x98, 0xc0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@local, @local, 0x0, 0xffffff00, 'team_slave_0\x00', 'gre0\x00', {0xff}, {0xff}, 0xff, 0x1, 0x71}, 0x0, 0x98, 0xc0}, @TTL={0x28, 'TTL\x00', 0x0, {0x3, 0x8}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x200, 0x20, 0x0, 0x1}}, @inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@rand_addr="134d201e3a59ec90b91a1b8cd265e1f2", [0xff, 0xffffffff, 0xff, 0xff], 0x4e24, 0x4e21, 0x4e23, 0x4e20, 0x1, 0x401, 0x9e, 0x1, 0x800}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:51 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x0) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000000)={0x3, 0x5, 0x401, 0x7}) r1 = dup(r0) setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000240), 0x4) sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x0, 0x0, @loopback}, 0x1c) 03:36:51 executing program 5: syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000000800460000280000000000219078ac14ffaae000000100000000", @ANYRES32=0x42424242, @ANYRES32=0x42424242, @ANYBLOB="560000007a7800f7"], 0x0) r0 = openat$vfio(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0x101000, 0x0) ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f0000000100)="cad65660cba9a3d22fc20c9dfa990bc1a38aba7e4ad9c6e362dd6d3adef1a7afc6464e80564663778efc243184943a3943d68bbed7856402e1b2f421b5482d947c8631dc7da5b2e2332469c01d198cd640d5073458c8e977c8eb9aad8911c6c1938a6fa8170fdde55f74eed5463fb1140b3a20ee862c4b939008fe22b3795fe8bf0babb1c446ab50bffecf219ffb1dedd276ffa4d412d322105739ebbc7a58850f3ced44d8481160f7ad09bffbe196bbbc8cd18925ef75a1fc83b9fe6f5ac20c7b2066d4195ee7174a16e416") r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ubi_ctrl\x00', 0x20000, 0x0) openat$cgroup_int(r1, &(0x7f0000000080)='cgroup.clone_children\x00', 0x2, 0x0) ioctl$FICLONE(r1, 0x40049409, r1) 03:36:51 executing program 0 (fault-call:6 fault-nth:0): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:51 executing program 5: r0 = memfd_create(&(0x7f0000000080)='{\x10', 0x3) fcntl$addseals(r0, 0x409, 0x6) io_setup(0x4, &(0x7f00000000c0)=0x0) io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="e5", 0x1}]) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm-control\x00', 0x0, 0x0) connect$bt_rfcomm(r2, &(0x7f0000000200)={0x1f, {0x9, 0x5, 0x1, 0x12d26d55, 0x7fff, 0x9}, 0x5b8}, 0xa) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000000), &(0x7f0000000140)=0x4) 03:36:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x400180, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4) request_key(&(0x7f0000000040)='cifs.idmap\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000140)='/dev/kvm\x00', 0xfffffffffffffff8) add_key(0xffffffffffffffff, 0x0, &(0x7f00000001c0)="70b179893c0e0000c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf00000000cc9645", 0x2, 0xfffffffffffffffb) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) lseek(r1, 0x0, 0x3) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:51 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000600)) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x800000000000ffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}) ioctl$VT_SETMODE(r0, 0x5602, &(0x7f0000000080)={0x3ff, 0x100000000, 0x7, 0x4, 0x5}) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000040)={0x4}) 03:36:51 executing program 4: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0x1, 0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000180)=0xc) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@ipv4={[], [], @multicast1}, @in6=@rand_addr="5f668e55b486447e01fec7af39190a2b", 0x4e20, 0x1000, 0x4e20, 0x9, 0x2, 0x80, 0x20, 0x33, 0x0, r1}, {0x2, 0x5, 0x8, 0x9, 0x8, 0x1, 0x4c, 0xf6dc}, {0x80, 0x7c, 0x6, 0x4}, 0x1, 0x6e6bb0, 0x0, 0x0, 0x3, 0x3}, {{@in=@broadcast, 0x4d2, 0x2b}, 0x2, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3501, 0x2, 0x3, 0x20, 0x3f, 0x12b}}, 0xe8) r2 = socket$packet(0x11, 0x0, 0x300) bind$bt_sco(r0, &(0x7f00000000c0)={0x1f, {0x0, 0x7fffffff, 0x3ff, 0x7ff, 0x5, 0x946}}, 0x8) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x31, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000002fc0)=ANY=[@ANYBLOB="030000000000000000000000000000000000000000000000000000000000000300000000000000000000000000000000"]}) [ 475.978305][T20683] FAULT_INJECTION: forcing a failure. [ 475.978305][T20683] name failslab, interval 1, probability 0, space 0, times 0 [ 476.053157][T20683] CPU: 0 PID: 20683 Comm: syz-executor.0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 476.062282][T20683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 476.072338][T20683] Call Trace: [ 476.075641][T20683] dump_stack+0x172/0x1f0 [ 476.079991][T20683] should_fail.cold+0xa/0x15 [ 476.084606][T20683] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 476.090417][T20683] ? ___might_sleep+0x163/0x280 [ 476.095276][T20683] __should_failslab+0x121/0x190 [ 476.100220][T20683] should_failslab+0x9/0x14 [ 476.104739][T20683] kmem_cache_alloc+0x2b2/0x6f0 [ 476.109600][T20683] ? wait_for_completion+0x440/0x440 [ 476.114902][T20683] getname_flags+0xd6/0x5b0 [ 476.119928][T20683] user_path_at_empty+0x2f/0x50 [ 476.124794][T20683] do_sys_truncate.part.0+0x92/0x150 [ 476.130093][T20683] ? vfs_truncate+0x710/0x710 [ 476.134780][T20683] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 476.140243][T20683] ? do_syscall_64+0x26/0x610 [ 476.144943][T20683] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 476.151018][T20683] ? do_syscall_64+0x26/0x610 [ 476.155704][T20683] __x64_sys_truncate+0x6e/0xa0 [ 476.160562][T20683] do_syscall_64+0x103/0x610 [ 476.165165][T20683] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 476.171062][T20683] RIP: 0033:0x457e29 [ 476.174963][T20683] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 476.194574][T20683] RSP: 002b:00007f077347ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000004c 03:36:51 executing program 1: r0 = syz_open_dev$sndmidi(&(0x7f00000001c0)='/dev/snd/midiC#D#\x00', 0x10000040, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0xc0385720, 0x0) fremovexattr(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"]) r1 = socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$SNDRV_TIMER_IOCTL_STATUS(r1, 0x80605414, &(0x7f0000000200)=""/239) ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000100)={'veth0_to_team\x00', {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}}) r2 = fcntl$dupfd(r1, 0x0, r0) write$P9_RVERSION(r2, &(0x7f00000000c0)={0x15, 0x65, 0xffff, 0x5, 0x8, '9P2000.u'}, 0x15) r3 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000040)='/proc/capi/capi20\x00', 0x1, 0x0) ioctl$PPPIOCSMRU(r3, 0x40047452, &(0x7f0000000080)=0x5) mbind(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, &(0x7f0000000000)=0x3c, 0x400, 0x4) tee(r1, r0, 0x5b0, 0xa) 03:36:51 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x400000000005, 0x0, &(0x7f0000616ff8)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000f9d000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000040)=0x0) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) pipe2(&(0x7f0000000280)={0xffffffffffffffff}, 0x0) perf_event_open(&(0x7f0000000200)={0x4, 0x70, 0x7fffffff, 0x914c, 0x6, 0x0, 0x0, 0x5, 0x80008, 0x2, 0x97, 0x10000, 0xffffffffffffff80, 0x8, 0xed, 0x6, 0x200, 0x8, 0xffff, 0x3f, 0xa8e, 0x1, 0x9, 0x3, 0x3, 0x20, 0x80000001, 0x7f, 0x6, 0x3, 0x100000001, 0x0, 0x5, 0xff, 0x800, 0x3, 0x4, 0x49, 0x0, 0x5, 0x4, @perf_bp={&(0x7f00000001c0), 0x4}, 0x20000, 0x1, 0x100000001, 0xf, 0x80000001, 0x7ff, 0xfd85}, 0x0, 0x3, r5, 0x1) r6 = getgid() fcntl$F_GET_RW_HINT(r5, 0x40b, &(0x7f00000002c0)) sendmsg$unix(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@cred={0x20, 0x1, 0x2, r3, r4, r6}], 0x20}, 0x0) recvmsg(r1, &(0x7f00003d6fc8)={0x0, 0x0, 0x0, 0x0, &(0x7f0000f9fff8)=""/90, 0x5a}, 0x0) [ 476.202990][T20683] RAX: ffffffffffffffda RBX: 00007f077347ac90 RCX: 0000000000457e29 [ 476.210972][T20683] RDX: 0000000000000000 RSI: 0000000000400002 RDI: 0000000020000340 [ 476.218950][T20683] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 476.227111][T20683] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f077347b6d4 [ 476.235091][T20683] R13: 00000000004be691 R14: 00000000004dc380 R15: 0000000000000005 03:36:51 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x4000, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000380)=@mangle={'mangle\x00', 0x1f, 0x6, 0x540, 0xf0, 0xf0, 0x388, 0x0, 0x0, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x4a8, 0x6, &(0x7f00000000c0), {[{{@uncond, 0x0, 0xc8, 0xf0, 0x0, {}, [@common=@inet=@ipcomp={0x30, 'ipcomp\x00', 0x0, {0x4d5, 0x4d3, 0x1}}]}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x33}}}, {{@uncond, 0x0, 0x98, 0xc0}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@ip={@local, @local, 0x0, 0xffffff00, 'team_slave_0\x00', 'gre0\x00', {0xff}, {0xff}, 0xff, 0x1, 0x71}, 0x0, 0x98, 0xc0}, @TTL={0x28, 'TTL\x00', 0x0, {0x3, 0x8}}}, {{@uncond, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@addrtype={0x30, 'addrtype\x00', 0x0, {0x200, 0x20, 0x0, 0x1}}, @inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00'}}, {{@uncond, 0x0, 0xc0, 0x120, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00'}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@rand_addr="134d201e3a59ec90b91a1b8cd265e1f2", [0xff, 0xffffffff, 0xff, 0xff], 0x4e24, 0x4e21, 0x4e23, 0x4e20, 0x1, 0x401, 0x9e, 0x1, 0x800}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x5a0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:51 executing program 1: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$int_in(r0, 0x40000000af01, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000100)={0x2}) 03:36:51 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r0, 0xc0405519, &(0x7f0000000180)=""/103) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x2003, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r1, 0x40bc5311, &(0x7f0000000080)={0xffffffff80000001, 0x0, 'client1\x00', 0xffffffff80000000, "6ce585c827519ee8", "bff9d7e96c7b4f69c7d3f1ad73a9b37312df264fcc792534bfbeceb78da13148", 0x1, 0x1}) 03:36:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffb68837be}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:51 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0x0, 0x2) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x20011, r1, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000300)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x8, &(0x7f0000000200)=[@flat={0x73622a85}], &(0x7f0000000240)=[0x0]}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="06630440"], 0x0, 0x0, 0x0}) 03:36:51 executing program 0 (fault-call:6 fault-nth:1): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:51 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340)='/dev/ptmx\x00', 0x0, 0x0) r1 = syz_open_dev$amidi(&(0x7f0000000100)='/dev/amidi#\x00', 0x8, 0x40000) getsockopt$TIPC_IMPORTANCE(r1, 0x10f, 0x7f, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000040)) [ 476.545422][T20721] FAULT_INJECTION: forcing a failure. [ 476.545422][T20721] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 476.558654][T20721] CPU: 1 PID: 20721 Comm: syz-executor.0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 476.567760][T20721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 476.577814][T20721] Call Trace: [ 476.581131][T20721] dump_stack+0x172/0x1f0 [ 476.585487][T20721] should_fail.cold+0xa/0x15 [ 476.590103][T20721] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 476.595929][T20721] ? mark_held_locks+0xf0/0xf0 [ 476.600705][T20721] should_fail_alloc_page+0x50/0x60 [ 476.605918][T20721] __alloc_pages_nodemask+0x1a1/0x7e0 [ 476.611302][T20721] ? __alloc_pages_slowpath+0x2900/0x2900 [ 476.617032][T20721] ? find_held_lock+0x35/0x130 [ 476.621811][T20721] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 476.627623][T20721] cache_grow_begin+0x9c/0x860 [ 476.627641][T20721] ? getname_flags+0xd6/0x5b0 [ 476.627658][T20721] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 476.627678][T20721] kmem_cache_alloc+0x62d/0x6f0 [ 476.627701][T20721] getname_flags+0xd6/0x5b0 [ 476.652693][T20721] user_path_at_empty+0x2f/0x50 [ 476.657550][T20721] do_sys_truncate.part.0+0x92/0x150 [ 476.657567][T20721] ? vfs_truncate+0x710/0x710 [ 476.657586][T20721] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 476.657602][T20721] ? do_syscall_64+0x26/0x610 [ 476.657627][T20721] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 476.683728][T20721] ? do_syscall_64+0x26/0x610 [ 476.688417][T20721] __x64_sys_truncate+0x6e/0xa0 [ 476.693272][T20721] do_syscall_64+0x103/0x610 [ 476.697893][T20721] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 476.703791][T20721] RIP: 0033:0x457e29 [ 476.707695][T20721] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 476.727306][T20721] RSP: 002b:00007f077347ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 476.735727][T20721] RAX: ffffffffffffffda RBX: 00007f077347ac90 RCX: 0000000000457e29 03:36:52 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x4000, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x80000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 476.743709][T20721] RDX: 0000000000000000 RSI: 0000000000400002 RDI: 0000000020000340 [ 476.751690][T20721] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 476.759671][T20721] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f077347b6d4 [ 476.767649][T20721] R13: 00000000004be691 R14: 00000000004dc380 R15: 0000000000000005 [ 476.841524][T20731] *** Guest State *** 03:36:52 executing program 1: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x101000, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000080)) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000040), 0x4) fcntl$getown(r1, 0x9) 03:36:52 executing program 5: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140)='/dev/hwrng\x00', 0x40, 0x0) getpeername$netrom(r0, &(0x7f0000000280)={{0x3, @bcast}, [@null, @netrom, @null, @netrom, @rose, @remote, @remote, @bcast]}, &(0x7f0000000300)=0x48) mkdir(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='rpc_pi\x13\x83\xe4v\x15Ii7\xc6|\x1d\xf8\x1ew|\xe2N\xa8J\\\x00\x17\x8a\xdc\x1dr.`\xf5J\xa4IS\xc0\xa7\x19\xf8M\xaf\t4<\x16@:a\xfaxs\x9bKh+\xe7\xac\x7f?2\xead\x8aR\xae+\x19Vu\a\xfcL\n\'c%\xd4F\xb1\x83\xd9\x8c\xb9W}H?}\x8f \xb2avA\x00\x00', 0xc0ed0000, 0x0) r1 = open(&(0x7f0000000080)='./file0\x00', 0x300, 0x140) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)={&(0x7f0000000000)='./file0\x00', r1}, 0x10) ioctl$VIDIOC_G_PRIORITY(r1, 0x80045643, 0x2) [ 476.862666][T20731] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 476.912594][T20731] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 476.929779][T20731] CR3 = 0x0000000000000000 [ 476.934644][T20731] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 476.941821][T20731] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 476.956481][T20731] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 476.967455][T20731] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 476.982881][T20731] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 476.991605][T20731] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 477.039602][T20731] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 477.050077][T20731] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 477.072633][T20731] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:52 executing program 0 (fault-call:6 fault-nth:2): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:52 executing program 4: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x4000, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:52 executing program 1: r0 = accept(0xffffffffffffffff, &(0x7f0000000080)=@nfc, &(0x7f0000000100)=0x80) setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000140)=0x94, 0x4) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @broadcast, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x32, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0xdc050000, 0x0, 0x0, 0x0, 0x140]}, @local={0xfe, 0x80, [0x0, 0x10]}, {[], @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) 03:36:52 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:52 executing program 5: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'lo\x00', &(0x7f00000000c0)=@ethtool_perm_addr={0x20, 0x6, "e69a2ac27637"}}) r1 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x80000000, 0x80) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000080)={0x6, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) [ 477.092005][T20731] GDTR: limit=0x00000000, base=0x0000000000000000 [ 477.101024][T20731] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 477.110686][T20731] IDTR: limit=0x00000000, base=0x0000000000000000 [ 477.119531][T20731] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 477.128566][T20731] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 477.192298][T20731] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 477.212390][T20750] FAULT_INJECTION: forcing a failure. [ 477.212390][T20750] name failslab, interval 1, probability 0, space 0, times 0 [ 477.226233][T20750] CPU: 0 PID: 20750 Comm: syz-executor.0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 477.235349][T20750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 477.245406][T20750] Call Trace: [ 477.248726][T20750] dump_stack+0x172/0x1f0 [ 477.253084][T20750] should_fail.cold+0xa/0x15 [ 477.257695][T20750] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 477.263519][T20750] ? __lock_acquire+0x55d/0x4710 [ 477.268480][T20750] __should_failslab+0x121/0x190 [ 477.273433][T20750] should_failslab+0x9/0x14 [ 477.277945][T20750] kmem_cache_alloc+0x47/0x6f0 [ 477.282732][T20750] xas_alloc+0x2df/0x3d0 [ 477.286983][T20750] xas_create+0x2cd/0xff0 [ 477.291329][T20750] xas_store+0x9a/0x19b0 [ 477.295588][T20750] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 477.301831][T20750] ? xas_start+0x166/0x560 [ 477.306274][T20750] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 477.312525][T20750] ? xas_load+0x67/0x150 [ 477.316786][T20750] __add_to_page_cache_locked+0x5b7/0xe70 [ 477.322525][T20750] ? file_check_and_advance_wb_err+0x3a0/0x3a0 [ 477.328754][T20750] ? rcu_read_lock_sched_held+0x110/0x130 [ 477.334510][T20750] ? count_shadow_nodes+0x500/0x500 03:36:52 executing program 1: r0 = socket$inet(0xa, 0x801, 0x84) connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x25, &(0x7f00000003c0)=0xb5e, 0x1f7) listen(r0, 0x100000001) setsockopt$sock_int(r0, 0x1, 0x3f, &(0x7f0000000000)=0x7ff, 0x4) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb) recvmmsg(r1, &(0x7f0000004300), 0x3a4, 0x0, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x8000}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f00000000c0)={r2, @in6={{0xa, 0x4e21, 0xa2, @local, 0x9}}, 0xfff, 0x5}, 0x90) 03:36:52 executing program 4: r0 = socket$inet_smc(0x2b, 0x1, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x3b, 0x0, 0x0) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x8000000) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x0, 0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x10, r1, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0xc0ffffff, 0x2c}, [@ldst={0x7}]}, &(0x7f0000003ff6)='GPL\x00', 0x1, 0xc3, &(0x7f000000cf3d)=""/195}, 0x185) [ 477.339723][T20750] ? __alloc_pages_slowpath+0x2900/0x2900 [ 477.345459][T20750] add_to_page_cache_lru+0x1f1/0x780 [ 477.350771][T20750] ? add_to_page_cache_locked+0x40/0x40 [ 477.356333][T20750] ? __page_cache_alloc+0x131/0x460 [ 477.361580][T20750] ? find_held_lock+0x35/0x130 [ 477.366354][T20750] pagecache_get_page+0x36f/0x770 [ 477.366427][T20750] ext4_block_zero_page_range+0x1c6/0x15c0 [ 477.366451][T20750] ? ext4_get_block+0x50/0x50 [ 477.366493][T20750] ? ext4_journal_check_start+0x188/0x230 [ 477.366515][T20750] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 477.393919][T20750] ? __ext4_journal_start_sb+0x12d/0x4a0 [ 477.399565][T20750] ext4_truncate+0x100e/0x1440 [ 477.404339][T20750] ? ext4_punch_hole+0x10f0/0x10f0 [ 477.409463][T20750] ? unmap_mapping_range+0x48/0x60 [ 477.414586][T20750] ext4_setattr+0x1b00/0x2450 [ 477.419272][T20750] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 477.425550][T20750] ? ext4_journalled_write_end+0x11b0/0x11b0 [ 477.431543][T20750] notify_change+0xad9/0xfb0 [ 477.436151][T20750] do_truncate+0x158/0x220 03:36:52 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) sendmmsg(0xffffffffffffffff, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 477.440576][T20750] ? file_open_root+0x3c0/0x3c0 [ 477.445496][T20750] ? common_perm+0x730/0x730 [ 477.450105][T20750] ? apparmor_path_truncate+0x22/0x30 [ 477.455488][T20750] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 477.461742][T20750] vfs_truncate+0x531/0x710 [ 477.466253][T20750] ? do_truncate+0x220/0x220 [ 477.470869][T20750] do_sys_truncate.part.0+0x130/0x150 [ 477.476261][T20750] ? vfs_truncate+0x710/0x710 [ 477.480952][T20750] __x64_sys_truncate+0x6e/0xa0 [ 477.485810][T20750] do_syscall_64+0x103/0x610 03:36:52 executing program 1: r0 = socket$inet(0xa, 0x801, 0x84) connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) setsockopt$sock_int(r0, 0x1, 0x25, &(0x7f00000003c0)=0xb5e, 0x1f7) listen(r0, 0x100000001) setsockopt$sock_int(r0, 0x1, 0x3f, &(0x7f0000000000)=0x7ff, 0x4) r1 = accept4(r0, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xef}, 0xb) recvmmsg(r1, &(0x7f0000004300), 0x3a4, 0x0, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000040)={0x0, 0x8000}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f00000000c0)={r2, @in6={{0xa, 0x4e21, 0xa2, @local, 0x9}}, 0xfff, 0x5}, 0x90) [ 477.490419][T20750] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 477.496320][T20750] RIP: 0033:0x457e29 [ 477.500217][T20750] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 477.519828][T20750] RSP: 002b:00007f077347ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 477.528252][T20750] RAX: ffffffffffffffda RBX: 00007f077347ac90 RCX: 0000000000457e29 [ 477.536233][T20750] RDX: 0000000000000000 RSI: 0000000000400002 RDI: 0000000020000340 [ 477.544199][T20750] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 477.552161][T20750] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f077347b6d4 [ 477.560124][T20750] R13: 00000000004be691 R14: 00000000004dc380 R15: 0000000000000005 [ 477.632503][T20731] Interruptibility = 00000000 ActivityState = 00000000 [ 477.654034][T20731] *** Host State *** [ 477.660428][T20731] RIP = 0xffffffff811b3240 RSP = 0xffff88804dbe78e0 [ 477.672891][T20731] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 477.680148][T20731] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 477.695296][T20731] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 477.706109][T20731] CR0=0000000080050033 CR3=0000000055212000 CR4=00000000001426f0 [ 477.721452][T20731] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 477.755993][T20731] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 477.777708][T20731] *** Control State *** [ 477.798757][T20731] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 477.815699][T20731] EntryControls=0000d1ff ExitControls=002fefff [ 477.840611][T20731] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 477.851653][T20731] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:36:53 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket(0x9, 0x2, 0x2) r4 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x7ff, 0x40000) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f00000001c0)={0x14, 0x88, 0xfa00, {r5, 0x3c, 0x0, @in6={0xa, 0x4e24, 0x40, @dev={0xfe, 0x80, [], 0x1f}, 0x7ef0e101}}}, 0x90) setsockopt$inet_mreqsrc(r3, 0x0, 0x27, &(0x7f0000000000)={@local, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}, 0xc) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:53 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:53 executing program 0 (fault-call:6 fault-nth:3): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:53 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) sendmmsg(0xffffffffffffffff, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:53 executing program 1: syz_open_dev$loop(0x0, 0x4, 0x20ffff) r0 = syz_open_dev$media(0x0, 0x0, 0x0) io_cancel(0x0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={r0, 0x6, 0x1, 0x1000, &(0x7f0000000000)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6}, 0x20) r1 = syz_open_dev$sndctrl(&(0x7f0000006000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f00000001c0)) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f00000004c0)=[@in={0x2, 0x0, @multicast1}, @in6={0xa, 0x4e21, 0x3, @empty, 0x6}, @in6={0xa, 0x4e22, 0x0, @mcast2, 0x200}, @in={0x2, 0x0, @multicast2}], 0x58) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000280)='/dev/audio\x00', 0x10000, 0x0) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f00000000c0)=0x0) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000100)=r3) syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000440)={&(0x7f0000000080), 0xc, &(0x7f0000000400)={&(0x7f0000000540)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="010026bd7000000000000a00000081f3fe2b61c335834baf4a7068b675754f2aa2dccc78237931b8786f30200300ba6ae97efbb2680523815d9fd63169368daabcf96b8ec47e6f98ff445abd1dce53850f960b62d279e3741f196a3520e5846c42442cbabf757ecf3df35667b2299c0150e243e42e3d420c595f0715"], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000814) r4 = syz_open_dev$sndpcmp(&(0x7f0000000480)='/dev/snd/pcmC#D#p\x00', 0x0, 0x405) dup2(r4, r2) io_setup(0x8, &(0x7f0000000140)=0x0) io_submit(r5, 0x1, &(0x7f0000000240)=[&(0x7f0000000200)={0x2, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000640)="41b2af0fc5a66d7eff82c7a4f704860a215943e94a3bf6793069cc53f592b7d1dd3506892ed212993e02ed337c1a6d78d35f30042e659ed39a9fbbe4f5d54e9a934380b3e8cb3350b7c17ac7c7563c234c2b3692ab17d58e9b29f40e20b0a8ec7c19830aef44d89795ffa7944f46dd1bc8ebc31b76bb5dc5a3efc587cbd8a8fae8f71f4d40c08b8cc71efec69cb51c2b286b0ea0df85679460d54dbc15ee1216fa45f4b5c8a1c10f5e5d07128d8c", 0xae}]) 03:36:53 executing program 4: r0 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000080)={'syz'}, 0x0, 0x0, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000140)='keyring\x00', &(0x7f0000000180)={'syz'}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000340)='asymmetric\x00', &(0x7f00000002c0)=@keyring={'key_or_keyring:', r1}) add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f00000001c0)={'syz'}, 0x0, 0x0, r0) r2 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x0) write$P9_RSYMLINK(r2, 0xfffffffffffffffe, 0x0) [ 477.859368][T20731] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 477.866942][T20731] reason=80000021 qualification=0000000000000000 [ 477.874262][T20731] IDTVectoring: info=00000000 errcode=00000000 [ 477.880403][T20731] TSC Offset = 0xfffffefe3d2293ea [ 477.885534][T20731] TPR Threshold = 0x00 [ 477.889601][T20731] EPT pointer = 0x0000000094ecd01e 03:36:53 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) sendmmsg(0xffffffffffffffff, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 478.029647][T20788] FAULT_INJECTION: forcing a failure. [ 478.029647][T20788] name failslab, interval 1, probability 0, space 0, times 0 [ 478.037464][T20793] *** Guest State *** [ 478.042257][T20788] CPU: 1 PID: 20788 Comm: syz-executor.0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 478.042268][T20788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 478.042275][T20788] Call Trace: [ 478.042301][T20788] dump_stack+0x172/0x1f0 [ 478.042329][T20788] should_fail.cold+0xa/0x15 [ 478.047958][T20793] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 478.055397][T20788] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 478.055419][T20788] ? __lock_acquire+0x55d/0x4710 [ 478.055440][T20788] __should_failslab+0x121/0x190 [ 478.055463][T20788] should_failslab+0x9/0x14 [ 478.066163][T20793] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 478.068788][T20788] kmem_cache_alloc+0x47/0x6f0 [ 478.068814][T20788] xas_alloc+0x2df/0x3d0 [ 478.068836][T20788] xas_create+0x2cd/0xff0 [ 478.073615][T20793] CR3 = 0x0000000000000000 [ 478.077824][T20788] xas_store+0x9a/0x19b0 [ 478.077841][T20788] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 478.077874][T20788] ? xas_start+0x166/0x560 [ 478.087813][T20793] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 478.093194][T20788] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 478.093210][T20788] ? xas_load+0x67/0x150 [ 478.093234][T20788] __add_to_page_cache_locked+0x5b7/0xe70 [ 478.093258][T20788] ? file_check_and_advance_wb_err+0x3a0/0x3a0 [ 478.093283][T20788] ? rcu_read_lock_sched_held+0x110/0x130 [ 478.099546][T20793] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 478.103134][T20788] ? count_shadow_nodes+0x500/0x500 [ 478.103154][T20788] ? __alloc_pages_slowpath+0x2900/0x2900 [ 478.103172][T20788] ? retint_kernel+0x2d/0x2d [ 478.103193][T20788] add_to_page_cache_lru+0x1f1/0x780 [ 478.103214][T20788] ? add_to_page_cache_locked+0x40/0x40 [ 478.109152][T20793] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:36:53 executing program 5: syz_emit_ethernet(0x14, &(0x7f0000000040)={@empty, @remote, [], {@generic={0x8863, "94a7030000e8"}}}, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x2a000, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffff9c, 0x84, 0x6c, &(0x7f0000000080)={0x0, 0x52, "c694a830a7ad518953e4befac5289d3fc528de64b851b406ec23bcc9e5c1ea4bdf9ab1f085f4306448c053273df9a32c6426b4f7c56f3cc2657459b01def85b75ae521364ec9c9356a501a814fcea86862fc"}, &(0x7f0000000100)=0x5a) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000140)={r1, @in={{0x2, 0x4e23, @empty}}, 0x4, 0x56}, &(0x7f0000000200)=0x90) syz_init_net_socket$rose(0xb, 0x5, 0x0) [ 478.117412][T20788] ? __page_cache_alloc+0x131/0x460 [ 478.117436][T20788] pagecache_get_page+0x36f/0x770 [ 478.117463][T20788] ext4_block_zero_page_range+0x1c6/0x15c0 [ 478.117484][T20788] ? ext4_get_block+0x50/0x50 [ 478.117504][T20788] ? audit_add_tree_rule.cold+0x37/0x37 [ 478.122797][T20793] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.126495][T20788] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 478.126514][T20788] ? __ext4_journal_start_sb+0x12d/0x4a0 [ 478.126536][T20788] ext4_truncate+0x100e/0x1440 03:36:53 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000080)='/dev/snd/controlC#\x00', 0xfffffffffffffffd, 0x40) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040)) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x40000000040201, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x2000001000008912, &(0x7f0000000100)="0adc1f123c123f3188b070") r3 = syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x0, 0x405) ioctl$VIDIOC_G_PRIORITY(r1, 0x80045643, 0x6) write$P9_RWSTAT(r1, &(0x7f00000000c0)={0x7}, 0x7) write$vhci(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="589ff071"], 0x4) [ 478.126558][T20788] ? ext4_punch_hole+0x10f0/0x10f0 [ 478.130889][T20793] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.135283][T20788] ? unmap_mapping_range+0x48/0x60 [ 478.135306][T20788] ext4_setattr+0x1b00/0x2450 [ 478.135322][T20788] ? current_time+0xd8/0x140 [ 478.135343][T20788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 478.141728][T20793] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.145809][T20788] ? ext4_journalled_write_end+0x11b0/0x11b0 03:36:53 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) setfsuid(0x0) mq_notify(0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000380)='/dev/video1\x00', 0x2, 0x0) r3 = syz_open_dev$vcsa(0x0, 0x1, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) ioctl$PIO_FONTRESET(r3, 0x4b6d, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x1, 0x2) sendmsg$nl_generic(r3, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x101}, 0xc, &(0x7f00000001c0)={&(0x7f0000001380)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x10}, 0x1) fcntl$setownex(r2, 0xf, &(0x7f0000000200)={0x2, r1}) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x61, &(0x7f0000000280)={'filter\x00', 0x4}, 0x68) ioctl$int_in(r4, 0x800000c004500a, &(0x7f0000000040)=0x80000002) write$RDMA_USER_CM_CMD_DESTROY_ID(0xffffffffffffffff, &(0x7f0000000240)={0x1, 0x10, 0xfa00, {&(0x7f0000000100)}}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r4, &(0x7f00000000c0)={0xffffffffffffffd3, 0x34, 0x100000000000000}, 0xfffffefd) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$TIOCSLCKTRMIOS(r4, 0x5457, &(0x7f0000000080)) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000140)=0xffffffffffffffff, 0x4) getsockopt$inet6_mreq(r0, 0x29, 0x1f, &(0x7f0000002080)={@remote, 0x0}, &(0x7f00000020c0)=0x14) connect$can_bcm(r0, &(0x7f0000002100)={0x1d, r5}, 0x10) getsockopt$inet6_buf(r0, 0x29, 0x2b, 0x0, &(0x7f0000000000)=0x217e4d817a7d2edf) [ 478.145827][T20788] notify_change+0xad9/0xfb0 [ 478.145849][T20788] do_truncate+0x158/0x220 [ 478.145881][T20788] ? file_open_root+0x3c0/0x3c0 [ 478.150293][T20793] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.156948][T20788] ? common_perm+0x730/0x730 [ 478.156975][T20788] ? apparmor_path_truncate+0x22/0x30 [ 478.156989][T20788] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 478.157009][T20788] vfs_truncate+0x531/0x710 [ 478.163714][T20793] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.167472][T20788] ? do_truncate+0x220/0x220 [ 478.167490][T20788] ? do_sys_truncate.part.0+0x9d/0x150 [ 478.167506][T20788] ? do_sys_truncate.part.0+0x124/0x150 [ 478.167531][T20788] do_sys_truncate.part.0+0x130/0x150 [ 478.173661][T20793] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.179381][T20788] ? vfs_truncate+0x710/0x710 [ 478.179408][T20788] __x64_sys_truncate+0x6e/0xa0 [ 478.179428][T20788] do_syscall_64+0x103/0x610 [ 478.179451][T20788] entry_SYSCALL_64_after_hwframe+0x49/0xbe 03:36:53 executing program 5: creat(0x0, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_SET_PDEATHSIG(0x1, 0x0) mount$fuse(0x0, 0x0, 0x0, 0x3c, 0x0) [ 478.185602][T20793] GDTR: limit=0x00000000, base=0x0000000000000000 [ 478.191814][T20788] RIP: 0033:0x457e29 [ 478.191830][T20788] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 478.191839][T20788] RSP: 002b:00007f077347ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 478.191855][T20788] RAX: ffffffffffffffda RBX: 00007f077347ac90 RCX: 0000000000457e29 03:36:53 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 478.191875][T20788] RDX: 0000000000000000 RSI: 0000000000400002 RDI: 0000000020000340 [ 478.191884][T20788] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 478.191893][T20788] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f077347b6d4 [ 478.191902][T20788] R13: 00000000004be691 R14: 00000000004dc380 R15: 0000000000000005 [ 478.513508][T20793] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.522550][T20793] IDTR: limit=0x00000000, base=0x0000000000000000 [ 478.531466][T20793] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.540445][T20793] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 478.581689][T20793] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 478.589853][T20793] Interruptibility = 00000000 ActivityState = 00000000 [ 478.601170][T20793] *** Host State *** [ 478.605452][T20793] RIP = 0xffffffff811b3240 RSP = 0xffff888050ae78e0 [ 478.612492][T20793] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 478.619609][T20793] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 478.619623][T20793] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 478.619639][T20793] CR0=0000000080050033 CR3=000000008af61000 CR4=00000000001426f0 [ 478.619655][T20793] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 478.619670][T20793] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 478.661696][T20793] *** Control State *** [ 478.665919][T20793] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 478.690531][T20793] EntryControls=0000d1ff ExitControls=002fefff [ 478.697572][T20793] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 478.706486][T20793] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 478.714522][T20793] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 478.722111][T20793] reason=80000021 qualification=0000000000000000 [ 478.729131][T20793] IDTVectoring: info=00000000 errcode=00000000 [ 478.735341][T20793] TSC Offset = 0xfffffefd98a2bb7d [ 478.740372][T20793] TPR Threshold = 0x00 [ 478.744548][T20793] EPT pointer = 0x000000004ebac01e [ 478.791600][T20815] *** Guest State *** [ 478.795617][T20815] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 478.806483][T20815] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 478.816898][T20815] CR3 = 0x0000000000000000 [ 478.821335][T20815] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 478.828358][T20815] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 478.835111][T20815] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 478.842535][T20815] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.851204][T20815] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.859943][T20815] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.868671][T20815] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.877412][T20815] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.886153][T20815] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.895086][T20815] GDTR: limit=0x00000000, base=0x0000000000000000 [ 478.903851][T20815] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.913081][T20815] IDTR: limit=0x00000000, base=0x0000000000000000 [ 478.921833][T20815] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 478.930514][T20815] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 478.937697][T20815] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 478.945906][T20815] Interruptibility = 00000000 ActivityState = 00000000 [ 478.952895][T20815] *** Host State *** [ 478.956800][T20815] RIP = 0xffffffff811b3240 RSP = 0xffff8880a3f278e0 [ 478.963537][T20815] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 478.970642][T20815] FSBase=00007effb5ee4700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 478.979213][T20815] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 478.985878][T20815] CR0=0000000080050033 CR3=000000008af61000 CR4=00000000001426f0 [ 478.993700][T20815] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 479.001107][T20815] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 479.007921][T20815] *** Control State *** [ 479.012166][T20815] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 479.019539][T20815] EntryControls=0000d1ff ExitControls=002fefff [ 479.025761][T20815] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 479.033453][T20815] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:36:54 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0xff5a, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:54 executing program 1: perf_event_open(&(0x7f0000000380)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000340)='/dev/uhid\x00', 0x2, 0x0) r1 = dup(r0) write$UHID_CREATE(r0, &(0x7f0000001080)={0x0, 'syz1\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000000)=""/11, 0xb}, 0x120) ioctl$TIOCSSOFTCAR(0xffffffffffffffff, 0x541a, &(0x7f0000000580)) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000280)=0x9e) add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) syz_open_dev$ndb(&(0x7f0000000040)='/dev/nbd#\x00', 0x0, 0x440000) ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, &(0x7f00000001c0)={0x4, 0x40000100, &(0x7f00000021c0)="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", 0x0, 0x3ff}) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/snapshot\x00', 0x80001, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={0xffffffffffffffff, r1, 0x0, 0x8, &(0x7f00000000c0)='keyring\x00'}, 0x30) move_pages(r3, 0x1, &(0x7f0000000400)=[&(0x7f0000ffc000/0x3000)=nil], &(0x7f0000000980)=[0x4, 0x9, 0xfffffffffffff31f, 0x0, 0x7, 0x1, 0x791], &(0x7f00000009c0)=[0x0], 0x2) syz_genetlink_get_family_id$team(&(0x7f0000000080)='team\x00') getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000740)={{{@in6, @in=@multicast2}}, {{@in=@loopback}, 0x0, @in6=@ipv4={[], [], @local}}}, &(0x7f0000000100)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000140)={'vcan0\x00'}) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000180)={0x0, @multicast1, @initdev}, &(0x7f0000000300)=0xc) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000440)={0x0, @initdev, @remote}, &(0x7f0000000480)=0xc) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000500)={0x0, @broadcast, @loopback}, &(0x7f0000000540)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000840)={{{@in, @in=@multicast2}}, {{@in=@loopback}, 0x0, @in6=@remote}}, &(0x7f0000000940)=0xe8) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000d80)={0x0, @empty, @multicast1}, &(0x7f0000000dc0)=0xc) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000e00)={{{@in=@loopback}}, {{@in6=@mcast1}, 0x0, @in6=@ipv4={[], [], @remote}}}, &(0x7f0000000f00)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000012c0)={{{@in6=@ipv4={[], [], @multicast2}, @in=@remote}}, {{@in=@multicast1}, 0x0, @in6=@empty}}, &(0x7f00000013c0)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000046c0)={{{@in6, @in6=@mcast1}}, {{@in6=@loopback}, 0x0, @in6}}, &(0x7f00000047c0)=0xe8) 03:36:54 executing program 0 (fault-call:6 fault-nth:4): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:54 executing program 5: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3b7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0xc008240a, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f0000000080)={0x0, 0xfb, 0x4c, 0x4, 0x1f, "bdf61fbcd608cd304cd3af9bf9b76dcb", "a5e814f3a72a25255af9d91d73d8033caa8536633af9f8b67470a1c0d2970f4e3c0ea47a9b5ca886db3f157e1e16a59b083fa82a31d4c5"}, 0x4c, 0x3) clone(0x10000, &(0x7f0000000100)="0ad9a303fdad628468bb5580653791e43d2f290efb51e0b32c8ae6e90b14be65622b56b5213199da8dafbd70ec4944feb9049a07944408cba157ed2ee216e53decba8e92f620fd0b647fae71bec28be618bb05897f425196c04fb94de5d77868946274a814ba4e13e51c421ebd6937f95fff9984180c2f06be9c6e7460f5c2e53f35eaaf5f55e2ca2adfd5fa611d5fe4c687e541709038d2a63c26f3dce31f93b6e5b007fbcc", &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240)="3bb0e9b33b0c9dcd144add1408e5855e9764113def70b42d301572f6fd114f0c7fb6008ea0e71b1df249257ccd48023641ba618487eb9490") 03:36:54 executing program 4: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000140)='/dev/capi20\x00', 0x1, 0x0) ioctl$CAPI_REGISTER(r0, 0x400c4301, &(0x7f0000000000)={0x0, 0x0, 0x2a9}) write$capi20(r0, 0x0, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) 03:36:54 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 479.040828][T20815] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 479.049034][T20815] reason=80000021 qualification=0000000000000000 [ 479.056176][T20815] IDTVectoring: info=00000000 errcode=00000000 [ 479.062404][T20815] TSC Offset = 0xfffffefd98a2bb7d [ 479.067460][T20815] TPR Threshold = 0x00 [ 479.071585][T20815] EPT pointer = 0x000000004ebac01e 03:36:54 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 479.214794][T20828] FAULT_INJECTION: forcing a failure. [ 479.214794][T20828] name failslab, interval 1, probability 0, space 0, times 0 [ 479.225048][T20830] *** Guest State *** [ 479.228348][T20828] CPU: 0 PID: 20828 Comm: syz-executor.0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 479.228360][T20828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 479.228365][T20828] Call Trace: [ 479.228392][T20828] dump_stack+0x172/0x1f0 [ 479.228418][T20828] should_fail.cold+0xa/0x15 [ 479.228443][T20828] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 479.244283][T20830] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 479.251558][T20828] __should_failslab+0x121/0x190 [ 479.251579][T20828] should_failslab+0x9/0x14 [ 479.251596][T20828] kmem_cache_alloc+0x47/0x6f0 [ 479.251621][T20828] xas_alloc+0x2df/0x3d0 [ 479.251641][T20828] xas_create+0x2cd/0xff0 [ 479.251668][T20828] xas_store+0x9a/0x19b0 [ 479.251685][T20828] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 479.251700][T20828] ? xas_start+0x166/0x560 [ 479.251721][T20828] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 479.267203][T20830] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 479.269687][T20828] ? xas_load+0x67/0x150 [ 479.269712][T20828] __add_to_page_cache_locked+0x5b7/0xe70 [ 479.269737][T20828] ? file_check_and_advance_wb_err+0x3a0/0x3a0 [ 479.269757][T20828] ? rcu_read_lock_sched_held+0x110/0x130 [ 479.269780][T20828] ? count_shadow_nodes+0x500/0x500 [ 479.286522][T20830] CR3 = 0x0000000000000000 [ 479.288736][T20828] ? __alloc_pages_slowpath+0x2900/0x2900 [ 479.288754][T20828] ? retint_kernel+0x2d/0x2d [ 479.288776][T20828] add_to_page_cache_lru+0x1f1/0x780 [ 479.288797][T20828] ? add_to_page_cache_locked+0x40/0x40 [ 479.288816][T20828] ? __page_cache_alloc+0x131/0x460 [ 479.288838][T20828] pagecache_get_page+0x36f/0x770 [ 479.295619][T20830] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 479.297837][T20828] ext4_block_zero_page_range+0x1c6/0x15c0 [ 479.297877][T20828] ? ext4_get_block+0x50/0x50 03:36:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00') getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000040)={{{@in=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@local}}, &(0x7f0000000180)=0xe8) r3 = syz_open_dev$media(&(0x7f0000000280)='/dev/media#\x00', 0x20, 0x20000) ioctl$VT_WAITACTIVE(r3, 0x5607) lstat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000000)='./file0\x00', r2, r4) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="b94ee14c78aaa60594b5c18d2800000000000000ca8e7e8d2ad2965135bc2560907145ec5a93994b3c036601426f67a8a2", @ANYRES16=r1, @ANYBLOB="010200000000000000000a00000004000300"], 0x245}}, 0x0) fadvise64(r3, 0x0, 0x2, 0x7) fgetxattr(r0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500004800000033d5a58250565300"], &(0x7f00000003c0)=""/222, 0xde) r5 = getpid() setsockopt$inet_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f0000000540)='tls\x00', 0x4) fcntl$setownex(r3, 0xf, &(0x7f0000000380)={0x0, r5}) 03:36:54 executing program 5: r0 = creat(&(0x7f0000000080)='./file1\x00', 0x0) fallocate(r0, 0x20, 0x3, 0x1) fallocate(r0, 0x0, 0x0, 0x3fffffe) pwritev(r0, &(0x7f0000003440)=[{&(0x7f0000000440)='I', 0x1}], 0x1, 0x40000) fallocate(r0, 0x8, 0x2000, 0x8000) 03:36:54 executing program 1: r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/dlm-control\x00', 0x482a00, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000001300)={0x0, {{0xa, 0x4e20, 0x5, @empty, 0x8}}}, 0x88) socket$inet6(0xa, 0x7, 0x4) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x80, 0x0) setsockopt$inet_mreqsrc(r1, 0x10d, 0x6, &(0x7f0000013ff4)={@multicast1, @dev}, 0xffffffffffffff53) r2 = socket$inet6(0xa, 0x0, 0x6) sendmsg$nfc_llcp(r1, &(0x7f0000001280)={&(0x7f0000000040)={0x27, 0x0, 0x1, 0x3, 0x6, 0x1000, "9e449a52bef3ec8f343e45ea3bf1adf4469b51e33086557ef91a072782d56214542c7fc616a851f0c2c1089d1f8cff8c36c70f72b0bd54386d24f212468057"}, 0x60, &(0x7f0000001180)=[{&(0x7f00000000c0)="8da89885d4e8482843dc8b39c5eb856c090739337052210e97d19d", 0x1b}, {&(0x7f0000000100)="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", 0x1000}, {&(0x7f0000001100)="054ef5e0e756f462e140d96d171b47337a32f16e9ad5a44dc85bf296375668f8df3384240dbb2ce731ecb7650a6b3b5a8a8a9651946b6e56c28885a31593eb6352ad4562f05bbc", 0x47}], 0x3, &(0x7f00000011c0)={0xb0, 0x6, 0x800, "b8fb855ac526acdc2ef224de93d1c67cb9b2f8bfd77e0f57825df6a5eb589819236226058c6b50319277adcaa4afc528bf67cccb031b679dcf7149ca5061fff25837b909fb3df3be39c85e060b18087f0eff3e74a1c8e86a4ab31ba2e55b1e6249db646b3323357b02d58a59c188a211098f0375d72461574ea9c3d35c9be93e1706370f6a2e3c84c1771352fb0953738065625ecb0749b7555133b7"}, 0xb0, 0x4}, 0x40000) dup3(0xffffffffffffffff, r2, 0x0) [ 479.297897][T20828] ? ext4_journal_check_start+0x188/0x230 [ 479.297915][T20828] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 479.297937][T20828] ? __ext4_journal_start_sb+0x12d/0x4a0 [ 479.307324][T20830] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 479.312710][T20828] ext4_truncate+0x100e/0x1440 [ 479.312734][T20828] ? ext4_punch_hole+0x10f0/0x10f0 [ 479.312752][T20828] ? unmap_mapping_range+0x48/0x60 [ 479.312775][T20828] ext4_setattr+0x1b00/0x2450 [ 479.312794][T20828] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 03:36:54 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 479.312817][T20828] ? ext4_journalled_write_end+0x11b0/0x11b0 [ 479.312834][T20828] notify_change+0xad9/0xfb0 [ 479.312857][T20828] do_truncate+0x158/0x220 [ 479.312890][T20828] ? file_open_root+0x3c0/0x3c0 [ 479.318936][T20830] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 479.323524][T20828] ? common_perm+0x730/0x730 [ 479.323552][T20828] ? apparmor_path_truncate+0x22/0x30 [ 479.323567][T20828] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 479.323586][T20828] vfs_truncate+0x531/0x710 [ 479.323605][T20828] ? do_truncate+0x220/0x220 [ 479.323629][T20828] do_sys_truncate.part.0+0x130/0x150 [ 479.323645][T20828] ? vfs_truncate+0x710/0x710 [ 479.323670][T20828] __x64_sys_truncate+0x6e/0xa0 [ 479.323688][T20828] do_syscall_64+0x103/0x610 [ 479.323712][T20828] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 479.339170][T20830] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.343156][T20828] RIP: 0033:0x457e29 03:36:55 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r0, 0x8991, &(0x7f0000000140)={'bond0\x00@@\xea\xff\xff\x80\x00\x00\x02\x00', @ifru_names='bond_slave_1\x00'}) ioctl$PPPIOCGCHAN(0xffffffffffffffff, 0x80047437, &(0x7f00000000c0)) r1 = openat$sequencer2(0xffffffffffffff9c, 0x0, 0x400000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000001500)) setsockopt$inet6_dccp_int(r1, 0x21, 0x16, &(0x7f0000000000)=0x5, 0x4) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) stat(&(0x7f0000001800)='./file0\x00', 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000000040), &(0x7f0000000080)=0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ASHMEM_GET_SIZE(r1, 0x7704, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) [ 479.343173][T20828] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 479.343182][T20828] RSP: 002b:00007f077347ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 479.343197][T20828] RAX: ffffffffffffffda RBX: 00007f077347ac90 RCX: 0000000000457e29 [ 479.343207][T20828] RDX: 0000000000000000 RSI: 0000000000400002 RDI: 0000000020000340 [ 479.343216][T20828] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 479.343226][T20828] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f077347b6d4 [ 479.343235][T20828] R13: 00000000004be691 R14: 00000000004dc380 R15: 0000000000000005 [ 479.439832][T20830] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.607150][T20830] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.648432][T20850] bond0: Releasing backup interface bond_slave_1 [ 479.658457][T20830] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.669246][T20830] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.745108][T20830] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.770355][T20830] GDTR: limit=0x00000000, base=0x0000000000000000 [ 479.793732][T20830] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.808950][T20830] IDTR: limit=0x00000000, base=0x0000000000000000 [ 479.817810][T20830] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 479.830997][T20830] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 479.838281][T20830] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 479.846941][T20830] Interruptibility = 00000000 ActivityState = 00000000 [ 479.854285][T20830] *** Host State *** [ 479.858347][T20830] RIP = 0xffffffff811b3240 RSP = 0xffff88804da0f8e0 [ 479.865461][T20830] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 479.873938][T20830] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 479.882888][T20830] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 479.889649][T20830] CR0=0000000080050033 CR3=000000002d6c6000 CR4=00000000001426e0 [ 479.897783][T20830] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 479.905709][T20830] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 479.912881][T20830] *** Control State *** [ 479.917199][T20830] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 479.924998][T20830] EntryControls=0000d1ff ExitControls=002fefff [ 479.931682][T20830] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 479.939484][T20830] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 479.947354][T20830] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 479.957274][T20830] reason=80000021 qualification=0000000000000000 [ 479.966178][T20830] IDTVectoring: info=00000000 errcode=00000000 [ 479.974530][T20830] TSC Offset = 0xfffffefcf8a4fcfd [ 479.979631][T20830] TPR Threshold = 0x00 [ 479.993740][T20830] EPT pointer = 0x0000000089d4801e 03:36:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:55 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:55 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0xc100) sendmsg(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000140)="b10b938636ea69df7b5a9984bb1bc72ef58d96e56e11df900a707f4946b1637e2096c584b9a1b4e017163fbdb35160a56c11dfbe74df97d36d19ad6a91c6fb4ad19581b8cf707131830f7a22b1b263c9da0e443c5e969ed6a0d3bc508bf75c3147447379f585759ceba0de5cda46291dc1b8f106a83e1cde43a862d95413ce2616b261ed9f79913ae781b3b843ea1b4429a750b8ccb1952a7b863d0bada9f61df6609fe368eaf47c0ce9e46a22b0d75b063deeaa94285d0c43353046e0a308296a76b0b014", 0xc5}], 0x1}, 0x8000) setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000000)=0x398, 0x4) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x200000, 0x0) recvmsg(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r1, 0xc0045540, &(0x7f0000000240)=0x9) sendmsg(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="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", 0x2d5}], 0x1}, 0x0) 03:36:55 executing program 0 (fault-call:6 fault-nth:5): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:55 executing program 1: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() ptrace$getenv(0x4201, r1, 0xff, &(0x7f0000000140)) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x7, 0x25}}, &(0x7f0000000000)='PL \x00L\xf7\xd1*\xf1\x1c\xe9%7\xb5\xe3\x19\x1ef\xde]N\xc1\x8eL-\xf0\x14\x84\xa8mw\x84/bIF\xea\xe3\x10yL\x8c\x96\xff\x14f#.%\x95\x119\xbd\xa5\xd2\x99\x0eR?\x8e\xc3\b\x0f\xfc\x12$\xd8\xdcL\x84\xa9\xc8\xe8\xab1Wh\x06qU#\xfat\x9e\x86\x15\xc6\x10I\xb8\xb1\xbej\xa7t\a\x02\xccZ\xdd', 0x5, 0x252, &(0x7f000000cf3d)=""/195}, 0x48) write$binfmt_misc(r0, &(0x7f0000000200)={'syz0', "56cd2cbd207884f857be2548107ea58e5e195cf87526b3c4c5dbb07696f23e155f97ca37a16b98827f9e0695161e2806553312a61d96f411cb56b27993d95bd1d57a925d60750e14e0172c6e7a23288477b03a4f69f11aa9c61e17efc678dbd621854ead"}, 0x68) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000100)=ANY=[@ANYBLOB="a501000000000000c60181f4"]) 03:36:55 executing program 4: socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000000)=0x200, 0x4) mknodat(0xffffffffffffffff, 0x0, 0x0, 0x2bb) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='lp\x00', 0x3) bind$inet(r0, &(0x7f00000003c0)={0x2, 0x200000000004e23}, 0x10) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendto$inet(r0, 0x0, 0xb3, 0x200007fd, &(0x7f00000000c0)={0x2, 0x4e23, @rand_addr=0x2}, 0xffffffffffffff0e) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)=""/20, 0x14}, 0x100) socket$inet_udplite(0x2, 0x2, 0x88) getpid() prlimit64(0x0, 0x0, 0x0, 0x0) syz_open_procfs(0x0, 0x0) ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) setxattr$security_smack_entry(0x0, 0x0, 0x0, 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) flock(0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_RM_CTX(0xffffffffffffffff, 0xc0086421, 0x0) ioctl$DRM_IOCTL_GET_SAREA_CTX(0xffffffffffffffff, 0xc010641d, 0x0) ioctl$DRM_IOCTL_GET_MAP(0xffffffffffffffff, 0xc0286404, 0x0) ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000100)={'veth0_to_bridge\x00', {0x2, 0x4e20, @multicast1}}) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000180)='NET_DM\x00') sendmsg$NET_DM_CMD_START(r2, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x14, r3, 0x200, 0x70bd27, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20004010}, 0x4000) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r1, 0x402c5342, &(0x7f0000000340)={0x1, 0x22ff, 0x9, {r4, r5+10000000}, 0xfffffffffffffe00, 0x3}) [ 480.154671][T20867] FAULT_INJECTION: forcing a failure. [ 480.154671][T20867] name failslab, interval 1, probability 0, space 0, times 0 [ 480.167290][T20867] CPU: 0 PID: 20867 Comm: syz-executor.0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 480.176400][T20867] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 480.186461][T20867] Call Trace: [ 480.189767][T20867] dump_stack+0x172/0x1f0 [ 480.194113][T20867] should_fail.cold+0xa/0x15 [ 480.198717][T20867] ? fault_create_debugfs_attr+0x1e0/0x1e0 [ 480.204549][T20867] __should_failslab+0x121/0x190 [ 480.209505][T20867] should_failslab+0x9/0x14 [ 480.214025][T20867] kmem_cache_alloc+0x47/0x6f0 [ 480.218806][T20867] xas_alloc+0x2df/0x3d0 [ 480.223073][T20867] xas_create+0x2cd/0xff0 [ 480.227409][T20867] xas_store+0x9a/0x19b0 [ 480.231663][T20867] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 480.237916][T20867] ? xas_start+0x166/0x560 [ 480.242343][T20867] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 480.248590][T20867] ? xas_load+0x67/0x150 [ 480.252842][T20867] __add_to_page_cache_locked+0x5b7/0xe70 [ 480.258591][T20867] ? file_check_and_advance_wb_err+0x3a0/0x3a0 [ 480.264747][T20867] ? rcu_read_lock_sched_held+0x110/0x130 [ 480.270467][T20867] ? count_shadow_nodes+0x500/0x500 [ 480.275663][T20867] ? __alloc_pages_slowpath+0x2900/0x2900 [ 480.281390][T20867] add_to_page_cache_lru+0x1f1/0x780 [ 480.286679][T20867] ? add_to_page_cache_locked+0x40/0x40 [ 480.292224][T20867] ? __page_cache_alloc+0x131/0x460 [ 480.297428][T20867] pagecache_get_page+0x36f/0x770 [ 480.302456][T20867] ext4_block_zero_page_range+0x1c6/0x15c0 [ 480.308266][T20867] ? ext4_get_block+0x50/0x50 [ 480.312940][T20867] ? ext4_journal_check_start+0x188/0x230 [ 480.318657][T20867] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 480.324908][T20867] ? __ext4_journal_start_sb+0x12d/0x4a0 [ 480.330545][T20867] ext4_truncate+0x100e/0x1440 [ 480.335311][T20867] ? ext4_punch_hole+0x10f0/0x10f0 [ 480.340421][T20867] ? unmap_mapping_range+0x48/0x60 [ 480.345535][T20867] ext4_setattr+0x1b00/0x2450 [ 480.350210][T20867] ? current_time+0xd8/0x140 [ 480.354816][T20867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 480.361062][T20867] ? ext4_journalled_write_end+0x11b0/0x11b0 [ 480.367041][T20867] notify_change+0xad9/0xfb0 [ 480.371632][T20867] do_truncate+0x158/0x220 [ 480.376049][T20867] ? file_open_root+0x3c0/0x3c0 [ 480.380903][T20867] ? common_perm+0x730/0x730 [ 480.385500][T20867] ? apparmor_path_truncate+0x22/0x30 [ 480.390883][T20867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 480.397131][T20867] vfs_truncate+0x531/0x710 [ 480.401633][T20867] ? do_truncate+0x220/0x220 [ 480.406227][T20867] do_sys_truncate.part.0+0x130/0x150 [ 480.411593][T20867] ? vfs_truncate+0x710/0x710 [ 480.416277][T20867] __x64_sys_truncate+0x6e/0xa0 [ 480.421127][T20867] do_syscall_64+0x103/0x610 [ 480.425722][T20867] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 480.431607][T20867] RIP: 0033:0x457e29 [ 480.435504][T20867] Code: ad b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b8 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 480.455101][T20867] RSP: 002b:00007f077347ac78 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 480.463506][T20867] RAX: ffffffffffffffda RBX: 00007f077347ac90 RCX: 0000000000457e29 [ 480.471473][T20867] RDX: 0000000000000000 RSI: 0000000000400002 RDI: 0000000020000340 [ 480.479437][T20867] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 480.487423][T20867] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f077347b6d4 [ 480.492345][ C1] net_ratelimit: 20 callbacks suppressed 03:36:55 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 480.492354][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 480.495388][T20867] R13: 00000000004be691 R14: 00000000004dc380 R15: 0000000000000005 [ 480.514806][ C1] protocol 88fb is buggy, dev hsr_slave_1 03:36:56 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x100001013) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') socket$xdp(0x2c, 0x3, 0x0) rt_sigaction(0xe, &(0x7f0000000100)={&(0x7f0000000040)="c4a2fd345915f0fe8900000000c481a1755f06410f1c801d744793c423297cd0fec44118565557c48208f31c07c462f92309c4a151df661c6540d9f5", {0x7}, 0xc0000006, &(0x7f0000000080)="d8d366470f1ac9640f348fa918989468077ae674c4a1716d3ac463fd7d073ec4c1fd50f6c421ad57641000f240e11dc4617d5ad9"}, &(0x7f00000001c0)={&(0x7f0000000140)="c4615d7cf9c4e2e9a880000000000f4744f203c4c17c29d2c482f921b104000000c482f9416435ffc4a10d71d472c421f92836660f38f6c4c40379df5a0000", {}, 0x0, &(0x7f0000000180)="c4c2f9246c4300f30f2a5dd4c402f9419d0e000000c4c17d5a82c50000000fcc67f3e058f3430faed8670f2baa00a00000f2450f01c2d8f4"}, 0x8, &(0x7f0000000280)) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="63d58ac2584125aa3392b164a6104beb49a7c46e647b2f78df9c522bc0f23969b64350c13554edd14160d403449d2be77d8aa14019348912b10daf1e4d5182fd462331684910905f113903d8ab0da8", @ANYRES16=r1, @ANYBLOB="01000000000000000000030000005800050008000100657468000c00020008000200010000002c000200080001000c00000008000200ff010000080001001600000008000300c20f000008000100000000001400020008000300020000000800040007000000"], 0x6c}}, 0x40000) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000540)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x48020000}, 0xc, &(0x7f0000000500)={&(0x7f0000000340)={0x1a0, r1, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x34, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10000}]}, @TIPC_NLA_NODE={0xc, 0x6, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x400}]}, @TIPC_NLA_BEARER={0x54, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'bridge0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x9}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'ip_vti0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfffffffffffffffb}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz1\x00'}]}, @TIPC_NLA_MEDIA={0xa4, 0x5, [@TIPC_NLA_MEDIA_PROP={0x34, 0x2, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffd}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbbe6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffffffffffe1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}]}, @TIPC_NLA_LINK={0x54, 0x4, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4b2fcc6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}]}]}]}, 0x1a0}, 0x1, 0x0, 0x0, 0x20000001}, 0x20040044) socket$can_bcm(0x1d, 0x2, 0x2) 03:36:56 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r0, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 480.580847][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 480.587119][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:36:56 executing program 5: mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x0, 0x6031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) clone(0x3, 0x0, 0x0, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$SIOCAX25OPTRT(r0, 0x89e7, &(0x7f0000000040)={@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x2, 0x44}) 03:36:56 executing program 4: r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$F_SET_FILE_RW_HINT(r1, 0x40e, &(0x7f0000000000)=0x2) openat$apparmor_task_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/current\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000080)=0x1) 03:36:56 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r0, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 480.743217][T20884] *** Guest State *** [ 480.748966][T20884] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 480.777668][T20884] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 480.792023][T20884] CR3 = 0x0000000000000000 [ 480.796454][T20884] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 480.796468][T20884] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 480.796485][T20884] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 480.796507][T20884] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.826043][T20884] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.835006][T20884] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.844213][T20884] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.853114][T20884] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.862174][T20884] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.872116][T20884] GDTR: limit=0x00000000, base=0x0000000000000000 [ 480.881179][T20884] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.889867][T20884] IDTR: limit=0x00000000, base=0x0000000000000000 [ 480.889890][T20884] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 480.889902][T20884] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 480.889918][T20884] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 480.898725][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 480.898793][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 480.934574][T20884] Interruptibility = 00000000 ActivityState = 00000000 [ 480.941928][T20884] *** Host State *** [ 480.945835][T20884] RIP = 0xffffffff811b3240 RSP = 0xffff888050ae78e0 [ 480.953102][T20884] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 480.960226][T20884] FSBase=00007effb5ee4700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 480.969161][T20884] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 480.976114][T20884] CR0=0000000080050033 CR3=00000000a9bb3000 CR4=00000000001426e0 [ 480.983932][T20884] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 480.991384][T20884] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 480.998140][T20884] *** Control State *** [ 481.002345][T20884] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 481.002354][T20884] EntryControls=0000d1ff ExitControls=002fefff [ 481.002370][T20884] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 481.002386][T20884] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 481.002395][T20884] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 481.002403][T20884] reason=80000021 qualification=0000000000000000 03:36:56 executing program 0 (fault-call:6 fault-nth:6): r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:56 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f61fe4)={0xa, 0x4e20, 0x0, @ipv4={[], [], @broadcast}}, 0x1c) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000f59ffc)=0x5, 0x4) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000d1c000)=0x102f, 0x4) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @ipv4}, 0x1c) 03:36:56 executing program 5: r0 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1, 0x200000) accept$unix(r0, &(0x7f0000000040)=@abs, &(0x7f00000000c0)=0x6e) ioctl$LOOP_SET_FD(r0, 0x4c00, r0) ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000100)={0x0, {0x3c, 0x10000, 0x9, 0x5}, {0x8, 0x1000, 0x8, 0x7f}, {0x4, 0x6}}) syz_mount_image$iso9660(&(0x7f00000003c0)='iso9660\x00', &(0x7f0000000400)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB='check=relaxed,uid=', @ANYRESHEX]) 03:36:56 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r0 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r0, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 481.002411][T20884] IDTVectoring: info=00000000 errcode=00000000 [ 481.002425][T20884] TSC Offset = 0xfffffefc760d278f [ 481.015991][T20884] TPR Threshold = 0x00 [ 481.060819][T20884] EPT pointer = 0x000000005019e01e 03:36:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000080)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)={{}, {0x0, 0x0, 0xf}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x100}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000}, {0x0, 0xf000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, {}, {0x4}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:56 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x0) r2 = getpid() ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x5) sched_setaffinity(r2, 0x8, &(0x7f0000000000)=0x9033) socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$tipc(0x1e, 0x7, 0x0, &(0x7f00000000c0)) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCMBIC(0xffffffffffffffff, 0x5417, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) 03:36:56 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 481.210263][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 481.216117][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 481.221976][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 481.227760][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:36:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:56 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000000)={0x1000000, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) r2 = syz_open_dev$vcsa(&(0x7f0000000300)='/dev/vcsa#\x00', 0x80, 0x4000) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000340)={0x0, @in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x9, 0xffffffff00000001, 0xff1, 0x4, 0x20}, &(0x7f0000000400)=0x98) setsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000440)={r3, 0x2}, 0x8) connect$inet6(r1, &(0x7f0000000280), 0x1c) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000180)=ANY=[@ANYBLOB="b8000000190001000000648b9d9b0e9dfe6e1e34c748aac8f7f6000000000000ff010000000000000000000000000001e000000100000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x4}}, 0x0) getsockopt$inet6_buf(r1, 0x29, 0x30, &(0x7f0000000000)=""/40, &(0x7f0000001000)=0xfffffffffffffff9) 03:36:56 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:36:56 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:56 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000200)="0af51f023c123f3188a070") r1 = socket$inet(0x2, 0x2000000080002, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x2, 0x1d8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200005c0], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]}, 0x250) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000100)=@broute={'broute\x00', 0x20, 0x1, 0x1c0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000180], 0x2, 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff01000000110000000000000000006263000000000000000000000000000073010030000002000000ffff000000007663616e300000000000000000000000766c616e300000000000000000000000ffffffffffff0000000000000000000000000000000000000000b8000000b8000000300100006c696d69740000000000000000000000000000000000000000000000000000002000000000000000faffffff090000000000000000000000000000000000000000000000000000006e666c6f6700000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000002ce719c99cffcbf4d7e80e410bb5007c698d3df1be240a429464133581466b6431c7e6b129fcead3f149b589996102627779dc3b23bf8250fc3acd9e8be08a4bbab9be219f504cae3a7e4d0000000000000000000000000000000000000000000000000000000000000000000000000000000001000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000001dca8f3aa35f2c7279dc901fc906a702e80fa461542eb6d903f94eb9f5e10f381026f368a52c824eb8145be986fb0854438e132319076150776cea8269d86a02aee33c8281d3bb49279f079e3be9c9c4d9dd9d07e7e5dc76b1e100f50e9cb2801a828039059e4b95922b2e6218238ccc532236cdd65a571db80b16f4a7c43b2689201c54b2ea64800f912fc045fe4ae541e77a8ffabc220fa7c43bf9bac60b441a80c706df061b77868a53ab70438"]}, 0x2e6) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_sys\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_SET_NODE_ADDR(r2, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x82800201}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x24, r3, 0x4, 0x70bd2c, 0x25dfdbfe, {{}, 0x0, 0x8001, 0x0, {0x8, 0x11, 0xb7f}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x800) syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') 03:36:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:57 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 481.517060][T20949] kernel msg: ebtables bug: please report to author: Wrong len argument [ 481.531771][T20943] *** Guest State *** [ 481.535770][T20943] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:36:57 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/loop-control\x00', 0x0, 0x0) ioctl$TCSBRK(0xffffffffffffffff, 0x5409, 0x0) r2 = getpid() ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x5) sched_setaffinity(r2, 0x8, &(0x7f0000000000)=0x9033) socket$inet6_tcp(0xa, 0x1, 0x0) socketpair$tipc(0x1e, 0x7, 0x0, &(0x7f00000000c0)) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, 0x0) sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCMBIC(0xffffffffffffffff, 0x5417, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r3) [ 481.565497][T20943] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:36:57 executing program 1: openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x2, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x42400, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000180)={0xffffffffffffffc1, {{0xa, 0x4e22, 0x5c98fd2e, @remote, 0x7ff}}}, 0x88) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x0, 0x100000001, 0x10000, 0x1}, 0x1c) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6(0xa, 0x3, 0x84) connect$inet6(r2, &(0x7f0000000080), 0x1c) sendmmsg(r2, &(0x7f00000092c0), 0x3fffffffffffe9f, 0x0) syz_genetlink_get_family_id$team(0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) [ 481.622340][T20956] kernel msg: ebtables bug: please report to author: Wrong len argument 03:36:57 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:57 executing program 5: r0 = socket$inet(0x10, 0x3, 0x4000000000000e) sendmsg(r0, &(0x7f000001d000)={0x0, 0x0, &(0x7f0000024000)=[{&(0x7f0000000100)="24000000100007031dff22946fa2830020200a0009000300004085687f0000000400ff7e28000000120a43ba5d806055b6fdd80b40000000090003000029ec2400020cd37e99d69cda45a95e", 0x4c}], 0x1}, 0x0) getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1, @empty}, &(0x7f0000000040)=0xc) [ 481.670355][T20943] CR3 = 0x0000000000000000 [ 481.674876][T20943] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 481.690847][T20943] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 481.698929][T20943] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 481.710574][T20943] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.770404][T20943] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.779142][T20943] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.779162][T20943] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.779182][T20943] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.779201][T20943] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:57 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400003) [ 481.779218][T20943] GDTR: limit=0x00000000, base=0x0000000000000000 03:36:57 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0) r2 = creat(&(0x7f00000000c0)='./bus\x00', 0x0) ftruncate(r2, 0x208200) ioctl$TCGETS(0xffffffffffffffff, 0x5401, 0x0) r3 = semget(0x2, 0x0, 0x50) semctl$GETALL(r3, 0x0, 0xd, &(0x7f0000000040)=""/47) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_GET_LINKS(r2, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r4, 0x0, 0x70bd27, 0x25dfdbfe, {{}, 0x0, 0x4, 0x0, {0x8, 0x11, 0xa0b}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x44014) ioctl$VHOST_GET_VRING_ENDIAN(r1, 0x4008af14, &(0x7f00000002c0)={0x1, 0x332}) r5 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x10, r5, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000300), &(0x7f0000000340)=0x4) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r5, 0x6609) [ 481.847035][T20943] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.865618][T20943] IDTR: limit=0x00000000, base=0x0000000000000000 [ 481.877647][T20943] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 481.910100][T20943] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 481.917278][T20943] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 481.934309][T20943] Interruptibility = 00000000 ActivityState = 00000000 [ 481.951059][T20943] *** Host State *** 03:36:57 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:57 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0xfffffffffffffffd, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000040)={0x0, 0x2000000, 0x0, 0x10, 0x0, 0xa9}) tee(r0, r0, 0x0, 0x9) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f00000000c0)={0x2, &(0x7f0000000080)=[{0x1, 0x9}, {0x3, 0xef1a}]}) setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000180), 0x4) prctl$PR_SET_DUMPABLE(0x4, 0x1) ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f0000000100)={0x3, 0x4, 0x2}) accept4$vsock_stream(r0, &(0x7f0000000140)={0x28, 0x0, 0x0, @host}, 0x10, 0x80800) [ 481.955981][T20943] RIP = 0xffffffff811b3240 RSP = 0xffff888050ae78e0 [ 481.962942][T20943] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 481.970613][T20943] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 481.979272][T20943] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 481.999975][T20943] CR0=0000000080050033 CR3=0000000095b77000 CR4=00000000001426e0 [ 482.017929][T20943] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 482.040208][T20943] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 482.047140][T20943] *** Control State *** [ 482.055069][T20943] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 482.069293][T20943] EntryControls=0000d1ff ExitControls=002fefff [ 482.111151][T20943] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 482.130646][T20943] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 482.147966][T20943] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 482.155499][T20943] reason=80000021 qualification=0000000000000000 [ 482.168168][T20943] IDTVectoring: info=00000000 errcode=00000000 [ 482.174609][T20943] TSC Offset = 0xfffffefbb9fe26ea [ 482.194759][T20943] TPR Threshold = 0x00 [ 482.198915][T20943] EPT pointer = 0x000000004fb3e01e 03:36:57 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000900)=@newlink={0x38, 0x10, 0x501, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, @sit={{0x8, 0x1, 'sit\x00'}, {0xc, 0x2, [@tunl_policy=[@IFLA_IPTUN_ENCAP_FLAGS={0x8, 0x4, 0x3}]]}}}]}, 0x38}}, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm-control\x00', 0x101000, 0x0) accept$packet(0xffffffffffffffff, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000440)=0x14) setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000480)={@dev={0xac, 0x14, 0x14, 0xa}, @loopback, r2}, 0xc) r3 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0xffffffff, 0x1) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffff9c, 0x84, 0x75, &(0x7f0000000040)={0x0, 0x5}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000140)={r4, 0xb1c1, 0x5, [0x7, 0x62, 0x4, 0x7, 0x81]}, &(0x7f0000000180)=0x12) 03:36:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x4800, 0x0) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0106426, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{}, {0x0}, {}]}) ioctl$DRM_IOCTL_NEW_CTX(r2, 0x40086425, &(0x7f0000000140)={r3, 0x3}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 03:36:57 executing program 4: mount(&(0x7f0000000000)=@sg0='ubi7/dg0\x00', &(0x7f0000000380)='.', &(0x7f0000fdb000)='ubifs\x00', 0x0, 0x0) prctl$PR_GET_TIMERSLACK(0x1e) 03:36:57 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400004) 03:36:57 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x10001, 0x4000) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000080)={r3, 0x0, 0x6, 0x7, 0x1ff}) openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.events\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f00000000c0)={0x3, 0x600000000000000, [0x1b, 0x0, 0x1b, 0x4800], [0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000]}) ioctl$sock_inet_tcp_SIOCOUTQNSD(r3, 0x894b, &(0x7f0000000140)) 03:36:57 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400003) 03:36:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 482.348723][T20999] UBIFS error (pid: 20999): cannot open "ubi7/dg0", error -22 [ 482.349468][T20999] UBIFS error (pid: 20999): cannot open "ubi7/dg0", error -22 [ 482.361061][T20996] netlink: 'syz-executor.5': attribute type 4 has an invalid length. 03:36:57 executing program 4: r0 = inotify_init() r1 = open(&(0x7f0000000040)='./file0\x00', 0x200c2, 0x0) inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x4000082) write$binfmt_elf64(r1, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r1, 0x0, 0x60, &(0x7f0000000840)={'filter\x00', 0x7, 0x4, 0x488, 0x140, 0x140, 0x140, 0x3a0, 0x3a0, 0x3a0, 0x4, 0x0, {[{{@arp={@remote, @dev={0xac, 0x14, 0x14, 0x18}, 0xffffff00, 0x0, @mac=@remote, {[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, @mac, {[0x0, 0x0, 0xff, 0x0, 0xff]}, 0x7, 0x9, 0x0, 0xffff, 0x7f, 0x20, 'team_slave_1\x00', 'vcan0\x00', {0xff}, {0xff}, 0x0, 0x42}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@dev={[], 0xa}, @empty, @initdev={0xac, 0x1e, 0x1}, @empty, 0x4, 0x1}}}, {{@arp={@local, @loopback, 0xffffffff, 0x0, @mac=@dev={[], 0x20}, {[0xff]}, @empty, {[0xff, 0xff, 0x0, 0xff, 0xff]}, 0x8, 0x0, 0x100000001, 0x0, 0x0, 0x100, 'syzkaller1\x00', 'irlan0\x00', {0xff}, {0xff}, 0x0, 0x81}, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@dev={[], 0x27}, @empty, @rand_addr=0x8, @broadcast, 0x4, 0xcd5132eb3056ed19}}}, {{@uncond, 0xf0, 0x120}, @unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x1f, 0x5, 0x2}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0xfffffffffffffde2) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f00000007c0)=""/96) write$FUSE_DIRENT(r1, &(0x7f0000000200)={0x98, 0xfffffffffffffff5, 0x3, [{0x5, 0x2, 0x6, 0x0, 'wlan0,'}, {0x5, 0x0, 0x7, 0x1ffe00000, 'keyring'}, {0x6, 0x8, 0x9, 0x10000, 'wlan1+,\xad('}, {0x4, 0x10001, 0x4, 0xd272, 'eth1'}]}, 0x98) openat$capi20(0xffffffffffffff9c, &(0x7f0000000080)='/dev/capi20\x00', 0x8000, 0x0) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendfile(r1, r1, &(0x7f00000001c0), 0xa198) [ 482.421694][T20996] netlink: 'syz-executor.5': attribute type 4 has an invalid length. 03:36:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:58 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x1, 0x80) write$cgroup_int(r1, &(0x7f00000000c0)=0x7, 0x12) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f3188b070") r2 = socket$kcm(0xa, 0x3, 0x73) sendmsg$kcm(r2, &(0x7f00000014c0)={&(0x7f0000000040)=@in6={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x80, 0x0}, 0x0) splice(r2, &(0x7f0000000140), r2, &(0x7f0000000180), 0x401, 0x1) [ 482.531185][T21011] *** Guest State *** [ 482.535663][T21011] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 482.546810][T21011] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 482.566733][T21011] CR3 = 0x0000000000000000 [ 482.573698][T21011] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 482.587601][T21011] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 482.601986][T21011] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 482.625018][T21011] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.656469][T21011] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.678155][T21011] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:58 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:58 executing program 1: r0 = socket$inet6(0xa, 0x400000000001, 0x0) close(r0) r1 = syz_open_dev$amidi(&(0x7f0000000380)='/dev/amidi#\x00', 0x0, 0x2001) r2 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$rtc(&(0x7f00000001c0)='/dev/rtc#\x00', 0x3, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cast5)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000080)="ab3d3f4d94", 0x5) recvfrom(r4, &(0x7f00000000c0)=""/233, 0xe9, 0x40000040, &(0x7f0000000000)=@l2={0x1f, 0x81, {0xffffffff, 0xe649, 0x2, 0xffff, 0x5, 0x5}, 0x6, 0x10000}, 0x80) r5 = accept$alg(r4, 0x0, 0x0) write$binfmt_script(r5, &(0x7f0000000300)=ANY=[], 0xffffffaa) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001380)) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x101) recvmmsg(r5, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000200)=""/98, 0x34000}], 0x1}}], 0x1, 0x0, 0x0) ftruncate(r2, 0x200a000) ioctl$KVM_X86_GET_MCE_CAP_SUPPORTED(r1, 0x8008ae9d, &(0x7f0000000280)=""/197) sendfile(r5, r1, 0x0, 0xe5) 03:36:58 executing program 5: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x800, 0x0) ioctl$VIDIOC_ENUM_FREQ_BANDS(r1, 0xc0405665, &(0x7f0000000080)={0x25, 0x0, 0x8000, 0x10, 0x8000000, 0x100000000, 0xc}) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x11, &(0x7f0000013ff4)=@assoc_value, &(0x7f0000002000)=0x8) mmap(&(0x7f0000000000/0x22000)=nil, 0x22000, 0x3, 0x32, 0xffffffffffffffff, 0x0) close(r0) [ 482.705100][T21011] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.716860][T21011] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.740800][T21011] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.781039][T21011] GDTR: limit=0x00000000, base=0x0000000000000000 [ 482.826743][T21011] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.854961][T21011] IDTR: limit=0x00000000, base=0x0000000000000000 [ 482.870466][T21011] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 482.896690][T21011] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 482.916783][T21011] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 482.925923][T21011] Interruptibility = 00000000 ActivityState = 00000000 [ 482.933528][T21011] *** Host State *** [ 482.937486][T21011] RIP = 0xffffffff811b3240 RSP = 0xffff888050ae78e0 [ 482.944561][T21011] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 482.952102][T21011] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 482.961546][T21011] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 482.968199][T21011] CR0=0000000080050033 CR3=0000000086cf8000 CR4=00000000001426f0 [ 482.976349][T21011] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 482.984158][T21011] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 482.992170][T21011] *** Control State *** [ 482.996379][T21011] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 483.004181][T21011] EntryControls=0000d1ff ExitControls=002fefff [ 483.010756][T21011] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 483.018436][T21011] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 483.026202][T21011] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 483.033920][T21011] reason=80000021 qualification=0000000000000000 [ 483.055245][T21011] IDTVectoring: info=00000000 errcode=00000000 [ 483.072297][T21011] TSC Offset = 0xfffffefb30a01aeb [ 483.077331][T21011] TPR Threshold = 0x00 [ 483.084435][T21011] EPT pointer = 0x000000008dd2301e [ 483.130466][T21034] *** Guest State *** [ 483.134469][T21034] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 483.144154][T21034] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 483.154010][T21034] CR3 = 0x0000000000000000 [ 483.158435][T21034] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 483.158448][T21034] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 483.158465][T21034] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 483.158484][T21034] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.189132][T21034] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.198595][T21034] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.207347][T21034] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.216066][T21034] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.224820][T21034] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.233675][T21034] GDTR: limit=0x00000000, base=0x0000000000000000 [ 483.242435][T21034] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.251199][T21034] IDTR: limit=0x00000000, base=0x0000000000000000 [ 483.260792][T21034] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.269548][T21034] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 483.276665][T21034] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 483.284886][T21034] Interruptibility = 00000000 ActivityState = 00000000 [ 483.292270][T21034] *** Host State *** [ 483.296165][T21034] RIP = 0xffffffff811b3240 RSP = 0xffff8880556c78e0 [ 483.302939][T21034] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 483.310102][T21034] FSBase=00007effb5ea2700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 483.318610][T21034] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 483.325247][T21034] CR0=0000000080050033 CR3=0000000086cf8000 CR4=00000000001426f0 [ 483.333002][T21034] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 483.340482][T21034] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 483.347236][T21034] *** Control State *** [ 483.351425][T21034] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 483.358805][T21034] EntryControls=0000d1ff ExitControls=002fefff [ 483.365007][T21034] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 483.374275][T21034] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:36:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x4000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80800, 0x0) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000140)=0x0) ptrace$setopts(0x4200, r3, 0x334, 0x40) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000080)=0x1) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) rt_sigtimedwait(&(0x7f0000007bc0)={0x3d980d8d}, &(0x7f0000007c00), &(0x7f0000007c80)={0x0, 0x989680}, 0x8) syz_open_dev$dspn(&(0x7f0000000200)='/dev/dsp#\x00', 0xd352, 0x10000) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f00000000c0)) ioctl$VHOST_VSOCK_SET_GUEST_CID(r4, 0x4008af60, &(0x7f00000001c0)={@hyper}) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000380)) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000240)) sendmmsg$alg(r2, &(0x7f0000007d80)=[{0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f00000004c0)=[@iv={0xe8, 0x117, 0x2, 0xd0, "736927d27d5cf430989face49fae9d8608e008f72b11f04755f044747a4557a432943773757e5a1c9c52ecead60cf369b28cf75b47ccba069d061d290571307766389ecf5c37713dd052bc4f2b36b374a05ec2db9673128c4fa8432a1a8547ce3fee613f28d6052932b6a32a437b4d54c82221af946b8e449cac963cdf5cdc74c2bde9d7ab45ca00ee15b090fd5b061d1a6313bb72abefa33467a248052d07fb3e18d0dd9cf6a94da65fc709e195a604b22dbf755cf3234822ac973a97dddcdcc84a9390bb5a329723cf7c6b98bbdbb2"}, @iv={0x90, 0x117, 0x2, 0x76, "0b0d845d75cd4d530e889355ceaffc6de704c2dcd33566a76b94b4aac7d33339251643e3226ff11d72e0ce809793a7f3361bb6cf997106f197c82ebe7ab59022d97e9efe4c6748c518d5fb3cb1465f9810acbe5ceb4551cbc9c804307703c40766c0eec3d7f2ea1c1f7c8918071aa7a37ebcb2b3be8b"}, @assoc={0x18, 0x117, 0x4, 0x4}, @iv={0x70, 0x117, 0x2, 0x5a, "6908452b45fe525325e711e0d057b0106d73a9f3d9061bd136edcda301b4dc2516d2d8ad2c61d8d6c74a2d80562ec07c56d810a3633dd6b05f237b54ce1b6df68735f2c09a5455a07892e7603aedad3443af37c8508ebe54d8dd"}, @assoc={0x18, 0x117, 0x4, 0x3}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0xc0, 0x117, 0x2, 0xa7, "26a79303586e369a4aa751c98c8148d87bd2916b7e18dc2d5d243b01fa5d5dff5fb5632cff0e273627c75bf4bf8ad3c827a478c43fe0fe447e1abbea48fe78bf8a52f6c7d07429cf76d20c650b09dc728241c0bf28e85737009d530161a4e2e31380ff37d45225ed8715948952655cb5a68e63b2db627601403807ff8ca7661a4794b17b6c74b796990f341ae2aff42d27a80c6ab525a8c167d55112589daea718191cadc0cd14"}, @assoc={0x18, 0x117, 0x4, 0x80}, @assoc={0x18, 0x117, 0x4, 0x4}, @assoc={0x18}], 0x338, 0xc040}, {0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000280)="6712faa6e7705d8947570749fe2ac3b1203a73c0e14c73b220dc5e69daddcd8829ec854582a69557922931d724a85dc8bd1d14ae8e0bf61e46abdbddde669803f8495d28496488c76b5fc068dadd4bbe47d3bc8a636dc8015ef80f8c752868cd4bdbf450f01b0e13ac3f285eed7466f4295b1545518bda17676b7a77fd8e46c0c96de7f98396eb98873ea8c665ea1900a9651a2d81a39281c2ff2d24942fd9fa5706c533004b31e3bdbc", 0xaa}, {&(0x7f0000000340)="e3fc6ad08f2e", 0x6}], 0x2, &(0x7f0000000840)=[@op={0x18}, @iv={0x98, 0x117, 0x2, 0x83, "f3e1723b6fb844b03ca6ee044f84394fad3c1d0f211e7e69cd485a312592179c18c67f4a84a640540ec9872e0e6d47191f0bb476ee8b8f1d22c25bba24a06ddddeb818df83fd2f9dbe2929115e17cf66add7df736c4372aaac78c449361adf3ce947e32da9527bda89eff26ed2901cf5af024b7fc00abb9febafda82d828832a498f6e"}, @iv={0x90, 0x117, 0x2, 0x75, "c4bffb7fa0121fb1f6ae145365a6fafe3a4d6036607597c0993fa127783e9d027c07b945d9a5c135e63cd44ce32219f66147785000d346937dff66074d556448c27a943a11dfb7fa38cbd66c0ad723775e1f0bda7353c6e6cf6ef8ed726edf0064d4d36d1e030ad7a9f6269a5813333423583b4c2b"}], 0x140, 0x50}, {0x0, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000980)="9e4b2a6a9feb75fbb8215239b3365f6b27eeed7d0e0f8c45750d9138f19551763354630d9815595dd7ef68a2bca6dda8102a2c11f280c71857df069cdc13a5b2ab14c116da46fb4191937a55843d68a5beb5d078785f64182843532b02dc82dec65a733e6342884953fc08d66aba502c9c48901c79a936125dc21993289c5b2027357ba34ebf762a53172f27e4d455d8601f5bf6400d02c3bfbb77a1a0e5ababe97eb87de1bfc4025248b2b15de4c97a6b65b6032b0fc3095d75cfa75e7908dccfe32a041eb7255c2fc46a6912d7ce70b381bdba95d89f64d96554354bc1c2a7d345d2142ec0adb9b735452b6963d19dd4cb1713964cd25ff3", 0xf9}, {&(0x7f0000000a80)="84243e664ff86a", 0x7}, {&(0x7f0000000ac0)="ab955f39578d3d16e07a1005b7a4e19d79bbbc818e3a3237cd4a03ae2d964373f9a6461e72ac667339e3f8f55390322d4432582ff52ed5bcf10f8ccde6048bf864c382276e347479bd305242eb85e75d3addb4cc02329a34790e94c20455b2c70da035386572a96ca9ca38f7800656005a4ec89d81ae16bfc819b4cb57fd6392c941c7d3b1a52346be1e7ce25a1b102c9e2e43339a2c5782937e01727d73c5a6bad9a23328ba144b91", 0xa9}, {&(0x7f0000000b80)="b4d35c1da90be580f1052d386eb96dda38471f20bfc655dc36da62fd65b7b651bb53884901b5cbd852e02ed2d34d10c5a06eb1", 0x33}, {&(0x7f0000000bc0)="c9805f526f9921f80848dd93ae6d61d431f5d248a8711d1776798c4cf9d2211e4215fe2a69cb9c8f67223ffee7780fb3e2b49da050b7ab1b8cf0bdb1ddad73e6c694a405985242a7bd57741365b16ce718b5fd73113b46a602fbff2b3a2953df8b6b6229512ef73d3acee8a13bba6374bffb1f348a14735b7c7cac8b705d59f2fe0705b668f9a0a0fd823f13643e0d82adc7715707fae2dc1f9c05181caf5e323e31403d55f468d944e0dc497e2bab2121cd6f8db8c9f969333df834620c6e2fc2bd891e6abf275134d2eaf5d22abee31df65e2b979629587fe3721815e466fc08ee575cbf7e640a02fdf7b2f056331c896f70", 0xf3}, {&(0x7f0000000cc0)="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", 0x1000}, {&(0x7f0000001cc0)="1daf394a85a3a983bfc089ca893a4e1734995cd6d04bfdfa13954e106bf352efa040405364185df73ee43c6b808ff2170fe7ec77a2420b61f970d5aeca971d1dc2da938520072ac02e558d944f81292dece8f8116742347d1d1e9ea4a563a871a581aea485d649c9983e4cbe44c5c9d965196f9adda4c5a78315dbc798a755d766cd80733eab9d946677de327c2cf9d387b8132d31a4acb1e3808852c449c4da8c40fae48626d52e9deb6347c98899f3265250e038d339dbb9bb16f6bd16f943fc5f6757a32748541c83158675", 0xcd}, {&(0x7f0000001dc0)="66fa83e557e5e7065f1d073bf816d6f42138caa69ad09c5b76dcfac609eb633785dc41c7793c10c6bd1d6c5b", 0x2c}], 0x8, &(0x7f0000001e80)=ANY=[@ANYBLOB="180000000000000017010000020000000000000000000000180000000000000017010000040000000500000000000000600000000000000017010000020000004b000000472c83c5ec3371ab809141c3c2d33088356c7951391b2f8bbf881c1b4c1d4bbb64a94ea69262c568421fb649692c396f6f54544c8bd5b1c74e9266890c928d3aa6e4a8ec303baa39cfb46c00"], 0x90, 0x20000005}, {0x0, 0x0, &(0x7f0000003000)=[{&(0x7f0000001f40)="eac90612880ff31cf2dd6b55e130ce0410e11347c2624bf2e186e45183e522b043809ae75f3b78fb251a8941f31ed8f4e3d162e61b00bbce6eba3c53e71064ffaac875fa8687a8f954afde3f4f383fc621fd796f776a640688679e5c0d09eb58a6f96ae2f19402cf9efe86baa8adaa21c083bc879e24c974c32b273b080711884723f0b2c099a098756cfc014c70795cae0eea8acc330e343c8902f2679eb97a", 0xa0}, {&(0x7f0000002000)="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", 0x1000}], 0x2, &(0x7f0000003040)=[@iv={0x70, 0x117, 0x2, 0x5a, "9d152185d7cabe3fd0b8e8ea1a6ed7abfa44a0b6dd819106f5570ecc842ce1327a9ec337deaabf9433a88e38e271e384c2b455b52d17a7f5b845db987b8c5fdced2da9d3c9fd34768551cc955fb21e312bc7a8550cc37d9324d5"}, @op={0x18, 0x117, 0x3, 0x1}, @assoc={0x18, 0x117, 0x4, 0x40}], 0xa0, 0x4}, {0x0, 0x0, &(0x7f00000031c0)=[{&(0x7f0000003100)="3b752abaa07432e92bfd4ef27b66c7136a1be89ef20684f73fcfcf484ac27b2272a4bb542450c66000aec67ba4ca66ef04c40156a9e99ea3847ad69ef054460485a9dcbc2a6fbc00c6db2d8abb8b3c783e5394ef46a94c58deb30da914fe202d77d1668f36a59da59358531ddc5cd5e266a853ba71b8794b9fd7cfd3971da96cdac5e8a9d933cd6b60a6b73b28e4802b6ac3b4c8c68d30fac39e51354fe2a835ca2854ca57d42a790be79e55378b0e", 0xaf}], 0x1, &(0x7f0000003200)=[@iv={0x1018, 0x117, 0x2, 0x1000, "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"}], 0x1018}, {0x0, 0x0, &(0x7f0000005300)=[{&(0x7f0000004240)="bf8332b0a05390bf57f1fd286fba", 0xe}, {&(0x7f0000004280)="36da2a76c542c21cbfc402efa87930026f4a051ba7a8eeeb6e72ec6415223f5fae0ac012e3955cf5bb910c96f25ca7bb7fd9d108ceb1d2afc25ee94df4c98192c5cbd8cf", 0x44}, {&(0x7f0000004300)="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", 0x1000}], 0x3, &(0x7f0000005340)=[@assoc={0x18, 0x117, 0x4, 0x7fffffff}], 0x18, 0x20000000}, {0x0, 0x0, &(0x7f00000054c0)=[{&(0x7f0000005380)="fa934dba2af329cee15216fa858872f6908287e2ebc1977a3bf5839637c02041cb7adb23028e639cd8a8508aa9b4bd3db042c0016a5202dcc63a1f524cab9b552c8beb71ea922ee367b96c01eaf6c18873b73ae0c26c6d", 0x57}, {&(0x7f0000005400)="15dca1f94c5fd55e3b91748a1e3f789ad2b511", 0x13}, {&(0x7f0000005440)="55c9d5207556a8722a85a8acf135f0c9b4a5aa1419e9299ff5967fba3cadddd800cdcceb605f907ba1ae2649b9b72356cd57feeef013720a06454713ccefc8d268d585bc97e725713c", 0x49}], 0x3, &(0x7f0000005500)=[@assoc={0x18, 0x117, 0x4, 0x4}, @assoc={0x18, 0x117, 0x4, 0xfffffffffffffffb}, @iv={0xe0, 0x117, 0x2, 0xc5, "03234738d15903209e3a8eca5c4324a4289abfbd565d7afead101fed307be5858c3c22087cb6d707c852d0a5be534c0923d1c2a758eb71e0c61ad64108a9da0c11579f2d748c2206cd8a79855669411d97024e08c368870888ceb44329f9d3a71167196ddb2a006a650e40229fe55d3c25f10ff974aada2f3597fa286c6908a06e248780c2d2a612489d2688c6de4ee6d45a169363b262fd4b31b7a9212371848fb5d588b5186e8b75d3b8cd5811b067757266a44e195c75c5348a0f52819b21fc4d32fe09"}], 0x110, 0x4000}, {0x0, 0x0, &(0x7f0000006840)=[{&(0x7f0000005640)="dfdde88aea6ed3db8446153ee91c04109875743dc71871a371e4df568af27afd2363d1d254a69bd6b3651a8dac80d75ad0d1550ff897fc3eec1935545a13a345c1a2495a275e83860fb5880e7ea7d455135f493dd6cfc4802bb2f1b66d80788ec0f56b2fd8ed06839abd53ec5ffedd2e10f452cf7300e4004c2900bf197074f4d4279653fd4b24cf8806769ec98c1f28c5f05cab45298a4530d1cf106682c08aa7d86ec9cfd0a5bd7a4fa0e8bdf8af9e0c52bde31659b33ed0d60f0cf86288593636d674f46a42d8bd66f4cd73915056a73165e15ae38989f434eadf37f34e235d19f51bc776f6c9809249af78611c6a30ba01f11f2724e2fe5c1d7730868dec18bcbb7448f9ce533691ffa3fcc8dcb059994ae975e12f5b4f3b80f501558ae457ab8b50dfc064d079cf2071cb1410b976bd3687e4fb26e52c7c3b3b0203294985557a01012d88c5f291c4496d443d433a58220397d43b5c86dc82746fde374ff7c18693f68ef21b4d83b1e0a781f38294063d7ffcc7b5d8ec6f420f8347234e6b38338590a54aef9051b88ec10c9bab3f992bb99b351c7dd3a9a5b02d93e8634c6918f66a027fe8bf2e7ee03054b33c702d64aaecd84c5b948117f3b962b702eb16768ea6bdb19fb0b19c29e3396b323443472d1422dfcffbc4337e46f9e7b997c5c9672f62a7f110fdbdb8937b1d47f6042a5d34355221caeaf758ef9a0101c86cdff300189bcebd2d92b57259f3f6f5b92ae0fbc9bca1f948da9cca848fbbfe406da4000945e2bd4c87b2adaa77ae55dc3b412667757c3e0445f329996c226add32a9ee88494042a2416fc61255abe5a751c834ff378ed925a3fbf839361d2023e20c726ab0c0a29c1b6b9174eed0c46bff4dab673164002dda3bd2217e16e666d99125979e683e07fdef8f5ba2f320c0482c1c8de33609c5a513a265525d4e88f452171fbc2c325bb7235801e9fcc396a6eec62f82ab9ab1e5eb61a8e27432db5c3d97f25ce719e86d77f19690c7f73de6e98e8abdfec8b070b69a582e3f5aca96457938f168d67162fc0b6621aca9f4700e90baa7d7c2e00d233b5405c52065cefa2ddaf2cc706ad3b5519e380d548550f64cb3576ca4cc3a8a17fab3292dcc2d1f4b3ea17907ed164d2d1ada37ed6321c78889923916a82bbfa5fbcdd5c74bf703b71c30f60f88b3bd5546039cdc6bce51d0126a489c5f1a72f554ff6e67a01b9ac102536d20d8c99fc4d5ea8fb66b0d58eea2c5fffc23911cc01b58457c4fbcde0e0f38aa34209ea550e3dbf4d31deebd8d4c7ccbe4794300f2b9a427499bc24a5aa453d6c8cd0f1357e0a88db5708c8b26527b4209b4d027019050e1be49299d7cb94ad02e4c918c6c542b777a6f5b59044dcb48565cf7f1be15e5fc002bc2778fd97a4e50813f32c335046ed88584327b96b6c4127b228f90f4c96e16c1ebdb1110a2670640c03d78ee9075f2850fbad27936874e885d8d1708a12424ca13f6b3fe52081d41f61ec4822de76c74fa41412a0e9c3d3a6b5c4615d471fcb7cb51292f7ba336d460bf3ac243c4d9f2a82b380a3efae007e1a2575648cc09bc5ece6a6ce027752f148ccbe94af427928017637da44cb6fa7594245390e8d023100d613384834c83d63ec738c9ae21b891e345838c76af7913c83fbc0646d106c6dc45d68cbe6d26e80a13486589ce9a63f64991332cfc6bc8084d8efdc9b0987dfff6d6131ede2420619bf060154dbd97d404ae1d4afd088764aeea6a11de540081f1a3b60a50544b874c610905bc4957df04730f8314f694e197159252f7cdd79c5137c2e820c99f7a9079f08d04bdb0b10b93bb3d18ec2c22e65a62c3514fc2a7ad2e604f6fbbff4e24a8d098610ab4a28171fd1bb98ef79076f2c187b203ba737a3293e40da03776c368c17d666dc65c0bd1073d8344f89c143f87642aa8edd5052bd6ae65b4bc324190649c5159b2ab82c2d885f3b0b92b877e1378c155b1cc5504f7ab3acc48a3affe8b7e4cf2eb9897f46c9b2b78437b3a950d91f918bc480076799bff6236690f4259e3b2a05897eeb01f291e8899de5e12b6cc2aea3425f99cfe5305c60b8cdd371db334bdf06ba1bcd60f427040e17cf335dd65099ca5e43d59516b9cadd8488adf3e2fcc118dcd6e6e9a8393543e40f18852a17e93b284574ad7502409ecc240a247c38358feeecd7acb9df0f1a10ae15baed62e5a2d6a5664e989aa79987711d1dd32aca8c7f57977b7ab67adbe6409a4d0c42481447bfbbf4d9cf8c0bbc67a609a0d3635350930f7a5602f2fc86b8dd6d73f5148d76cae390e7e4482708aa5b57ae93a63bf4f3bb32437c241d33ae2b48867655066a9d4caf5c6eace7daeb5667fecbb97f3f664a035e5a6298fb883708735184315c71297a26f8c377d3e7e5ae784a244f5533e715aa3e0048ec0570f63a0106ec303cfd79458321464c8a907de5fab0197a39de9b44e7a5a2fe06d20eed744cb519e253f229318af071946a25796f6ede22871b308ca7e65ed944ed0b144f5a857645a2ddcc16c9d6886a57b57ec0475dd43b7844643192c577abf0953e041824fd502eb58efbd518c916bf7a86c6d035fdc88a062f2110f2883e123af31332d996aab83c70cf6eefa1f6d0f601a1c0485b78b7ed44331da58d158cd5867e5d2866ccc18176f00aac0425b1adb95f003536b28eb52faaa6768caec6806c9ace110eeb08b23e03711657c0b7b16931b07d1d7a6ef8483be7a44706f3d1883a72e11258949aed51d1decf77901d7f5fc744fe7cf4f1be767284cbdc6e2848f71774a212aedd70f5f13461e25f360bc52bcf085db54cb44115e9ce3db21c8341077579c9b482481971d092e6bec6de0c2dd62450bc16b9ad694ea9c27d89b70523fee58a20cb36b01e8742fee3282519d8c960783834b645a4bfc7b3d72a542212a6f7a420b890c4fa5098f98733e11d0ac240bac112ec9309ece80c7495db20813e79c35d90cfea0e957b26220527b42c0fb07d946075b61342feba8bfb0dfaece88dd0162cff84d1d9c9874a091dbc0e4c153e698b60760a2b4a29d0af10aef1d6da9cf1274fc7442de7a9cca9ab37273d7896668368a8ef5766f20dc403b145f82cc97f48c7c447940bfd10a4a4fb9dc38411d2ea9dd04e58879ce5140283dd3e0fd20ddce6069d8b3f17240ccbef231c786d44f249a51334e28d3ad5ac50db966c550d11bb5128f0c51495a0e84cb046ebb3cd02ecaaa27d58c9ff3228524d8a575ddad30f8d253d368f60f5d3db448922ccafdb0946f8fa9cb3e51d293bf609065df18dc7e79bf13a5831cd15143b9ce0d64f75a04677f8677b0864a83dc224b4a4bcfa4467938b815221edf549fea3c58503ea48a648d7ea683136448239a255534b50874f9c9bbd56600acb5558b123f6147a6e824a4985ca2c780d25e0fb9c33f3f887458ec341f9945765f0d4ff9f64a3104860b9cc6c09e4bfbcee00cde820d2d742d788915e37e81f65c3f9a170d4b6c37bd579c4b998d29722f213f48055a349daa87c428e393aae6312b913f09e872d878c7d2a2a05a790a78a0031f7711f7305babb7af59a4e94076cdde910cb5d455d93057ff7c8e61deb5b2dd2af804eaa54ce7971e4f8e76e91efa74bf74c5f99598201f11994b7b9fceb5ff69bd1aa20d0fa7b6aecebf9f0e254fb0e66bbaab5deedd15a2eec64c51e2c99b5569558878f12270aef2631d670d603f68560bb76a7adb63d5e0edbd8e32938d43de6504a9a573d9bd6cd8056402d5baa1a9d9801a62bff544f9480c42cedfc406544beb54f58e2d3430cfe0d8517f831b66d56d09b813266cfb69f7f77e72f5eb2fcf5630a46f634f28e0f1c73e8edc14b7c91489d662a875bea22e61a42ac77818701a6485daf335bf3a1e053213e3932f9d113bfe4c3c67c5ed85b4d64e993a0e1b5d6e4cbba54d3f6af52c7cec778d85e04781be512226cf35e42455d64fab2901415199537116d187d9b09791eb1e4727aec8a9327011eda1cf9f26f2db71df519359fe70d31183da183992ff7c853d0c3f3c5e42f5df817c1a651bdeb676373dd561707eea67eb49d4d01ce63756923984522318f8fd4de685a38ce506b445043caf3dceaecccbf04afb437b26ba0edc159819351ca4fcbeab992462652081c2b6fe9321d39ac715195e8687aed26a4ca5efbb7414a4e4b71a64b573cbcd663579b482f1cc3c8e1a484b9768ae4e3c6e74e19532ee0ad23c443aebd8b431496dd188829f1d7ddcbe4fe4b6303d07d9601702882a734fd786bbf16342cda7d36e268693ea805c000a64e4c125488f854020e47ae88165eb8a65c30c88cafa9ab35475fa486705a4512b4163efed5df79538fea8369e0aa3faf908d2d7daf0797bc558506e5a54a5978800cab732e45a51290b21d113736bfde490d9961ff496353c9be815f14e836abd9032fa6fc32b0c92af91c77d67f64d278982fa102f5b7dded13abb37478bc4cfa49d00a57a793e99d5d05cdf4718468f19b042e4e4d5b0ea253fcfe3eb639bccd0e9d549d1da2d1fa4dca9c4c1611367fc2721dd1728f2c597112c230608021f28c4f4db21d91d9ff48fe5c6ad294ca97bdf25ac8db440171a556eef5ae3d8a1460fa67a5e0bc987334878e417c5e8011dc47b369152c5b50d91b65ea41fb85f0c70e75d337c4178df99ba577bc5f802e256b611775fdb71c553de38a946dd52a352e99c81c3ae3d2bd7a2bd25a8d3b2d06b2b6706ce11f9bed99c6c5e45c2ff2b1cb66b098d8ab6c3a58cd51f412a4c5e4e64f24100b8c076c6c61e52de6129607c5123a5d4deb6fbec0a3bc184688f126782a699c46c5e2c0303de4feecffebf1b6d1858570a468803abcc25e95a63f597787184cc0c989846a46d6322308022192dc822f014ec486734ae65677d01e7ae9f4b800eb08e8f22c610af0b35e384e35f786f50ac45e8b0092970ed8da6ab0ecaa8212616cdddc33db2929d7448edf606e0ba6ac9d8314f7212eb188e71c5a974c6fb20c1c81b551b13ac2ddf4788a4724da1def8b47082a55b425b391c14803bb5c369f6f5fad066f6e5960e43994b04044de5d3bd06f742e90ae68b173d7c071ae5ee9537c0caf42099e4f7b76901a9324166e51482e84cec43e500b3636de95d3e78b3104aad25e9d62aa60e0d8396f47781219c3b5f482c0add432536e9464cbd592954b143540fe012afa9f30254e09d2efd6b0663a10d8249e7d7d196f55d92d31c6396f65dff71bd715a2eadc95dccd6f618b9695a17d96006c15ab839215f572cafd45e598332d0240e33e21e62768ca15f2056a02d06fd32bf667ef48fd4ec2f7d80a3e851b535bc3244abb3452260bfec9d39a385cad92d8ef82fdaeab56a54ef1701335d7687e55e5a9bf246a1294066a4c419dc74c094dc6fa981897593a38fc69ca5ac63447b61e1095b5d8ee109ea85e0961320323f8923bef792b88dfded1274e79ccce287d226e4f66526af76c97f38af0ce682e5147be5383b84061bf2a63846f10bfb440d244acb1dd980f092aa0504a1aece2c8864c4940e5353f3e6f01a97f173e72fe7771f86c80f6b96542b530079b7b3c580151e6a5baeaf27bb44a3cf0053444913f48702ffeb1c89df0823cc7d419b09d0a992a00a5d84966cdf8088adf63b8a673dabdbdef53e0e279cde9a1b079a5f3775b688b726e3ebcd622335ef1bd5fbf2dad4974ce6de33b7812b700d3b0f98b2c9bd1d37112ef8583241a706a7fb594fa726f8fddac9579d574cb099c5f488cd0d", 0x1000}, {&(0x7f0000006640)="5451b7cf896ad4c9e7aaa418bfce22f1da22d98c40d0c6159af0eb2670abb27d83a5aee6adc29228b0957a2c80299eb2fc82652f3d8487d2b55a544d7b9baaf286e877911e9a4c5c39c5c96db9ed33d9197cbb8c744c93894c4418598d60008e87cf76eb6310fcea37bd12c5d469c9e2f42710", 0x73}, {&(0x7f00000066c0)="03a1d8fefe6d637e3a6cb7a5a2561f2074995daf6b2f82be50acc294c4aaa3918f13e553f8ad81dee440789f2dd48d2e0da3", 0x32}, {&(0x7f0000006700)="17534087178c7f20d2cb27ad928a3960c05184f798381e92bf6bf0ee7b2eb7445239ca9626e6244ef1310431b73903adcc89d032291f0242c9aede2ae1cbad6ac75f921ae90e0747b2c18c598167adbcb307e147575407792bfbb0d0e369ea03bcaf2c5d5d00f6b1d8262a98dbc61a6a0b96b45ef6de09a0593028227b4a56222fd223f1d4dd43914b2050475d01dd23735c5b13541c50727d3171e2fe599bb9afe86ee24c1bc64e1c", 0xa9}, {&(0x7f00000067c0)="c11ccda238173b77a86dbd0c81291af8f6cdc7a6f963e9bd8e7091bafbcbf9231c1d77473584cbfb826ff114236ec5cfcf845fd025515ae4601b2e6e228fce2c5a1c43c4e714baf9d5b2dd876ae3ea829a0f2a601cf84cfbbec16932d7d992cfbb72d3700edbe84eda6b7f6510ec62192079ba21d8dfd7", 0x77}], 0x5, 0x0, 0x0, 0x10}, {0x0, 0x0, &(0x7f0000007b40)=[{&(0x7f00000068c0)="a62ff3385971a32545d60edf9394010484fb8316a1548bcf1d46a9e24aed7b5b6b7cd47d1359009c786da4732632493a4fbcf115f95fe3bf3d95622f160a96ccd77ec821797337e48440ebc413fc5b1ab3b1c20d44df2d0044d511c12185a0355d8be308ececef5b0203", 0x6a}, {&(0x7f0000006940)="8dc757ef585b2ccb995458ee1e73eec9cae10aa7f3e268c7a9cee1369ed395d8872a025f6cc1e56107392d51cb46494c52f02f93e7b8ee16a5156641331e7768bd5d22d3b297a4c75e237df705d52152a7f697852ad8ac4bc1fc4c6a4893bf8dbcdc2b6520e5b17ed4479313516e6afcb67773cfdf2784ee7cf8db838e375495e7d57d077985994477a4ca43017c784442ef04f11e78288456194405aca72592dd8705c8559a22ba18c14fe7d99ab883252414ead8f330977f38cc48bd737d6f79fa1e", 0xc3}, {&(0x7f0000006a40)="ebd154e11728f78e773f4de0dcc4891db1667e567cf85c27219a06f911fa8ec21b5b43095eca", 0x26}, {&(0x7f0000006a80)="f5182d1253b75e8f96151157204717da7000b081000af5aa687e06d9690a4a885d50e649bf9d140f34ace1acacf6979fea7a9ac47391f79f17f3062be12c4fabbc021f06c979d6cc7c1665300b5b6ba07974746b7ae90ae8c03a96e94484c46a98b905bb24b1d50b002372779a48775352c389f4f120e48794b9a349683097af15c6339d4833c21ec8b94cf000d05eef9416af6d41978620e7d73a864b144832208f0bf29a7fc0ba1e0f73273a34169fe70911bf8850ee9d7adf3b7a5f331bc9b5610ae1210b19813774119602c561059b6da8be2314391028e47bf78db1ef4b560248b691d7c334c6b9a3bb83a85d9e63a26600557faaf5913ecc5e81c7cfe53406709f40eec71c8cff694f34d8882271f61db20ed7cd00e421e52f9dc92a62c8eb5c1cfed5870904691b7f470e7d71bba78a3506b0b20e6e176c1e410f25adaa804671423cb270124fd88a6cccf062a7181dd3b78c871babaa16aa061c1d8d261aaad1f75ef2f6d4b09698ed1a1f88f75f10f5147fdea1a4557b61950e36411d33ce30e8d488ab30639bdae73bc670363fc8920a0918242602e69ebb4719aa4284464355f9859dc5fc3d7bba6a8cb0f07eb1dfa432238819418d6b2c10566947dda196e960fd3a5e772ba5c2f3f2a886928c6f0107bd97567e0824e870305dbc12e0779e4a98278d21bfff85c40685322c7f502f167007ac6b84e6bdff20a1e053a6571fcda72f4cab82d10b28ed61c3bb0c39f4db1181344e4f5129cf910b47960a078a020765801ced2dec104699dbc20a5f6f24c0585de5804477d585bdbe9b834fbe2362198dc594647b6930c0b4a392410005580db41cada333fba9e67bd52a718a161b1d30bd0136f21df78d8dd69babdced085b75db89ffa237a37dd9dda9cf92288e124e860128572dad20bbb8f841c2df74a09f378e7c0736e782735545910ce0d5953a8c33f1f927e8931fb6f0c12c5fe246d75be582007fd42469f639d6907a3d24ab8cb928b4a463a82dd0d293b6cde891f402c093d55aa2076eb930d4a2c4268651a26f09f54760c4746c80210f246a7fffc8a80a13cdf726143e1e19cff0d08f171f93be1bd49e07aaf2122fa80d6b220e8725e10426f2a2c2cd9c2d440e5d48f646e551168ad52d78ef542e1bc4133049fc137adfdb5c9d9b24799b363258871200a104ecd473e95f259cd8ce6818f4575923152b4a4e65c72542d32fc821e40c1d6be27cbb1d1bdd988739485716ff3e15ec9e001c80bf78e9f2998164f60dc4905ad00e20a95f246313af804537fd2abaa443377ddb57a102293b7e745086ef78c2fa49f8998f9a9028fd1d93fb813f5137390e17b40eadca88e71f1f56b6f66df4d29d2007cc847aeb4d556e1be27a27ed4f36eae581dcfb01ba673f7918f58fdca7cf9ccad947374c3addbbe84c8838412a510ef2a248baafd61b95c1307b3d4462759f7ee7a4c61dc24cf378ead0a58bbfcf713de5e54c88fc90a547ca99392ce8d4f7cf79344f3c9e3502a6b3c7fe6bcec247e891405967f279b4eca05109fb993fe5608eca1b74a8b1a73a04f397e75f030d75543c067dbba67698649fd92a2f3e18ac1120d35e37ae404955335b6e94b20dc665b1e79f123b50bd971c2c42d8af47b65b82834961bd41bd54f245d5d1a694de68fba7b3d1d2e35ec5c2be1f20ad683e90fb33432a40d68204a29d1bf5f5f3de1464c501b31339b12b3e4088295705a442e4497665d4287bcb91806d970a409de0a92d4a7d76e48069687c4f457ce40ba139d43dc39adcdf1950830ce3deb61e3d2e8dc8591ab35123d9bc2a3a5239a21259387bdc36fddb988b61bf44e149c4e7ddde9cad3c8a1823768acd3f6432196ab6b7df3fca78373ccc59cd024377ff3e336423df625b88f75636086015230b5cfec17b7616e334eb68fa140e66360c75cde83444988236512486560233a11520474f3526c81298a6ebc5bb2f5630bb6fdebd01a3450b88409c18ad851f873b3f550616bbd74e81069330a622b40be55280fc1e809416c9cf549449c1a6197d3d8d9780813aead7b51ee6d34a6afbcd05b53d0673f261bb8f210e8097b0130fbbacecff490a2a39ef412adf8846d8c51d2cd7e3f7c9cb353f5cec517bb8b3a0c144bddccac2aee2ab240dbf87c3583cada46210bb38ea62cf91127e56db7845b9cd578ae6ed1535907410f6385107484fdce1209afb8cb4d20680345c64e9164862c92bf21b586c924a64d9042a49b3f566b872477f43902ccba9019c9e0e5046757f9e019b4ba811309760596e07c65416ae97960bd814b028ac5c89aee41eb13beaab8138116d07f7af4625737187fa6cd04bc5cb10dc31e018ae902625aaf0be1b5c36a5ebbf503e07e770cc07197b99bcf98f6fc3efd30f8ec9e607159aaf6df5a5d027ce1bbd673cf34dce1c6eba430b5227f8d24f778f49151163170dedd91474b5b33cb7eeeb90a232a47778c1a34cfe3b99c8c1561c84038fcffd3348a07539a139861f288531bef70f961c9b68f88eaeae2073a469432d6cef01e837e1e88d5091bbee056dac087449b98ca97fcf0a9e209e4173d1fc394d3ef6492c995247f4c37758465373173f9d01cac075ac46a2d69cc2d50e9aa955e836ebeccaa37c0c235f5de1b0d88ce052bd4c7fd43ed8b9b5ec6f81cd5ad2b39210191f8c928acd94e770a011e7f13ed372ccfc8fd797e80b5034e391c4efaa578ddc3db14c10153d034da98bad1bf1082564dd55e1fbbf912de316864667fc93d863173c14331073a4af58cd239d301d148a6797a23a3e535e203f43bd3e27eee43cb50979311b3990783b3c4a786c421f86ecabdab7bac13c7c53079916c2b9dfb6cdc7b907d68a1acf5587c2a6b79bb44fb344bef5cdb8035674bccff364118dd3a932e979c99985d6928b3d8e9868bd069d75e85b80b24c4b1013ed43b887597539967e1815c8598e839eb0858025041375037d4a10bff8b6b433a4efcff33dc30f7d51770950b848e6e2ce216cae24e38f4fda5eb4f6862eeef32f2e675897771ad75f24c5cfea7de491c49324bada60f601ac2d865a49ba772046435528e9bb2fc5bbc9b34077e37f476ac819f40b8342f524938f59ce2f18528d49baff586cd95cf4e3970a393f13aee79fd6045a2c7ac6d4ab3fe88754d70529ad4b153cc5c5524223724fc06617ef8ae2b29876dea985553efc2c16c25853ebdb9f92ec0f440807105da6818cbb5aee09e2c9d25b4f8ac149779979eddee351a9aecc3663bda9ea8f1d9cd3c0bdb0af1cc2817f4817b48510729be9fd65dca04ff2af76abe0b1ea9d0fbc693b36a1b61fe82f001a188595b9b2de8ab0aa07a140557d594db3eb3d1e8397df203ce6f19bff650fd82b070c00252ac45db129103b116e965cc478dd2af070e58b9b9afba37821e541f6e9e2fd4464115e4ee1cb11d11b0307fa4948a1f0fdb28f0dea3785e057f3a930db0c5da050024cf119f1c0b14fdff74de67130b7eeb6afdff1df6d9c774bd8401735ad98847aba0c6d819a32e71e7ab80c50a14026592766bff66880bee238549ce92a2ec383a4f7dcde343a3f74b490f5956b7bff79c04d066edce3c4f6ca652504c6a28a89971301c2eb9dbb2cea9864bdd1bc1b48d1bb028081c7c2569dfb5fe328e27cbd12037aeed60aa6bd355290e6a0490214243ab0550d9111356356ba69a45f4c39bd42cfb778d9c8e6cee2d28d6b43cdaddf376dae59db09cd0d9272e10ad786ed53dc0bd956ad8d39b90a1481d59aab0156e8efb7a8a3cf7534d1acd35ddd3cbbf69f89deb42bd1971ed77501f8c69ef294fcff664b37d62e790b77935961e8b467c2b2da07791d1a0227825216ad5998e92fbf3b5e6ed5336f47284526273d1da4a30e1f47c534ef65afa03cfb7c82015e4cd001a5540d48147c6539d7fc89e1d047ac024c91697911fe0f659d6ba6a603ec62a4f72845c2b7a9b48925c44a2f9213da5028dc3c31cf2659099bd1dcc99d46faa198eff7e7a6b16c0ffcba437020d7e4afcc9703881bef3e835577a3e2d5018d5da06f818467bba7cee3cd60c46d77258cf49f7e21796b5ecac64ae0d9f41731d89a42ac243658a31b0505bdbb8cc388165c25116d8ab67c02fea7aa47ab038c279bd72cd5506e8f25f37083a86633893ea9581a7a55e6bb4ae31a4778f19756a9c7e42cecb0a46c2fb4d6514e9c9c9e3fbbc89123e265489617f04009f04db44dd96d88f6460a3383784171b64a1240fa4dcc0531f7e8245335970dc9b93f9fb29769aa75e64e919d815f8ee0503f17e2d2c05815425ec50729d5ae18eebb7f32e3a38413aaed0b6d06ed6ef3971ddd235647083c109d1be540137bf90f83f248eca0281472e75c06a1204b97d60bc795d4800d72a0b3020d4f23136bd6dfcd4d308b793cddb8d969b219fb47d9b1dfc297e0e335155d51134ae346201273e6016fb99548869f70246d51d478ecf6da1c76556e97bc9a1675d8214d8f768e4409dd1f7caf69ea9aa4e57a65bc4a26f2633242956228e154306ef685a7e2178896d0bb8e7dd10f4f60a92f5304bac14ecf8290caface8332d87281833185094af71bc5959fb65546536d9ede94e5fb260bfa66a642005b8b081d2342c89f39cae99e1c413903a4bb813072520368421e53de6900c94d5b5089641f5122dd4fa6621aa9efd220baf21e69128915dba19586ab01be873a2c3f211a5f86572357583c922b7a788438e2420c7e31209d1ea2390e20908dc3122458832321aae3a70c6deae1c822ee06ecd90ad905e4b382e219de9a058b3aec1e77d558bffe333c56d7ebdca39bdfc9e676d79412d933edc30fdeacea656fdfa80cf5491b71bee798730b6e3c154828aa132f1c916e665b3e10a1e1a7989fa86def1c885c3abed88393d2b3c7fc1ed0af37fdcfbbf21f07a37c354edc07e92fda15aa8909481ceb9ae8112fb40053729e37dd303d0ff40d20a61d2c332056325845fb17e589977223c2e3273cf7b090807f78a1cba8fb28777441b997961fbfee9f9c77ea449abfece6370a55b06eba8a055fb56deebe7b8e622baccdd2376950090faa1b7a6390ee6ef334f804916db0b7628c15d0696352a608975d7160a88b17d91947ea603cd13aa3b99676dc55b0a5b7120471eafa8ade2e42f60a80b30d16afb8f2f49f32b5c6bd63adaf78465a2464434c571b1160ac1ef419b339faae278a528e225c2636afb006c05c4dcce64a2c41e0f17c867c6cf318e0dcc84a36f9374387674d34a96f9c1a1d84507911200917cf36eb9e9b1b74b6e8dc596fe3fa1a44efcd6606091335cb9762a7595447677e01f53ff607103d80c6709a6ae777582bbfb39e3817fec59adc9c0af0d73dc060d430af8ad55504788a64d804c0ef75fd49adbf83bf472fcf3669a56e1f97cff07ba505e88e6e7601052433a092fd87e3e6f2f70973a927c14b83287dbcbea8ed3e0176899be9d59a77f85f1c75cddba455b509344cf1c349d161161c2abb8a2c1cb02c7e8fafa4a382e4d12dde14c40934e1c1905da5881e1517c472d2762939cecd9535b960c87beae8dcb8687483eb9a6faf744df2d8996c9dec1b3dbba6bb732b40ff6044d04093846e71246a6d4eebc39988f3664ebb3bcee2b52440d33c273ae9304e8809a1a658716ef0e679c8150373417586f81751c7a640e6bb8f2d1d23bb2916e7bf2031074250654a9082f0c0ddd769137e79950f98447d1793e999260edd49b8df6d327b4477e0f3c51d9a9209331da808cb75a83488", 0x1000}, {&(0x7f0000007a80)="30f068b56300f5960cd71f997f84c921d83897909fd1a09e2a025896d2d8702dc4f3db0018af91d65be2a2b580c3b7d68e76d673994c7f1111922789df9bee6fa64d51dd80a98eaa5ae0f02004bcc6337470b7701864c7b9f954f09e5b333eca31f7f35d50f2895155f04c80157ce12144b3315e84a4ad95c0807b568c70cb0199bb04d3011a558a360bcd46783316d5eda5d368113a03fd66b670d91f16dc7c71c0d5be236721a945c6bb82f0ccd3f8c530c76d9ef60bebb7511e9ecb92", 0xbe}], 0x5, &(0x7f0000007f80)=ANY=[@ANYBLOB="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"], 0x1b0, 0x44}], 0x9, 0x50) fcntl$addseals(r2, 0x409, 0x7) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000040)=0x5, 0x4) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$BLKGETSIZE(r2, 0x1260, &(0x7f0000007cc0)) 03:36:58 executing program 4: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ppp\x00', 0x0, 0x0) r1 = accept$inet6(0xffffffffffffff9c, 0x0, &(0x7f0000000000)) setsockopt$inet6_tcp_TLS_RX(r1, 0x6, 0x2, &(0x7f0000000040), 0x4) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000003c0)=""/246) ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f00000000c0)) [ 483.382726][T21034] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 483.390267][T21034] reason=80000021 qualification=0000000000000000 [ 483.397283][T21034] IDTVectoring: info=00000000 errcode=00000000 [ 483.403493][T21034] TSC Offset = 0xfffffefb30a01aeb [ 483.408533][T21034] TPR Threshold = 0x00 [ 483.412663][T21034] EPT pointer = 0x000000008dd2301e 03:36:58 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:58 executing program 5: r0 = socket$kcm(0x2, 0x2, 0x0) close(r0) r1 = socket$kcm(0xa, 0x5, 0x0) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000180)='/dev/hwrng\x00', 0x80000, 0x0) setsockopt$sock_attach_bpf(r0, 0x84, 0xb, &(0x7f0000000280), 0x4) sendmsg(r1, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000000580)=[{&(0x7f00000000c0)="a0", 0x1}], 0x1}, 0x0) recvmsg$kcm(r1, &(0x7f00000003c0)={&(0x7f0000000100)=@can, 0x80, 0x0}, 0x0) 03:36:58 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400005) 03:36:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) r3 = open(&(0x7f0000000040)='./file0\x00', 0x446301, 0xa80c0e0859d9567c) ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r3, 0x3) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0) ioctl$DRM_IOCTL_AGP_RELEASE(r4, 0x6431) 03:36:59 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400004) 03:36:59 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) bind$bt_sco(r0, &(0x7f0000000040), 0x8) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, 0x20f) r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x400000, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f0000000080)={0x9, 0xa1ac}) 03:36:59 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @multicast2}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000240)=0xfff, 0x4) r1 = syz_open_dev$cec(&(0x7f00000002c0)='/dev/cec#\x00', 0x0, 0x2) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_TOL(r1, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80004000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="0e2c0010", @ANYRES16=r2, @ANYBLOB="15062cbd7000ffdbdf25010000000000000007410000004c00180000000173797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000"], 0x68}, 0x1, 0x0, 0x0, 0x20000800}, 0x40000) setsockopt$inet6_tcp_buf(r1, 0x6, 0x3f, &(0x7f0000000200)="117807ab2b713bfe4f60a9226218787220e0f4128a", 0x15) ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000480)=""/225) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000000)=@assoc_value={0x0, 0x280000000000}, &(0x7f0000000280)=0x8) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000300)={r3, 0x1000}, &(0x7f0000000340)=0x8) sendto$inet(r0, 0x0, 0x0, 0x20000806, &(0x7f0000001180)={0x2, 0x4e23, @local}, 0x10) [ 483.706542][T21059] *** Guest State *** [ 483.716557][T21059] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 483.733582][T21059] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 483.745268][T21059] CR3 = 0x0000000000000000 03:36:59 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400006) 03:36:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:59 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400005) [ 483.750905][T21059] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 483.771192][T21059] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 483.806560][T21059] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 483.846667][T21059] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:59 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x11, &(0x7f0000000040)=@req={0xffff, 0x6, 0x7fff, 0x100000001}, 0xfffffffffffffd27) 03:36:59 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") rseq(&(0x7f0000000000), 0x20, 0x0, 0x0) rseq(&(0x7f0000000000), 0x20, 0x0, 0x0) ioctl$sock_netdev_private(r0, 0x89ff, &(0x7f0000000080)="438dcc2bee11532df9f2c527b1c07d4b1071ad14841c86f747b21efb3e916e0c5c5ed8b6144793dd43c6d973ef447a0e405257a28fd34ae3c4bcd763de8bdbf8219d95ccf78075b8e96ef8d31270eaa28ad8e64bb2d8946b564de41e182b5b4ed19e8b31aa79442d9f7537aeb157") getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f00000002c0)={{{@in=@empty, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@ipv4={[], [], @dev}}}, &(0x7f00000003c0)=0xe8) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x15, 0x0, &(0x7f0000000100), &(0x7f0000000140)='GPL\x00', 0x5, 0x48, &(0x7f0000000180)=""/72, 0x40f00, 0x1, [], r1, 0x8}, 0x48) 03:36:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 483.876782][T21059] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.903184][T21059] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(0xffffffffffffffff, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 483.981642][T21059] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 483.993822][T21059] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.005548][T21059] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.031926][T21059] GDTR: limit=0x00000000, base=0x0000000000000000 [ 484.044933][T21059] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:36:59 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400007) [ 484.127420][T21059] IDTR: limit=0x00000000, base=0x0000000000000000 [ 484.154370][T21059] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.172827][T21059] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 484.195387][T21059] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 484.203820][T21059] Interruptibility = 00000000 ActivityState = 00000000 [ 484.210848][T21059] *** Host State *** [ 484.214763][T21059] RIP = 0xffffffff811b3240 RSP = 0xffff88809f3778e0 [ 484.221784][T21059] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 484.230053][T21059] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 484.238566][T21059] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 484.245374][T21059] CR0=0000000080050033 CR3=00000000507a7000 CR4=00000000001426f0 [ 484.253857][T21059] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 484.261328][T21059] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 484.268091][T21059] *** Control State *** [ 484.272476][T21059] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 484.281371][T21059] EntryControls=0000d1ff ExitControls=002fefff [ 484.287571][T21059] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 484.295519][T21059] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 484.302975][T21059] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 484.310311][T21059] reason=80000021 qualification=0000000000000000 [ 484.317325][T21059] IDTVectoring: info=00000000 errcode=00000000 [ 484.323553][T21059] TSC Offset = 0xfffffefa903301ba [ 484.328581][T21059] TPR Threshold = 0x00 [ 484.332913][T21059] EPT pointer = 0x000000005420801e 03:36:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x20, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) write$binfmt_elf32(r1, &(0x7f00000004c0)={{0x7f, 0x45, 0x4c, 0x46, 0xfffffffffffffff7, 0x5, 0x9, 0x8001, 0x0, 0x0, 0x3e, 0x3, 0x163, 0x38, 0xf0, 0xfff, 0x10000, 0x20, 0x1, 0x80, 0x2, 0x7}, [{0x2, 0x4, 0xfffffffffffffffd, 0x0, 0x800, 0xb6, 0x100000000, 0x3}, {0x4, 0x4b4, 0x0, 0x1, 0x100000001, 0x40, 0x1, 0x6}], "6e3ebb42a3f3d5e12393fc5c8b18f4386e6ea71050e8c53d5dc177bf", [[], [], []]}, 0x394) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) msgget$private(0x0, 0x100) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:36:59 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400006) 03:36:59 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:36:59 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000400)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x0, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000440)={0x44, 0x0, &(0x7f0000000000)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x8, &(0x7f0000000200)=[@flat={0x73622a85}], &(0x7f0000000240)=[0x0]}}], 0x0, 0x0, 0x0}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x8, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0663e30800000000"], 0x0, 0x0, 0x0}) 03:36:59 executing program 4: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmget$private(0x0, 0x1000, 0x78000800, &(0x7f0000ffd000/0x1000)=nil) socket$kcm(0x29, 0x2, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vsock\x00', 0x101000, 0x0) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer2\x00', 0x400, 0x0) dup3(r0, r0, 0x80000) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000280)='/dev/qat_adf_ctl\x00', 0x400000, 0x0) getsockname(0xffffffffffffffff, &(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff}}, &(0x7f0000000340)=0x80) sendmsg$kcm(r1, 0x0, 0x20000001) r2 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/capi/capi20\x00', 0x200000, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r2, 0xc0605345, &(0x7f00000001c0)={0xfffffffffffff001, 0x0, {0x0, 0x3, 0xfff, 0x1, 0x4c6}}) r3 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x0, 0x2) ioctl$VIDIOC_G_SLICED_VBI_CAP(r3, 0xc0745645, &(0x7f0000000040)={0x10000000000000, [0xffffffff, 0x2, 0x40, 0x7f, 0x0, 0x31e8, 0x20, 0x6, 0x1, 0x6e, 0x7, 0x2, 0x6, 0x1ff, 0x9b, 0xfffffffffffffffb, 0x4700000000, 0x3, 0x2, 0x400, 0x75, 0x0, 0xffffffff80000001, 0xfffffffffffffff8, 0x7, 0x8, 0x7, 0xffffffffffffffe0, 0x0, 0x1, 0x7, 0x7f, 0xdb0, 0x2, 0xc4, 0x81, 0x7617, 0x0, 0x8000, 0x1, 0x0, 0x3, 0x6, 0x0, 0x7fff, 0x8000, 0x3, 0x778a], 0x8}) 03:36:59 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400008) 03:37:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:00 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400007) 03:37:00 executing program 4: r0 = socket(0x4, 0x8000b, 0xfffffffffffffffe) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000180), 0xc, &(0x7f0000000080)={&(0x7f0000003080)=ANY=[@ANYBLOB="140000001c000302b00000000000000000000000"], 0x1}, 0x1, 0x0, 0x0, 0x80}, 0x0) [ 484.589631][T21114] *** Guest State *** [ 484.593796][T21114] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 484.606147][T21114] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:00 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0) ioctl(r0, 0xfffdbf7fffffffb1, &(0x7f0000000040)) [ 484.650840][T21114] CR3 = 0x0000000000000000 03:37:00 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400007) [ 484.685956][T21114] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 484.712728][T21114] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 484.728957][T21114] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 484.736379][T21114] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.803794][T21114] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.819782][T21114] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.834799][T21114] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.843972][T21114] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.852924][T21114] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.863214][T21114] GDTR: limit=0x00000000, base=0x0000000000000000 [ 484.872332][T21114] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.884204][T21114] IDTR: limit=0x00000000, base=0x0000000000000000 [ 484.892991][T21114] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 484.907233][T21114] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 484.914421][T21114] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 484.922732][T21114] Interruptibility = 00000000 ActivityState = 00000000 [ 484.929732][T21114] *** Host State *** [ 484.933634][T21114] RIP = 0xffffffff811b3240 RSP = 0xffff8880574cf8e0 [ 484.940378][T21114] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 484.947483][T21114] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 484.956042][T21114] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 484.963132][T21114] CR0=0000000080050033 CR3=00000000924db000 CR4=00000000001426e0 [ 484.971003][T21114] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 484.978515][T21114] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 484.985269][T21114] *** Control State *** [ 484.989494][T21114] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 484.996856][T21114] EntryControls=0000d1ff ExitControls=002fefff [ 485.003071][T21114] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 485.010736][T21114] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 485.018086][T21114] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 485.025398][T21114] reason=80000021 qualification=0000000000000000 [ 485.032466][T21114] IDTVectoring: info=00000000 errcode=00000000 [ 485.038690][T21114] TSC Offset = 0xfffffefa16b25cc3 [ 485.043720][T21114] TPR Threshold = 0x00 [ 485.047785][T21114] EPT pointer = 0x00000000a7b0e01e 03:37:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x8000, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:00 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000600)) r1 = syz_open_pts(r0, 0x0) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x2) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xe) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000080)={0xfdfdffff}) 03:37:00 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400009) 03:37:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000040)=ANY=[@ANYBLOB="05000000000000000d000040050000a90000000000fa00000000004000030000010000000000000025000000ff"]) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x48b}]}) r3 = syz_open_dev$dmmidi(&(0x7f00000000c0)='/dev/dmmidi#\x00', 0xa0, 0x40) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x3, @loopback, 0x9}}, 0x45, 0x3, 0x7fffffff, 0x9, 0x40}, &(0x7f0000000240)=0x98) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f0000000280)={r4, 0x40}, 0x8) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0xfffffcc7, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="340000002000250700000000000000002a00000000000000000000090000000014001800697036746e6c30000000000000000000"], 0x34}}, 0x0) 03:37:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:00 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400007) 03:37:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:00 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(0x0, 0x0, 0x200002) r1 = socket$inet6(0xa, 0x3, 0x3a) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)) getresgid(0x0, 0x0, &(0x7f0000000580)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000600)='/dev/net/tun\x00', 0x0, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, 0x0) ioctl$TIOCLINUX7(0xffffffffffffffff, 0x541c, &(0x7f0000000680)={0x7, 0x5d5753e5}) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000380)=""/216, 0xd8, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r2, &(0x7f0000000000)={0x1}) openat$rfkill(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/rfkill\x00', 0x0, 0x0) mmap(&(0x7f000007e000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$inet6_int(r1, 0x29, 0xc8, 0x0, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x3, @local, 0x1}, {0xa, 0x4e20, 0x0, @mcast1, 0x7d}, 0x0, [0xfffffffffffffe00, 0x9, 0x0, 0x7a1, 0x20, 0x1ff, 0x2, 0x8]}, 0x5c) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e24, 0x101, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, 0x281}, {0xa, 0x4e23, 0x82d, @mcast1}, 0x7, [0x1, 0x7d, 0xbc6, 0x4, 0x9, 0x1, 0x4, 0xffffffffffffffff]}, 0x5c) 03:37:00 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/protocols\x00') listen(r0, 0x100) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/btrfs-control\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vcs\x00', 0x121800, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, 0x0, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, 0x0, 0xce) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) syz_open_dev$media(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x0, 0x0) ioprio_get$uid(0x3, 0x0) exit_group(0x0) r2 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) sysfs$2(0x2, 0x0, &(0x7f0000000340)=""/164) setxattr$security_smack_entry(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='security.SMACK64\x00', &(0x7f00000002c0)='GPL,md5summime_type\x00', 0x14, 0x2) sendmsg(r2, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1}], 0x1}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000001700)={{{@in=@multicast2, @in6=@loopback}}, {{@in=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f0000001800)=0xe8) 03:37:00 executing program 1: syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r0, 0x0) madvise(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xb) mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0x0, 0x2000000208972, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000b14000/0x3000)=nil, 0x3000, 0x1020000000a) clone(0x2404, 0x0, 0x0, 0x0, 0x0) [ 485.245780][T21153] *** Guest State *** [ 485.303960][T21153] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 485.331664][T21153] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 485.370654][T21153] CR3 = 0x0000000000000000 [ 485.386329][T21153] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 485.405583][T21153] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:00 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40000d) [ 485.425241][T21153] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 485.453334][T21153] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.485539][T21153] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.566325][T21153] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.576371][T21153] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.586174][T21153] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.595206][T21153] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.604247][T21153] GDTR: limit=0x00000000, base=0x0000000000000000 [ 485.616842][T21153] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.627185][T21153] IDTR: limit=0x00000000, base=0x0000000000000000 [ 485.635941][T21153] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.644638][T21153] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 485.651783][T21153] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 485.659961][T21153] Interruptibility = 00000000 ActivityState = 00000000 [ 485.666884][T21153] *** Host State *** [ 485.670852][T21153] RIP = 0xffffffff811b3240 RSP = 0xffff8880594ff8e0 [ 485.677553][T21153] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 485.684717][T21153] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 485.693269][T21153] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 485.699932][T21153] CR0=0000000080050033 CR3=0000000059306000 CR4=00000000001426f0 [ 485.707647][T21153] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 485.715055][T21153] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 485.721886][T21153] *** Control State *** [ 485.726045][T21153] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 485.733458][T21153] EntryControls=0000d1ff ExitControls=002fefff [ 485.739673][T21153] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 485.747300][T21153] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 485.755275][T21153] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 485.762618][T21153] reason=80000021 qualification=0000000000000000 [ 485.770740][T21153] IDTVectoring: info=00000000 errcode=00000000 [ 485.776905][T21153] TSC Offset = 0xfffffef9bc353fa0 [ 485.781981][T21153] TPR Threshold = 0x00 [ 485.786057][T21153] EPT pointer = 0x0000000050d4401e [ 485.848502][T21183] *** Guest State *** [ 485.852535][T21183] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 485.862221][T21183] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 485.872193][T21183] CR3 = 0x0000000000000000 [ 485.880449][T21183] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 485.887141][T21183] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 485.894163][T21183] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 485.901590][T21183] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.910421][T21183] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.919233][T21183] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.928057][T21183] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.936733][T21183] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.945463][T21183] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.954174][T21183] GDTR: limit=0x00000000, base=0x0000000000000000 [ 485.962981][T21183] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.971726][T21183] IDTR: limit=0x00000000, base=0x0000000000000000 [ 485.980507][T21183] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 485.989247][T21183] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 485.996358][T21183] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 486.004538][T21183] Interruptibility = 00000000 ActivityState = 00000000 [ 486.012006][T21183] *** Host State *** [ 486.015899][T21183] RIP = 0xffffffff811b3240 RSP = 0xffff8880551778e0 [ 486.022699][T21183] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 486.029875][T21183] FSBase=00007effb5ee4700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 486.038485][T21183] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 486.045076][T21183] CR0=0000000080050033 CR3=0000000059306000 CR4=00000000001426f0 [ 486.052857][T21183] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 486.060270][T21183] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 486.067008][T21183] *** Control State *** [ 486.071275][T21183] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 486.078770][T21183] EntryControls=0000d1ff ExitControls=002fefff [ 486.084936][T21183] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:37:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x200000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:01 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400009) 03:37:01 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dmmidi(0x0, 0x0, 0x200002) r1 = socket$inet6(0xa, 0x3, 0x3a) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000200)) getresgid(0x0, 0x0, &(0x7f0000000580)) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000600)='/dev/net/tun\x00', 0x0, 0x0) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, 0x0) ioctl$TIOCLINUX7(0xffffffffffffffff, 0x541c, &(0x7f0000000680)={0x7, 0x5d5753e5}) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000380)=""/216, 0xd8, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r2, &(0x7f0000000000)={0x1}) openat$rfkill(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/rfkill\x00', 0x0, 0x0) mmap(&(0x7f000007e000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) setsockopt$inet6_int(r1, 0x29, 0xc8, 0x0, 0x0) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x3, @local, 0x1}, {0xa, 0x4e20, 0x0, @mcast1, 0x7d}, 0x0, [0xfffffffffffffe00, 0x9, 0x0, 0x7a1, 0x20, 0x1ff, 0x2, 0x8]}, 0x5c) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r1, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e24, 0x101, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000]}, 0x281}, {0xa, 0x4e23, 0x82d, @mcast1}, 0x7, [0x1, 0x7d, 0xbc6, 0x4, 0x9, 0x1, 0x4, 0xffffffffffffffff]}, 0x5c) 03:37:01 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/protocols\x00') listen(r0, 0x100) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/btrfs-control\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vcs\x00', 0x121800, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, 0x0, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, 0x0, 0xce) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) syz_open_dev$media(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x0, 0x0) ioprio_get$uid(0x3, 0x0) exit_group(0x0) r2 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) sysfs$2(0x2, 0x0, &(0x7f0000000340)=""/164) setxattr$security_smack_entry(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='security.SMACK64\x00', &(0x7f00000002c0)='GPL,md5summime_type\x00', 0x14, 0x2) sendmsg(r2, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1}], 0x1}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000001700)={{{@in=@multicast2, @in6=@loopback}}, {{@in=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f0000001800)=0xe8) 03:37:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:01 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40000f) [ 486.092620][T21183] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 486.100046][T21183] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 486.107357][T21183] reason=80000021 qualification=0000000000000000 [ 486.114505][T21183] IDTVectoring: info=00000000 errcode=00000000 [ 486.121233][T21183] TSC Offset = 0xfffffef9bc353fa0 [ 486.126261][T21183] TPR Threshold = 0x00 [ 486.130462][T21183] EPT pointer = 0x0000000050d4401e 03:37:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair(0x19, 0x6, 0x5, &(0x7f0000000000)={0xffffffffffffffff}) r4 = geteuid() setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@empty, @in6=@local, 0x4e23, 0x8, 0x4e23, 0x4, 0xa, 0xa0, 0x80, 0x0, 0x0, r4}, {0x415, 0x5, 0x1, 0x5, 0x8000, 0x2, 0x7fffffff, 0x3}, {0x1, 0x81, 0xffffffff, 0xfffffffffffffeff}, 0x5, 0x6e6bbf, 0x1, 0x1, 0x2, 0x1}, {{@in6=@loopback, 0x4d2, 0x7e}, 0x4a9e1cef0b1ecfa2, @in6=@mcast1, 0x34ff, 0x7, 0x0, 0x2, 0x8, 0x65f7, 0x9}}, 0xe8) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) r5 = syz_open_dev$dri(&(0x7f0000000040)='/dev/dri/card#\x00', 0xfffffffffffffba4, 0x80) ioctl$DRM_IOCTL_ADD_BUFS(r5, 0xc0206416, &(0x7f0000000080)={0xfffffffffffffffc, 0x7, 0x7ff, 0xffffffffffff0001, 0x1}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:01 executing program 4: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f000045fff8)={0x0, 0x0}) ptrace(0x4207, r1) ptrace$setopts(0x4200, r1, 0x0, 0x0) r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_TRY_DECODER_CMD(r2, 0xc0485661, &(0x7f0000000040)={0x7, 0x1, @start={0x7e4, 0x1}}) 03:37:01 executing program 5: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/protocols\x00') listen(r0, 0x100) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/btrfs-control\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280)='/dev/vcs\x00', 0x121800, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, 0x0, &(0x7f0000000100)) bpf$PROG_LOAD(0x5, 0x0, 0xce) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x1e, 0x0, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, 0x0) syz_open_dev$media(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x0, 0x0) ioprio_get$uid(0x3, 0x0) exit_group(0x0) r2 = socket$inet(0x2, 0x80001, 0x84) bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) sysfs$2(0x2, 0x0, &(0x7f0000000340)=""/164) setxattr$security_smack_entry(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='security.SMACK64\x00', &(0x7f00000002c0)='GPL,md5summime_type\x00', 0x14, 0x2) sendmsg(r2, &(0x7f000001afc8)={&(0x7f0000006000)=@in={0x2, 0x4e20, @loopback}, 0x80, &(0x7f0000007f80)=[{&(0x7f00000001c0)='*', 0x1}], 0x1}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000001700)={{{@in=@multicast2, @in6=@loopback}}, {{@in=@loopback}, 0x0, @in6=@mcast2}}, &(0x7f0000001800)=0xe8) 03:37:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:01 executing program 1: openat$cuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cuse\x00', 0x2, 0x0) r0 = syz_open_dev$adsp(&(0x7f0000000240)='/dev/adsp#\x00', 0x3, 0x40) geteuid() r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r1, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000280), 0x8) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) listen(r1, 0x7) getsockopt$inet_udp_int(r0, 0x11, 0x67, &(0x7f00000000c0), &(0x7f0000000100)=0x4) ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x4000040502, 0x26) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000000)={0x0}, 0x0) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000180)={r2, 0x10001}, 0x0) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = accept4(r1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) close(r4) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) 03:37:01 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0x18f, 0x8000) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000180)={@in6={{0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, [], 0xe}, 0x100000000}}, 0x0, 0xff, 0x0, "969f9cd7ab8a7358ca857b6f68db3772337fd33a0badbe59e7b12bc93f19d140dd802e0c0e05f98941872a1b248420d669d32d16624611817b50cb07c55e4d56457fd5c8bda64aa9cbbb53989dde3e6c"}, 0xd8) ioctl(r0, 0x1000008912, &(0x7f0000000100)="0adc1f123c123f3188b070") r2 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x200000, 0x0) ioctl$SIOCRSACCEPT(r2, 0x89e3) r3 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r3, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f0000000040)=0x100000002, 0xffffffffffffff0f) sendmsg$nl_generic(r3, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x1c, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x8, 0xc, @pid}]}, 0x1c}}, 0x0) [ 486.439397][T21219] *** Guest State *** [ 486.443419][T21219] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 486.459340][T21219] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 486.491851][T21219] CR3 = 0x0000000000000000 [ 486.499989][T21219] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 486.519031][T21219] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:02 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400010) [ 486.556449][T21219] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 486.587421][T21219] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.616164][T21219] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:02 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8), 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 486.697578][T21219] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.706323][T21219] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.728501][ C1] net_ratelimit: 20 callbacks suppressed [ 486.728530][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 486.740844][ C1] protocol 88fb is buggy, dev hsr_slave_1 03:37:02 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40000f) 03:37:02 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000100)={'bridge_slave_0\x00\x04'}) r2 = socket$inet6(0xa, 0x803, 0x3) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) accept$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000140)=0x1c) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000000)={@dev, 0x0, r3}) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000040)={'bridge_slave_0\x00?', 0x22000000c0ffffff}) 03:37:02 executing program 5: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x2000001, 0x0) ioctl$DRM_IOCTL_AUTH_MAGIC(r0, 0x40046411, &(0x7f00000000c0)=0x1) r1 = syz_open_dev$vcsn(&(0x7f00000001c0)='/dev/vcs#\x00', 0x6c9, 0x480001) r2 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0xffffffff, 0x800) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000002c0), &(0x7f0000000300)=0xc) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f0000000340)={0x0, @in={{0x2, 0x4e24, @broadcast}}, 0x24f, 0x20, 0x5, 0x6, 0x9}, &(0x7f0000000400)=0x98) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000080)={r3, 0x7fff}, &(0x7f0000000100)=0x8) ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f0000000240)={&(0x7f0000000200)=[0x4, 0x4, 0x400], 0x3, 0x0, 0x2, 0x3ff, 0x77, 0xdbe7, {0x9, 0x1, 0x7f, 0x100000001, 0x7, 0x401, 0x951d, 0x1, 0x80, 0x8, 0x3, 0x0, 0x6, 0x80f, "39ae73946148f7315d5a3de2dac608417adf77d5b5578dad670c50114b391ff6"}}) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f0000000140)=@sack_info={r4, 0xffffffffffffe8ff, 0x3}, &(0x7f0000000180)=0xc) ioctl(r0, 0xffffffffffffffbd, &(0x7f0000000200)) [ 486.807441][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 486.813272][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 486.837680][T21219] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.846434][T21219] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.896124][T21219] GDTR: limit=0x00000000, base=0x0000000000000000 [ 486.927554][T21219] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.942196][T21219] IDTR: limit=0x00000000, base=0x0000000000000000 [ 486.953212][T21219] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 486.966079][T21219] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 486.975440][T21219] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 486.996372][T21219] Interruptibility = 00000000 ActivityState = 00000000 [ 487.005608][T21219] *** Host State *** [ 487.013884][T21219] RIP = 0xffffffff811b3240 RSP = 0xffff8880555d78e0 [ 487.039303][T21219] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 487.053977][T21219] FSBase=00007effb5ee4700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 487.065985][T21219] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 487.080000][T21219] CR0=0000000080050033 CR3=000000009f18f000 CR4=00000000001426e0 [ 487.091883][T21219] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 487.101572][T21219] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 487.112417][T21219] *** Control State *** [ 487.116632][T21219] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 487.127285][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 487.133090][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 487.147143][T21219] EntryControls=0000d1ff ExitControls=002fefff [ 487.154209][T21219] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 487.168137][T21219] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 487.175549][T21219] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 487.190592][T21219] reason=80000021 qualification=0000000000000000 [ 487.202092][T21219] IDTVectoring: info=00000000 errcode=00000000 [ 487.211490][T21219] TSC Offset = 0xfffffef91f26d3f0 [ 487.217005][T21219] TPR Threshold = 0x00 [ 487.231256][T21219] EPT pointer = 0x0000000059cc101e 03:37:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x101200, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:02 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8), 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:02 executing program 5: ioctl$sock_inet_SIOCSIFBRDADDR(0xffffffffffffffff, 0x891a, 0x0) r0 = openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) ioctl$VIDIOC_ENUM_DV_TIMINGS(r0, 0xc0945662, 0x0) syz_open_dev$mouse(0x0, 0x0, 0x0) r2 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = semget(0x1, 0x7, 0x20) syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x5, 0x80040) semctl$SEM_STAT(r4, 0x3, 0x12, &(0x7f0000000040)=""/37) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, r5, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x70500000000000, 0x0, 0x0, 0x1000000) 03:37:02 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x4000e0) 03:37:02 executing program 4: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) write$FUSE_GETXATTR(r0, &(0x7f0000000180)={0x18, 0x0, 0x2, {0x1}}, 0x18) ioctl$TCSBRKP(r0, 0x5425, 0x80000000000006) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, @thr={&(0x7f0000000040), 0x0}}, 0x0) syz_open_dev$sndpcmp(0x0, 0x0, 0x0) r2 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r2, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r2, 0x20000000) r3 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r3, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = accept4(r2, &(0x7f00004d4000)=@nl=@proc, &(0x7f0000000000)=0x80, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080), 0xd, 0x0, &(0x7f00000009c0)="c42ae020e0316222368f6025bc"}) prctl$PR_GET_CHILD_SUBREAPER(0x25) setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000080)=0x4, 0x4) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) perf_event_open(&(0x7f00000001c0)={0x0, 0x70, 0x100000001, 0x3, 0x47df, 0x1, 0x0, 0x0, 0x38040, 0x2, 0x3, 0x0, 0x10000, 0x6, 0x0, 0x800, 0x0, 0x0, 0x0, 0x9991, 0x1, 0x600000000000, 0xffffffffffff4017, 0x7, 0xdc6, 0x0, 0x5a, 0x6, 0x4, 0x0, 0x9, 0x3808, 0xc86, 0xffffffffffffdcca, 0x0, 0x0, 0x101, 0x9, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x7f}, 0x0, 0x3ff, 0x9, 0x3, 0x7, 0x0, 0x5}, 0x0, 0xf, r1, 0xa) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000240)='/proc/capi/capi20ncci\x00', 0x4002, 0x0) sendmmsg(r4, &(0x7f0000003d40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001d40)}}, {{&(0x7f0000002300)=@nl, 0x80, &(0x7f0000003740), 0x0, &(0x7f00000037c0)}}], 0x2, 0x0) openat$ashmem(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ashmem\x00', 0x0, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000f80)={r0, &(0x7f0000000e80)="7638314ea6935668377c5e9d73f73c882612994c44db0d7ed2edbbd3d912e8aa6daf8d7abb7636898913c1f94e7a488dd99235b4d0c41bef650795461d1861641acf2e038aae278bf99e4a6749d0dc4467a4e975b9fcc0378f6a438fddd414801b75135ddb0aaedf04d5ef1a6602bffbb19d6686f381db838b611fd4306428459e3d368662c6753a59", 0x0}, 0x20) r5 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r5, 0x6, 0x1000000000020, &(0x7f0000000040)=0x40000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000001880)='vegas\x00', 0x6) setsockopt$inet_tcp_int(r5, 0x6, 0x1e, 0x0, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x22000, 0x11) sendmmsg(r5, &(0x7f0000004c80)=[{{0x0, 0x0, &(0x7f0000004b40), 0x115b, &(0x7f0000004bc0)}}], 0x31e9cd3487dc94, 0x20004bc0) [ 487.287711][T21243] bridge0: port 1(bridge_slave_0) entered disabled state 03:37:02 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8), 0x0) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 487.341492][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 487.363017][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 487.370168][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 487.447684][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 487.454600][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 487.461705][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 487.467841][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:03 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab", 0x4) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:03 executing program 5: r0 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) close(0xffffffffffffffff) r1 = memfd_create(&(0x7f0000000140)='\x00', 0x0) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000080)={0x4, 0x0, [{0xb6f, 0x0, 0x3}, {0xfff, 0x0, 0x4}, {0xbb7, 0x0, 0xe8f}, {0x8b1, 0x0, 0x1}]}) fcntl$setstatus(r1, 0x4, 0x42800) sendfile(r1, r0, 0x0, 0x1) ioctl$SIOCAX25CTLCON(r0, 0x89e8, &(0x7f0000000000)={@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x5, 0x4, 0x1, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, @null, @bcast, @default, @bcast]}) 03:37:03 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab", 0x4) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:03 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x4000f0) [ 487.944739][T21244] bridge0: port 1(bridge_slave_0) entered disabled state [ 487.979606][T21260] bridge0: port 1(bridge_slave_0) entered blocking state [ 487.986699][T21260] bridge0: port 1(bridge_slave_0) entered forwarding state 03:37:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x400, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_ENABLE_CAP_CPU(r2, 0xc008ae88, &(0x7f0000000000)={0x7b, 0x0, [0x17]}) 03:37:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) r3 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2) setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000000040)=0x4, 0x4) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:03 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab", 0x4) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:03 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab", 0x4) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:03 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x4000e0) 03:37:03 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40043f) 03:37:03 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b", 0x6) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:03 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni-avx2\x00'}, 0x1ba) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="1cf548974376d40fe9ec773e29e36694b7b8245670843d26fa91ab561993f0c54e19b4b2ea6355", 0x27) r1 = accept$alg(r0, 0x0, 0x0) readv(r1, &(0x7f00000007c0)=[{&(0x7f00000001c0)=""/104, 0x34910}], 0x1) clock_gettime(0x100000000000000, &(0x7f00000003c0)={0x0, 0x0}) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000440)='/dev/vga_arbiter\x00', 0x200000, 0x0) getsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000540), 0x10) ioctl$SCSI_IOCTL_SEND_COMMAND(r4, 0x1, &(0x7f0000001800)={0x1000, 0x3f, 0x36, "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"}) getpeername$tipc(r4, &(0x7f0000000480)=@id, &(0x7f00000004c0)=0x10) recvmmsg(r1, &(0x7f0000000180)=[{{&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000000240)=""/115, 0x73}, {&(0x7f00000002c0)=""/111, 0x6f}], 0x3, &(0x7f0000000340)=""/122, 0x7a}, 0x485}], 0x1, 0x0, &(0x7f0000000400)={r2, r3+30000000}) ioctl$SG_GET_NUM_WAITING(r4, 0x227d, &(0x7f0000000500)) [ 488.112408][T21298] *** Guest State *** [ 488.132384][T21298] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:03 executing program 1: r0 = syz_open_dev$media(0x0, 0x0, 0x0) mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mount(0x0, &(0x7f000000aff8)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000000)) r1 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x7ff, 0x2000) getpid() fcntl$getown(r0, 0x9) r2 = getpgid(0xffffffffffffffff) sched_setaffinity(r2, 0xffffffc3, &(0x7f0000000040)=0x1) keyctl$restrict_keyring(0x7, 0x0, 0x0, 0x0) stat(0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000340)='./file0\x00') syz_open_dev$usbmon(0x0, 0x0, 0x0) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f0000000140), &(0x7f0000000180)=0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380), 0x0) stat(&(0x7f00000003c0)='./file0\x00', 0x0) [ 488.179005][T21298] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 488.193511][T21298] CR3 = 0x0000000000000000 [ 488.202724][T21298] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 488.209801][T21298] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:03 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b", 0x6) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 488.226820][T21298] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 488.239924][T21298] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:03 executing program 5: r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000200)=""/79, 0xfffffd63) lseek(r0, 0xfffffffffffffffc, 0x1) getdents(r0, 0x0, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') 03:37:03 executing program 4: bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x40000000001, 0x4, &(0x7f0000346fc8)=ANY=[@ANYBLOB="1800000000b5493540e50eb34fa65809e9a1f75b"], &(0x7f0000f6bffb)='GPL\x1d', 0x80, 0x4e1, &(0x7f00001a7f05)=""/251}, 0x48) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x18200, 0x0) accept$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000080)=0x14) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000000c0)={r1, 0x1, 0x6, @local}, 0x10) 03:37:03 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x401f00) [ 488.276470][T21298] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.294920][T21298] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.354753][T21298] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.415077][T21298] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.431316][T21298] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.458760][T21298] GDTR: limit=0x00000000, base=0x0000000000000000 [ 488.474455][T21298] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.483597][T21298] IDTR: limit=0x00000000, base=0x0000000000000000 [ 488.498209][T21298] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 488.518709][T21298] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 488.525981][T21298] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 488.540181][T21298] Interruptibility = 00000000 ActivityState = 00000000 [ 488.549280][T21298] *** Host State *** [ 488.553894][T21298] RIP = 0xffffffff811b3240 RSP = 0xffff88805338f8e0 [ 488.564552][T21298] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 488.574015][T21298] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 488.582883][T21298] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 488.590849][T21298] CR0=0000000080050033 CR3=000000004ea11000 CR4=00000000001426f0 [ 488.598796][T21298] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 488.606294][T21298] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 488.616203][T21298] *** Control State *** [ 488.620436][T21298] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 488.627915][T21298] EntryControls=0000d1ff ExitControls=002fefff [ 488.634071][T21298] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 488.641740][T21298] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 488.649171][T21298] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 488.656514][T21298] reason=80000021 qualification=0000000000000000 [ 488.663542][T21298] IDTVectoring: info=00000000 errcode=00000000 [ 488.669745][T21298] TSC Offset = 0xfffffef8333cf40d [ 488.674763][T21298] TPR Threshold = 0x00 [ 488.678879][T21298] EPT pointer = 0x0000000050d4401e 03:37:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:04 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b", 0x6) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:04 executing program 1: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/cache_bypass\x00', 0x2, 0x0) write$cgroup_pid(r0, &(0x7f0000000100), 0x12) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000140)=0x0) migrate_pages(r1, 0x8000, &(0x7f0000000000)=0x5f53c38a, &(0x7f0000000080)=0xffff0) 03:37:04 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet(0x10, 0x200000003, 0x0) sendmsg(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="240000002c0007031dfffd946fa28300cee60a0009000000001d85680c1ba3a2ff030000280000001100ffffba16a0aa1c0009b3ebea8653b1cc7e63975c0ac47b6268e3966cf055d90f15a3", 0x4c}], 0x1}, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in6}}, &(0x7f00000002c0)=0xe8) fstat(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) chown(&(0x7f0000000180)='./file0\x00', r2, r3) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm_plock\x00', 0x311a00, 0x0) ioctl$SG_EMULATED_HOST(r4, 0x2203, &(0x7f0000000140)) 03:37:04 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xb7, "3f8d74f1ae247b29e44ff977173037b72c7d44f74455d1d6c5f3d6863399185e7641dabea2476893ff9d411e7672c54037a78984dfcad0673f1472bbe723a58bb1bdffa68edd44ada87bfb58ed584f3f89cda9af7984ffeeb63f5f86c8e41f55104a6adb74efe05c3fbf40fabd9e2bf39d537d35fc10d8d54c1a2ab52c7f31526571526acc79c61db0465fd94448a606d55afbb941c705cc2f726d9181c444d76e800b621ec547ea073c361ddcea32f79164d077aa7fa6"}, &(0x7f00000000c0)=0xdb) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x200, 0x0) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x2c, 0x2d, 0x1, 0x1c, 0x6, 0x88db, 0x1, 0xfd, 0xffffffffffffffff}) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$TIOCSTI(r2, 0x40186f40, 0x713000) 03:37:04 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x408403) 03:37:04 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x401f00) [ 488.824168][T21341] ubi0: attaching mtd0 [ 488.842551][T21350] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 488.852115][T21341] ubi0: scanning is finished [ 488.863721][T21341] ubi0: empty MTD device detected 03:37:04 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7a", 0x7) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 488.878571][T21349] *** Guest State *** [ 488.906191][T21350] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 488.915549][T21349] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:04 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7a", 0x7) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 488.975326][T21349] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 488.994067][T21349] CR3 = 0x0000000000000000 [ 488.999083][T21349] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 489.005914][T21349] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:04 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xf, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x2e, 0x17, 0x0, 0x0, 0xffffffe4}}, &(0x7f0000000000)='EP\xd4\x00\x1f\x91\xeb/W\xb72$C0%\x03\x9c0\x96\xb2\fkC\x93H\xbfh\x9c\b`\x857\xd6\">c\xad\xc0bO\xba\xe2\xe1\t5\x9d\xcei\"2L\xcc\x13\x16\vh\xca\xe6C\x06\x97%\x9d\xd5-\x1fs\xe1j\xdc5\x92\xd0)%\xdf\xfa\xe8^\x9c\xd29\x8clg\xc8\x7f\xb5\xb1&\x02\xf1E\xb4\x84\xbeE\x91)f\xe8\xb7\xe2\xf6`i\xc5m\xd7l\x1d\xc1\x12\x01<:kM\xe9\x99\xcd\xcd\xc8\x85Z\xee47\xdc\xc8u\x80\xcf\xbeTo\xbb\xfb\xc0\xebV\xd8\xbb\xbe\xa2\x90J|s\xc2'}, 0x48) ioctl$RNDGETENTCNT(r1, 0x80045200, &(0x7f00000000c0)) [ 489.020730][T21349] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 489.031811][T21349] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.043925][T21349] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:04 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40f000) 03:37:04 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x401f00) [ 489.102563][T21341] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB) [ 489.126590][T21341] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 489.133620][T21349] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.152030][T21341] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 489.164109][T21349] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.183314][T21341] ubi0: VID header offset: 64 (aligned 64), data offset: 128 [ 489.203086][T21341] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 489.211639][T21349] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.216443][T21341] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 489.232608][T21341] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3680150875 [ 489.242369][T21349] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.243452][T21341] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 489.263170][T21364] ubi0: background thread "ubi_bgt0d" started, PID 21364 [ 489.284289][T21349] GDTR: limit=0x00000000, base=0x0000000000000000 [ 489.301711][T21349] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.310888][T21349] IDTR: limit=0x00000000, base=0x0000000000000000 [ 489.318348][T21375] ubi: mtd0 is already attached to ubi0 [ 489.320046][T21349] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.334801][T21349] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 489.342118][T21349] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 489.350582][T21349] Interruptibility = 00000000 ActivityState = 00000000 [ 489.357955][T21349] *** Host State *** [ 489.362515][T21349] RIP = 0xffffffff811b3240 RSP = 0xffff88821b2ff8e0 [ 489.384420][T21349] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 489.391935][T21349] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 489.403317][T21349] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 489.410401][T21349] CR0=0000000080050033 CR3=00000000a570a000 CR4=00000000001426f0 [ 489.418500][T21349] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 489.428347][T21349] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 489.435117][T21349] *** Control State *** [ 489.439352][T21349] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 489.446810][T21349] EntryControls=0000d1ff ExitControls=002fefff [ 489.452963][T21349] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 489.460717][T21349] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 489.468282][T21349] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 489.475548][T21349] reason=80000021 qualification=0000000000000000 [ 489.482632][T21349] IDTVectoring: info=00000000 errcode=00000000 [ 489.488841][T21349] TSC Offset = 0xfffffef7cacaed1b [ 489.493897][T21349] TPR Threshold = 0x00 [ 489.498032][T21349] EPT pointer = 0x00000000a059001e 03:37:05 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x408403) 03:37:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7a", 0x7) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:05 executing program 1: read$FUSE(0xffffffffffffffff, 0x0, 0x0) open(&(0x7f0000000080)='./file0\x00', 0x101000, 0x3e) socket$rds(0x15, 0x5, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x4002, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000040)=0x3) 03:37:05 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xb7, "3f8d74f1ae247b29e44ff977173037b72c7d44f74455d1d6c5f3d6863399185e7641dabea2476893ff9d411e7672c54037a78984dfcad0673f1472bbe723a58bb1bdffa68edd44ada87bfb58ed584f3f89cda9af7984ffeeb63f5f86c8e41f55104a6adb74efe05c3fbf40fabd9e2bf39d537d35fc10d8d54c1a2ab52c7f31526571526acc79c61db0465fd94448a606d55afbb941c705cc2f726d9181c444d76e800b621ec547ea073c361ddcea32f79164d077aa7fa6"}, &(0x7f00000000c0)=0xdb) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x200, 0x0) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x2c, 0x2d, 0x1, 0x1c, 0x6, 0x88db, 0x1, 0xfd, 0xffffffffffffffff}) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$TIOCSTI(r2, 0x40186f40, 0x713000) 03:37:05 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$dspn(&(0x7f00000004c0)='/dev/dsp#\x00', 0x2, 0x400) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r3, 0x40505331, &(0x7f0000000500)={{0x80000001, 0x1000}, {0x3, 0x5}, 0x5, 0x4, 0x2}) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) r4 = accept(0xffffffffffffff9c, &(0x7f0000000000)=@in={0x2, 0x0, @initdev}, &(0x7f0000000080)=0x80) setsockopt$nfc_llcp_NFC_LLCP_RW(r4, 0x118, 0x0, &(0x7f0000000140)=0x8, 0x4) setsockopt$inet_tcp_buf(r4, 0x6, 0x0, &(0x7f00000001c0)="f089ed20f7c02cfe4c626a400a9e190a0bbf117f41cda91ea0b63c68574237e3dffe5d57b54f41452e3d1db7c6cb74bb17c327a30e6105d234b5cbdff1c946ec1f30eee24a22c77fe88bced56c12ba7a208ef6bbd13eb008daced43e7aa028f2a5f900aa6c2645923b1dbe6caf89a055c5b83319235db0f9f4f9f8a4d960535ec845323a033c6d2537be2bdd8505f93701d4d993f571721e5637c9c738741f73f5b8b53b6014d755a63b370734612461cacabdf4139de6ded3dba74240798ae11736cbb804eef3185fd5256066eea4ea206508ffbd80a2cdae15072f7fc943ff90087b49ec05da10832c3b65d549", 0xee) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000340)=[@text64={0x40, &(0x7f00000002c0)="36660f388205f8170000c48215bcc5450f00d6b805000000b984a400000f01d9b805000000b94c8900000f01c1460f3066ba210066b8000066efc423bd0f830c000000d466400f3880a7e738fffff366470f18d5", 0x54}], 0x1, 0x60, &(0x7f00000004c0), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:05 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40ff01) 03:37:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:05 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40f000) [ 489.691215][T21391] ubi: mtd0 is already attached to ubi0 03:37:05 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xb7, "3f8d74f1ae247b29e44ff977173037b72c7d44f74455d1d6c5f3d6863399185e7641dabea2476893ff9d411e7672c54037a78984dfcad0673f1472bbe723a58bb1bdffa68edd44ada87bfb58ed584f3f89cda9af7984ffeeb63f5f86c8e41f55104a6adb74efe05c3fbf40fabd9e2bf39d537d35fc10d8d54c1a2ab52c7f31526571526acc79c61db0465fd94448a606d55afbb941c705cc2f726d9181c444d76e800b621ec547ea073c361ddcea32f79164d077aa7fa6"}, &(0x7f00000000c0)=0xdb) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x200, 0x0) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x2c, 0x2d, 0x1, 0x1c, 0x6, 0x88db, 0x1, 0xfd, 0xffffffffffffffff}) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$TIOCSTI(r2, 0x40186f40, 0x713000) [ 489.751923][T21401] *** Guest State *** [ 489.761597][T21401] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 489.775505][T21401] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:05 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40ffe0) 03:37:05 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") r1 = socket$inet(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000040)={0x2, 0xe21}, 0x10) r2 = socket$inet(0x2, 0x2, 0x0) bind$inet(r2, &(0x7f0000eed000)={0x2, 0x4e21}, 0x10) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ubi_ctrl\x00', 0x2000, 0x0) ioctl$KDGKBLED(r3, 0x4b64, &(0x7f00000001c0)) syz_emit_ethernet(0xfed1, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffe0ffffffffffffbab75b9e9d54985dca261b244c05ffe2000089bec6efb3ff08004500011c0000000000119078ac14"], 0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) write$cgroup_type(r4, &(0x7f0000000080)='threaded\x00', 0x9) finit_module(r0, &(0x7f0000000100)='threaded\x00', 0x1) setsockopt$netrom_NETROM_T2(r3, 0x103, 0x2, &(0x7f0000000200), 0x4) [ 489.799056][T21401] CR3 = 0x0000000000000000 [ 489.825661][T21401] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 03:37:05 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40f000) [ 489.866469][T21401] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(0xffffffffffffffff, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 489.928130][T21401] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 489.935613][T21401] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 489.945170][T21415] ubi: mtd0 is already attached to ubi0 03:37:05 executing program 5: ioctl(0xffffffffffffffff, 0x0, 0x0) mount(0x0, &(0x7f0000026ff8)='./file0\x00', 0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x5) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) r2 = openat$vfio(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/vfio/vfio\x00', 0x100, 0x0) accept4(r2, &(0x7f0000000700)=@caif, &(0x7f0000000780)=0x80, 0x80000) syz_mount_image$btrfs(0x0, &(0x7f00000002c0)='./file1/file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="55c4d2ffd38b0d51b15a9c3c16700893c1e31d2906b6a6f79778e1cebdf9068b02a9df9f9b2228c1a4cd4c9f52210a8777961267d5f157eb31cd8e6a4a828448b466cd963a7447655ec40fa2d4687785c21ba0c49a66b2b0465e0b9d353029086dcf88c6973e9e938692a5cbde2ddc12562a39c768a035efe8a25e05d5d56157370789c9564733570370da137cb76c7cb649e81529"]) syz_mount_image$ntfs(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = shmget(0xffffffffffffffff, 0x3000, 0x10, &(0x7f0000ffb000/0x3000)=nil) shmctl$SHM_LOCK(r3, 0xb) ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000800)) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000c40)=ANY=[]) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000001180)) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000840)=ANY=[@ANYBLOB="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"]) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000940)='/dev/sequencer\x00', 0x80000, 0x0) syz_read_part_table(0x7fffffff, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @loopback}}, [0x97, 0x48a7, 0x0, 0x5, 0x60e, 0x0, 0x0, 0xff, 0x0, 0x8340, 0x36, 0x0, 0x93d, 0x0, 0x1ff]}, 0x0) r4 = creat(&(0x7f0000000100)='./file0\x00', 0x0) syz_mount_image$bfs(&(0x7f00000000c0)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x80000004, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="cefaad1bb83c000000dc", 0xa}], 0x0, 0x0) ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, 0x0) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0) flistxattr(r4, &(0x7f0000000a80)=""/186, 0xba) ioctl$TCSETS(r5, 0x40045431, &(0x7f00003b9fdc)) recvmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x55, &(0x7f0000000180)=[{&(0x7f0000000980)=""/52, 0x34}, {&(0x7f0000000240)=""/148, 0x94}, {&(0x7f0000000400)=""/27}], 0x3, &(0x7f0000000300)=""/198, 0xc6}, 0x0) ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000440)=r1) [ 489.987126][T21401] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.045922][T21401] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:05 executing program 4: clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x4) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000180)={'security\x00', 0xb7, "3f8d74f1ae247b29e44ff977173037b72c7d44f74455d1d6c5f3d6863399185e7641dabea2476893ff9d411e7672c54037a78984dfcad0673f1472bbe723a58bb1bdffa68edd44ada87bfb58ed584f3f89cda9af7984ffeeb63f5f86c8e41f55104a6adb74efe05c3fbf40fabd9e2bf39d537d35fc10d8d54c1a2ab52c7f31526571526acc79c61db0465fd94448a606d55afbb941c705cc2f726d9181c444d76e800b621ec547ea073c361ddcea32f79164d077aa7fa6"}, &(0x7f00000000c0)=0xdb) r1 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x200, 0x0) ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000040)={0x2c, 0x2d, 0x1, 0x1c, 0x6, 0x88db, 0x1, 0xfd, 0xffffffffffffffff}) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$TIOCSTI(r2, 0x40186f40, 0x713000) [ 490.088298][T21401] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.101828][T21401] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.146238][T21401] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.174547][T21401] GDTR: limit=0x00000000, base=0x0000000000000000 [ 490.214075][T21401] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.235165][T21422] overlayfs: missing 'lowerdir' [ 490.244785][T21401] IDTR: limit=0x00000000, base=0x0000000000000000 [ 490.258128][T21425] ubi: mtd0 is already attached to ubi0 [ 490.267682][T21401] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.286231][T21401] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 490.293389][T21401] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 490.302045][T21401] Interruptibility = 00000000 ActivityState = 00000000 [ 490.309419][T21401] *** Host State *** [ 490.313361][T21401] RIP = 0xffffffff811b3240 RSP = 0xffff88821af678e0 [ 490.336404][T21401] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 490.343561][T21401] FSBase=00007effb5ee4700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 490.352520][T21401] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 490.364170][T21401] CR0=0000000080050033 CR3=000000005a4e0000 CR4=00000000001426e0 [ 490.375439][T21401] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 490.383216][T21401] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 490.390443][T21401] *** Control State *** [ 490.394639][T21401] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 490.403467][T21401] EntryControls=0000d1ff ExitControls=002fefff [ 490.410036][T21401] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 490.418039][T21401] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 490.425448][T21401] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 490.437055][T21401] reason=80000021 qualification=0000000000000000 [ 490.444081][T21401] IDTVectoring: info=00000000 errcode=00000000 [ 490.465626][T21401] TSC Offset = 0xfffffef7592c60df [ 490.470666][T21401] TPR Threshold = 0x00 [ 490.474752][T21401] EPT pointer = 0x000000004ea1101e [ 490.504934][T21394] *** Guest State *** [ 490.521173][T21394] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 490.545647][T21394] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 490.555224][T21394] CR3 = 0x0000000000000000 [ 490.560033][T21394] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 490.567071][T21394] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 490.573788][T21394] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 490.581569][T21394] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.590646][T21394] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.599772][T21394] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.608952][T21394] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.618018][T21394] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.627050][T21394] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.636065][T21394] GDTR: limit=0x00000000, base=0x0000000000000000 [ 490.644786][T21394] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.653911][T21394] IDTR: limit=0x00000000, base=0x0000000000000000 [ 490.662977][T21394] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 490.672018][T21394] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 490.679478][T21394] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 490.688028][T21394] Interruptibility = 00000000 ActivityState = 00000000 [ 490.694995][T21394] *** Host State *** [ 490.699225][T21394] RIP = 0xffffffff811b3240 RSP = 0xffff88821b2ff8e0 [ 490.706364][T21394] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 490.713540][T21394] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 490.722364][T21394] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 490.730156][T21394] CR0=0000000080050033 CR3=000000005a4e0000 CR4=00000000001426e0 [ 490.738225][T21394] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 490.746005][T21394] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 490.752798][T21394] *** Control State *** [ 490.757332][T21394] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000c2 [ 490.764738][T21394] EntryControls=0000d1ff ExitControls=002fefff 03:37:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) accept$alg(r0, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:06 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/uinput\x00', 0x80000000002, 0x0) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0xf6) sigaltstack(&(0x7f0000ffe000/0x1000)=nil, 0x0) write$uinput_user_dev(r0, &(0x7f0000000bc0)={'syz0\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) [ 490.771334][T21394] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 490.779402][T21394] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 490.787191][T21394] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 490.794513][T21394] reason=80000021 qualification=0000000000000000 [ 490.801895][T21394] IDTVectoring: info=00000000 errcode=00000000 [ 490.808380][T21394] TSC Offset = 0xfffffef6f1d0318f [ 490.813449][T21394] EPT pointer = 0x0000000050db801e 03:37:06 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) vmsplice(r0, &(0x7f00000033c0)=[{&(0x7f0000000140)="17", 0x1}], 0x1, 0x0) r1 = inotify_init1(0x0) fcntl$setown(r1, 0x8, 0xffffffffffffffff) r2 = dup2(r1, r1) fcntl$getownex(r2, 0x10, &(0x7f0000000100)={0x0, 0x0}) process_vm_readv(r3, &(0x7f00000010c0)=[{&(0x7f0000002300)=""/4096, 0x1000}], 0x366, &(0x7f0000001080)=[{&(0x7f0000001000)=""/121, 0x7ffff000}], 0x6f, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") r5 = socket(0x40000000015, 0x805, 0x0) getsockopt(r5, 0x114, 0x2721, 0x0, &(0x7f0000000000)) 03:37:06 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x40fff0) 03:37:06 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xf) clone(0x0, &(0x7f0000000240), 0x0, 0x0, 0x0) recvfrom$packet(0xffffffffffffffff, 0x0, 0x0, 0xc0, 0x0, 0x0) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nullb0\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000040)=[{&(0x7f0000000400)=""/4096, 0x14ea}], 0x1, 0x0) r2 = fcntl$getown(r0, 0x9) fcntl$lock(r0, 0x0, &(0x7f0000000080)={0x3, 0x2, 0x7, 0xfff, r2}) 03:37:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) accept$alg(r0, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 490.967931][T21445] *** Guest State *** 03:37:06 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x6, 0x98000) ioctl$SIOCRSGCAUSE(r1, 0x89e0, &(0x7f00000000c0)) tee(r0, r0, 0x400, 0x7) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c12a41d88b070") mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x2, 0x32, 0xffffffffffffffff, 0x0) r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$SIOCRSGL2CALL(r2, 0x89e0, &(0x7f0000000000)=@default) sendmsg$kcm(r1, &(0x7f0000000c00)={&(0x7f0000000100)=@rc={0x1f, {0x20, 0xffffffffffffff80, 0x1000, 0xffff, 0x8001, 0x7}, 0x7f}, 0x80, &(0x7f0000000900)=[{&(0x7f0000000180)="eab6428e4384e67a4d1e35aeb981ed9bb1538aa475710d2d4d391a7e5b07ca39f650a21c21c4c9a47bf61e5edcee13e4412ca18de9bd94bc4eee546e5327b821ef9101e0b7588066ec1f486354c5066cd515f1364fd6f5170d9df3038d958349dd007b4ef225931f2f6130519bb6223f81112262fb8758a4f8993606e095cb151cd663236bb2c8c9c9335b13c0d36de90d7902c4d23a394acd2da750a6ccaef9842a7dea4c33b1b182aa00acae61557b4c3c86ab8e6faaaeb10756d6", 0xbc}, {&(0x7f0000000240)="0ead07c174fc5f36993aa19cac5eee329603feaeea92825798970d4acb84bf2ece1137d6fb235c5bc33b6d07de21a3de47a921b5f8", 0x35}, {&(0x7f0000000280)="2b9140e304053f1e3e52ca495daa0dad670c1ec7e509086d53129bedd7f8dba8fd70dd69411c2037ca84cf59d697f80c72e5b9b93738302545abbe00c49bb40e95cb1057730b0bf2125ca346a1232deb0a45e6ea8319e55049234137547563c8140c788385211bde71317e4f7bfcc0f64082de803b2b0ad86b", 0x79}, {&(0x7f0000000300)="bb24e5fb6f62ef4e6ebdaa25082b5b7b6d59931cd6a6b37bd2c2cd2a383820cbba08fe25f5bf114ae094b3b321e5e9ad06539d8e2051f70e98780dda57782aca41dad8537c30c0b6f9bfbdeb55f7eacf233be404773746a46d431085c2d13552d1b52381d368f63680ffd22aaec0590f86c707ce157e9c1ac6b2f399de76748da8165d93266f6ccbb565d30564019a51d1b6d8f7f788fe9d6f5bb05fdcc2a27421950094a77fba267eaf3350fde8d3f2675ce034ffe569628e935d23444c6dd6c46dc7e39cdab61387eea14da4e9ba9d1826", 0xd2}, {&(0x7f0000000400)="7a8057963df6dc236ab1790cb3a631762d0300cb8bb3a23b0066d07ad85cde153241263d070eb78fc5bb23c5ed09ed44799d5ddb43f643cebb0073f37fed897665804e2b5dd08f6635cde9642aee4f6ac4fa22cffa7aef1aca3a0082138864121408749ea69a1f8936d720fcdd48b59bbe45fb9b2dfc57b857f478bd666df882de611151b0e1fd6c66194ccbab9388fc106d4c85030e25a2983459be837eec4a06c40af7546dbb3827c21de2c000519b4325ecc19260ec1d08f35fdadbc70e16d170187a16bb4e52a08846e0406187a9ffdfd4fcc590bf0ce48317", 0xdb}, {&(0x7f0000000500)="9acf491b67846de1ca53fc97be84eab378cc0c2f35e74dc22b347b2368f921c98b1f0ae194352acce8f7c59eb35863a009701c5e855cd55c342fedb40f2319600e3d95f4e90ad4f806b4d6ee3ec85580594ef39b82435d3ed93c5f1e91babef97cd3fe32d4960c693cee8dbbc50ea88d835586bdf4593750e3eb097c6e0c9115f99450ae7e3cb54bc4135b018f76e6db9c708a988e96ba840c500885521cbdd388387a3e8127a60567b40f29af9da261dd5a722dd0cffcd5ea28c8e187a65ec76a2eaf8c400f532d475ec263", 0xcc}, {&(0x7f0000000600)="a873ac5b50a49faa078ea122d5c8707f4f21a39352bd65cf6db86548d33539b22f443fd6876ad7370110463c70ab82c444d8beefa44c180c4b5290423754cc94029f02c67f9b6757988f8aad0c1d858cb8c9f66827f6e7dae7a0a2a908cb7f57b4effb8bd696fa082f31e992176f69305b98916fb9cde00c3539f7d162d6a524ae088df8bc73983d25f6ef88c9559aa88a803fb8552916a1818326a935e3fe82a195568a11bac337590d26a92bd3ebed8769fdd5de53324f13734e9d", 0xbc}, {&(0x7f00000006c0)="b3c28c2698517a09ef5786c5792b7c67d2c5f1ceb2b1d595a47214d10c2b4b4026ab", 0x22}, {&(0x7f0000000700)="d81ac51dead422b5821d2e8a2cd843dbc0582da08c3b20f6b245b194ae312e29d15b3b8a43481198c3e602e920bb88b4d0ef4b3aca91c47843d2a5b935eadfe98eeeeb6226250f5ac1909ba7abb222a0e8d91ab9346e765f893b56164d40e82c3c294f2632edeac49bf5d84a804ca5c7d177f0d413d0b74ccaeedd86de540d1c55e88848c705a99608e2a74666cbc06ca450acb55782d171d8f8b0cbb704977044b69271cb411d7ae9d35771bf7d51a95f41e0790878f386464e404e21568d6fee3c77d9ccb6fe49122f04c80ec1a0371e46e48f1f", 0xd5}, {&(0x7f0000000800)="5c83378cf6f7855b5b3a298e84436002aca7a282c100211b815b4e02f50c5db3b7f4d2e82c14e46a35f432d47dae73f09ee60939a37f1535aa6e262e5ad961de7a91c5bb0e815f00cf19907e8377459c64bed7c78d4382dda80d10864e56a4132739cdde869145204266aad0461b994acb5f8f79426d651e6ab594f0cadb3539095e33fd8405245071b7d6f0a45d3757e72f991d807cf0746d4c7d7d6d90af4eb4fcb181bd2da8f66b7021f862b5f38d153b6e2da781e75fdabbb7f6002d4d7ccb4295d6", 0xc4}], 0xa, &(0x7f00000009c0)=[{0x58, 0x11, 0x8, "1d5bbdf5a375f43bbd5cc3ddc35c8355cfb5675910c244d144c69978099226ffa4ccdaf81717bfb465d6175e796f5f06149186b9b7094c76ce184e13c008e2eb34c6"}, {0xd8, 0x88, 0x200, "7b15c3d852cc508b4ff9de8e199974f9e5942609519d5c696bcc3a934c95b457a458a9d39c69abcffa0926ef6da57f3c80828cb1667e4c250b573d530169a4f1d115c92586729a53b4dbd358b1fc680d14cfcf908f0c92cf5544f6f5d80a1de41727c5950b863a9044423d3830d37ec4ec90b75737e960d5c7e0e5a99f57622cc453e99d98c4474faea6c2d0a8d6c0c57f297235b7e6d13c45e278e5b7aaec89272d365fbbf5a318876b764dc51dde1c10870e0d66e94088ad468922f135bc1d3dfd477d73710b36"}, {0xb8, 0x19b, 0x74, "ffe8a6b6891548359bad49c1dff0ed8252b84d2433149dee1fdf64230568e9bcd8ed847875f0c67acea595927abbe4e5916b96bbf9abf6bbac13a0e6f6fe962fc38bceddf8591f6f93a1edec6cdb74499fbeb3f6dabb770b25626a55ed6ad9d764776c6f32276cd3fdc5cf0f45df10e9f27444aa67b2787d90eee752d4c170c709349b75d05c2ea7b3f2746ac887c4627838a6b4bf7aeb28ac88cc5807c5ab9f452ab9a57aecac"}, {0x48, 0x10f, 0xffff, "c7b0ff391ddbda7161b8a87560528ad18c4ed0e12f2516699251ac02956c63816625de9087f0072271f996ee3437107da6d62be1"}], 0x230}, 0x0) [ 490.988861][T21445] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 491.055523][T21445] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 491.065129][T21445] CR3 = 0x0000000000000000 [ 491.099162][T21445] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 491.110807][T21445] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 491.119117][T21445] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 491.136572][T21445] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:06 executing program 1: r0 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x80000000006, 0x1000000000000001) openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x0, 0x0) ioctl$FS_IOC_FSGETXATTR(r0, 0x802c550a, &(0x7f0000000080)={0x2, 0x0, 0x5, 0x740001, 0xffffffff7ff0bdbe}) 03:37:06 executing program 4: r0 = syz_open_dev$binder(&(0x7f0000000000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r1 = syz_open_dev$binder(0x0, 0x0, 0x800) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x20011, r1, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000780)={0x4c, 0x0, &(0x7f0000000600)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)}}}], 0x0, 0x0, 0x0}) 03:37:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) accept$alg(r0, 0x0, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 491.153655][T21445] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 491.164335][T21445] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 491.187853][T21445] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 491.238740][T21445] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 491.256628][T21463] binder_alloc: binder_alloc_mmap_handler: 21458 20001000-20004000 already mapped failed -16 [ 491.258484][T21445] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:06 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x417000) [ 491.316503][T21445] GDTR: limit=0x00000000, base=0x0000000000000000 [ 491.318662][T21462] binder: BINDER_SET_CONTEXT_MGR already set [ 491.335724][T21445] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 491.369011][T21445] IDTR: limit=0x00000000, base=0x0000000000000000 [ 491.389336][T21462] binder: 21458:21462 ioctl 40046207 0 returned -16 [ 491.392200][ T7733] binder: send failed reply for transaction 21 to 21458:21462 [ 491.404839][ T7733] binder: undelivered TRANSACTION_COMPLETE [ 491.411920][T21445] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 491.421067][ T7733] binder: undelivered TRANSACTION_ERROR: 29189 [ 491.427839][T21445] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 491.441999][T21445] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 491.450728][T21445] Interruptibility = 00000000 ActivityState = 00000000 [ 491.463529][T21445] *** Host State *** [ 491.484001][T21445] RIP = 0xffffffff811b3240 RSP = 0xffff88821936f8e0 [ 491.505171][T21445] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 491.512415][T21445] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 491.521369][T21445] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 491.528174][T21445] CR0=0000000080050033 CR3=0000000092f33000 CR4=00000000001426f0 [ 491.536233][T21445] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 491.543689][T21445] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 491.551099][T21445] *** Control State *** [ 491.555376][T21445] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 491.562739][T21445] EntryControls=0000d1ff ExitControls=002fefff [ 491.568962][T21445] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 491.576693][T21445] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 491.584056][T21445] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 491.591416][T21445] reason=80000021 qualification=0000000000000000 [ 491.599357][T21445] IDTVectoring: info=00000000 errcode=00000000 [ 491.605992][T21445] TSC Offset = 0xfffffef6abbfcd05 [ 491.611089][T21445] TPR Threshold = 0x00 [ 491.622080][T21445] EPT pointer = 0x000000009058301e 03:37:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) fsetxattr(r0, &(0x7f0000000000)=@known='trusted.overlay.opaque\x00', &(0x7f0000000040)='/dev/kvm\x00', 0x9, 0x2) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:07 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x0, 0x40) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_NAME_TABLE_GET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="57b6259073adb021ffc781a5ab7c010000", @ANYRES16=r2, @ANYBLOB="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"], 0x17c}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000081) syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0)='TIPCv2\x00') sendmsg$nl_netfilter(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000000201ffff000000000000000000000001"], 0x14}}, 0x0) 03:37:07 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, 0x0, 0x0, 0x0) 03:37:07 executing program 5: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x8000, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r0, 0xc004ae02, &(0x7f0000000100)={0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r4, 0xc008ae88, &(0x7f0000000000)={0x7b, 0x600000000000000, [0xc001001b, 0x0, 0x0, 0x9], [0xc2]}) 03:37:07 executing program 4: syz_emit_ethernet(0x36, &(0x7f00000001c0)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x2, 0x0, 0x0, 0x0, @dev, @remote={0xac, 0x14, 0x223}}, @icmp=@timestamp_reply}}}}, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0xe70, 0x400) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, &(0x7f0000000040)=""/98, &(0x7f00000000c0)=0x62) 03:37:07 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x4010040c000) 03:37:07 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) geteuid() ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000100)={0x2, 0x2}, 0x10) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=0x0) fcntl$lock(r1, 0x6, &(0x7f0000000080)={0x0, 0x2, 0xc701, 0x6, r3}) r4 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x1000000000040000, 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='security.ima\x00', &(0x7f0000000240)=@md5={0x1, "d3cce0f719456821301b2b983f6d12c9"}, 0x11, 0x2) quotactl(0x0, 0x0, 0x0, 0x0) r5 = syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x5, 0xc0000) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r5) r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x0, 0x0) fchmod(r6, 0x44) socketpair$unix(0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x9) ioctl$RTC_AIE_ON(r5, 0x7001) getsockopt$inet_mreqn(r4, 0x0, 0x24, &(0x7f0000000540)={@multicast1, @empty}, &(0x7f00000005c0)=0xc) ioctl$RTC_AIE_OFF(r6, 0x7002) io_setup(0x3, &(0x7f0000000440)=0x0) io_cancel(r7, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x7, 0x101, r1, &(0x7f0000000480)="3f57aa3a9e29a17d92f07cb6beb36467a81804ffa7d0c8505d3597cdd8cdb2a51b8d8df6aa480061ea683762de8df9601fe4e1081be022c943cfab2ee4934dbb51ca2617c74ba1b8e1bf00d3757b4011b18beef49d86b76ce23cac235ee881", 0x5f, 0x0, 0x0, 0x3, r6}, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) add_key(&(0x7f00000001c0)='cifs.srgoL\xba]\xa4bLWD\xd3a\x1ed', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000380)="9b68d05fd2c86ce86915964bea150d31254488764f7f8929a86f7737ff750f4f8ebc5074d5ac0ca066a76e7094c3e3ba85350e7e6a1f59694241e09759cd523fe3cb0eb798", 0x45, 0xfffffffffffffffc) ioctl$RTC_PIE_OFF(r6, 0x7006) 03:37:07 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, 0x0, 0x0, 0x0) 03:37:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000700)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) r2 = syz_open_dev$radio(&(0x7f00000000c0)='/dev/radio#\x00', 0x0, 0x2) setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000100)={0x6af57380, 0x100, 0x0, 0xff}, 0x10) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r3 = gettid() request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz'}, &(0x7f0000000080)='\x00', 0xfffffffffffffffd) ptrace$setopts(0x4206, r3, 0x0, 0x0) tkill(r3, 0x20) wait4(0x0, 0x0, 0x0, 0x0) socket$l2tp(0x18, 0x1, 0x1) clock_gettime(0x0, &(0x7f00000003c0)) ioctl(r1, 0x1000008912, &(0x7f0000000100)="0adc1f023c123f3188a070") r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000080)="0adc1f023c123f3188a070") r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x40, 0x0) ioctl$IMCLEAR_L2(r5, 0x80044946, &(0x7f0000000040)=0x4) r6 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) recvmmsg(r6, &(0x7f00000022c0)=[{{&(0x7f00000001c0)=@sco, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/42, 0x2a}, {&(0x7f0000000280)=""/94, 0x5e}, {&(0x7f0000000300)=""/185, 0xb9}], 0x1, &(0x7f0000000400)=""/215, 0xd7}, 0x7}, {{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/255, 0xff}, {&(0x7f0000001600)=""/45, 0x2d}], 0x3, &(0x7f0000001680)=""/189, 0xbd}, 0x4}, {{&(0x7f0000001740)=@in={0x2, 0x0, @local}, 0xfffffffffffffdc1, &(0x7f0000001940)=[{&(0x7f00000017c0)=""/198, 0xc6}, {&(0x7f00000018c0)=""/77, 0x4d}], 0x2, &(0x7f0000001980)}, 0x10001}, {{&(0x7f00000019c0)=@hci, 0x80, &(0x7f0000001b00)=[{&(0x7f0000001a40)=""/52, 0x34}, {&(0x7f0000001a80)=""/109, 0x6d}], 0x2, &(0x7f0000001b40)=""/43, 0x2b}, 0x4}, {{&(0x7f0000001b80)=@nfc, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001c00)=""/155, 0x9b}], 0x1, &(0x7f0000001d00)=""/91, 0x5b}, 0x7}, {{0x0, 0x0, &(0x7f0000001e00)=[{&(0x7f0000001d80)=""/84, 0x54}], 0x1, &(0x7f0000001e40)=""/190, 0xbe}, 0x6}, {{0x0, 0x0, &(0x7f0000002200)=[{&(0x7f0000001f00)=""/67, 0x43}, {&(0x7f0000001f80)}, {&(0x7f0000001fc0)=""/130, 0x82}, {&(0x7f0000002080)=""/186, 0xba}, {&(0x7f0000002140)=""/158, 0x9e}], 0x5, &(0x7f0000002280)=""/16, 0x10}, 0x20}], 0x7, 0x3, 0x0) r7 = socket$xdp(0x2c, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r7, 0x89f0, &(0x7f0000000240)={'bridge0\x00\x00\x00\x01\x00\x00\x00\x00\x01', &(0x7f0000000180)=ANY=[@ANYBLOB="0f00000000000000003da500000000000000000000000000000000000000000000000000"]}) r8 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, &(0x7f00000003c0)="0f20d86635080000000f22d866b80500000066b9060d20500f01c1ba6100b01aeed9a6390b0f0174170f009a0050670f01caba610066b80010000066ef260f22276766c74424004edeac976766c74424022c0000006766c744240600000000670f011424", 0x64}], 0x1, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$KVM_RUN(r9, 0xae80, 0x0) [ 491.820318][T21493] *** Guest State *** [ 491.824344][T21493] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 491.893590][T21493] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:07 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, 0x0, 0x0, 0x0) [ 491.939319][T21493] CR3 = 0x0000000000000000 [ 491.955713][T21493] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 03:37:07 executing program 5: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80003, 0x2f) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c) openat$ubi_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = shmget$private(0x0, 0x3000, 0x1500, &(0x7f0000ffc000/0x3000)=nil) shmctl$SHM_LOCK(r1, 0xb) execve(0x0, &(0x7f00000001c0)=[&(0x7f00000000c0)='bdev\xc5+trusted\x00', &(0x7f0000000100)='/+%/vmnet1keyringsecurity\\system]\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)='cgroup\x00'], &(0x7f0000000400)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='vmnet0posix_acl_access\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='self-eth1-ppp1selinux@\x00', &(0x7f0000000340)='trustedcgroup[^system&:md5sumposix_acl_accessproc[\\)@\x00']) sendmmsg(r0, &(0x7f0000000c40)=[{{0x0, 0x5c00000000000000, &(0x7f00000009c0), 0x2c, &(0x7f00000000c0)}}], 0x40000000000026a, 0x0) [ 491.982019][T21493] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 492.003699][T21493] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 492.031397][T21493] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.085254][T21493] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:07 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 492.143419][T21493] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.214276][T21493] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.229702][T21493] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.260358][T21493] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.275945][T21493] GDTR: limit=0x00000000, base=0x0000000000000000 [ 492.289177][T21493] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.299799][T21493] IDTR: limit=0x00000000, base=0x0000000000000000 [ 492.313057][T21493] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 492.323964][T21493] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 492.338571][T21493] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 492.351650][T21493] Interruptibility = 00000000 ActivityState = 00000000 [ 492.361664][T21493] *** Host State *** [ 492.368584][T21493] RIP = 0xffffffff811b3240 RSP = 0xffff88821b2ff8e0 [ 492.378982][T21493] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 492.389005][T21493] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 492.403638][T21493] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 492.414441][T21493] CR0=0000000080050033 CR3=00000000a8184000 CR4=00000000001426e0 [ 492.425501][T21493] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 492.433070][T21493] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 492.447035][T21493] *** Control State *** [ 492.451375][T21493] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 492.463029][T21493] EntryControls=0000d1ff ExitControls=002fefff [ 492.471590][T21493] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 492.483493][T21493] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 492.501499][T21493] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 492.523046][T21493] reason=80000021 qualification=0000000000000000 [ 492.561314][T21493] IDTVectoring: info=00000000 errcode=00000000 [ 492.577976][T21493] TSC Offset = 0xfffffef636e8336a [ 492.597032][T21493] TPR Threshold = 0x00 [ 492.609941][T21493] EPT pointer = 0x000000009f3d601e 03:37:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0xfffffffffffffffa, 0x800) accept4$bt_l2cap(r2, &(0x7f0000000040), &(0x7f0000000080)=0xe, 0x80800) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:37:08 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}], 0x1, 0x0) 03:37:08 executing program 4: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) geteuid() ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000100)={0x2, 0x2}, 0x10) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=0x0) fcntl$lock(r1, 0x6, &(0x7f0000000080)={0x0, 0x2, 0xc701, 0x6, r3}) r4 = syz_open_dev$dri(&(0x7f0000000140)='/dev/dri/card#\x00', 0x1000000000040000, 0x4) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='security.ima\x00', &(0x7f0000000240)=@md5={0x1, "d3cce0f719456821301b2b983f6d12c9"}, 0x11, 0x2) quotactl(0x0, 0x0, 0x0, 0x0) r5 = syz_open_dev$sndpcmp(&(0x7f0000000400)='/dev/snd/pcmC#D#p\x00', 0x5, 0xc0000) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r5) r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x0, 0x0) fchmod(r6, 0x44) socketpair$unix(0x1, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x9) ioctl$RTC_AIE_ON(r5, 0x7001) getsockopt$inet_mreqn(r4, 0x0, 0x24, &(0x7f0000000540)={@multicast1, @empty}, &(0x7f00000005c0)=0xc) ioctl$RTC_AIE_OFF(r6, 0x7002) io_setup(0x3, &(0x7f0000000440)=0x0) io_cancel(r7, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x7, 0x101, r1, &(0x7f0000000480)="3f57aa3a9e29a17d92f07cb6beb36467a81804ffa7d0c8505d3597cdd8cdb2a51b8d8df6aa480061ea683762de8df9601fe4e1081be022c943cfab2ee4934dbb51ca2617c74ba1b8e1bf00d3757b4011b18beef49d86b76ce23cac235ee881", 0x5f, 0x0, 0x0, 0x3, r6}, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) add_key(&(0x7f00000001c0)='cifs.srgoL\xba]\xa4bLWD\xd3a\x1ed', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000380)="9b68d05fd2c86ce86915964bea150d31254488764f7f8929a86f7737ff750f4f8ebc5074d5ac0ca066a76e7094c3e3ba85350e7e6a1f59694241e09759cd523fe3cb0eb798", 0x45, 0xfffffffffffffffc) ioctl$RTC_PIE_OFF(r6, 0x7006) 03:37:08 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-twofish-avx\x00'}, 0x58) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x1, 0x0) ioctl$ION_IOC_HEAP_QUERY(r1, 0xc0184908, &(0x7f00000000c0)={0x34, 0x0, &(0x7f0000000080)}) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="0a0775db7b2803b4f0a12585675d26b0d5e383e5b3b60ced5c54dbb7295df0df82", 0x21) 03:37:08 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x41) io_setup(0x8, &(0x7f0000000140)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x80000000, r0, &(0x7f0000000000), 0x0, 0x5, 0x0, 0x0, r0}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:08 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}], 0x1, 0x0) 03:37:08 executing program 1: io_setup(0x1000, &(0x7f0000000040)=0x0) io_getevents(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x80000001, 0x2) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f00000000c0)={0x0, @speck128}) ioctl$SIOCGSTAMPNS(r1, 0x8907, &(0x7f0000000100)) 03:37:08 executing program 5: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80003, 0x2f) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c) openat$ubi_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = shmget$private(0x0, 0x3000, 0x1500, &(0x7f0000ffc000/0x3000)=nil) shmctl$SHM_LOCK(r1, 0xb) execve(0x0, &(0x7f00000001c0)=[&(0x7f00000000c0)='bdev\xc5+trusted\x00', &(0x7f0000000100)='/+%/vmnet1keyringsecurity\\system]\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)='cgroup\x00'], &(0x7f0000000400)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='vmnet0posix_acl_access\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='self-eth1-ppp1selinux@\x00', &(0x7f0000000340)='trustedcgroup[^system&:md5sumposix_acl_accessproc[\\)@\x00']) sendmmsg(r0, &(0x7f0000000c40)=[{{0x0, 0x5c00000000000000, &(0x7f00000009c0), 0x2c, &(0x7f00000000c0)}}], 0x40000000000026a, 0x0) [ 492.852540][T21537] *** Guest State *** 03:37:08 executing program 4: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x80003, 0x2f) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c) openat$ubi_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = shmget$private(0x0, 0x3000, 0x1500, &(0x7f0000ffc000/0x3000)=nil) shmctl$SHM_LOCK(r1, 0xb) execve(0x0, &(0x7f00000001c0)=[&(0x7f00000000c0)='bdev\xc5+trusted\x00', &(0x7f0000000100)='/+%/vmnet1keyringsecurity\\system]\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)='cgroup\x00'], &(0x7f0000000400)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='vmnet0posix_acl_access\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='self-eth1-ppp1selinux@\x00', &(0x7f0000000340)='trustedcgroup[^system&:md5sumposix_acl_accessproc[\\)@\x00']) sendmmsg(r0, &(0x7f0000000c40)=[{{0x0, 0x5c00000000000000, &(0x7f00000009c0), 0x2c, &(0x7f00000000c0)}}], 0x40000000000026a, 0x0) [ 492.874571][T21537] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 492.884193][T21537] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:08 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}], 0x1, 0x0) [ 492.923048][T21537] CR3 = 0x0000000000000000 [ 492.932639][T21537] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 492.944083][T21537] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 492.964370][ C1] net_ratelimit: 20 callbacks suppressed 03:37:08 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0xa, &(0x7f00000003c0)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)=0xffffffffffffffff) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000280)={r0, 0x10, &(0x7f0000000000)={&(0x7f0000000200)=""/121, 0x79, 0xffffffffffffffff}}, 0x10) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000300)={r0, 0x10, &(0x7f00000002c0)={&(0x7f0000000140)=""/173, 0xad, r3}}, 0x10) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000380)={0x0}) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f0000000580)={0x2, 0x70, 0x7, 0x1000, 0x2, 0x4, 0x0, 0x4, 0x5642a5e70ce7f893, 0x2, 0x8001, 0x3ff, 0x64bc, 0x401, 0x6, 0xfffffffffffff3cc, 0x54c, 0xa1, 0xe5c, 0x1000, 0x9, 0x3ff, 0x8, 0x6, 0x5, 0x0, 0x10000, 0x10001, 0x6, 0xb0, 0x3, 0x7, 0x3, 0x0, 0x3, 0x6, 0x52db, 0xfc0f, 0x0, 0x8, 0x7, @perf_bp={&(0x7f00000004c0), 0x2}, 0x20, 0xb1e, 0xcadb, 0x0, 0x1}) ioctl$DRM_IOCTL_GET_CTX(r0, 0xc0086423, &(0x7f0000000400)={r4, 0x1}) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000480)={0x34, 0x0, &(0x7f0000000600)}) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:08 executing program 1: r0 = socket$netlink(0x10, 0x3, 0xe) connect(r0, &(0x7f00000002c0)=@in6={0xa, 0x4e21, 0x1, @loopback, 0x1}, 0x80) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000140)={{{@in6=@loopback, @in6=@loopback}}, {{@in6=@loopback}, 0x0, @in=@remote}}, &(0x7f0000000080)=0xe8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x3, &(0x7f00000000c0)='.%\x00', 0xffffffffffffffff}, 0x30) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x24, 0x34, 0x829, 0x0, 0x0, {0x4, 0x1000000}, [@nested={0x10, 0x8e, [@typed={0x8, 0x62, @pid=r2}, @typed={0x4, 0x14}]}]}, 0x24}}, 0x0) [ 492.964378][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 492.975854][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 493.025754][T21537] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 493.045206][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 493.051931][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 493.062650][T21537] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.140337][T21537] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.201468][T21537] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.230002][T21537] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.257347][T21537] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.276077][T21537] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.300553][T21537] GDTR: limit=0x00000000, base=0x0000000000000000 [ 493.311811][T21537] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.333834][T21537] IDTR: limit=0x00000000, base=0x0000000000000000 [ 493.356974][T21537] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 493.366390][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 493.372909][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 493.378019][T21537] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 493.394358][T21537] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 493.418297][T21537] Interruptibility = 00000000 ActivityState = 00000000 [ 493.432467][T21537] *** Host State *** [ 493.459475][T21537] RIP = 0xffffffff811b3240 RSP = 0xffff88821695f8e0 [ 493.491583][T21537] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 493.530845][T21537] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 493.549197][T21537] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 493.565815][T21537] CR0=0000000080050033 CR3=00000000988f5000 CR4=00000000001426f0 [ 493.573742][T21537] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 493.587749][T21537] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 493.597008][T21537] *** Control State *** [ 493.601346][T21537] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 493.615908][T21537] EntryControls=0000d1ff ExitControls=002fefff [ 493.628900][T21537] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 493.652609][T21537] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 493.666007][T21537] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 493.673437][T21537] reason=80000021 qualification=0000000000000000 [ 493.684018][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 493.689789][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 493.695619][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 493.701422][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 493.714368][T21537] IDTVectoring: info=00000000 errcode=00000000 03:37:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) r3 = syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1b, 0x3fff) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r3, 0xc04c5349, &(0x7f0000000040)={0x7, 0x4, 0x6}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) prctl$PR_GET_NAME(0x10, &(0x7f0000000140)=""/40) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{0x0, 0x0, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:09 executing program 1: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x200, 0x0) ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000180)={0x208769fce8372502, 0x100, "ff26e7a8dd8ee8b12c7db9b2e779b9b902019934226f31e6681da42234215ed9", 0x5, 0xa, 0x8, 0x80000001, 0xf1d9, 0x40, 0x6, 0x9, [0xffffffffffffffff, 0x101, 0x401, 0x7]}) fsetxattr$security_smack_entry(r0, &(0x7f0000000040)='security.SMACK64EXEC\x00', &(0x7f0000000100)='nodev)md5sum\x00', 0xd, 0x1) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm-control\x00', 0x3e, 0x0) fsetxattr$security_smack_entry(r1, &(0x7f0000000300)='security.SMACK64\x00', &(0x7f0000000340)='/dev/vfio/vfio\x00', 0xf, 0x3) fsetxattr(r0, &(0x7f0000000080)=@random={'user.', '-vboxnet0^#!]selfsystem{posix_acl_accessem1m\x00'}, &(0x7f00000000c0)='/dev/vfio/vfio\x00', 0xf, 0x3) clone(0x800002102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) write$nbd(r0, &(0x7f0000000280)={0x6000000, 0x0, 0x0, 0x0, 0x2, "a3ef41749fa527ab78fc57f180bd82099cbab35a2fdbede5fbb11bedfb1f8cd557b0bdfcd7f42f63af872a0a10e32f7a0eb6bb02f6b78b1ea580f6ba185947306a84c6c5e7be78ab9406ffea21ad8514d024cacb80e3ba56"}, 0x68) 03:37:09 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x13d) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000000)) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000140)=""/205) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:09 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f00000000c0)={0x0, @aes256}) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x4000002, &(0x7f0000000040)="0adc1f023c123f3188a070") syz_emit_ethernet(0x3a, &(0x7f00000001c0)={@local, @broadcast, [], {@ipv4={0x800, {{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0xf421, 0x0, @dev, @remote={0xac, 0x14, 0x223}, {[@rr={0xffffff86, 0x3}]}}, @icmp=@timestamp_reply={0xe, 0x9}}}}}, &(0x7f0000000000)={0x0, 0x2, [0x0, 0x1000000]}) 03:37:09 executing program 5: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x4, @dev={[], 0xa}, 'lo\x00'}}, 0x1e) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0xa000000000000005) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$UI_SET_SWBIT(0xffffffffffffffff, 0x4004556d, 0x0) pivot_root(0x0, 0x0) recvmmsg(r0, &(0x7f0000002000)=[{{0x0, 0x0, &(0x7f0000001b40), 0x0, &(0x7f0000002f00)=""/4096, 0x1000}}], 0x300, 0x12022, &(0x7f00000020c0)={0x0, 0x1c9c380}) r1 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x7ff, 0x100) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000080)=0xffffffffffffffbf, 0x4) [ 493.749471][T21537] TSC Offset = 0xfffffef5a9a540c7 [ 493.757439][T21537] TPR Threshold = 0x00 [ 493.761545][T21537] EPT pointer = 0x00000000a4fa401e 03:37:09 executing program 1: r0 = socket$inet(0x2, 0x3, 0x2) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) r2 = syz_open_procfs(r1, &(0x7f00000000c0)='net/raw6\x00') sendfile(r0, r2, 0x0, 0x26624522) 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{0x0, 0x0, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:09 executing program 4: r0 = syz_open_dev$media(&(0x7f0000000140)='/dev/media#\x00', 0x5, 0x100) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffff9c, 0x84, 0x0, &(0x7f0000000180)={0x0, 0x7, 0x0, 0x8}, &(0x7f0000000340)=0x10) openat$vim2m(0xffffffffffffff9c, &(0x7f0000000740)='/dev/video35\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)={r1, 0x8, 0x1, [0x100000000]}, &(0x7f0000000680)=0xa) r2 = socket$rds(0x15, 0x5, 0x0) bind$rds(r2, &(0x7f0000000840)={0x2, 0x4e24, @loopback}, 0x10) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r0, 0x40485404, &(0x7f0000000880)={{0x3, 0x3, 0x80, 0x3, 0x9}, 0x9f9, 0x56}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100), 0x0, &(0x7f0000000780)=[@rdma_args={0x48, 0x114, 0x1, {{}, {&(0x7f0000000040)=""/156, 0x9c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}, {&(0x7f00000001c0)=""/67, 0x43}, {&(0x7f0000000240)=""/198, 0xc6}, {&(0x7f0000000380)=""/42, 0x2a}, {&(0x7f00000003c0)=""/77, 0x4d}, {&(0x7f0000000440)=""/244, 0xf4}, {&(0x7f0000000540)=""/219, 0xdb}], 0x7, 0x0, 0x40000}}], 0x48}, 0x0) 03:37:09 executing program 5: mkdir(&(0x7f00000004c0)='./file0/f.le.\x00', 0xfffffffffffffffc) mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='tmpfs\x00', 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) fchdir(r1) mkdir(&(0x7f0000000200)='./file1\x00', 0x0) symlink(&(0x7f0000000040)='./file0/f.le.\x00', &(0x7f0000000140)='.//ile0\x00') mkdir(&(0x7f0000000340)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="75707065726469723d2e2f66696c65302c6c6f7765726469ff7f000066006c65302c776f726b6469723d2e2f66696c6531961205038d21c5ae9d84c8582414b29426"]) r2 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) renameat(r1, &(0x7f0000000240)='.//ile0\x00', r2, &(0x7f0000000280)='./file0/f.le.\x00') getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000180)={0x0, 0x8001}, &(0x7f0000000380)=0x8) syz_mount_image$reiserfs(&(0x7f00000002c0)='reiserfs\x00', &(0x7f0000000500)='./file1\x00', 0x7ff, 0x8, &(0x7f0000001980)=[{&(0x7f0000000540)="b54fd9afc31af817e3fa43a20b08480d22f7607665faa00ee291658675a464ca79c0bf0f6edf40ab5a33b47e7d96dfdb9b7c44a9adf12ab23741b2e290cfa4671e", 0x41, 0x9}, {&(0x7f00000005c0)="d3d7d76e7ec2a64b89c43d18f24e9d5222677f0352", 0x15, 0x4}, {&(0x7f0000000600)="bd70ecaab9335930f109b7a72d4c490232813df9d01befc03ab3d94338dd17e2265449e78405251d8cbce0116bbdcafdd007bc9e176d0fb1f607acee339a686cb6fece0c5af868663ab0450b4d8f9ac281dc7e7645d6c589271567", 0x5b, 0xfff}, {&(0x7f0000000680)="cff17043503a306602b5131b0401db92d32fd98f54db48074d9b374189595cb34525b4f6cf77d509b0bde0a9f696c19e83a7227f45bda2ab2434c5b1873ec83e4cfb2438eda8dc00bb5192b25a98293a51612aa9f17fdea50be70c22d48ef90fad9eabae3d2a993a98822a6cd0da70802e86d766d1025aaa9e07bf1e7554167136d1a5c4a8be24dcdf6b093a0e2b4ea6bc29d7eaf3ca6f54b39267f58dbd4963a17367f3f4dd5306e9029b68c64329148f2ba9ae177f77e745016e104773a94128836a0c74c2f092914b271ccfafbada6e99ca9d196a9befbbb55d1070343d659160", 0xe2, 0x6}, {&(0x7f0000000780)="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", 0x1000}, {&(0x7f0000001780)="c3f2ce262b621acf81521ca46b36bdcc2b78e86cbdf71bc0d8299fa9b99dc678ab5a31757ed90514e5076b2850a711a1ef30ee1c8ba5cb363caf41d99f9cab797709f3a02f9c230976a56d93446218bce827a3580ba8a0ecadbd90bdfa7571131be133e08dd69a4e9305d69b0a0175d18e351c5d04e04e100f62e8fa7556a3e8e249897cdfb15f42521e653049d6c9f67ffdbb11ad3779bb65f292704e1cd9aa89fede5ac55ccd4b07cbb467f49c2f", 0xaf, 0x157e}, {&(0x7f0000001840)="248b2bf33ba9672133cfefe16e721ece5c79880910f0b3d5f051371641749430e750ad7e201ee3b9acbc4ad3533222da9319ff772be4292dd18b0a058ca8304170e53eac0ca6c022ca63d616d71c07077589727194be626da4f5e24ee90ed3393365e7ce8d983f166d150913a3d1fc1fc55cae3f66877502cda0aa6bb50046f0dcb782648d4815d8019dabaf831c29e51c518c4486937b5726a6731c38b3a245841f954d3f6f92113aa594ed", 0xac, 0x1f}, {&(0x7f0000001900)="e9098443e59a4cc71a36a572a4c748ed9e60ff367f13278f479192dbdc0966abf0098de0131609ba34148f8281ca4918d7144ed491ae7791027ab79d850595eea1686b2e527330f746ced7d6a129e2e6e7a6cd45add6b618ce8f81f376b9be412b374426f449e8", 0x67, 0xce76}], 0x802008, &(0x7f0000001a40)={[{@hash_tea='hash=tea'}, {@grpquota='grpquota'}], [{@obj_role={'obj_role', 0x3d, '\\cgroup+'}}, {@hash='hash'}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@measure='measure'}, {@smackfsfloor={'smackfsfloor', 0x3d, '$\'system'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'bdev'}}]}) fcntl$dupfd(r0, 0x0, r2) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000003c0)={r3, 0x3ff}, &(0x7f0000000400)=0x8) creat(&(0x7f00000000c0)='.//ile0\x00', 0x0) linkat(r2, &(0x7f0000000000)='./file0/f.le.\x00', 0xffffffffffffffff, 0x0, 0x0) 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{0x0, 0x0, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:09 executing program 4: mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x8031, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000000)=0x0) ptrace$peekuser(0x3, r0, 0x9) msync(&(0x7f0000ffc000/0x4000)=nil, 0x4005, 0x0) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) 03:37:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000080)={0xffffffffffffffff}, 0x111, 0x9}}, 0x20) r4 = syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x8, 0x0) write$RDMA_USER_CM_CMD_MIGRATE_ID(r1, &(0x7f00000001c0)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r3, r4}}, 0x18) msgget(0x2, 0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:09 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)={0x400000000000005, 0x2a, 0x804, 0x8000000001}, 0x2c) bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0}, 0x2c) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000180)={r0, &(0x7f0000000380)}, 0x10) openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc0\x00', 0x48803, 0x0) 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, 0x0, 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) [ 494.097814][T21603] overlayfs: unrecognized mount option "lowerdiÿ" or missing value 03:37:09 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x2, 0x0, r0, &(0x7f0000000140)="db11677a504d7b68ff3f54844eb8f2e6d7c257cbf133eba1dcb5bba97149681a2f204ab4e92a763f", 0x28, 0x0, 0x0, 0x1, r0}]) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) truncate(&(0x7f0000000000)='./bus/../file0\x00', 0x3) [ 494.158680][T21603] overlayfs: unrecognized mount option "lowerdiÿ" or missing value 03:37:09 executing program 1: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x13d) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000000)) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000000140)=""/205) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, 0x0, 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:09 executing program 5: mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffffff) r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x4002, 0x0) r1 = syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x2287, &(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\b']) truncate(&(0x7f0000000240)='./file0\x00', 0x90002) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x4, 0x0, 0x0, 0x8c, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = accept$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000180)='/proc/thread-self/attr/current\x00', 0x2, 0x0) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000200)={0xffffffffffffffff, 0x3, 0x2000}, 0x4) sendfile(r0, r0, &(0x7f0000000000)=0x8803, 0x2000008800000) syz_init_net_socket$llc(0x1a, 0x2, 0x0) open$dir(&(0x7f00000001c0)='./file0\x00', 0x2, 0x18) [ 494.288791][T21616] *** Guest State *** [ 494.329514][T21616] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, 0x0, 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) [ 494.379462][T21616] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 494.397060][ T26] kauditd_printk_skb: 405 callbacks suppressed [ 494.397073][ T26] audit: type=1800 audit(2000000229.850:614): pid=21627 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=16630 res=0 03:37:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680)}}], 0x2, 0x0) [ 494.440439][T21616] CR3 = 0x0000000000000000 [ 494.455457][T21616] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 494.477125][T21616] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:09 executing program 1: r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) r1 = dup(r0) ioctl$RTC_WIE_OFF(r1, 0x7010) ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380) r2 = shmget(0x0, 0x3000, 0x54000080, &(0x7f0000ffd000/0x3000)=nil) shmctl$SHM_INFO(r2, 0xe, &(0x7f0000001200)=""/4096) ioctl$sock_x25_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={@remote, 0x0, 'vxcan1\x00'}) 03:37:10 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000140)={0x0, 0x5, 0x88, &(0x7f0000000000)=0x7}) ioctl$SIOCX25SENDCALLACCPT(r0, 0x89e9) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000180)={0x1}, 0x8) [ 494.499261][T21616] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 494.535192][T21616] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.575715][T21616] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.617563][T21616] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.652963][T21616] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.667489][T21616] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.677735][T21616] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.691392][T21616] GDTR: limit=0x00000000, base=0x0000000000000000 [ 494.701481][T21616] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.716495][T21616] IDTR: limit=0x00000000, base=0x0000000000000000 [ 494.729837][T21616] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 494.741639][T21616] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 494.757089][T21616] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 494.768269][T21616] Interruptibility = 00000000 ActivityState = 00000000 [ 494.778189][T21616] *** Host State *** [ 494.782134][T21616] RIP = 0xffffffff811b3240 RSP = 0xffff88805942f8e0 [ 494.791662][T21616] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 494.801899][T21616] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 494.816219][T21616] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 494.822857][T21616] CR0=0000000080050033 CR3=000000008e9c3000 CR4=00000000001426e0 [ 494.832751][T21616] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 494.859168][T21616] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 494.868374][T21616] *** Control State *** [ 494.879919][T21616] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 494.887617][T21616] EntryControls=0000d1ff ExitControls=002fefff [ 494.899586][T21616] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 494.909040][T21616] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 494.923586][T21616] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 494.930895][T21616] reason=80000021 qualification=0000000000000000 [ 494.941731][T21616] IDTVectoring: info=00000000 errcode=00000000 [ 494.948257][T21616] TSC Offset = 0xfffffef4e48b1297 [ 494.954471][T21616] TPR Threshold = 0x00 [ 494.958582][T21616] EPT pointer = 0x00000000a92e701e 03:37:10 executing program 4: syz_open_dev$binder(&(0x7f0000d59ff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) r0 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xb8) ioctl$KVM_SET_DEBUGREGS(r1, 0x4080aea2, &(0x7f0000000040)={[0x3000, 0x2000, 0xd000, 0x10002], 0x2, 0x80, 0x8}) setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000100)=0x2, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000140)={@dev={0xfe, 0x80, [], 0x15}, 0x7ff, 0x1, 0x2, 0x2, 0x5d2c, 0xb4}, 0xffffffffffffff66) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, 0x0) 03:37:10 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x2, 0x0, r0, &(0x7f0000000140)="db11677a504d7b68ff3f54844eb8f2e6d7c257cbf133eba1dcb5bba97149681a2f204ab4e92a763f", 0x28, 0x0, 0x0, 0x1, r0}]) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) truncate(&(0x7f0000000000)='./bus/../file0\x00', 0x3) 03:37:10 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680)}}], 0x2, 0x0) 03:37:10 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680)}}], 0x2, 0x0) 03:37:10 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_netrom_SIOCDELRT(r0, 0x890c, &(0x7f0000000180)={0x0, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0='bpq0\x00', 0x5, 'syz0\x00', @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x100000001, 0x3, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) write$P9_RRENAMEAT(r0, &(0x7f0000000140)={0x7, 0x4b, 0x2}, 0x7) 03:37:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000080)={@remote, @loopback, 0x0, 0x8, [@multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, @rand_addr=0x80000001, @multicast1, @empty, @dev={0xac, 0x14, 0x14, 0x14}, @rand_addr=0x4]}, 0x30) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x40, 0x0) ioctl$TIOCMBIS(r3, 0x5416, &(0x7f0000000040)) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:10 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680)}}], 0x2, 0x0) [ 495.341561][T21651] Unknown ioctl 21526 [ 495.342394][T21660] binder: 21658:21660 ioctl c0306201 0 returned -14 [ 495.350329][T21651] *** Guest State *** [ 495.356768][T21651] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 495.368917][T21651] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 495.381191][T21651] CR3 = 0x0000000000000000 03:37:10 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0af51f023c123f3188a070") r1 = socket$inet6(0xa, 0x6, 0x0) listen(r1, 0x0) r2 = socket$inet(0x10, 0x80803, 0x4000000000000004) sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f00000003c0)="4c0000001300ff09fffd956fa283b700008c0e08000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d4c1cbc882b07988100", 0x4c}], 0x1}, 0x0) openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x24141, 0x0) [ 495.386305][T21651] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 495.393350][T21651] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 495.400379][T21651] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 495.408238][T21651] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:10 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) pipe2(&(0x7f0000000100)={0xffffffffffffffff}, 0x800) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000140)={0x8, 0x0, 0x8, 0x302}) r2 = dup(r0) setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f0000000180)=0xdd, 0x4) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r2, 0x84, 0x13, &(0x7f0000000000)=0x100, 0x4) fcntl$getownex(r1, 0x10, &(0x7f00000001c0)={0x0, 0x0}) waitid(0x2, r3, &(0x7f0000000200), 0x1000000, &(0x7f0000000280)) sendto(r2, 0x0, 0x0, 0x448d1, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000040)={0x0, 0x42bf5}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f00000000c0)={r4, 0x1}, 0x8) 03:37:10 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x1, 0x0) 03:37:10 executing program 5: r0 = syz_open_dev$loop(&(0x7f00000000c0)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000000)=0x2) sendfile(r0, r0, 0x0, 0x2000005) [ 495.439059][T21651] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 495.471791][T21651] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 495.485284][T21651] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 495.501835][T21651] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:11 executing program 0: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x100) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) getitimer(0x0, &(0x7f0000000140)) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x690, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:11 executing program 4: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000140)=0x7b, 0x4) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @broadcast}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @loopback}, 0x10) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000000600)="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", 0x22c}], 0x1, 0x0, 0x0, 0x800}, 0x0) read(r0, &(0x7f0000000200)=""/225, 0xe1) dup2(0xffffffffffffffff, r0) [ 495.539163][T21651] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:11 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x1, 0x0) 03:37:11 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x100, 0x541100) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000040)={0x0, 0x6a, "bd77e8869e95c1f0c9914b65e68a2d9b70f7eadfcd25f3d5fd3751ba7e2895c930bf9d1a1b54acc75e5dfa472b57ae9ea42ef2eb09c99b5b59481330c5ef718f0bf949ee31c922d3ab80edb94ed6c10ff2aed2a562cfd40337f766c2f97eae1123db08cfa05c04fc9dbb"}, &(0x7f00000000c0)=0x72) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000100)={r2, 0x2, 0x3ff}, 0x8) sendmsg$nl_xfrm(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000800)=ANY=[@ANYBLOB="b80000001900010000000000000000007f000001000000000000000000000000ffffffff00000000000000000000000000000000000000000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000033fa75d7000000000000000400000000"], 0xb8}, 0x1, 0x10}, 0x0) [ 495.658745][T21651] GDTR: limit=0x00000000, base=0x0000000000000000 03:37:11 executing program 1: r0 = socket$inet(0x10, 0x3, 0xc) getpeername(r0, &(0x7f0000000040)=@x25={0x9, @remote}, &(0x7f00000000c0)=0x80) madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x9) sendmsg(r0, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000009ff0)=[{&(0x7f0000000000)="24000000060607031dfffd946fa2830020200a0009000100061d85680c1baba20400ff7e", 0x24}], 0x1}, 0x0) [ 495.707218][T21651] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 495.738562][T21651] IDTR: limit=0x00000000, base=0x0000000000000000 [ 495.749446][T21690] netlink: 'syz-executor.1': attribute type 1 has an invalid length. 03:37:11 executing program 1: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x80001000005015, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)={0x1, 0x8, 0x209e20, 0x8000000001}, 0x2c) dup3(r1, r1, 0x80000) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0xa0000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x2, &(0x7f0000000000)={0x3, 0x0, 0x77f7fb, 0x0, 0x820000, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000000]}, 0x2c) ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f00000000c0)={{0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2a}}, {0x307, @dev={[], 0x16}}, 0x20, {0x2, 0x4e20, @broadcast}, 'ifb0\x00'}) fstatfs(r0, &(0x7f0000000000)=""/80) [ 495.766513][T21651] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 495.790007][T21651] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 495.821221][T21651] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 495.839276][T21651] Interruptibility = 00000000 ActivityState = 00000000 [ 495.849619][T21651] *** Host State *** [ 495.859475][T21651] RIP = 0xffffffff811b3240 RSP = 0xffff8880581378e0 [ 495.866402][T21651] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 495.879323][T21651] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 495.898920][T21651] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 495.928325][T21651] CR0=0000000080050033 CR3=0000000099269000 CR4=00000000001426e0 [ 495.950569][T21651] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 495.989643][T21651] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 495.996922][T21651] *** Control State *** [ 496.001136][T21651] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 496.008962][T21651] EntryControls=0000d1ff ExitControls=002fefff [ 496.015537][T21651] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 496.023845][T21651] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 496.031280][T21651] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 496.038938][T21651] reason=80000021 qualification=0000000000000000 [ 496.046352][T21651] IDTVectoring: info=00000000 errcode=00000000 [ 496.052569][T21651] TSC Offset = 0xfffffef453ffa15f [ 496.058119][T21651] TPR Threshold = 0x00 [ 496.062618][T21651] EPT pointer = 0x00000000a4dac01e [ 496.073756][T21701] Unknown ioctl 21526 [ 496.114049][T21702] *** Guest State *** [ 496.118239][T21702] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 496.134034][T21702] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 496.150608][T21702] CR3 = 0x0000000000000000 [ 496.157283][T21702] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 496.166566][T21702] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 496.174106][T21702] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 496.181510][T21702] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.190267][T21702] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.199010][T21702] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.207843][T21702] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.216621][T21702] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.226188][T21702] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.234951][T21702] GDTR: limit=0x00000000, base=0x0000000000000000 [ 496.243749][T21702] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.252435][T21702] IDTR: limit=0x00000000, base=0x0000000000000000 [ 496.261796][T21702] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 496.270505][T21702] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 496.277639][T21702] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 496.285843][T21702] Interruptibility = 00000000 ActivityState = 00000000 [ 496.292857][T21702] *** Host State *** [ 496.296765][T21702] RIP = 0xffffffff811b3240 RSP = 0xffff8882193af8e0 [ 496.303501][T21702] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 496.310615][T21702] FSBase=00007effb5ec3700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 496.319145][T21702] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 496.325922][T21702] CR0=0000000080050033 CR3=0000000099269000 CR4=00000000001426e0 [ 496.333711][T21702] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 496.341090][T21702] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 496.347902][T21702] *** Control State *** [ 496.352104][T21702] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 496.359522][T21702] EntryControls=0000d1ff ExitControls=002fefff 03:37:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x400000400040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:11 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x1, 0x0) [ 496.365744][T21702] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 496.373444][T21702] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 496.380829][T21702] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 496.388649][T21702] reason=80000021 qualification=0000000000000000 [ 496.395713][T21702] IDTVectoring: info=00000000 errcode=00000000 [ 496.401866][T21702] TSC Offset = 0xfffffef453ffa15f [ 496.407048][T21702] TPR Threshold = 0x00 [ 496.411120][T21702] EPT pointer = 0x00000000a4dac01e 03:37:11 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000180)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f00000004c0)='cgroup.procs\x00', 0x2, 0x0) sendto$inet(r0, &(0x7f0000000a40)="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", 0x1000, 0x20000041, &(0x7f0000000000)={0x2, 0x4e24, @rand_addr=0x3}, 0x10) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}, 0x7ff}], 0x1, 0x0, 0x0) preadv(r1, &(0x7f00000009c0)=[{&(0x7f0000000500)=""/154}, {&(0x7f00000003c0)=""/68}, {&(0x7f00000005c0)=""/214}, {&(0x7f00000006c0)=""/194}, {&(0x7f00000007c0)=""/146}, {&(0x7f0000000880)=""/144}, {&(0x7f0000000480)=""/13}, {&(0x7f0000000940)=""/71}], 0x2a9, 0x0) 03:37:11 executing program 5: perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3fc, 0xfffffffffffffffe, 0x0, 0x100000000, 0x0, 0x0, 0x2, 0x0, 0x1000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000028000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa2) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x1, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000340)='TIPC\x00') sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x34, r1, 0x505556f71107890e, 0x70bd2b, 0x25dfdbfb, {{}, 0x0, 0x4101, 0x0, {0x18, 0x17, {0x11, 0x3ff, @l2={'ib', 0x3a, 'irlan0\x00'}}}}, [""]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x0, 0x0) r3 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x3, 0x2) ioctl$BLKREPORTZONE(r2, 0xc0101282, &(0x7f0000000200)={0x10000, 0x1, 0x0, [{0x4, 0x9, 0x101, 0xa7e, 0xffffffffffffd654, 0xfffffffffffff001, 0x2d59}]}) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000002c0)="460f01df420f01d1f30f0f69fb1cc744240007000000c744240258a60000c7442406000000000f011424430f08b9800000c00f3235008000000f3066b893008ed866baa100b8eac73cdbef670f01c9c442fd21bd00000000", 0x58}], 0x1, 0x10, &(0x7f0000000280)=[@cr4, @dstype3={0x7, 0xf}], 0xffffffffffffe4e) pipe(&(0x7f00000001c0)) 03:37:11 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000600)=0x0) r2 = geteuid() r3 = getgid() ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000640)=0x0) fstat(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000700)={0x0, 0x0, 0x0}, &(0x7f0000000740)=0xc) sendmsg$unix(r0, &(0x7f0000000800)={&(0x7f0000000380)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000440)="293b890a7419328ffc31c440505d742438546e6d0ef62dc3d66c10848528c03aef13773ed6eab413b46d492a332e184a78611bcea9f783355784e46cb98d05354479b3adf795366ebde2017992c0ab86579fc8b4", 0x54}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f00000004c0)="809a887f71bee90deb0f80367113f236b363bc1120a79da9", 0x18}, {&(0x7f0000000580)="6919a58eb25d563f042c51b6dde75fa2031bbed5b4caaa864f1d37c9b940f4b5ab06dc26db9b4d2d5bef1192c625cbfc21e1ea3a7857bf155057f32fc578572115e45be6c162ae3a15", 0x49}], 0x4, &(0x7f0000000780)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="0000000010000000"], 0x50, 0x4000000}, 0x4000040) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={0x0, r0, 0xb, 0x1}, 0x14) io_submit(r7, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$VIDIOC_OVERLAY(r0, 0x4004560e, &(0x7f0000000140)=0x2) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(r0, 0x1, 0x1f, &(0x7f0000000180)=0x8, 0x4) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8022}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r8, 0x2, 0x70bd25, 0x25dfdbff, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x40010) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) prctl$PR_SET_NAME(0xf, &(0x7f0000000300)='!](.vboxnet1em1$-user\x00') 03:37:11 executing program 1: write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0x4, 0xffffffffffffffb2) 03:37:11 executing program 1: r0 = syz_open_dev$vcsa(&(0x7f00000009c0)='/dev/vcsa#\x00', 0x41, 0x101002) syz_open_dev$dri(&(0x7f0000000280)='/dev/dri/card#\x00', 0x0, 0x0) open(0x0, 0x4a00, 0x1) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000140)={0x23, 0x3, 0x0, {0x2, 0x2, 0x0, '-['}}, 0x23) sigaltstack(&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000)) clock_gettime(0x0, 0x0) rt_sigtimedwait(&(0x7f0000000040)={0x5}, &(0x7f0000000080), &(0x7f0000000100), 0x8) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, &(0x7f0000000200)) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[@ANYBLOB="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"], 0x1) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000240)={'team_slave_1\x00', 0x8}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=@getae={0x40, 0x1f, 0x1, 0x0, 0x0, {{@in6=@mcast2}}}, 0x40}}, 0x0) socket$inet_udp(0x2, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x400000000001, 0x0) getsockopt$inet6_tcp_buf(r2, 0x6, 0x21, &(0x7f0000000d80)=""/4096, &(0x7f0000000180)=0x1000) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000000)) bind$inet6(r2, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) dup2(0xffffffffffffffff, 0xffffffffffffffff) sendto$inet6(r2, 0x0, 0x0, 0x20000006, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x1) ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609) prctl$PR_SET_FPEMU(0xa, 0x2) ftruncate(r3, 0x80003) sendfile(r2, r3, &(0x7f00000000c0), 0x40800100000001) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000300)={{{@in6=@dev={0xfe, 0x80, [], 0x11}, @in6=@ipv4={[], [], @broadcast}, 0x4e20, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@local, 0x0, 0x33}, 0x0, @in6=@mcast2}}, 0xe8) 03:37:12 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f0000000080)='SEG6\x00') add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x0, 0x0) ioctl$TIOCSWINSZ(r3, 0x5414, &(0x7f0000000040)={0xfffffffffffffb97, 0x7, 0x7, 0x100000000}) ioctl$KVM_RUN(r2, 0xae80, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in6={{0xa, 0x4e24, 0x8000, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x100}}, 0x0, 0x317, 0x0, "747f4d4b2d5f6275e78e5dab9ee7c15226d634eed2cedb632eb8b0f7b02f2510c515548f4ca0bbc5739e1c206264ce804eb75c61a62bd21b2145d1bdd115418ebe5e5608066bce80bd6a2cf7362ca4a8"}, 0xd8) sync_file_range(r2, 0x3, 0x4, 0x4) 03:37:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x2, 0x2) write$FUSE_GETXATTR(r1, &(0x7f00000000c0)={0x11, 0x2, 0x200000000000000a, {0x8}}, 0x18) ioctl$EVIOCSABS20(r1, 0x401845e0, &(0x7f0000000180)={0x101, 0xd32, 0x9, 0x3f, 0x7, 0x4}) ioctl$sock_inet_SIOCGARP(r1, 0x8954, &(0x7f0000000100)={{0x2, 0x4e21, @loopback}, {0x306}, 0x20, {0x2, 0x4e24, @loopback}, 'syz_tun\x00'}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000240)) ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f0000000000)={[], 0x81}) ioctl$KVM_SET_PIT2(r2, 0x4070aea0, &(0x7f00000001c0)) 03:37:12 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$GIO_SCRNMAP(0xffffffffffffffff, 0x4b40, 0x0) getsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000240), 0x0) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net\x00\x00\x00\x00\x00\x00\x00\a/expire_nodest_conn\x00', 0x2, 0x0) ioctl$KVM_SET_DEBUGREGS(r0, 0x4080aea2, &(0x7f0000000380)={[0x0, 0x4]}) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000280), 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) fsetxattr$security_smack_transmute(0xffffffffffffffff, 0x0, &(0x7f0000000200)='TRUE', 0x4, 0x0) getdents64(r1, &(0x7f00000000c0)=""/11, 0xeb) ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000000)={0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0}) ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0) 03:37:12 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) [ 496.703261][T21731] *** Guest State *** [ 496.712655][T21731] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:12 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={0xffffffffffffffff}, 0x117, 0xf}}, 0x20) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=@flushpolicy={0x1c, 0x1d, 0x200, 0x70bd2a, 0x25dfdbfd, "", [@policy_type={0xc, 0x10, {0x1}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0xc1) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000180)={0x15, 0x110, 0xfa00, {r2, 0xfffffffffffffffd, 0x0, 0x0, 0x0, @ib={0x1b, 0x7d6, 0x8000, {"2c537187f6b2f01e7c5ae12368a0e8a9"}, 0x7ff, 0x4, 0x9}, @in={0x2, 0x4e20, @remote}}}, 0x118) 03:37:12 executing program 1: syz_open_procfs(0x0, 0x0) r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8001, 0x27, 0x0, 0xffffffffffffffff}) ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000000)=0x7) 03:37:12 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) [ 496.791329][T21731] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 496.836759][T21731] CR3 = 0x0000000000000000 03:37:12 executing program 4: mkdir(&(0x7f0000000200)='./file0\x00', 0x0) dup2(0xffffffffffffff9c, 0xffffffffffffffff) syz_open_dev$vcsn(&(0x7f0000000240)='/dev/vcs#\x00', 0x1, 0x6a0900) syz_open_dev$vcsn(&(0x7f00000002c0)='/dev/vcs#\x00', 0x5, 0x2000) dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x2, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) write$binfmt_aout(r0, &(0x7f0000001000)=ANY=[@ANYRES64], 0xffffff8a) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x19d, &(0x7f00000000c0)=0x1) ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000040)={0x17}) 03:37:12 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80, 0x0}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) [ 496.914621][T21731] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 03:37:12 executing program 1: r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) sendmsg$can_raw(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x1d, r1}, 0x10, &(0x7f0000000100)={&(0x7f00000000c0)=@can={{}, 0x0, 0x0, 0x0, 0x0, "b5b136acceaaeafa"}, 0x10}}, 0x0) [ 496.986827][T21731] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 497.012492][T21731] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 497.024906][T21731] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:12 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80, 0x0}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:12 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000200)={'IDLETIMER\x00'}, &(0x7f0000000080)=0x1e) ioctl(r0, 0xffffffffffffffb7, &(0x7f0000000080)) socket(0x0, 0x0, 0x0) getresgid(0x0, 0x0, 0x0) [ 497.057340][T21731] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.153213][T21731] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.179234][T21731] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.216162][T21731] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.250537][T21731] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.268626][T21731] GDTR: limit=0x00000000, base=0x0000000000000000 [ 497.337767][T21731] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.346851][T21731] IDTR: limit=0x00000000, base=0x0000000000000000 [ 497.356236][T21731] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 497.366635][T21731] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 497.389365][T21731] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 497.405658][T21731] Interruptibility = 00000000 ActivityState = 00000000 [ 497.419582][T21731] *** Host State *** [ 497.432287][T21731] RIP = 0xffffffff811b3240 RSP = 0xffff88801f5c78e0 [ 497.443641][T21731] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 497.458785][T21731] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 497.478134][T21731] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 497.498510][T21731] CR0=0000000080050033 CR3=000000008872f000 CR4=00000000001426f0 [ 497.506736][T21731] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 497.520338][T21731] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 497.527458][T21731] *** Control State *** [ 497.531742][T21731] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 497.545489][T21731] EntryControls=0000d1ff ExitControls=002fefff [ 497.551768][T21731] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 497.561857][T21731] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 497.573764][T21731] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 497.581130][T21731] reason=80000021 qualification=0000000000000000 [ 497.595342][T21731] IDTVectoring: info=00000000 errcode=00000000 [ 497.607187][T21731] TSC Offset = 0xfffffef399add7e9 [ 497.624990][T21731] TPR Threshold = 0x00 [ 497.634748][T21731] EPT pointer = 0x000000009a70f01e 03:37:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) fcntl$setlease(r0, 0x400, 0x2) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0x80, 0x0}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x0, &(0x7f00000076c0)}}], 0x2, 0x0) 03:37:13 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) symlinkat(&(0x7f0000000000)='./bus\x00', r0, &(0x7f0000000140)='./bus\x00') ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_rose_SIOCRSCLRRT(r0, 0x89e4) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:13 executing program 1: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000013e95), 0x4) close(r0) 03:37:13 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) sysinfo(&(0x7f00000007c0)=""/154) openat$zero(0xffffffffffffff9c, 0x0, 0x11b400, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000001c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f00000000c0)={[{0x2d, 'pids'}]}, 0x6) 03:37:13 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c) sendmmsg(r0, &(0x7f000000ac80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[{0xc, 0x29, 0x8}], 0xc}}], 0x1, 0x0) [ 497.845001][T21787] *** Guest State *** 03:37:13 executing program 5: syz_emit_ethernet(0x6d, &(0x7f0000000140)={@dev, @remote, [], {@generic={0x88ca, "56ca8759206bff2efb2936598c0cfe6595294c21bed0161a74d1a26f99922b655b62eaffbd63ddc5b51014551c9c801402e720628a7969ab4083d12f88989e4f8cc9926d5717e0e72fbb8cbffabd03d7ed3a74855ec53fec96db38e24424c3"}}}, 0x0) [ 497.886902][T21787] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:13 executing program 4: 03:37:13 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) prctl$PR_CAPBSET_DROP(0x18, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x802, 0x0) ioctl$UI_SET_ABSBIT(r1, 0x40045567, 0x0) ioctl$UI_SET_EVBIT(r1, 0x40045564, 0x3) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) 03:37:13 executing program 3: clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1d) ptrace$cont(0x18, r0, 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x0, 0x145}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x1f, r0, 0x0, 0x0) [ 497.933916][T21787] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 497.946214][T21787] CR3 = 0x0000000000000000 [ 497.950685][T21787] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 497.963940][T21787] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 497.970938][T21787] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:13 executing program 5: [ 498.001581][T21787] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.012536][T21787] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.038286][T21787] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:13 executing program 0: lstat(&(0x7f00000001c0)='./bus\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(0xffffffffffffff9c, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000180)='./bus\x00', r0, r1) r2 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) io_submit(r3, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r2, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) getsockopt$IP_VS_SO_GET_TIMEOUT(r2, 0x0, 0x486, &(0x7f0000000300), &(0x7f0000000380)=0xc) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PPPIOCSMAXCID(r2, 0x40047451, &(0x7f0000000000)=0x7) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) connect$inet6(r2, &(0x7f0000000140)={0xa, 0x4e20, 0x7, @remote}, 0x1c) ioctl$SIOCGSTAMPNS(r2, 0x8907, &(0x7f0000000440)) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xced17d067a411f0e, 0x110, r2, 0x0) [ 498.047761][T21787] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.066870][T21787] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.125860][T21787] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.144667][T21787] GDTR: limit=0x00000000, base=0x0000000000000000 [ 498.154585][T21787] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.163659][T21787] IDTR: limit=0x00000000, base=0x0000000000000000 [ 498.181021][T21787] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.190232][T21787] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 498.203717][T21787] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 498.216085][T21787] Interruptibility = 00000000 ActivityState = 00000000 [ 498.225104][T21787] *** Host State *** [ 498.229179][T21787] RIP = 0xffffffff811b3240 RSP = 0xffff88801f5ef8e0 [ 498.240116][T21787] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 498.251441][T21787] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 498.266088][T21787] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 498.274101][T21787] CR0=0000000080050033 CR3=000000004fdde000 CR4=00000000001426e0 [ 498.286996][T21787] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 498.295897][T21787] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 498.307647][T21787] *** Control State *** [ 498.313245][T21787] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 498.320775][T21787] EntryControls=0000d1ff ExitControls=002fefff [ 498.334124][T21787] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 498.345331][T21787] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 498.355025][T21787] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 498.366447][T21787] reason=80000021 qualification=0000000000000000 [ 498.376539][T21787] IDTVectoring: info=00000000 errcode=00000000 [ 498.386774][T21787] TSC Offset = 0xfffffef2fe519c0a [ 498.394186][T21787] TPR Threshold = 0x00 [ 498.398432][T21787] EPT pointer = 0x000000005af4901e 03:37:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/mcfilter\x00') write$vnet(r2, &(0x7f00000002c0)={0x1, {&(0x7f0000000040)=""/79, 0x4f, &(0x7f00000001c0)=""/239, 0x1, 0x3}}, 0x68) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:37:14 executing program 4: 03:37:14 executing program 3: 03:37:14 executing program 1: 03:37:14 executing program 5: 03:37:14 executing program 1: 03:37:14 executing program 3: 03:37:14 executing program 4: 03:37:14 executing program 5: [ 498.649050][T21818] *** Guest State *** [ 498.666832][T21818] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:14 executing program 3: 03:37:14 executing program 1: [ 498.720995][T21818] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 498.781845][T21818] CR3 = 0x0000000000000000 [ 498.802327][T21818] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 498.822324][T21818] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 498.842720][T21818] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 498.864286][T21818] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.887667][T21818] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.900450][T21818] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.915856][T21818] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.925727][T21818] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.944170][T21818] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 498.957740][T21818] GDTR: limit=0x00000000, base=0x0000000000000000 [ 498.967843][T21818] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.000869][T21818] IDTR: limit=0x00000000, base=0x0000000000000000 [ 499.010158][T21818] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.019176][T21818] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 499.026761][T21818] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 499.035219][T21818] Interruptibility = 00000000 ActivityState = 00000000 [ 499.042286][T21818] *** Host State *** [ 499.046199][T21818] RIP = 0xffffffff811b3240 RSP = 0xffff88808aa678e0 [ 499.052966][T21818] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 03:37:14 executing program 0: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x80) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000200)={0xffffffffffffffff}, 0x13f, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000280)={0xb, 0x10, 0xfa00, {&(0x7f0000000140), r2, 0x1000}}, 0x18) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_NESTED_STATE(r0, 0x4080aebf, &(0x7f0000000580)={0x3, 0x0, 0x2080, {0x3000, 0x11000, 0x2}, [], "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", "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"}) ioctl$TIOCLINUX7(r0, 0x541c, &(0x7f00000002c0)={0x7, 0x4}) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 499.060195][T21818] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 499.069064][T21818] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 499.076010][T21818] CR0=0000000080050033 CR3=00000000987b3000 CR4=00000000001426e0 [ 499.084075][T21818] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 499.093719][T21818] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 499.100540][T21818] *** Control State *** [ 499.111641][T21818] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 499.131288][T21818] EntryControls=0000d1ff ExitControls=002fefff [ 499.146931][T21818] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 499.171755][T21818] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 499.179165][T21818] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 499.192457][T21818] reason=80000021 qualification=0000000000000000 [ 499.199631][T21818] IDTVectoring: info=00000000 errcode=00000000 [ 499.206235][T21818] TSC Offset = 0xfffffef28fcfd7fc [ 499.211243][ C1] net_ratelimit: 20 callbacks suppressed 03:37:14 executing program 5: 03:37:14 executing program 4: 03:37:14 executing program 3: [ 499.211251][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 499.211300][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 499.228718][T21818] TPR Threshold = 0x00 [ 499.232853][T21818] EPT pointer = 0x000000005a2b801e 03:37:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_open_dev$sndpcmp(&(0x7f0000000000)='/dev/snd/pcmC#D#p\x00', 0x5, 0x4000) 03:37:14 executing program 1: 03:37:14 executing program 1: 03:37:14 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) eventfd2(0x8, 0x800) io_setup(0x9, &(0x7f0000000400)=0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000000)=0x2, 0x4) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) write$FUSE_IOCTL(r0, &(0x7f0000000140)={0x20, 0x0, 0x7, {0xffffffff, 0x3f748ff61a091337, 0xf272, 0x2}}, 0x20) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) sendmsg$nl_generic(r0, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x24400000}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x16c, 0x1b, 0x0, 0x70bd2d, 0x25dfdbfd, {0x11}, [@nested={0x10, 0x7a, [@generic="8712", @typed={0x4, 0x200}, @typed={0x4, 0x67}]}, @typed={0x8, 0x10, @fd=r0}, @generic="ad48939274682c7d65a77a800f380214efc7ca524ffe2dac0b0529d712f1befc7f6e10892dace41f9093c8a10750b4306536b30e32ae6bb1feeb3b45a00fcc8c1797f0254a3b577b5047cd05bee015f35e358c19aba0ea12b0974da698d1f36b1d64cbb36e5d66affbfc5b7e2abde7b1a4e15e09aea483b572cd24ae09fee9a39361bb461e2bfcc0519115cd7ceb3ae8bbe499f122c2c552255ba55ec62838ff48c69fd6", @generic="2936ebeb644658fa97174ea5cc0ba115bc6d920cbb6c28a06d8b82dcd70d5e667945c3a5b022991755bfb60a4e480d0cb42a4ebba7c5b45df3f86cd56689643c79d830b3bbe99d7c530fe003a4724d23ddf76b9beb48d1edd7831bd270dc2c990ae3d2b37c0bdfe2a30ebab6b115d89cec47d210499d66b3fce9bf6d7e848dc75a10415f648d7ca4c4335ad662fd511a663933c8", @typed={0x4, 0x5d}, @typed={0x4, 0x40}]}, 0x16c}, 0x1, 0x0, 0x0, 0x4}, 0x40) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000440)={0x0, 0x8}, &(0x7f0000000480)=0x8) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000580)={r2, @in={{0x2, 0x4e21, @broadcast}}}, 0x84) openat$vsock(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/vsock\x00', 0x80, 0x0) [ 499.281203][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 499.287010][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:14 executing program 5: 03:37:14 executing program 3: 03:37:14 executing program 1: 03:37:14 executing program 4: [ 499.419092][T21846] *** Guest State *** 03:37:14 executing program 3: 03:37:14 executing program 5: 03:37:14 executing program 4: [ 499.471634][T21846] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:14 executing program 1: [ 499.570870][T21846] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 499.598992][T21846] CR3 = 0x0000000000000000 [ 499.603940][T21846] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 499.610808][T21846] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 499.611029][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 499.618002][T21846] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 499.623340][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 499.642683][T21846] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.659377][T21846] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.670275][T21846] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.680024][T21846] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.689755][T21846] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.698567][T21846] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.707333][T21846] GDTR: limit=0x00000000, base=0x0000000000000000 [ 499.716197][T21846] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.725019][T21846] IDTR: limit=0x00000000, base=0x0000000000000000 [ 499.733863][T21846] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 499.742872][T21846] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 499.750026][T21846] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 499.758251][T21846] Interruptibility = 00000000 ActivityState = 00000000 [ 499.765469][T21846] *** Host State *** [ 499.769373][T21846] RIP = 0xffffffff811b3240 RSP = 0xffff88804ed8f8e0 [ 499.776178][T21846] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 499.776192][T21846] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 499.776204][T21846] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 499.776219][T21846] CR0=0000000080050033 CR3=000000009ba6c000 CR4=00000000001426f0 [ 499.776234][T21846] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 499.776245][T21846] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 499.776250][T21846] *** Control State *** [ 499.776260][T21846] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 499.776275][T21846] EntryControls=0000d1ff ExitControls=002fefff [ 499.838342][T21846] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 499.846045][T21846] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 499.853489][T21846] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 499.860764][T21846] reason=80000021 qualification=0000000000000000 [ 499.867834][T21846] IDTVectoring: info=00000000 errcode=00000000 [ 499.874047][T21846] TSC Offset = 0xfffffef226d08c48 [ 499.879064][T21846] TPR Threshold = 0x00 [ 499.883229][T21846] EPT pointer = 0x000000001e7a601e 03:37:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = add_key(&(0x7f0000000000)='ceph\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f00000001c0)="c0f993d098f224e68f6569358a3bb486c7df2610016101799dde8b756c382381187a4f24d793dffdd37fb722d2c2a43df2ef293df9a8fe9e7601268b605470e5cac5bf5a7c25e6bea2579fc4a4efe0c6a09523ea34a7e38180a8e5e142231d737333543a968fce4a294d7d20a2bd0614c367a8f6845005f29161e73a26dda68636efc82b7dd9b24ce9fe4c91e0eb00dc491344d0181b4fb08fabbd9a13a462a5a9e1fc4f1251e609c6bc4ae54e270173d675948ba01e8c1f0ab80ce8855e0fdd374b74dfd751dbf5cf", 0xc9, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x105, r3) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:15 executing program 3: 03:37:15 executing program 1: 03:37:15 executing program 5: 03:37:15 executing program 4: 03:37:15 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) getsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000000), &(0x7f0000000140)=0x4) [ 499.920903][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 499.926664][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 499.932499][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 499.938242][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:15 executing program 1: 03:37:15 executing program 3: 03:37:15 executing program 4: 03:37:15 executing program 5: 03:37:15 executing program 4: 03:37:15 executing program 3: [ 500.124846][T21875] *** Guest State *** [ 500.128865][T21875] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 500.175302][T21875] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 500.209726][T21875] CR3 = 0x0000000000000000 [ 500.223468][T21875] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 500.230215][T21875] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 500.243083][T21875] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 500.255346][T21875] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.268206][T21875] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.279390][T21875] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.288157][T21875] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.297083][T21875] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.305801][T21875] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.314519][T21875] GDTR: limit=0x00000000, base=0x0000000000000000 [ 500.323581][T21875] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.332347][T21875] IDTR: limit=0x00000000, base=0x0000000000000000 [ 500.342523][T21875] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.351302][T21875] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 500.358409][T21875] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 500.366600][T21875] Interruptibility = 00000000 ActivityState = 00000000 [ 500.373572][T21875] *** Host State *** [ 500.377454][T21875] RIP = 0xffffffff811b3240 RSP = 0xffff88808a1b78e0 [ 500.384211][T21875] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 500.391397][T21875] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 500.399920][T21875] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 500.406679][T21875] CR0=0000000080050033 CR3=00000000a91f2000 CR4=00000000001426e0 [ 500.414488][T21875] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 500.421934][T21875] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 500.428686][T21875] *** Control State *** [ 500.432912][T21875] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 500.440283][T21875] EntryControls=0000d1ff ExitControls=002fefff [ 500.446475][T21875] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 500.454160][T21875] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 500.461598][T21875] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 500.468874][T21875] reason=80000021 qualification=0000000000000000 [ 500.476469][T21875] IDTVectoring: info=00000000 errcode=00000000 [ 500.482738][T21875] TSC Offset = 0xfffffef1c4716574 [ 500.487761][T21875] TPR Threshold = 0x00 [ 500.491955][T21875] EPT pointer = 0x0000000091f1a01e [ 500.550839][T21887] *** Guest State *** [ 500.554922][T21887] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 500.554940][T21887] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 500.574571][T21887] CR3 = 0x0000000000000000 [ 500.579027][T21887] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 500.586045][T21887] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 500.593159][T21887] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 500.601707][T21887] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.610417][T21887] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.619169][T21887] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.627910][T21887] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.636651][T21887] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.645383][T21887] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.654134][T21887] GDTR: limit=0x00000000, base=0x0000000000000000 [ 500.662834][T21887] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.671565][T21887] IDTR: limit=0x00000000, base=0x0000000000000000 [ 500.680238][T21887] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 500.688950][T21887] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 500.696090][T21887] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 500.704275][T21887] Interruptibility = 00000000 ActivityState = 00000000 [ 500.711257][T21887] *** Host State *** [ 500.715147][T21887] RIP = 0xffffffff811b3240 RSP = 0xffff888054cb78e0 [ 500.721988][T21887] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 500.729099][T21887] FSBase=00007effb5ee4700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 500.738215][T21887] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 500.744852][T21887] CR0=0000000080050033 CR3=00000000a91f2000 CR4=00000000001426f0 [ 500.752660][T21887] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 500.760022][T21887] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 500.766839][T21887] *** Control State *** [ 500.771651][T21887] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 500.779012][T21887] EntryControls=0000d1ff ExitControls=002fefff [ 500.785197][T21887] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 500.792908][T21887] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:37:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000001c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x420040, 0x0) ioctl$VIDIOC_LOG_STATUS(r3, 0x5646, 0x0) ioctl$sock_SIOCGIFBR(r3, 0x8940, &(0x7f00000000c0)=@get={0x1, &(0x7f0000000040)=""/77, 0x6}) 03:37:16 executing program 1: 03:37:16 executing program 5: 03:37:16 executing program 4: 03:37:16 executing program 0: r0 = accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800) getsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000140), &(0x7f0000000180)=0x10) r1 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000100)) io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x10000, 0x407000}]) accept4$bt_l2cap(r1, 0x0, &(0x7f00000001c0), 0x80000) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:16 executing program 3: r0 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r0, &(0x7f0000001740), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vcan0\x00', 0x0}) bind$can_raw(r0, &(0x7f0000000240)={0x1d, r1}, 0x10) [ 500.800272][T21887] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 500.807732][T21887] reason=80000021 qualification=0000000000000000 [ 500.814821][T21887] IDTVectoring: info=00000000 errcode=00000000 [ 500.821019][T21887] TSC Offset = 0xfffffef1c4716574 [ 500.826036][T21887] TPR Threshold = 0x00 [ 500.830085][T21887] EPT pointer = 0x0000000091f1a01e 03:37:16 executing program 5: r0 = socket$kcm(0x11, 0x3, 0x0) sendmsg(r0, &(0x7f0000000440)={&(0x7f0000000000)=@nfc={0x103, 0x14}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000600)="9cabbf0400cbb140419b800086dd", 0xe}], 0x1}, 0x0) 03:37:16 executing program 4: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000180)={0x8001, 0x27, 0x0, 0xffffffffffffffff}) ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f0000000000)=0x7) 03:37:16 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) r0 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) r1 = openat$cgroup_subtree(r0, &(0x7f00000001c0)='cgroup.subtree_control\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000180)={[{0x800000000002b, 'pids'}]}, 0x6) write$cgroup_subtree(r1, &(0x7f00000000c0)={[{0x2d, 'pids'}]}, 0x6) 03:37:16 executing program 1: r0 = socket$inet(0x2, 0x2, 0x2000000088) bind(r0, &(0x7f0000000080)=@in={0x2, 0x4e20}, 0x80) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='ip6gretap0\x00', 0x10) setsockopt$inet_udp_int(r0, 0x11, 0xa, &(0x7f0000000000)=0x1, 0x100000169) sendto$inet(r0, &(0x7f0000000240)="dd", 0x1, 0x0, 0x0, 0x0) readv(r0, &(0x7f0000001580)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/250, 0xfa}, {&(0x7f0000000180)=""/26, 0x1a}, {&(0x7f0000001380)=""/243, 0xf3}, {&(0x7f0000001480)=""/237, 0xed}, {&(0x7f0000000200)=""/20, 0x14}], 0x6) [ 500.988097][T21899] *** Guest State *** [ 500.993227][T21899] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 501.035323][T21899] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 501.050143][T21899] CR3 = 0x0000000000000000 [ 501.059113][T21899] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 501.066185][T21899] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 501.073229][T21899] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:16 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) getsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000000), &(0x7f0000000140)=0x4) [ 501.084695][T21899] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.095827][T21899] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.108697][T21899] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.130946][T21899] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:16 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000580)=ANY=[@ANYBLOB="070000000000000007000080030000000100000080000000ff0700003a00000002000000000000000000000000000000000000400100000002000000f093c628ffff00008000000002000000000000000000000000000000000000c0f9f4ffff0100000009000000ff0f0000090000000004000000000000000000000000000019000080000000000100000001000000090000003f000000860000000000000000000000000000000f0000800101000001000000040000000900000000fab15924c29b7d8a1f3763be1bef98000000850000000000000000000000000000000f000080000000000000000001800000ff0f000008000000ffff0000000000000000000000000000000000803f00000002000000070000000000000005000000810000000000000000000000000000008d1ad383180f4a4dc8db5e1d9ce01a89f7d515e20382aa197157389365ca87a9d2623f410b7ba36da7b6fc8d1f8c7af8dd7b8c7caae0a1f442f638a6fd872257b8ee65cb52b073fe7eed8bc198"]) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000280)={0x3f, 0x9}) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, r0) ioctl$UI_BEGIN_FF_ERASE(r0, 0xc00c55ca, &(0x7f0000000000)={0x2, 0x1, 0x6}) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 501.156811][T21899] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.178953][T21899] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.207114][T21899] GDTR: limit=0x00000000, base=0x0000000000000000 [ 501.220635][T21899] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.242834][T21899] IDTR: limit=0x00000000, base=0x0000000000000000 [ 501.252296][T21899] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.261178][T21899] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 501.268474][T21899] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 501.277767][T21899] Interruptibility = 00000000 ActivityState = 00000000 [ 501.284959][T21899] *** Host State *** [ 501.289065][T21899] RIP = 0xffffffff811b3240 RSP = 0xffff88804ec2f8e0 [ 501.296496][T21899] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 501.303868][T21899] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 501.322433][T21899] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 501.329185][T21899] CR0=0000000080050033 CR3=000000004fa31000 CR4=00000000001426e0 [ 501.346517][T21899] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 501.354906][T21899] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 501.367064][T21899] *** Control State *** [ 501.373722][T21899] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 501.381284][T21899] EntryControls=0000d1ff ExitControls=002fefff [ 501.387440][T21899] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 501.395114][T21899] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 501.403427][T21899] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 501.410785][T21899] reason=80000021 qualification=0000000000000000 [ 501.417807][T21899] IDTVectoring: info=00000000 errcode=00000000 [ 501.424291][T21899] TSC Offset = 0xfffffef150593448 [ 501.429324][T21899] TPR Threshold = 0x00 [ 501.433489][T21899] EPT pointer = 0x00000000a84e401e 03:37:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0xfffffffffffffff9) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:37:16 executing program 5: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x80) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000200)={0xffffffffffffffff}, 0x13f, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_INIT_QP_ATTR(r0, &(0x7f0000000280)={0xb, 0x10, 0xfa00, {&(0x7f0000000140), r2, 0x1000}}, 0x18) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_NESTED_STATE(r0, 0x4080aebf, &(0x7f0000000580)={0x3, 0x0, 0x2080, {0x3000, 0x11000, 0x2}, [], "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", "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"}) ioctl$TIOCLINUX7(r0, 0x541c, &(0x7f00000002c0)={0x7, 0x4}) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:16 executing program 3: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={0xffffffffffffffff}, 0x117, 0xf}}, 0x20) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)=@flushpolicy={0x1c, 0x1d, 0x200, 0x70bd2a, 0x25dfdbfd, "", [@policy_type={0xc, 0x10, {0x1}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0xc1) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000180)={0x15, 0x110, 0xfa00, {r2, 0xfffffffffffffffd, 0x0, 0x0, 0x0, @ib={0x1b, 0x7d6, 0x8000, {"2c537187f6b2f01e7c5ae12368a0e8a9"}, 0x7ff, 0x4, 0x9}, @in={0x2, 0x4e20, @remote}}}, 0x118) 03:37:16 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000600)=0x0) r2 = geteuid() r3 = getgid() ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000640)=0x0) fstat(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000700)={0x0, 0x0, 0x0}, &(0x7f0000000740)=0xc) sendmsg$unix(r0, &(0x7f0000000800)={&(0x7f0000000380)=@file={0x1, './bus\x00'}, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000440)="293b890a7419328ffc31c440505d742438546e6d0ef62dc3d66c10848528c03aef13773ed6eab413b46d492a332e184a78611bcea9f783355784e46cb98d05354479b3adf795366ebde2017992c0ab86579fc8b4", 0x54}, {&(0x7f0000000a40)="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", 0x1000}, {&(0x7f00000004c0)="809a887f71bee90deb0f80367113f236b363bc1120a79da9", 0x18}, {&(0x7f0000000580)="6919a58eb25d563f042c51b6dde75fa2031bbed5b4caaa864f1d37c9b940f4b5ab06dc26db9b4d2d5bef1192c625cbfc21e1ea3a7857bf155057f32fc578572115e45be6c162ae3a15", 0x49}], 0x4, &(0x7f0000000780)=ANY=[@ANYBLOB="20000000000000000100000002000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0000000020000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="0000000010000000"], 0x50, 0x4000000}, 0x4000040) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={0x0, r0, 0xb, 0x1}, 0x14) io_submit(r7, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$VIDIOC_OVERLAY(r0, 0x4004560e, &(0x7f0000000140)=0x2) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_int(r0, 0x1, 0x1f, &(0x7f0000000180)=0x8, 0x4) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200)='TIPC\x00') sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8022}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r8, 0x2, 0x70bd25, 0x25dfdbff, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000800}, 0x40010) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) prctl$PR_SET_NAME(0xf, &(0x7f0000000300)='!](.vboxnet1em1$-user\x00') 03:37:16 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) recvfrom$rose(r0, &(0x7f0000000000)=""/43, 0x2b, 0x100, &(0x7f0000000140)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f0000000180)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3, @default, @bpq0='bpq0\x00', 0x6, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}) [ 501.678778][T21936] *** Guest State *** [ 501.695092][T21936] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 501.707145][T21936] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 501.719846][T21936] CR3 = 0x0000000000000000 03:37:17 executing program 3 (fault-call:5 fault-nth:0): perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 501.727379][T21936] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 501.737089][T21936] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 501.746690][T21936] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 501.757742][T21936] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.768441][T21936] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:17 executing program 5: capset(&(0x7f00000fc000)={0x19980330}, &(0x7f000047efe8)) r0 = getpid() sched_setscheduler(r0, 0x7, &(0x7f0000000040)) [ 501.797370][T21936] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.807354][T21936] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:17 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) renameat(r0, &(0x7f0000000000)='./bus\x00', r0, &(0x7f0000000140)='./bus\x00') 03:37:17 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) recvfrom$rose(r0, &(0x7f0000000000)=""/43, 0x2b, 0x100, &(0x7f0000000140)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x1, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}}, 0x1c) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f0000000180)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3, @default, @bpq0='bpq0\x00', 0x6, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}) [ 501.854688][T21936] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") r1 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r1, &(0x7f0000009400)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x5}, 0x1c) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000340)={@local, @local, [], {@ipv6={0x86dd, {0x0, 0x6, "1bfc97", 0x4d, 0x88, 0x0, @dev, @mcast2, {[], @udp={0x0, 0x4e20, 0x4d, 0x0, [], "e29607149378d33e1db1c73936c77aa3f7fac33b042bd368236862531934ecb1c373d6ea51369e92fb96cc7c6fe4e24d1fcafff87429e50b32881721afab69cc3712c37ed0"}}}}}}, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x880, 0x8) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r2, 0xc1105517, &(0x7f0000000140)={{0xa, 0x5, 0x4, 0x0, 'syz0\x00', 0xa69b}, 0x0, 0x10000000, 0xfffffffffffffffd, r3, 0x4, 0x4, 'syz1\x00', &(0x7f0000000100)=['\x00', '\'em1+em0Zvmnet1{lo-\xbfppp0cpusetvboxnet0eth1vmnet0{\x00', '\x00', '\x00'], 0x35, [], [0x5, 0x5, 0x401, 0x4117]}) shutdown(r1, 0x0) recvmmsg(r1, &(0x7f0000011180), 0x24a, 0x10022, &(0x7f00000113c0)={0x0, 0x1c9c380}) [ 501.897590][T21936] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.954655][T21936] GDTR: limit=0x00000000, base=0x0000000000000000 [ 501.975990][T21936] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 501.997868][T21936] IDTR: limit=0x00000000, base=0x0000000000000000 03:37:17 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x74, 0x4) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e21, 0x10000, @rand_addr="0d753a745c7ae949817ca7f11ffce2d6", 0xfffffffffffff926}}, 0x1, 0x200}, 0x0) sendfile(r0, r2, &(0x7f0000000300), 0x4) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000340)='/dev/rfkill\x00', 0x40000, 0x0) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000080)=0xda9, 0x4) setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES16=0x0], 0xff5a) getresgid(&(0x7f0000000140), &(0x7f00000001c0), &(0x7f0000000200)) 03:37:17 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000900)) r0 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x25, 0x400) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) syz_emit_ethernet(0x7a, &(0x7f00000005c0)={@local, @remote, [], {@ipv6={0x86dd, {0x0, 0x6, "a1bba9", 0x44, 0x2c, 0x0, @local={0xfe, 0x80, [0x4000000000000000, 0x0, 0x300000000000000, 0x0, 0x10000000000, 0x0, 0x400000]}, @local, {[], @gre={{0x0, 0x501}}}}}}}, 0x0) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/current\x00', 0x2, 0x0) [ 502.031440][T21936] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 502.053913][T21936] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 502.099469][T21936] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 502.132316][T21936] Interruptibility = 00000000 ActivityState = 00000000 [ 502.172833][T21936] *** Host State *** [ 502.191372][T21936] RIP = 0xffffffff811b3240 RSP = 0xffff88809b91f8e0 [ 502.231175][T21936] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 502.287615][T21936] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 502.324351][T21936] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 502.335301][T21936] CR0=0000000080050033 CR3=000000005a2b8000 CR4=00000000001426f0 [ 502.346058][T21936] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 502.362782][T21936] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 502.374779][T21936] *** Control State *** [ 502.379134][T21936] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 502.389063][T21936] EntryControls=0000d1ff ExitControls=002fefff [ 502.402052][T21936] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 502.415451][T21936] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 502.430285][T21936] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 502.430301][T21936] reason=80000021 qualification=0000000000000000 [ 502.473981][T21936] IDTVectoring: info=00000000 errcode=00000000 [ 502.480323][T21936] TSC Offset = 0xfffffef0efa9f274 [ 502.485638][T21936] TPR Threshold = 0x00 [ 502.490060][T21936] EPT pointer = 0x000000001e79b01e 03:37:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:18 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:18 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) r2 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) finit_module(r2, &(0x7f0000000000)='-md5sum{\'\x00', 0x0) sendfile(r2, r2, &(0x7f0000000140), 0x1) 03:37:18 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f3188b070") r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) getsockname(r1, &(0x7f00000000c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f0000000000)=0x80) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='9p\x00', 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_user='access=Qser'}]}}) 03:37:18 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getsockopt$inet6_int(r1, 0x29, 0x4e, &(0x7f0000b67000), &(0x7f0000000240)=0x4) syz_open_dev$radio(&(0x7f0000000140)='/dev/radio#\x00', 0x0, 0x2) r2 = accept$netrom(0xffffffffffffff9c, &(0x7f0000000000)={{}, [@netrom, @default, @null, @default, @null, @null, @rose, @default]}, &(0x7f0000000080)=0x48) ioctl$sock_netrom_SIOCDELRT(r2, 0x890c, &(0x7f00000000c0)={0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={'nr', 0x0}, 0xffffffff, 'syz1\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x4, 0x4, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) [ 502.666729][T21985] *** Guest State *** 03:37:18 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='stat\x00') sendfile(r0, r1, 0x0, 0x6a5) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000000)) [ 502.701982][T21984] 9p: Unknown access argument Qser [ 502.706468][T21985] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:18 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x3}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:18 executing program 5: socket$inet6_sctp(0xa, 0x5, 0x84) sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000840000000000000000800100ffff08001800000000000000840000000500000010000000", @ANYRES32=0x0], 0x30}, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x900, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000080), 0x358, 0x3) [ 502.771847][T21985] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 502.797739][T21985] CR3 = 0x0000000000000000 [ 502.803862][T21985] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 502.810766][T21985] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 502.817571][T21985] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 502.841790][T21985] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 502.856380][T21985] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:18 executing program 0: r0 = semget$private(0x0, 0x3, 0x10) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x8a, 0x517e, 0x81, 0x1, 0x0]) r1 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000100)) io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x10000, 0x407000}]) r3 = syz_open_dev$audion(&(0x7f0000000140)='/dev/audio#\x00', 0x2, 0x20100) ioctl$PERF_EVENT_IOC_QUERY_BPF(r3, 0xc008240a, &(0x7f0000000200)=ANY=[@ANYBLOB="0100c20000000000000000005ff2def91a5aa9dce83f5c7d36c28ccf7600e46c35b98ccd92a83a3dd3d5b05f50370ff7617fe338c8e0ce62c6d16a89dab04a6ede821fdb99e451fda24e888967e83a69114f1673371dc7e612583ebed20928b8b14d7b2c570d1762bd9667d80fdc9ee0ebb8bd6c5fb9cf2ad75f1c67f1c5"]) ioctl$FICLONE(r1, 0x40049409, r1) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 502.901735][T21985] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:18 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x141}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 502.958110][T21985] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.014102][T21985] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.050746][T21985] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.069614][T21985] GDTR: limit=0x00000000, base=0x0000000000000000 [ 503.096030][T21985] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:18 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000006600)=[{&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000040)="ab", 0x1}], 0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="300000000000678e0c96ec07f9e40036aa61b1ae63b473cd645f9ccbf4e7daf9000100a00804007f00603f000006000000e90000005d8affffed0a0000", @ANYRES32=0x0], 0x30, 0xc000}], 0x1, 0x10) r1 = syz_open_dev$sndpcmc(&(0x7f00000002c0)='/dev/snd/pcmC#D#c\x00', 0x6, 0x20000) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080)={0xffffffffffffffff}, 0x0, 0x8}}, 0x20) lsetxattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000380)=@random={'os2.', '\x00'}, &(0x7f0000000500)='\x00', 0x1, 0x3) write$RDMA_USER_CM_CMD_REJECT(r1, &(0x7f00000003c0)={0x9, 0x108, 0xfa00, {r2, 0xd4, "58d64f", "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"}}, 0x110) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000300)={0x0, 0x200}, &(0x7f0000000340)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r1, 0x84, 0x19, &(0x7f0000000140)={r3, 0x3}, 0x8) keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000240)='#selfvboxnet0\x00', &(0x7f0000000280)) 03:37:18 executing program 1: syz_open_dev$dspn(&(0x7f0000000000)='/dev/dsp#\x00', 0x1000, 0x121000) syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0x5, 0x2800) openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x80, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x511480, 0x0) r0 = eventfd2(0x0, 0x0) close(r0) [ 503.144744][T21985] IDTR: limit=0x00000000, base=0x0000000000000000 [ 503.174277][T21985] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.208985][T21985] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 503.235951][T21985] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 503.310396][T21985] Interruptibility = 00000000 ActivityState = 00000000 [ 503.321276][T21985] *** Host State *** [ 503.325569][T21985] RIP = 0xffffffff811b3240 RSP = 0xffff88805c3178e0 [ 503.335198][T21985] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 503.349207][T21985] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000003000 [ 503.363259][T21985] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 503.372732][T21985] CR0=0000000080050033 CR3=00000000a0762000 CR4=00000000001426e0 [ 503.380652][T21985] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 503.388083][T21985] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 503.395333][T21985] *** Control State *** [ 503.400139][T21985] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 503.407561][T21985] EntryControls=0000d1ff ExitControls=002fefff [ 503.414757][T21985] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 503.422780][T21985] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 503.430575][T21985] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 503.437932][T21985] reason=80000021 qualification=0000000000000000 [ 503.445348][T21985] IDTVectoring: info=00000000 errcode=00000000 [ 503.451744][T21985] TSC Offset = 0xfffffef067f47e53 [ 503.456793][T21985] TPR Threshold = 0x00 03:37:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f00000002c0)=0x42, 0x4) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r3 = syz_open_dev$usb(&(0x7f0000000000)='/dev/bus/usb/00#/00#\x00', 0x3ff, 0x600300) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e20, 0x3, @local, 0xf4b}, @in={0x2, 0x4e22, @broadcast}, @in6={0xa, 0x4e21, 0x0, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x2}, @in6={0xa, 0x4e23, 0x101, @remote, 0x4}]}, &(0x7f00000001c0)=0x10) r5 = semget$private(0x0, 0x3, 0x20) semctl$SETVAL(r5, 0x6, 0x10, &(0x7f0000000280)=0x8) getsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000200)={r4, 0x7f}, &(0x7f0000000240)=0x8) accept4$llc(r3, 0x0, &(0x7f0000000300), 0x800) 03:37:18 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket(0x400000000010, 0x3, 0x0) write(r0, &(0x7f0000000000)="2400000021002551075c0165ff0ffc020200000300100f0007e1000c080018008000a000", 0x24) setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f0000000200)={@nl=@kern={0x10, 0x0, 0x0, 0x10602880}, {&(0x7f0000000040)=""/247, 0xf7}, &(0x7f0000000140), 0x1}, 0xa0) 03:37:18 executing program 0: truncate(&(0x7f0000000000)='./bus\x00', 0x6) r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$TIOCLINUX5(r0, 0x541c, &(0x7f0000000140)={0x5, 0x2, 0x3f, 0x4, 0x4}) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:18 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000002e000901000000000020000000000000100000000c0000000000030000000000"], 0x24}}, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmmsg$alg(r1, &(0x7f0000000140)=[{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000100)}], 0x492492492492805, 0x0) 03:37:18 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000001f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x5, 0x200080) r0 = socket$unix(0x1, 0x801, 0x0) socket$unix(0x1, 0x0, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) listen(r0, 0x5) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(0xffffffffffffffff, 0xc0105303, 0x0) ioctl$NBD_CLEAR_SOCK(0xffffffffffffffff, 0xab04) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000006c0), 0x4) symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00') mkdirat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x3, 0x75, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x8010000000000084) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000400)={0x0, 0x8, 0x10}, 0xc) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000080)={0x8, 0x2, 0x94, 0x2, 0x0}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000001c0)={r3, 0x7}, &(0x7f0000000340)=0x8) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty, 0x3}, 0x1c) r4 = syz_open_dev$admmidi(&(0x7f0000000440)='/dev/admmidi#\x00', 0x7, 0x80001) ioctl$BLKREPORTZONE(r4, 0xc0101282, &(0x7f0000000480)=ANY=[@ANYBLOB="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"]) r5 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x957, 0x80000) listen(r1, 0x200000000002) r6 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r6, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={[], [], @remote}}, 0x1c) getsockopt$IP6T_SO_GET_REVISION_MATCH(r2, 0x29, 0x44, &(0x7f0000000380)={'ah\x00'}, &(0x7f00000003c0)=0x1e) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r6, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f00000002c0), &(0x7f0000000300)=0x10) ioctl$TCSETAW(r5, 0x5407, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0) socket$kcm(0x29, 0x6, 0x0) 03:37:18 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x3d4}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 503.461156][T21985] EPT pointer = 0x00000000a568001e 03:37:19 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x141}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:19 executing program 4: r0 = open(&(0x7f00000000c0)='./file0\x00', 0x141043, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={r0, &(0x7f0000000000)="207a350b570dbfcff8715463495e4e3b5a56d98ed0194858ee2c09c837ef9869defd46ff1f2d3c2d7eba3b17d0cc7e27e5876db1edc1d9e43a702c06093e32b2427b08cbf793eea92a92a144554265dd4fc59cc59466bab6d0f0a3af60a85657655fcd28244cdedc9af329d23945091d1cc0e2cf3a7a8d55e0d1010fd2bc3b4120f4d31126b2b2db53fd65f92b24d8a022c1797a00ebdd061b55fe9fff8abb3da8"}, 0x10) vmsplice(r0, 0x0, 0x0, 0x0) 03:37:19 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x3d5}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 503.704576][T22031] *** Guest State *** [ 503.708597][T22031] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 503.723968][T22031] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 503.739103][T22031] CR3 = 0x0000000000000000 03:37:19 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000140)="4980d9771e56b820e7482071563258302c1392a0b2918ac7387f929eb6e5d814946afa749d59bf6f24a800fca8f545b026b124c8c056ba92885530a8447199f38ffc2275849d92735846d6618806519f1bfbbb38ee05194db5e000d8b9018508f8b9625391e8d8230536edb2dd075005d64d15a860b4c80926e0b206160d6ffb03d548c841af6f867de65bebb2f5ae8c1c8269fcd52186570135bbe4da04ac4bd367444b2e6b5cf74869b4c196697dac26ae7cc4ec63", 0xb6, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 503.749006][T22031] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 503.755700][T22031] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 503.829051][T22031] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 503.859470][T22031] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.868227][T22031] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:19 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x2}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:19 executing program 4: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f00000003c0)={0x0, 0x7, 0x7, 0x7}, &(0x7f0000000400)=0x10) ioctl$SG_GET_RESERVED_SIZE(0xffffffffffffffff, 0x2272, &(0x7f0000000440)) r1 = socket$l2tp(0x18, 0x1, 0x1) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000540)={0x7, 0x6, 0x6, 0x8, 0x10001}, 0x14) ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07) connect$l2tp(r1, &(0x7f0000000040)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x1, 0x4, 0x1, 0x0, {0xa, 0x4e23, 0x200, @mcast1, 0x6}}}, 0x32) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@local, @in, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in, 0x4d4, 0x2b}, 0x0, @in6=@mcast2}}, 0xe8) sendmmsg(r1, &(0x7f0000005fc0), 0x800000000000059, 0x0) [ 503.913071][T22031] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.952799][T22031] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 503.988122][T22031] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.027524][T22031] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.091951][T22031] GDTR: limit=0x00000000, base=0x0000000000000000 [ 504.136088][T22031] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.156698][T22031] IDTR: limit=0x00000000, base=0x0000000000000000 [ 504.189303][T22031] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.198065][T22031] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 504.205896][T22031] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 504.214505][T22031] Interruptibility = 00000000 ActivityState = 00000000 [ 504.222056][T22031] *** Host State *** [ 504.226143][T22031] RIP = 0xffffffff811b3240 RSP = 0xffff888094dcf8e0 [ 504.233306][T22031] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 504.240827][T22031] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 504.249800][T22031] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 504.256463][T22031] CR0=0000000080050033 CR3=00000000535cc000 CR4=00000000001426e0 [ 504.264664][T22031] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 504.272427][T22031] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 504.279634][T22031] *** Control State *** [ 504.283852][T22031] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 504.291616][T22031] EntryControls=0000d1ff ExitControls=002fefff [ 504.297840][T22031] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 504.305989][T22031] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 504.313758][T22031] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 504.321668][T22031] reason=80000021 qualification=0000000000000000 [ 504.329116][T22031] IDTVectoring: info=00000000 errcode=00000000 [ 504.335322][T22031] TSC Offset = 0xfffffeefdae5c273 [ 504.340670][T22031] TPR Threshold = 0x00 [ 504.344739][T22031] EPT pointer = 0x000000008bfa601e 03:37:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x8002, 0x0) ioctl$KVM_GET_NESTED_STATE(r1, 0xc080aebe, &(0x7f00000004c0)={0x0, 0x0, 0x2080}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f00000001c0)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbc72fd74a3a761cf828927c5807cd2b36e46287b1b5146d27a5789ea39be6fa8c6d57a14d78d40e0fa78b233ee136b0c6f69270b42e4571579f6d8348fa9cbdeaca1021c14345022c3fd2a36d1ceb9ecd932b7325be5fa39b3f7417d8acac39ed6750ce4b790a993e06bb819db42aab1ccc7a654583b81928a2bfbf1f113563d1807", 0xa9, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:37:19 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000015c0)='vxcan1\x00', 0x10) r1 = syz_open_dev$vcsn(&(0x7f0000000480)='/dev/vcs#\x00', 0x81, 0x0) r2 = dup2(r0, r0) sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0xfffffffd}, 0xc, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB='E'], 0x1}}, 0x44801) ioctl$EVIOCGSW(r2, 0x8040451b, &(0x7f0000000040)=""/61) sendmsg$FOU_CMD_DEL(r2, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0) ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, 0x0) openat(r2, &(0x7f0000000340)='./file0\x00', 0x0, 0x20) mincore(&(0x7f0000ffb000/0x3000)=nil, 0x3000, &(0x7f00000003c0)=""/67) ioctl$FS_IOC_GETFLAGS(r0, 0x80046601, &(0x7f0000000300)) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer\x00', 0x6180, 0x0) setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000080)=0x7010, 0x307) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, 0x0, &(0x7f0000000100)) perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x7, 0x0, 0x4, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x400000000000000) ioctl$sock_bt_bnep_BNEPCONNADD(r2, 0x400442c8, &(0x7f0000000380)={r1, 0x4, 0x4, "dd94f69bf7c6ccddfe8723e374935eb6"}) lseek(0xffffffffffffffff, 0x400, 0x0) getdents(r4, &(0x7f0000000200)=""/148, 0x94) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x3, @mcast2}}}, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000080)={r6, 0x100000000, 0x7871}, 0x0) 03:37:19 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x5211d73e, &(0x7f0000000180)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$KVM_S390_INTERRUPT_CPU(r0, 0x4010ae94, &(0x7f0000000000)={0x3, 0x1, 0x10000}) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:19 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x2, 0x2) getdents64(r0, &(0x7f0000000040)=""/171, 0xab) r1 = dup2(r0, r0) ioctl$DRM_IOCTL_AGP_ACQUIRE(r0, 0x6430) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000100), &(0x7f0000000140)=0x4) timerfd_gettime(r0, &(0x7f0000000180)) ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f00000001c0)={"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"}) r2 = syz_open_dev$video(&(0x7f00000005c0)='/dev/video#\x00', 0x9, 0x80a00) getdents64(r1, &(0x7f0000000600)=""/69, 0x45) write$input_event(r0, &(0x7f0000000680)={{}, 0x1f, 0x3, 0x100000000}, 0x18) fcntl$setstatus(r2, 0x4, 0x40000) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f00000006c0)={0x0}, &(0x7f0000000700)=0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000740)={r3, @in6={{0xa, 0x4e22, 0x0, @loopback}}, [0x1, 0x1, 0xeb, 0x5, 0x80000001, 0x4, 0x1ff, 0x2, 0x0, 0x6, 0x9, 0x5, 0x9, 0x1000, 0x9]}, &(0x7f0000000840)=0x100) r4 = request_key(&(0x7f0000000880)='cifs.spnego\x00', &(0x7f00000008c0)={'syz', 0x1}, &(0x7f0000000900)='selinuxwlan0\x00', 0xfffffffffffffffc) keyctl$clear(0x7, r4) setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000940)={0x1d, @multicast1, 0x4e23, 0x2, 'dh\x00', 0x20, 0x4, 0x79}, 0x2c) r5 = accept4(r0, &(0x7f0000000980)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000000a00)=0x80, 0x80000) fstat(r1, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000ac0)={{{@in=@multicast1, @in6=@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x4e21, 0x0, 0x4e23, 0x0, 0x2, 0x20, 0x80, 0x2e, r6, r7}, {0x0, 0xf87, 0x2, 0x6, 0x1f, 0x90000, 0x3093fb3f}, {0x8d, 0xd947, 0x400, 0x7f}, 0x3a5e, 0x0, 0x2, 0x0, 0x2, 0x3}, {{@in6=@empty, 0x4d3}, 0x2, @in6=@empty, 0x0, 0x4, 0x3, 0x9c, 0x400, 0x80000001, 0x6}}, 0xe8) tee(r0, r5, 0x4, 0x1) ioctl$DRM_IOCTL_VERSION(r1, 0xc0406400, &(0x7f0000000d80)={0x200, 0x4, 0x4, 0x19, &(0x7f0000000bc0)=""/25, 0x7c, &(0x7f0000000c00)=""/124, 0xe1, &(0x7f0000000c80)=""/225}) ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000dc0)={0xef68, 0x2, 0x7, 0x5, 0x6, 0x1000, 0x2, 0x101, 0x8, 0x3f}) r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000e00)='/dev/hwrng\x00', 0x52580, 0x0) r9 = gettid() perf_event_open(&(0x7f0000000e80)={0x0, 0x70, 0x5, 0x80000001, 0x8, 0x7ff, 0x0, 0x7, 0x10, 0xe, 0x0, 0x3f, 0x8, 0xff, 0x2, 0x5, 0x800, 0xc714, 0x1, 0x200, 0x0, 0x4, 0x80, 0x65, 0x3, 0x8, 0x80000001, 0x400, 0x1000, 0x10000, 0x7, 0x0, 0x8, 0x3, 0x0, 0x2, 0x8, 0x80, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000e40), 0x9}, 0x4, 0xd11, 0xb, 0xf, 0x89e6, 0x400, 0xfff}, r9, 0x0, r1, 0x9) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000f00)={0x4, 0x0, 0x10001, 0x9f5b}) ioctl$DRM_IOCTL_AGP_UNBIND(r8, 0x40106437, &(0x7f0000000f40)={r10, 0x2f6}) getsockopt$bt_sco_SCO_OPTIONS(r8, 0x11, 0x1, &(0x7f0000000f80)=""/153, &(0x7f0000001040)=0x99) r11 = syz_genetlink_get_family_id$tipc(&(0x7f00000010c0)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x3000}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x1c, r11, 0x400, 0x70bd27, 0x25dfdbfe, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x44) 03:37:19 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x3}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:19 executing program 5: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setreuid(0x0, r1) fchmod(r0, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x4000) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000040)={0x9, 0x0, 0x10001, 0x97c4}) ioctl$DRM_IOCTL_AGP_BIND(r2, 0x40106436, &(0x7f0000000080)={r3, 0xff}) 03:37:20 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) ioctl$SIOCX25SENDCALLACCPT(r0, 0x89e9) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:20 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480)='/dev/ptmx\x00', 0x0, 0x0) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/255, 0xff}], 0x1) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)) r1 = syz_open_pts(r0, 0x0) dup2(r1, r0) ioctl$TCXONC(r0, 0x540a, 0x7) ioctl$TIOCLINUX3(r1, 0x541c, &(0x7f0000000140)) 03:37:20 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x4}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 504.551098][T22079] *** Guest State *** [ 504.555120][T22079] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:20 executing program 5: r0 = openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0) shmget$private(0x0, 0x3000, 0x4, &(0x7f0000ffa000/0x3000)=nil) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0) r1 = syz_open_dev$vbi(&(0x7f0000001280)='/dev/vbi#\x00', 0x3, 0x2) r2 = memfd_create(&(0x7f0000000000)='\xac\x01\x00', 0x4) ftruncate(r2, 0x1000000) sendfile(r1, r2, &(0x7f00000000c0)=0xf10001, 0xeffffdef) 03:37:20 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1a7df, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x2) ioctl(r0, 0x9, &(0x7f0000000040)) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0) ioctl$SIOCRSSL2CALL(r2, 0x89e2, &(0x7f0000000080)=@default) [ 504.710845][T22079] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:20 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x80000001, 0xfffffffffffffffa, 0x86, 0x1, 0x100000001, 0x2, 0x9}, 0x714) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'veth1_to_team\x00', 0x0}) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000140)={'team0\x00', {0x2, 0x4e23, @remote}}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f00000002c0), 0x10) bind$packet(r0, &(0x7f0000000000)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @remote}, 0x14) sendmmsg(r0, &(0x7f0000008a80)=[{{&(0x7f0000000180)=@ll={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x2d3, &(0x7f0000000200), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="37a8467d1e5dc8b9d595100000000000000000000000000000db07f5c77b37bbca1e9bf6f13d23a120f2be9f442662a0e912c8e322639afbd9dab7f0c35a089d4a84096f8a3d75f6eb0eb7b9dc93f21865d25895421f92001436"], 0x10}}], 0x5ec5f144db556138, 0x0) mincore(&(0x7f0000ffc000/0x2000)=nil, 0x2000, &(0x7f0000000300)=""/173) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000980)='/dev/cachefiles\x00', 0x10000, 0x0) getsockopt$bt_sco_SCO_OPTIONS(r3, 0x11, 0x1, &(0x7f00000009c0)=""/67, &(0x7f0000000a40)=0x43) [ 504.758039][T22079] CR3 = 0x0000000000000000 [ 504.777040][T22079] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 504.800426][T22079] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 504.807603][T22079] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 504.822876][T22079] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.834265][T22079] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.848012][T22079] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.868447][T22079] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.907660][T22079] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.926127][T22079] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.937426][T22079] GDTR: limit=0x00000000, base=0x0000000000000000 [ 504.947434][T22079] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.965633][T22079] IDTR: limit=0x00000000, base=0x0000000000000000 [ 504.974695][T22079] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 504.983739][T22079] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 504.991243][T22079] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 504.999571][T22079] Interruptibility = 00000000 ActivityState = 00000000 [ 505.006590][T22079] *** Host State *** [ 505.010939][T22079] RIP = 0xffffffff811b3240 RSP = 0xffff8880595df8e0 [ 505.017639][T22079] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 505.024864][T22079] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 505.033471][T22079] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 505.040177][T22079] CR0=0000000080050033 CR3=0000000059b98000 CR4=00000000001426e0 [ 505.048009][T22079] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 505.055461][T22079] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 505.062285][T22079] *** Control State *** [ 505.066433][T22079] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 505.073938][T22079] EntryControls=0000d1ff ExitControls=002fefff [ 505.080151][T22079] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 505.087774][T22079] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 505.095212][T22079] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 505.102569][T22079] reason=80000021 qualification=0000000000000000 [ 505.109663][T22079] IDTVectoring: info=00000000 errcode=00000000 [ 505.115812][T22079] TSC Offset = 0xfffffeef65b5053a [ 505.121054][T22079] TPR Threshold = 0x00 [ 505.125127][T22079] EPT pointer = 0x00000000884b701e 03:37:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x8040, 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000001c0)={{0x3, 0x101}, 'port0\x00', 0x80, 0x8, 0x7, 0x1, 0x8000, 0x882, 0x94, 0x0, 0x2, 0x1}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x2000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x39b}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:20 executing program 5: mkdir(&(0x7f0000000080)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280)='proc\x00', 0x0, 0x0) r0 = open$dir(&(0x7f00000003c0)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000440)=""/186, 0x760) getdents64(r0, &(0x7f00000000c0)=""/121, 0x79) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000140)={&(0x7f0000000000)='./file0\x00', 0x0, 0x8}, 0x10) 03:37:20 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x8000000006, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:20 executing program 1: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x210080, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000040)={0x2, 0x18, 0x3, 0xbd9, "e4c308683ee9431b3dccb9c01fc9d7d525e458958f556d54a56826644de44e54"}) ioctl$TIOCLINUX3(r0, 0x541c, &(0x7f0000000080)) getsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f00000000c0)=0x6, &(0x7f0000000100)=0x1) write$USERIO_CMD_REGISTER(r0, &(0x7f0000000140)={0x0, 0x5a}, 0x2) ioctl$CAPI_GET_SERIAL(r0, 0xc0044308, &(0x7f0000000180)=0x2) mkdirat$cgroup(r0, &(0x7f00000001c0)='syz1\x00', 0x1ff) ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000000200)) ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000280)) ioctl$TIOCGETD(r0, 0x5424, &(0x7f00000002c0)) ioctl$KVM_SET_VAPIC_ADDR(r0, 0x4008ae93, &(0x7f0000000300)=0x2) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000340)={0x0, 0x3, 0x7fff, 0x20, 0x3, 0x5, 0x8, 0x8, 0x6, 0x8001, 0x81}) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000400)=0xc2) ioctl$KVM_GET_DIRTY_LOG(r0, 0x4010ae42, &(0x7f0000000440)={0x4, 0x0, &(0x7f0000ffa000/0x3000)=nil}) ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000000480)=0xaa) ioctl$KVM_ASSIGN_PCI_DEVICE(r0, 0x8040ae69, &(0x7f00000004c0)={0x1f, 0x1ff, 0xa2, 0x1, 0x8}) r2 = socket$inet_dccp(0x2, 0x6, 0x0) ioctl$TCFLSH(r0, 0x540b, 0x5) ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f0000000500)) ioctl$KVM_S390_UCAS_MAP(r0, 0x4018ae50, &(0x7f0000000580)={0xfffffffffffffffc, 0x400, 0x20}) ioctl$TIOCSBRK(r0, 0x5427) bind$rxrpc(r0, &(0x7f00000005c0)=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e21, 0x1ff, @mcast2}}, 0x24) sync_file_range(r0, 0x3, 0xffffffffffffff00, 0x5) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000600)) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000640)={0x0, 0xc, 0x8, 0x8000}, &(0x7f0000000680)=0x10) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f00000006c0)={r3, 0x1000, "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"}, &(0x7f0000001700)=0x1008) getpeername(r2, &(0x7f0000001740)=@hci, &(0x7f00000017c0)=0x80) 03:37:20 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x8}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 505.356134][T22122] *** Guest State *** 03:37:20 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket(0x10, 0x3, 0x0) r2 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x800, 0x20400) ioctl$KVM_GET_EMULATED_CPUID(r2, 0xc008ae09, &(0x7f0000000100)=""/219) syz_mount_image$xfs(&(0x7f0000000000)='xfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001500)={[{@logbufs={'logbufs', 0x3d, 0x7fd2d10e4afb}}]}) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/icmp\x00') ioctl$KVM_HAS_DEVICE_ATTR(r3, 0x4018aee3, &(0x7f0000000080)={0x0, 0x2962, 0x81, &(0x7f0000000000)=0x6}) sendfile(r1, r3, 0x0, 0x1) 03:37:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x287, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)) r3 = accept$alg(0xffffffffffffffff, 0x0, 0x0) write$binfmt_script(r3, 0x0, 0x0) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000200)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(r3, &(0x7f0000004ec0), 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x30, 0x0, 0x0, 0x117) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_acct\x00') sendmsg$nl_generic(r4, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40480000}, 0xc, &(0x7f0000000080)={&(0x7f0000000440)={0x1250, 0x12, 0x20, 0x70bd27, 0x25dfdbff, {0xa}, [@nested={0x1c8, 0x14, [@typed={0xf0, 0x31, @binary="4a60d7dc6a1f9aac03615678193204e8fc0a997a6fea4f84c38b7e1a15dcbc94c911f33993cc345c1890acabf289705bc9a786437a729bec1fb49f32fd1fd82c3781717b4051309c365010d095834348831413714885f451bcd65605ad7cf21c295c77e82a058668100391b0ada027dad9556c2c52b747b73e6a3ff4ec9734f5dd5c09f79b436b60aeb8c161d8240bb966aae7f7b70c977e5ea1ce41442f4f0b7b2ed65486d2623dfd1d3feaae47b4d6784d88c24f9dcf7e30f8bb468e3d7d77a3525e189d3a506bc9cad96fe0aed7ff9fad2a52b347a2594f204fe3112f0a8d168f989f001150f7dc93"}, @generic="e7b07dd15addd3cbcc7c5ca93381677f2663ed14ff795431bf6dd4135a81c459734cc6dac01dcc24b693866122741ce3f023e3aec37640aee0d3a567d12fd9", @generic="3f007dd3df3bf61ce30c7073c360c906f68689ed37e62de01b89a733e88573ac3f85c9fa991308aa221acb19907d20562c93c694aa7dfca8e8d8a2aefe5da47ca5508915c1a786627cace88223ad023d3f7053a1fcd8125d22b3a695036aa13c7f3f77424a43e0397b1f4118aab36d6cd040d6e6575165a381", @typed={0x8, 0x5f, @ipv4=@loopback}, @typed={0x8, 0x77, @u32=0x7d7}, @typed={0x4, 0x1a}, @typed={0x8, 0x12, @fd=r0}]}, @generic="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", @generic="9d7c5bbeb8570b483e77deac7cc6c2d87c65ae6ef969f76fa1d8c19689466c1289bdd90e9ea69b7fd98c41aa7a51000aee96b97022e0a9d6f348a8ba4194a1920a5e693bbc5408f44ba49fa19594fd7f26b5486d8afe9bff68d3e4690ce6c31fc34c572a02a540d4900711494ef25b5382c2d6"]}, 0x1250}, 0x1, 0x0, 0x0, 0x4}, 0x8884) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 505.380704][T22122] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 505.426045][T22122] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 505.438288][ C1] net_ratelimit: 20 callbacks suppressed [ 505.438297][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 505.449736][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 505.475875][T22122] CR3 = 0x0000000000000000 03:37:21 executing program 4: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x6, @link_local, 'bond0\x00'}}, 0x1e) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x9, 0x0) accept4$packet(0xffffffffffffff9c, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000180)=0x14, 0x80800) ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f00000001c0)={@dev={0xfe, 0x80, [], 0xa}, 0x3e, r3}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r1, 0x8937, &(0x7f0000000040)={'bond0\x00', r4}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x1, @random="0f8c3005aa5e", 'vcan0\x00'}}, 0x1e) 03:37:21 executing program 1: futex(0x0, 0x400000085, 0x0, 0x0, 0x0, 0x2) r0 = semget(0x2, 0x0, 0x200) semctl$SETVAL(r0, 0x2, 0x10, &(0x7f0000000000)=0xfffffffffffffffb) r1 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x9be, 0x30301) ioctl$DRM_IOCTL_AGP_ENABLE(r1, 0x40086432, &(0x7f0000000080)=0xf43b) [ 505.502528][T22122] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 505.520199][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 505.524547][T22122] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 505.526665][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:21 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x35, &(0x7f0000000000)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) r2 = gettid() perf_event_open(&(0x7f0000000140)={0x4, 0x70, 0x7, 0x9, 0x7fffffff, 0x6, 0x0, 0xfffffffffffffa70, 0x80000, 0x2, 0x2, 0x1, 0x9, 0x38b, 0xfffffffffffffc01, 0x80, 0x8, 0x100000000, 0x6, 0xbf, 0x6, 0x0, 0x8, 0xcbd, 0x3, 0x8, 0x9, 0xffffffff00000001, 0xec, 0x7, 0x8000, 0x9, 0x8001, 0x10001, 0x4, 0x4, 0xe04b, 0x1, 0x0, 0x8, 0x7, @perf_config_ext={0xef5a, 0x8}, 0x200, 0x8, 0x0, 0x0, 0x80, 0x6, 0x2}, r2, 0xe, r0, 0x2) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 505.578070][T22122] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:21 executing program 4: mkdir(0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x2, 0x0, 0x0, 0x0, 0xa3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = creat(&(0x7f0000000700)='./bus\x00', 0x0) ftruncate(r0, 0x9) r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000200)={0x0, @broadcast}, 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f00000000c0), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x602200, 0x7ffffe, 0x4002011, r1, 0x0) mincore(&(0x7f0000000000/0x400000)=nil, 0x400000, &(0x7f0000000140)=""/177) [ 505.638385][T22122] CS: sel=0x0000, attr=0x00001, limit=0x00000000, base=0x0000000000000000 03:37:21 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x10}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 505.705224][T22122] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.753734][T22122] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.795952][T22122] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.816526][T22122] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.837942][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 505.841748][T22122] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.843773][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 505.859024][T22122] GDTR: limit=0x00000000, base=0x0000000000000000 [ 505.869213][T22122] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.887959][T22122] IDTR: limit=0x00000000, base=0x0000000000000000 [ 505.896656][T22122] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 505.909738][T22122] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 505.916875][T22122] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 505.926813][T22122] Interruptibility = 00000000 ActivityState = 00000000 [ 505.937715][T22122] *** Host State *** [ 505.942239][T22122] RIP = 0xffffffff811b3240 RSP = 0xffff88805359f8e0 [ 505.951441][T22122] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 505.958753][T22122] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 505.967461][T22122] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 505.974195][T22122] CR0=0000000080050033 CR3=0000000058126000 CR4=00000000001426e0 [ 505.986269][T22122] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 505.993814][T22122] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 506.001066][T22122] *** Control State *** [ 506.005342][T22122] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 506.012838][T22122] EntryControls=0000d1ff ExitControls=002fefff [ 506.019099][T22122] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 506.026726][T22122] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 506.034132][T22122] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 506.041459][T22122] reason=80000021 qualification=0000000000000000 [ 506.048615][T22122] IDTVectoring: info=00000000 errcode=00000000 [ 506.054769][T22122] TSC Offset = 0xfffffeeef86942fb [ 506.059874][T22122] TPR Threshold = 0x00 [ 506.063951][T22122] EPT pointer = 0x0000000091f1a01e 03:37:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000080)={0x0}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000001c0)={r3, 0x40}, 0x8) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) fstat(r1, &(0x7f0000000000)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:21 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x8}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:21 executing program 4: r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FICLONE(r0, 0x40049409, r0) fcntl$addseals(r0, 0x11, 0x0) 03:37:21 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x6, 0x0, 0x6, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xa}, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0x56b5, 0x0) accept4$llc(r1, &(0x7f0000000280)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f00000002c0)=0x10, 0x80800) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) r3 = gettid() r4 = syz_open_dev$admmidi(&(0x7f0000000300)='/dev/admmidi#\x00', 0x8, 0x241fff) ioctl$BINDER_GET_NODE_DEBUG_INFO(r4, 0xc018620b, &(0x7f0000000200)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r4, 0xc018620b, &(0x7f0000000240)={r5}) kcmp$KCMP_EPOLL_TFD(r2, r3, 0x7, r0, &(0x7f0000000140)={r4, r0}) syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') 03:37:21 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x300}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:21 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e22, @multicast1}}}, &(0x7f0000000000)=0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={r2, 0x8}, 0x8) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 506.157776][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 506.163615][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 506.169469][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 506.175238][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:21 executing program 4: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x35, &(0x7f0000000000)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) r2 = gettid() perf_event_open(&(0x7f0000000140)={0x4, 0x70, 0x7, 0x9, 0x7fffffff, 0x6, 0x0, 0xfffffffffffffa70, 0x80000, 0x2, 0x2, 0x1, 0x9, 0x38b, 0xfffffffffffffc01, 0x80, 0x8, 0x100000000, 0x6, 0xbf, 0x6, 0x0, 0x8, 0xcbd, 0x3, 0x8, 0x9, 0xffffffff00000001, 0xec, 0x7, 0x8000, 0x9, 0x8001, 0x10001, 0x4, 0x4, 0xe04b, 0x1, 0x0, 0x8, 0x7, @perf_config_ext={0xef5a, 0x8}, 0x200, 0x8, 0x0, 0x0, 0x80, 0x6, 0x2}, r2, 0xe, r0, 0x2) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(r0, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:21 executing program 5: setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x200040) utimensat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={{0x0, 0x7530}, {0x77359400}}, 0x100) mkdir(&(0x7f0000000240)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) r1 = openat$cgroup_subtree(0xffffffffffffffff, 0x0, 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[@ANYBLOB='-cpu '], 0x5) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000140)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, &(0x7f0000000200)) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, 0x0, &(0x7f0000000240)) syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00') setxattr$security_smack_transmute(&(0x7f0000000480)='./file0\x00', &(0x7f0000000880)='security.SMACK64TRANSMUTE\x00', 0x0, 0x0, 0x2) umount2(0x0, 0x4) socket$inet6(0xa, 0x6, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000500)={&(0x7f0000000280), 0xc, &(0x7f00000004c0)={&(0x7f0000000300)={0x44, r3, 0x101, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'dip\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8}]}]}, 0x44}}, 0x0) 03:37:21 executing program 1: syz_open_dev$loop(0x0, 0x4, 0x20ffff) socket$inet6(0xa, 0x0, 0x0) syz_open_dev$media(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndctrl(&(0x7f0000006000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f00000001c0)) r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/audio\x00', 0x140202, 0x0) syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x5e3, 0x80) r2 = syz_open_dev$sndpcmp(&(0x7f0000000480)='/dev/snd/pcmC#D#p\x00', 0x0, 0x405) dup2(r2, r1) io_setup(0x8, &(0x7f0000000140)) [ 506.329035][T22173] *** Guest State *** [ 506.348834][T22173] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 506.398183][T22173] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 506.434597][T22173] CR3 = 0x0000000000000000 03:37:21 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)=0x800000000000) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0xe5ab, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xa, r0, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 506.468839][T22173] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 506.506337][T22173] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 506.539195][T22173] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 506.572015][T22173] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:22 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100)='/dev/cachefiles\x00', 0x101000, 0x0) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000140)={0x0, 0x9, 0x1, [0x9]}, &(0x7f00000001c0)=0xa) setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r1, 0x84, 0x71, &(0x7f0000000200)={r2, 0x2}, 0x8) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x74, 0x4) bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f0000f40ff8)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0xda9, 0x4) sendto$inet(r0, &(0x7f0000000680)="04f4a2c970de1d9c3776a9481255ced5db31916a02bae17f7850aea473b1c2395dcc0f572febcadeb7fa0f2ee9dc78ccc69169ccfc0bf46dbaba25f3f5a75b77654c0cb9989ea026da080991348232bc2541328a29ec7e06942980144d2ae1b8811ef7af232c2fced6283505d8944bcb7f89d1aafda6e27d68ed8047debe4f6acdb39851142538045af7a37276d45101a908acd7e6586aaa477a1ed765207d078f68d3f09646ebb175b64f4857261ba3d3af4e7eb010405d288fbe56760eebf3e9167ed3ccfc84fec4d8bd597d006a2789ad545a1422edebe43425cee85613de3dff60dbb05e404d7a0339851102d2ea5d9ddb237dfd773f7c22de607e5500000000004e629f88aff7ead8092835fe90b9914f8c10", 0x115, 0x1b9a4d0eb29, 0x0, 0x0) [ 506.588552][T22173] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 506.605519][T22173] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 506.628346][T22173] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:22 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x3d4}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 506.637245][T22173] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 506.654950][T22173] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 506.745270][T22173] GDTR: limit=0x00000000, base=0x0000000000000000 [ 506.783366][T22173] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 506.808873][T22173] IDTR: limit=0x00000000, base=0x0000000000000000 [ 506.829100][T22173] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 506.844032][T22173] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 506.856579][T22173] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 506.870983][T22173] Interruptibility = 00000000 ActivityState = 00000000 [ 506.884758][T22173] *** Host State *** [ 506.893415][T22173] RIP = 0xffffffff811b3240 RSP = 0xffff88804e9b78e0 [ 506.902863][T22173] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 506.915238][T22173] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 506.926579][T22173] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 506.941117][T22173] CR0=0000000080050033 CR3=000000008f86c000 CR4=00000000001426f0 [ 506.951622][T22173] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 506.966082][T22173] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 506.974386][T22173] *** Control State *** [ 506.981339][T22173] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 506.991034][T22173] EntryControls=0000d1ff ExitControls=002fefff [ 506.997199][T22173] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 507.012267][T22173] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 507.020798][T22173] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 507.033741][T22173] reason=80000021 qualification=0000000000000000 [ 507.042042][T22173] IDTVectoring: info=00000000 errcode=00000000 [ 507.050077][T22173] TSC Offset = 0xfffffeee74e37114 [ 507.055149][T22173] TPR Threshold = 0x00 [ 507.060005][T22173] EPT pointer = 0x000000008bd5301e [ 507.118013][T22206] *** Guest State *** [ 507.122769][T22206] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 507.132725][T22206] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 507.142488][T22206] CR3 = 0x0000000000000000 [ 507.146916][T22206] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 507.153703][T22206] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 507.160479][T22206] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 507.167992][T22206] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.176678][T22206] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.185520][T22206] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.194281][T22206] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.203108][T22206] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.211865][T22206] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.220622][T22206] GDTR: limit=0x00000000, base=0x0000000000000000 [ 507.229379][T22206] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.238135][T22206] IDTR: limit=0x00000000, base=0x0000000000000000 [ 507.246817][T22206] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.255542][T22206] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 507.262695][T22206] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 507.270959][T22206] Interruptibility = 00000000 ActivityState = 00000000 [ 507.278304][T22206] *** Host State *** [ 507.282215][T22206] RIP = 0xffffffff811b3240 RSP = 0xffff88809fbd78e0 [ 507.288993][T22206] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 507.296103][T22206] FSBase=00007effb5ee4700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 507.304689][T22206] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 507.311320][T22206] CR0=0000000080050033 CR3=000000008f86c000 CR4=00000000001426e0 [ 507.319115][T22206] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 507.326483][T22206] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 507.333271][T22206] *** Control State *** [ 507.337505][T22206] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 507.344878][T22206] EntryControls=0000d1ff ExitControls=002fefff [ 507.351123][T22206] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 507.359804][T22206] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:37:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) request_key(&(0x7f0000000000)='logon\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000080)='/dev/kvm\x00', 0xfffffffffffffffd) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000200)="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", 0x27, 0xfffffffffffffff8) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:22 executing program 5: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00', 0x1132}) clock_nanosleep(0x7, 0x0, &(0x7f0000000000), &(0x7f0000000040)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TUNDETACHFILTER(r0, 0x8927, 0x70a000) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x6685) 03:37:22 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000000), &(0x7f0000000140)=0x4) 03:37:22 executing program 1: r0 = syz_open_dev$usb(0x0, 0x530d, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x101000, 0x49) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f0000000340)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)={0x144, r2, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_NET={0x28, 0x7, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7e}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}]}, @TIPC_NLA_BEARER={0xdc, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1d}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x7fffffff, @mcast1, 0x101}}}}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x96d}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x77}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x16}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @broadcast}}, {0x14, 0x2, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x8, @remote}}}}]}, @TIPC_NLA_SOCK={0x1c, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x459c}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7fffffff}]}]}, 0x144}, 0x1, 0x0, 0x0, 0x4000010}, 0x8000) bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000080)) clone(0x1006210f, 0x0, 0x0, 0x0, 0x0) ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f00000000c0)) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x80000, 0x0) 03:37:22 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x2000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:22 executing program 4: r0 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x101400, 0x0) getsockname$ax25(r0, &(0x7f0000000040)={{0x3, @rose}, [@rose, @null, @remote, @remote, @remote, @bcast, @default, @default]}, &(0x7f00000000c0)=0x48) r1 = socket$can_raw(0x1d, 0x3, 0x1) r2 = add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000100)='pkcs7_test\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)='/proc/capi/capi20ncci\x00', r2) getpeername(r1, 0x0, 0x0) [ 507.368691][T22206] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 507.376000][T22206] reason=80000021 qualification=0000000000000000 [ 507.383085][T22206] IDTVectoring: info=00000000 errcode=00000000 [ 507.389293][T22206] TSC Offset = 0xfffffeee74e37114 [ 507.394311][T22206] TPR Threshold = 0x00 [ 507.398408][T22206] EPT pointer = 0x000000008bd5301e 03:37:23 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x10, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x88a0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000100)="2300000052008152915a655067d7aee4050c0000136017edcaa30000000000008b1832", 0x23}], 0x1}, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x401, 0x0) ioctl$VIDIOC_SUBDEV_G_CROP(r1, 0xc038563b, &(0x7f0000000140)={0x0, 0x0, {0x100, 0x0, 0x80000000, 0x1}}) recvmsg$kcm(r0, &(0x7f0000008000)={&(0x7f0000003b80)=@can, 0x80, &(0x7f0000007ec0)=[{&(0x7f0000003c00)=""/4096, 0x1000}, {&(0x7f0000004d80)=""/4096, 0x1000}, {0x0}, {0x0}], 0x4}, 0x0) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000001400)='TIPC\x00') sendmsg$TIPC_CMD_GET_BEARER_NAMES(r1, &(0x7f00000014c0)={&(0x7f0000001280), 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x1c, r2, 0x200, 0x70bd28, 0x25dfdbfc, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}}, 0x40) recvmsg$kcm(r0, &(0x7f0000003840)={0x0, 0xfffffffffffffe55, 0x0}, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000200)={0x0, 0x5, 0x30, 0xfffffffffffffff9, 0x35d}, &(0x7f0000000240)=0x18) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000280)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f00000012c0)=0x1008) getsockopt$inet_sctp6_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000001300)={r3, 0x1000, 0xc0, 0x3, 0x60, 0xfd03, 0x3, 0x187, {r4, @in6={{0xa, 0x4e24, 0x1, @local}}, 0x141d058, 0x81, 0x100000001, 0x1, 0x5}}, &(0x7f00000013c0)=0xa03948635e51e98) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) clock_settime(0x6, &(0x7f0000000080)={r5, r6+30000000}) 03:37:23 executing program 4: r0 = socket$inet6(0xa, 0x4, 0x6) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffff9c, 0x84, 0x1f, &(0x7f00000037c0)={0x0, @in6={{0xa, 0x4e22, 0x0, @ipv4={[], [], @local}, 0x3}}, 0x7, 0x3}, &(0x7f0000003880)=0x90) setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000038c0)={r1, 0xcce9, 0x1, 0x389}, 0x10) r2 = getpid() capset(&(0x7f0000581ff8)={0x19980330, r2}, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='memory.stat\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x1ff, 0x5, 0x20}, &(0x7f00000000c0)=0x10) setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r3, 0x84, 0x5, &(0x7f0000000100)={r4, @in6={{0xa, 0x4e24, 0x4, @mcast2, 0x6}}}, 0x84) syz_open_dev$swradio(&(0x7f0000000000)='/dev/swradio#\x00', 0x0, 0x2) [ 507.680768][T22223] *** Guest State *** [ 507.684796][T22223] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 507.698001][T22223] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 507.724903][T22223] CR3 = 0x0000000000000000 03:37:23 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x4000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:23 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) setsockopt$RXRPC_SECURITY_KEYRING(r0, 0x110, 0x2, &(0x7f0000000000)='user\x00', 0x5) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 507.780606][T22223] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 507.828448][T22223] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:23 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r0, 0x84, 0x1c, &(0x7f0000000000), &(0x7f0000000140)=0x4) [ 507.880622][T22223] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:23 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x100000001) ioctl$RTC_VL_CLR(r0, 0x7014) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x0, 0xffffc}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000000)=ANY=[@ANYBLOB="f00000d4"]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 507.957058][T22223] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 507.997101][T22223] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.066813][T22223] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.083308][T22223] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.093009][T22223] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.101825][T22223] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.110864][T22223] GDTR: limit=0x00000000, base=0x0000000000000000 [ 508.119681][T22223] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.129440][T22223] IDTR: limit=0x00000000, base=0x0000000000000000 [ 508.138511][T22223] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.147286][T22223] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 508.154395][T22223] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 508.165327][T22223] Interruptibility = 00000000 ActivityState = 00000000 [ 508.174865][T22223] *** Host State *** [ 508.201303][T22223] RIP = 0xffffffff811b3240 RSP = 0xffff88808af478e0 [ 508.213252][T22223] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 508.221414][T22223] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 508.230349][T22223] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 508.237040][T22223] CR0=0000000080050033 CR3=00000000a7e11000 CR4=00000000001426f0 [ 508.245256][T22223] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 508.252668][T22223] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 508.259471][T22223] *** Control State *** [ 508.263611][T22223] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 508.271037][T22223] EntryControls=0000d1ff ExitControls=002fefff [ 508.277240][T22223] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 508.284849][T22223] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 508.292253][T22223] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 508.299604][T22223] reason=80000021 qualification=0000000000000000 [ 508.306700][T22223] IDTVectoring: info=00000000 errcode=00000000 [ 508.312850][T22223] TSC Offset = 0xfffffeedbbb8da71 [ 508.318127][T22223] TPR Threshold = 0x00 [ 508.322191][T22223] EPT pointer = 0x00000000a00a601e [ 508.376948][T22259] *** Guest State *** [ 508.380953][T22259] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 508.390929][T22259] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 508.400825][T22259] CR3 = 0x0000000000000000 [ 508.406137][T22259] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 508.413822][T22259] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 508.420941][T22259] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 508.428621][T22259] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.437647][T22259] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.446343][T22259] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.455089][T22259] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.463857][T22259] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.472586][T22259] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.481441][T22259] GDTR: limit=0x00000000, base=0x0000000000000000 [ 508.490203][T22259] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.498955][T22259] IDTR: limit=0x00000000, base=0x0000000000000000 [ 508.507718][T22259] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 508.516417][T22259] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 508.523592][T22259] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 508.531778][T22259] Interruptibility = 00000000 ActivityState = 00000000 [ 508.538774][T22259] *** Host State *** [ 508.542692][T22259] RIP = 0xffffffff811b3240 RSP = 0xffff88802de4f8e0 [ 508.549442][T22259] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 508.556623][T22259] FSBase=00007effb5ec3700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 508.565117][T22259] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 508.571773][T22259] CR0=0000000080050033 CR3=00000000a7e11000 CR4=00000000001426e0 [ 508.579536][T22259] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 508.586986][T22259] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 508.593739][T22259] *** Control State *** [ 508.597970][T22259] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 508.605335][T22259] EntryControls=0000d1ff ExitControls=002fefff [ 508.611567][T22259] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 508.619273][T22259] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 03:37:24 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ASSIGN_SET_INTX_MASK(r3, 0x4040aea4, &(0x7f0000000000)={0x4, 0x4, 0x7, 0x7, 0x5}) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0xd403}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:24 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x3f, 0x0) setns(r2, 0x20000000) fcntl$setstatus(r1, 0x4, 0x2002) fcntl$setstatus(r1, 0x4, 0x63fa) write$P9_RWSTAT(r1, &(0x7f0000000000)={0x7}, 0xfffffffffffffed0) 03:37:24 executing program 0: r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r2, 0x28, 0x0, &(0x7f0000000140), 0x7) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x0, 0x1f, 0x9, 0x2, 0x14, 0x0, 0x80000000, 0x3, 0x5bbb, 0x20, 0x81, 0x9}) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:24 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) r3 = syz_open_procfs(r2, &(0x7f0000000140)='net/l2cap\x00') setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000040)={0xffffffffffffffff}, 0x4) r4 = openat$cgroup_ro(r3, &(0x7f0000000000)='mem\x00\x01y7swaS.cur\x89\xc9B\xab\xe3\xfarent\x00', 0x0, 0x0) dup3(r3, r4, 0x0) 03:37:24 executing program 1: pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) socket$inet(0x2, 0x3, 0x7f) getresuid(0x0, 0x0, &(0x7f00000013c0)) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x0, 0xfffffffffffffffc}, 0x4) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) connect$inet(r2, &(0x7f0000000200)={0x2, 0x0, @multicast1}, 0x10) pread64(r1, &(0x7f0000000040)=""/126, 0x7e, 0x0) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) [ 508.626717][T22259] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 508.633994][T22259] reason=80000021 qualification=0000000000000000 [ 508.641078][T22259] IDTVectoring: info=00000000 errcode=00000000 [ 508.647281][T22259] TSC Offset = 0xfffffeedbbb8da71 [ 508.652310][T22259] TPR Threshold = 0x00 [ 508.656627][T22259] EPT pointer = 0x00000000a00a601e 03:37:24 executing program 5: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000733000)={0x5, 0x5, 0x7, 0x9}, 0x2c) r2 = add_key(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x0}, &(0x7f00000001c0)="533e3a8491868f599c6e80895bd5c9cf5f51f31c36dafa545e42c42e6a001ca529f90f3e64e2ef6e413e265f8aee507abc75241095eaebff98b02b91485b7432a3f8dc9fc55f5a4a0506682c66951213f303a3c9091aec3e", 0x58, 0x0) perf_event_open(&(0x7f0000000280)={0x5, 0x70, 0x0, 0x401, 0x6, 0x20, 0x0, 0x5, 0x8000, 0x1, 0x80000001, 0x400, 0x3ff, 0xc9, 0x40000000000000, 0x5, 0xfff, 0x9, 0x5a, 0x1000, 0x6, 0x3, 0xffffffffffff0387, 0x8, 0x100000000, 0x2, 0x7, 0xcc53, 0x3f, 0x0, 0x7ff, 0x9, 0x6, 0x5, 0x8, 0x3, 0x0, 0x8, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000240), 0x2}, 0x20000, 0x4, 0xffff, 0x6, 0x9, 0x9, 0x18}, 0xffffffffffffffff, 0xf, r0, 0x8) request_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f00000000c0)='trustedppp0{mime_type\'%\x00', r2) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000300)={r1, &(0x7f0000000340), 0x0}, 0xfffffffffffffd99) [ 508.872813][T22276] *** Guest State *** 03:37:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x40000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 508.917613][T22276] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:24 executing program 5: socket$inet_udp(0x2, 0x2, 0x0) pipe(&(0x7f00000000c0)) r0 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000100)='/proc/capi/capi20\x00', 0x8000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x7, 0x420002) setsockopt$netrom_NETROM_IDLE(r2, 0x103, 0x7, &(0x7f0000000040)=0xd4, 0x4) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r4 = shmget(0x3, 0x4000, 0x7c000008, &(0x7f0000ff9000/0x4000)=nil) shmctl$IPC_RMID(r4, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x3) ioctl$KVM_ENABLE_CAP_CPU(r5, 0xc008ae88, &(0x7f0000000180)={0x77, 0x0, [0x40000106, 0x0, 0x40000081], [0xc1]}) [ 508.990842][T22276] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 509.009251][T22276] CR3 = 0x0000000000000000 [ 509.022244][T22276] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 03:37:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x200000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:24 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 509.042200][T22276] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 509.057209][T22276] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:24 executing program 5: r0 = creat(&(0x7f00000001c0)='./bus\x00', 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_ctr_aes128\x00'}, 0x58) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r2, 0x28, 0x0, &(0x7f0000000140), 0x7) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x0, 0x1f, 0x9, 0x2, 0x14, 0x0, 0x80000000, 0x3, 0x5bbb, 0x20, 0x81, 0x9}) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 509.096611][T22276] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.105357][T22276] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.121406][T22276] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.130514][T22276] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.167603][T22276] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.206487][T22276] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.223317][T22276] GDTR: limit=0x00000000, base=0x0000000000000000 [ 509.247457][T22276] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.256539][T22276] IDTR: limit=0x00000000, base=0x0000000000000000 [ 509.265459][T22276] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.274449][T22276] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 509.281902][T22276] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 509.296465][T22276] Interruptibility = 00000000 ActivityState = 00000000 [ 509.312336][T22276] *** Host State *** [ 509.318493][T22276] RIP = 0xffffffff811b3240 RSP = 0xffff88804ff6f8e0 [ 509.350299][T22276] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 509.367159][T22276] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 509.380015][T22276] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 509.391032][T22276] CR0=0000000080050033 CR3=0000000090397000 CR4=00000000001426e0 [ 509.402820][T22276] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 509.421244][T22276] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 509.431169][T22276] *** Control State *** [ 509.435587][T22276] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 509.451798][T22276] EntryControls=0000d1ff ExitControls=002fefff [ 509.459425][T22276] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 509.467362][T22276] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 509.474974][T22276] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 509.482551][T22276] reason=80000021 qualification=0000000000000000 [ 509.489915][T22276] IDTVectoring: info=00000000 errcode=00000000 [ 509.496562][T22276] TSC Offset = 0xfffffeed17b4a4ed [ 509.501616][T22276] TPR Threshold = 0x00 [ 509.505685][T22276] EPT pointer = 0x000000008f5e601e 03:37:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000004c0)=ANY=[@ANYBLOB="040000000000000000000000000000000500000001040000080000000000000006000000000000000300000000000000f8ffffffffffffff00000000000000000000000000000000000400000000000000000000000000000000000000000000090000000000000008000000000000000000000000000000000000000000000083160000000000000000000000000000000000000000000008000000000000000100000000000000000000000000000000000000000000000002000000000000000000000000000009000000000000003d50000000000000aa0f0000000000000000000000000000000000000000000004000000000000000000000000000000dd030000000000002d05000000000200000000000000000000000000000000000000000000000000800800000000000000000000000000001c0d000000000000000800000000000008000000000000000000000000000000000000000000000000010000000000000000000000000000000000010000000000000005000000000000000000000000000000000000000000000080020000000000000000000000000000000000000000000001000000000000007f0000000000000000000000000000000000000000000000000100000000000000000000000000000000000000"]) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) keyctl$clear(0x7, r3) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f0000000000)) 03:37:25 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x400, 0x8) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 509.679670][ T26] audit: type=1804 audit(2000000245.138:615): pid=22313 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir124899433/syzkaller.3oxX64/551/bus" dev="sda1" ino=16666 res=1 [ 509.721303][T22315] *** Guest State *** [ 509.725329][T22315] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 509.736287][T22315] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 509.746377][T22315] CR3 = 0x0000000000000000 [ 509.750911][T22315] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 509.757973][T22315] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 509.764776][T22315] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 509.773030][T22315] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.782283][T22315] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.791302][T22315] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.800368][T22315] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.809361][T22315] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.818422][T22315] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.827434][T22315] GDTR: limit=0x00000000, base=0x0000000000000000 [ 509.836462][T22315] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.845358][T22315] IDTR: limit=0x00000000, base=0x0000000000000000 [ 509.854374][T22315] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 509.863387][T22315] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 509.870815][T22315] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 509.879293][T22315] Interruptibility = 00000000 ActivityState = 00000000 [ 509.886549][T22315] *** Host State *** [ 509.890629][T22315] RIP = 0xffffffff811b3240 RSP = 0xffff88809df0f8e0 [ 509.897663][T22315] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 509.904963][T22315] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 509.913785][T22315] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 509.920705][T22315] CR0=0000000080050033 CR3=00000000a7e5b000 CR4=00000000001426e0 [ 509.929065][T22315] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 509.942466][T22315] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 509.950842][T22315] *** Control State *** [ 509.955277][T22315] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 509.969959][T22315] EntryControls=0000d1ff ExitControls=002fefff [ 509.979006][T22315] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 509.991838][T22315] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 510.002412][T22315] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 510.014851][T22315] reason=80000021 qualification=0000000000000000 [ 510.024686][T22315] IDTVectoring: info=00000000 errcode=00000000 [ 510.038282][T22315] TSC Offset = 0xfffffeeca12473f6 [ 510.044079][T22315] TPR Threshold = 0x00 [ 510.052221][T22315] EPT pointer = 0x00000000541e401e [ 510.441977][ T26] audit: type=1804 audit(2000000245.898:616): pid=22316 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir124899433/syzkaller.3oxX64/551/bus" dev="sda1" ino=16666 res=1 [ 510.481151][ T26] audit: type=1804 audit(2000000245.938:617): pid=22321 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir124899433/syzkaller.3oxX64/551/bus" dev="sda1" ino=16666 res=1 03:37:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000280)={0x77, 0x0, [0x40000100]}) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x6000, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000080)={'ifb0\x00', {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}) arch_prctl$ARCH_GET_CPUID(0x1011) write$eventfd(r3, &(0x7f0000000040)=0x200, 0x8) 03:37:27 executing program 5: r0 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0xd, 0x401) ioctl$FS_IOC_FSGETXATTR(r0, 0xc0105502, &(0x7f00000000c0)) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000000)={r0, 0x0, 0x3bdc, 0x72ed, 0x7}) 03:37:27 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0xf0ff7f}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:27 executing program 1: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1a}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'vet\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbdh\x00', 0x43732e5398416f1b}) lsetxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='security.evm\x00', &(0x7f0000000140)=@v2={0x5, 0x1, 0x4, 0x7, 0x3d, "bf187ef03033e57cf99b14e47c18302fc3ecdd740ea5c7ecdd2b0c9b07a11fc890a26de83f50f8780d16d7f3fb9ed0d4f0d9d7d53a1d9627f2ff04bdaa"}, 0x47, 0x2) 03:37:27 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cachefiles\x00', 0x4200, 0x0) r3 = gettid() getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}}}, &(0x7f0000000040)=0xe8) ioctl$DRM_IOCTL_GET_CLIENT(r2, 0xc0286405, &(0x7f0000000080)={0x6, 0x8, r3, 0x0, r4, 0x0, 0x931, 0x101}) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f0000000380)={{}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}) ioctl$KVM_RUN(r5, 0xae80, 0x0) 03:37:27 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) sendfile(r0, r0, 0x0, 0x7fff) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 511.675072][ C1] net_ratelimit: 20 callbacks suppressed [ 511.675082][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 511.686597][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 511.755000][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 511.760786][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:27 executing program 1: syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x3ff, 0x4000) r0 = syz_open_dev$sndpcmc(&(0x7f00000003c0)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x7, 0x0, &(0x7f00000000c0)) write$vhci(r0, &(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x1) ioctl(r0, 0xc1004110, &(0x7f0000000000)) 03:37:27 executing program 5: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000240)={'rose0\x00', &(0x7f0000000200)=@ethtool_sfeatures={0x3b, 0x1, [{0x0, 0xb26}]}}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x0, 0x0) getpeername$llc(r1, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000180)=0x10) r2 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0xe440, 0x1) write$cgroup_type(r2, &(0x7f00000001c0)='threaded\x00', 0x2) r3 = shmget(0x1, 0x1000, 0xc0, &(0x7f0000ffc000/0x1000)=nil) shmctl$SHM_LOCK(r3, 0xb) ioctl$NBD_CLEAR_QUE(r1, 0xab05) getsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f0000000280)='vlan0\x00') [ 511.869694][T22330] *** Guest State *** [ 511.885104][T22330] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:27 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x1000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:27 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001340)='/dev/fuse\x00', 0x2, 0x0) r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x4e22, 0x6, @dev={0xfe, 0x80, [], 0x21}, 0x6a}, @in6={0xa, 0x4e20, 0xfffffffffffffffd, @remote, 0x8}, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in6={0xa, 0x4e24, 0xfffffffffffffff9, @dev={0xfe, 0x80, [], 0x11}, 0xffffffff}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x27}}, @in6={0xa, 0x4e24, 0x8, @local, 0x4}], 0x90) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000340)=0x3) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f00000013c0)=r1) getresuid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000000c0)={{{@in=@multicast2, @in=@loopback, 0x4e21, 0x8000, 0x4e23, 0xdb8a, 0x0, 0xa0, 0x20, 0x3f, 0x0, r2}, {0x81, 0x91f, 0x7, 0x5, 0x1, 0x7, 0x6, 0xffffffff}, {0x5, 0x13, 0x7, 0x36}, 0x0, 0x6e6bbb, 0x0, 0x1}, {{@in6=@ipv4={[], [], @broadcast}, 0x4d4, 0x32}, 0x2, @in=@empty, 0x3504, 0x2, 0x3, 0x6, 0x3f, 0x2, 0x40}}, 0xe8) lremovexattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="6f73322e2f6465762f6675736500039cacfa649e7c33f643e2a7db474d622aca6f012c979e85653db09c7f5808000000000000001c565be4b69d2ae584144315a95e5bf179fe837b13"]) [ 511.925219][T22330] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 511.943348][T22330] CR3 = 0x0000000000000000 [ 511.994962][T22330] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 512.001694][T22330] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 512.015228][T22330] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:27 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) mknod$loop(&(0x7f0000000000)='./bus\x00', 0x8000, 0x1) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:27 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) sigaltstack(&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000000)) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x1, 0x0) ioctl$int_in(r0, 0x800000c0045005, &(0x7f0000000000)=0x1000) process_vm_writev(0x0, &(0x7f0000000380), 0x0, &(0x7f0000001900)=[{&(0x7f0000001700)=""/126, 0x7e}, {&(0x7f0000001780)=""/180, 0xb4}], 0x2, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x200000, 0xfffffffffffffffd, 0x2012, r0, 0x0) sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040), 0xc, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="6bfa63a60be25ee92b9848639153449c477b89809645e2a98541df4564aee5afa06a8256df83a255792f0069d0e2413d1a677d4366d8fac0ed5d96c915fb8e7858221cd9eb14b681595119ec5f00cec4052dc3a970ab0926394ac5b5957541dc7d06dc276a205d1eb9ee5c942e30452acea29ba2d2748999e3f2ea7a10d819c89f92d8a1481e92af68d23390f967cbd0959ae989e28b0f5a6f10be9d7512023b"], 0x1}}, 0x0) mlockall(0xfffffffffffffffc) openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) fanotify_init(0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) timer_create(0x0, 0x0, &(0x7f0000000840)=0x0) timer_delete(r3) write(r2, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000540)={0x0, 0x0}) pselect6(0x0, 0x0, &(0x7f0000000100), &(0x7f0000000140)={0x1b7}, &(0x7f0000000200)={0x0, r4+30000000}, 0x0) vmsplice(r1, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000006c0)={{{@in6=@mcast1, @in=@broadcast}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in=@multicast1}}, &(0x7f00000007c0)=0xe8) sendmmsg(0xffffffffffffffff, &(0x7f0000006240)=[{{0x0, 0x0, &(0x7f0000005e00), 0x0, &(0x7f0000006300)}}], 0x1, 0x0) [ 512.039851][T22330] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.054280][T22330] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.074818][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 512.080630][ C1] protocol 88fb is buggy, dev hsr_slave_1 03:37:27 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x2) setsockopt$inet6_tcp_int(r0, 0x6, 0x1f, &(0x7f0000000000)=0x8, 0x1) connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x0, @dev, 0x5}, 0x64) close(r0) [ 512.106106][T22330] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.174970][T22330] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.209819][T22330] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:27 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x2000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:27 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='cgroup2\x00', 0x0, 0x0) r1 = open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0) r2 = openat$cgroup_procs(r1, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000100), 0x12) [ 512.250741][T22330] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.266959][T22330] GDTR: limit=0x00000000, base=0x0000000000000000 [ 512.289083][T22330] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.313753][T22330] IDTR: limit=0x00000000, base=0x0000000000000000 [ 512.339876][T22330] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.354719][T22330] EFER = 0x0000000000000000 PAT = 0x0007040600070406 03:37:27 executing program 4: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x26, 0x0, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, &(0x7f0000000200), 0xffffffffffffffff) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0) ioctl$KVM_GET_XCRS(0xffffffffffffffff, 0x8188aea6, 0x0) r1 = msgget$private(0x0, 0x0) msgsnd(r1, &(0x7f0000000380)=ANY=[@ANYRESHEX=r0, @ANYRES64=r1, @ANYRES32, @ANYRES16=r1, @ANYRESDEC=r0, @ANYRES16=r1, @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYRESOCT=r0, @ANYPTR=&(0x7f0000000000)=ANY=[@ANYRESHEX=r1, @ANYRES64=r1, @ANYRES64=r1, @ANYPTR, @ANYPTR, @ANYRESHEX=r0, @ANYRESDEC=r1], @ANYRES32=r0], @ANYBLOB="124f6c85e8e200395d9041ee55278607bc7987126e0e7a63040c2e47584acccb1faa36b9c1d9bfb9160c48ae6314a6fd402f840c2481faeea28c0302b5a2ecb9364839dfd16098f0df7034ee67b41fc31adebce784b9e3dffeb40a5bfa3c742453fca0f59ce7a525850e0879159ec70521c9302ca5f26d06dab0310a04ca81394f76adf3e43fd11c7ff8e8d3f309bab961d69cdcad8e1d65f43732b01e66e19a614d65849cfb61e380c2e7bdddfe3efa31b36566a459dc3594364f500be0e7d8648b2efc416542606ada43ff8b2b453e85557ab1f6f5e7ab2923f17e66b2d0823431713cbf0ffb20247af349146153efa1216f26", @ANYRESOCT=r1], 0x9, 0xfffffffffffffffe) sigaltstack(&(0x7f0000952000/0x4000)=nil, &(0x7f0000000100)) msgrcv(r1, &(0x7f0000000080)={0x0, ""/4}, 0xc, 0xffffffffffffffff, 0x0) socket$nl_generic(0x10, 0x3, 0x10) getsockopt$SO_COOKIE(0xffffffffffffffff, 0x1, 0x39, 0x0, &(0x7f0000000140)) semget$private(0x0, 0x3, 0x100) syz_genetlink_get_family_id$tipc(&(0x7f0000000500)='TIPC\x00') [ 512.369519][T22330] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 512.379538][T22330] Interruptibility = 00000000 ActivityState = 00000000 [ 512.394666][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 512.400484][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 512.406336][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 512.406541][T22330] *** Host State *** [ 512.412099][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 512.440754][T22330] RIP = 0xffffffff811b3240 RSP = 0xffff88809f9af8e0 [ 512.454969][T22330] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 512.462147][T22330] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 512.485130][T22330] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 512.491784][T22330] CR0=0000000080050033 CR3=000000009c394000 CR4=00000000001426e0 [ 512.503370][T22330] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 512.518261][T22330] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 512.528118][T22330] *** Control State *** [ 512.532519][T22330] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 512.540373][T22330] EntryControls=0000d1ff ExitControls=002fefff [ 512.546789][T22330] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 512.554664][T22330] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 512.562042][T22330] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 512.571798][T22330] reason=80000021 qualification=0000000000000000 [ 512.578879][T22330] IDTVectoring: info=00000000 errcode=00000000 [ 512.578907][T22330] TSC Offset = 0xfffffeeb7cb14aae [ 512.578915][T22330] TPR Threshold = 0x00 [ 512.578925][T22330] EPT pointer = 0x00000000a4b0101e [ 512.614791][T22390] *** Guest State *** [ 512.618816][T22390] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 512.629832][T22390] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 512.644592][T22390] CR3 = 0x0000000000000000 [ 512.653981][T22390] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 512.661542][T22390] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 512.668432][T22390] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 512.676818][T22390] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.685768][T22390] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.694774][T22390] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.703457][T22390] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.712281][T22390] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.721008][T22390] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.729763][T22390] GDTR: limit=0x00000000, base=0x0000000000000000 [ 512.738470][T22390] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.747229][T22390] IDTR: limit=0x00000000, base=0x0000000000000000 [ 512.755990][T22390] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 512.764809][T22390] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 512.771926][T22390] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 512.780111][T22390] Interruptibility = 00000000 ActivityState = 00000000 [ 512.787106][T22390] *** Host State *** [ 512.791016][T22390] RIP = 0xffffffff811b3240 RSP = 0xffff88804e8378e0 [ 512.797768][T22390] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 512.804962][T22390] FSBase=00007effb5ec3700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 512.813471][T22390] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 512.820172][T22390] CR0=0000000080050033 CR3=000000009c394000 CR4=00000000001426e0 [ 512.827965][T22390] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 512.835417][T22390] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 512.842172][T22390] *** Control State *** [ 512.846386][T22390] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 512.853765][T22390] EntryControls=0000d1ff ExitControls=002fefff [ 512.860027][T22390] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 512.867784][T22390] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 512.875560][T22390] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 512.882841][T22390] reason=80000021 qualification=0000000000000000 03:37:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000023c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = creat(&(0x7f00000000c0)='./control\x00', 0x0) sync_file_range(r4, 0x0, 0x0, 0x4) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:28 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x3000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:28 executing program 5: r0 = syz_open_dev$dspn(&(0x7f00000001c0)='/dev/dsp#\x00', 0x40, 0x1) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000240)={0xffffffffffffffff}, 0x106, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f00000002c0)={0x16, 0x98, 0xfa00, {&(0x7f0000000200), 0x1, r1, 0x10, 0x0, @in6={0xa, 0x4e24, 0x96, @loopback, 0x9}}}, 0xa0) r2 = open(&(0x7f000000cff8)='./file0\x00', 0x0, 0x0) mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)='logfs\x00', 0x210008, &(0x7f0000000180)='nfs4\x00') mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='nfs4\x00', 0x0, &(0x7f0000dedf2f)='v4') setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0x7, &(0x7f0000000000)={0x5, 0x7, 0xffff, 0x3}, 0x10) 03:37:28 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:28 executing program 4: r0 = socket$tipc(0x1e, 0x5, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000140)="0adc1f023c123f3188a070") sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x1e}, 0x0) r1 = syz_open_dev$dri(&(0x7f00000000c0)='/dev/dri/card#\x00', 0x3, 0x4006) ioctl(r1, 0xffffffffffffffb9, &(0x7f0000000080)) 03:37:28 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) sigaltstack(&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000000)) r0 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x1, 0x0) ioctl$int_in(r0, 0x800000c0045005, &(0x7f0000000000)=0x1000) process_vm_writev(0x0, &(0x7f0000000380), 0x0, &(0x7f0000001900)=[{&(0x7f0000001700)=""/126, 0x7e}, {&(0x7f0000001780)=""/180, 0xb4}], 0x2, 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x200000, 0xfffffffffffffffd, 0x2012, r0, 0x0) sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040), 0xc, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="6bfa63a60be25ee92b9848639153449c477b89809645e2a98541df4564aee5afa06a8256df83a255792f0069d0e2413d1a677d4366d8fac0ed5d96c915fb8e7858221cd9eb14b681595119ec5f00cec4052dc3a970ab0926394ac5b5957541dc7d06dc276a205d1eb9ee5c942e30452acea29ba2d2748999e3f2ea7a10d819c89f92d8a1481e92af68d23390f967cbd0959ae989e28b0f5a6f10be9d7512023b"], 0x1}}, 0x0) mlockall(0xfffffffffffffffc) openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) fanotify_init(0x0, 0x0) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) pipe(&(0x7f0000000680)={0xffffffffffffffff, 0xffffffffffffffff}) timer_create(0x0, 0x0, &(0x7f0000000840)=0x0) timer_delete(r3) write(r2, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000540)={0x0, 0x0}) pselect6(0x0, 0x0, &(0x7f0000000100), &(0x7f0000000140)={0x1b7}, &(0x7f0000000200)={0x0, r4+30000000}, 0x0) vmsplice(r1, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000006c0)={{{@in6=@mcast1, @in=@broadcast}}, {{@in6=@ipv4={[], [], @broadcast}}, 0x0, @in=@multicast1}}, &(0x7f00000007c0)=0xe8) sendmmsg(0xffffffffffffffff, &(0x7f0000006240)=[{{0x0, 0x0, &(0x7f0000005e00), 0x0, &(0x7f0000006300)}}], 0x1, 0x0) [ 512.889998][T22390] IDTVectoring: info=00000000 errcode=00000000 [ 512.896193][T22390] TSC Offset = 0xfffffeeb7cb14aae [ 512.901196][T22390] TPR Threshold = 0x00 [ 512.905375][T22390] EPT pointer = 0x00000000a4b0101e 03:37:28 executing program 4: socket$pppoe(0x18, 0x1, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000640)={0xffffffffffffffff}) ioctl$PPPOEIOCSFWD(0xffffffffffffffff, 0x4008b100, 0x0) mkdir(&(0x7f00000013c0)='./file0\x00', 0x0) mount(&(0x7f0000000140)=ANY=[], &(0x7f0000026ff8)='./file0\x00', &(0x7f00000000c0)='tmpfs\x00', 0x0, 0x0) chdir(&(0x7f0000000100)='./file0\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) mkdir(&(0x7f00000005c0)='./file0\x00', 0x0) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000340)='/dev/qat_adf_ctl\x00', 0x20040, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r2) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240)='TIPC\x00') sendmsg$TIPC_CMD_GET_BEARER_NAMES(r0, &(0x7f00000004c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x880000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x1c, r3, 0x200, 0x70bd27, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x1) syz_mount_image$btrfs(0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0) syz_mount_image$ntfs(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x1, &(0x7f0000000600)=[{&(0x7f0000000c40)="df8481a7b289330904e020bd3c90409e74ec10fbb525418617cf20f092d1687d9d4dd907d008acd357b230a7f586fee041dee0ae0e2c5d7b7f9fc90209d98578d809809c36dd5482d6bdcc8de06ea00cf043078b", 0x54, 0x1}], 0x0, 0x0) mount(&(0x7f00000002c0)=ANY=[@ANYBLOB="2f6465762f73723000f273f57c0d89b3bfeb5c04a0f6"], 0x0, 0x0, 0x0, 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x48000000, &(0x7f00000003c0)=ANY=[@ANYBLOB="75707065726469723d2e2f66696c65302c6c6f7765726469723d2e2f66696c65312c776f726b6469723d2e2f66696c653100d5d9abea03ef71344b294bf3e6dcf0823e2398182392e0dcc7d97e09edef61c00855c0eee11e25fb3bf47699c3272b0ee1f2cc9407946fbae5609ef4371d2dea8c166a24e02d2f6ff9193bde7e992f57af46c66e464617c08f2142109cc4965a2d8baa9f31a92c149e6cb208d567224e8c76d78eb40ade4691005ecf02404282d8"]) r4 = creat(&(0x7f0000000480)='./file0\x00', 0x0) chdir(&(0x7f0000000280)='./file0\x00') ioctl$EVIOCGVERSION(r4, 0x80044501, &(0x7f0000000140)=""/77) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000900)={{{@in=@initdev, @in=@loopback}}, {{@in6=@mcast2}, 0x0, @in=@empty}}, &(0x7f0000000a00)=0xe8) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000a40)={{{@in6=@ipv4={[], [], @multicast2}, @in=@empty}}, {{@in=@loopback}, 0x0, @in6=@loopback}}, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0xa00, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(r4, 0x5380) [ 513.113267][T22407] *** Guest State *** 03:37:28 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10) dup2(r0, r0) ioctl(r0, 0x2000001000008912, &(0x7f0000000100)="0adc1f123c123f3188b070") r1 = socket$inet(0x10, 0x3, 0xc) sendmsg(r1, &(0x7f000001d000)={0x0, 0x0, &(0x7f0000024000)=[{&(0x7f0000000100)="24000000100007031dff22946fa2830020200a0009000300001d85687f0000000400ff7e28000000030a43ba5d806055b6fdd80b40000000140001000029ec2400020cd37e99d69cda45a95e", 0x4c}], 0x1, 0x0, 0xffffffffffffff3b}, 0x0) 03:37:28 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x8000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 513.142011][T22407] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 513.171551][T22416] QAT: Invalid ioctl [ 513.194430][T22407] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 513.214408][T22407] CR3 = 0x0000000000000000 [ 513.223688][T22407] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 513.239023][T22407] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:28 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_dev$usb(&(0x7f0000000040)='/dev/bus/usb/00#/00#\x00', 0x7, 0x0) getdents64(r1, &(0x7f0000000080)=""/155, 0x9b) syz_open_dev$mice(&(0x7f0000000140)='/dev/input/mice\x00', 0x0, 0x10000) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000240)="39000000130009006900000000000000ab008000200000004600010700000014190001c025000000000003f5000000000000ef38bf461e59d7", 0x39}], 0x1) 03:37:28 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000140)={0x0, 0x9d, "8b76009f68101bd03e017fb8ce63c41a70a241067f581588d696d656694b274a31d87fa100e66cb97d5112caa1c8e1263321117c9bf885c45ded000337780de01cc23252768e7f08a6569af7ded8c6938514cfe7b8bcc7d2ab1ba8f84a6a1052867375b05a38146db9c9f06b0f8101a3e0f4a82b4c998e1bf45e1a6288dfd2ac95c8aa4c4389838abb6fe82a74cad542f644be100c70dc1819c8d3c96d"}, &(0x7f0000000000)=0xa5) getsockopt$inet_sctp6_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f0000000200)=@assoc_id=r2, &(0x7f0000000240)=0x4) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 513.269692][T22407] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 513.291193][T22407] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.302807][T22407] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:28 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0xaefff7f}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 513.311925][T22407] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.322236][T22407] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.331172][T22407] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.340147][T22407] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.349302][T22407] GDTR: limit=0x00000000, base=0x0000000000000000 [ 513.411432][T22407] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.425087][T22407] IDTR: limit=0x00000000, base=0x0000000000000000 [ 513.428849][T22416] overlayfs: failed to resolve './file1': -2 [ 513.480376][T22407] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 513.544285][T22407] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 513.559053][T22407] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 513.575778][T22407] Interruptibility = 00000000 ActivityState = 00000000 [ 513.583091][T22407] *** Host State *** [ 513.587578][T22407] RIP = 0xffffffff811b3240 RSP = 0xffff8880597578e0 [ 513.594650][T22407] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 513.627456][T22407] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 513.639455][T22416] QAT: Invalid ioctl [ 513.650300][T22407] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 513.676088][T22407] CR0=0000000080050033 CR3=0000000059d2e000 CR4=00000000001426f0 [ 513.683869][T22407] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 513.691673][T22407] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 513.697939][T22428] overlayfs: failed to resolve './file1': -2 [ 513.701961][T22407] *** Control State *** [ 513.709069][T22407] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 513.717093][T22407] EntryControls=0000d1ff ExitControls=002fefff [ 513.723288][T22407] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 513.731181][T22407] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 513.767072][T22407] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 513.776049][T22407] reason=80000021 qualification=0000000000000000 [ 513.783192][T22407] IDTVectoring: info=00000000 errcode=00000000 [ 513.789528][T22407] TSC Offset = 0xfffffeead1ebe656 [ 513.794851][T22407] TPR Threshold = 0x00 [ 513.798947][T22407] EPT pointer = 0x000000009007301e 03:37:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x20000000) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x7ff, 0x8100) ioctl$EVIOCSFF(r3, 0x40304580, &(0x7f0000000040)={0x0, 0x7fff, 0x3fb, {0x5, 0x3ff}, {0x2, 0x80000001}, @rumble={0x3ff, 0xe5c5}}) 03:37:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x10000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:29 executing program 5: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:29 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x5, &(0x7f0000000100)=0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa866, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_submit(r1, 0x1, &(0x7f0000000600)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x3, 0x0, r0, 0x0}]) 03:37:29 executing program 0: r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) getsockopt$inet_dccp_int(r0, 0x21, 0x1, &(0x7f0000000000), &(0x7f0000000140)=0x4) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:29 executing program 4: socket$inet_tcp(0x2, 0x1, 0x0) r0 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0xffffffffffffffff, 0x2) syz_init_net_socket$bt_sco(0x1f, 0x3, 0x3) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write$FUSE_INTERRUPT(0xffffffffffffffff, 0x0, 0x0) write$nbd(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYRES16], 0x1) write(r2, &(0x7f0000000340), 0x10000014c) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x4058534c, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) openat$vnet(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vhost-net\x00', 0x2, 0x0) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, &(0x7f0000000200)={0x0, r3+30000000}, 0x0) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000000040)) stat(0x0, 0x0) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000100)="dae195ce29683b89083016723e3255becae47f6c43317c11d70cfbf02bc9ab39b4e5ef6ce8b1366787a0", 0x2a}], 0x1, 0x202) 03:37:29 executing program 1: socket$nl_xfrm(0xa, 0x3, 0x87) r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x200, 0x0) ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f00000000c0)="8b0a671a0df04d133894f3fcf1ae3af3d80c68813393bd6e4742607eba51414aa5b52fa9b27ee39ca62139c46defa6") syz_emit_ethernet(0x4a, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd60d8652b00148700fe8000000000000000000000000000aafe8000000000000000000000000000aa00000000efcb4c9357a239fdce6fec7586b476a51ccf8570140e25125124a42d2960e919ecc2fa84f6", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="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"], &(0x7f00000002c0)={0x0, 0x0, [0x0, 0x0, 0xfffffffffffffffd]}) syz_init_net_socket$ax25(0x3, 0x5, 0xc4) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000004c0)={0x0, 0x0, 0xa, 0x0, [], [{0x0, 0x5, 0x401, 0x6, 0x7, 0x400}, {0x8001, 0x6, 0x8, 0x6, 0x7f}], [[], [], [], [], [], [], [], [], [], []]}) 03:37:29 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = inotify_init1(0x0) ioctl$sock_bt_bnep_BNEPGETCONNINFO(0xffffffffffffffff, 0x800442d3, &(0x7f0000000080)={0x8, 0x7b, 0x4, @dev={[], 0x1f}, 'ipddp0\x00'}) fcntl$getownex(r1, 0x24, &(0x7f000045fff8)) 03:37:29 executing program 0: r0 = creat(&(0x7f0000000140)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000000)='./bus\x00', 0x2) 03:37:29 executing program 2: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x100, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x200, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000100)="b8f8000f00d8ba2100ec360f01cad158e4b8cd008ee8660f761bba4000edf20f2db355002e660f38341aea40eb5200", 0x2f}], 0x1, 0x46, &(0x7f00000001c0)=[@cstype0={0x4, 0xe}, @flags={0x3, 0x102}], 0x2) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x181000, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000002c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_NETID(r0, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1001000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r4, 0x4, 0x70bd2c, 0x25dfdbfb, {{}, 0x0, 0x800b, 0x0, {0x8, 0x2, 0x2}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000000) setsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000240)=0x5, 0x4) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000500)={0x6, 0x27, 0xb, 0x5, 0x5, 0x1, 0x4, 0x12}) ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f0000000540)={&(0x7f0000ff8000/0x2000)=nil, 0x2000}) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r5, 0x4138ae84, &(0x7f0000000380)={{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9481}}) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f0000000200)={'nr0\x00', 0x9}) 03:37:29 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000e11ff0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fffffff81004e220000000058000b4824ca945f64009400050028925aa8000000000000008000f0fffeffe809000000fff5dd000000100001000a2b0c00410400000000fcff", 0x58}], 0x1) 03:37:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x20000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:29 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x10000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 514.317154][T22479] *** Guest State *** [ 514.330852][T22479] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:29 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f3188b070") r1 = socket$can_bcm(0x1d, 0x2, 0x2) recvmmsg(r1, &(0x7f0000006700)=[{{0x0, 0x105, 0x0}}], 0x400026c, 0x2, 0x0) r2 = accept$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000300)=0x14) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000400)={'gre0\x00'}) accept4$packet(0xffffffffffffff9c, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000004c0)=0x14, 0x80000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'team0\x00', r3}) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000480)={'vcan0\x00', r3}) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x10, 0x4) fremovexattr(r2, &(0x7f0000000040)=@known='com.apple.FinderInfo\x00') connect$can_bcm(r1, &(0x7f0000000500)={0x1d, r4}, 0x10) sendmsg$can_raw(r1, &(0x7f0000001fc8)={0x0, 0x0, &(0x7f0000017ff0)={&(0x7f0000007000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e19a2b010000037dc1250200000008990039966a7d5cb2bd00000000000000000007496e6866856b76b5010000000000000000060000000118fa1efd9b0b"}, 0x48}}, 0x0) sendmsg$can_raw(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@canfd={{0x3}, 0x0, 0x0, 0x0, 0x0, "9e2bdeefaf92d92bd8f41d356221a9fe7f8a66fea837a21005db0dcd0630bf89dc773678e2876878856b76b55a7478c2e2d9c3f25b4678e6ab366fc67b080974"}, 0x48}}, 0x0) [ 514.382368][T22479] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:29 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x0, 0x0) ioctl$VIDIOC_SUBDEV_G_EDID(r2, 0x40046103, &(0x7f0000000240)={0x0, 0x0, 0x0, [], 0x0}) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'bcsh0\x00', 0x2}, 0x18) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x39edff7f}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 514.447225][T22479] CR3 = 0x0000000000000000 [ 514.451668][T22479] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 514.483723][T22479] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:29 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video37\x00', 0x2, 0x0) r0 = perf_event_open(&(0x7f0000000200)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x8, 0x70, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, r0, 0x0) [ 514.490479][T22479] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 514.586215][T22479] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.626823][T22479] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.639620][T22479] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.654717][T22479] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.663822][T22479] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.674223][T22479] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.682929][T22479] GDTR: limit=0x00000000, base=0x0000000000000000 [ 514.692047][T22479] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.707908][T22479] IDTR: limit=0x00000000, base=0x0000000000000000 [ 514.732154][T22479] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 514.751660][T22479] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 514.773640][T22479] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 514.788093][T22479] Interruptibility = 00000000 ActivityState = 00000000 [ 514.798434][T22479] *** Host State *** [ 514.802336][T22479] RIP = 0xffffffff811b3240 RSP = 0xffff8880592bf8e0 [ 514.809502][T22479] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 514.817548][T22479] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 514.827149][T22479] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 514.834100][T22479] CR0=0000000080050033 CR3=00000000512db000 CR4=00000000001426e0 [ 514.841834][T22479] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 514.849561][T22479] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 514.856677][T22479] *** Control State *** [ 514.860846][T22479] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 514.873845][T22479] EntryControls=0000d1ff ExitControls=002fefff [ 514.880041][T22479] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 03:37:30 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x40000000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 514.900059][T22479] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 514.916589][T22479] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 514.924459][T22479] reason=80000021 qualification=0000000000000000 [ 514.931605][T22479] IDTVectoring: info=00000000 errcode=00000000 [ 514.938222][T22479] TSC Offset = 0xfffffeea2e0cf917 [ 514.943789][T22479] TPR Threshold = 0x00 03:37:30 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) lstat(&(0x7f00000001c0)='./bus\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000440)={{{@in6, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@multicast2}}, &(0x7f0000000280)=0xe8) fstat(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = getuid() setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000380)=r0, 0x4) mount$9p_unix(&(0x7f0000000000)='./bus\x00', &(0x7f0000000140)='./bus\x00', &(0x7f0000000180)='9p\x00', 0x400, &(0x7f0000000580)={'trans=unix,', {[{@loose='loose'}, {@aname={'aname', 0x3d, '#posix_acl_accesswlan1nodev&procem1mime_type**!'}}, {@cache_none='cache=none'}, {@dfltgid={'dfltgid', 0x3d, r1}}, {@dfltuid={'dfltuid', 0x3d, r2}}, {@cache_fscache='cache=fscache'}], [{@smackfsroot={'smackfsroot', 0x3d, ')nodev\xf4*vboxnet1cpuset-}{eth1lo'}}, {@seclabel='seclabel'}, {@uid_gt={'uid>', r3}}, {@uid_lt={'uid<', r4}}]}}) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r5, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:30 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") syz_open_dev$vbi(&(0x7f0000000180)='/dev/vbi#\x00', 0x2, 0x2) r1 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vfio/vfio\x00', 0x200000, 0x0) getpeername$ax25(r1, &(0x7f00000000c0)={{}, [@rose, @bcast, @default, @remote, @rose, @remote, @remote, @netrom]}, &(0x7f0000000140)=0x48) syz_emit_ethernet(0x3a, &(0x7f0000000080)={@local, @empty=[0x7, 0x4], [{[{0x9100, 0xd9, 0x80000001, 0x1}], {0x8100, 0x2, 0xfff, 0x3}}], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x21, 0x0, @remote, @local}, @dccp={{0x0, 0x0, 0x4, 0x60, 0x0, 0x0, 0x4, 0x2, 0x0, "e57044", 0x0, "cd98e8"}}}}}}, 0x0) 03:37:30 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x5, 0x202081) connect$l2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0xfffffffeffffffff, @empty}, 0x3, 0x4, 0x4, 0x4}}, 0x2e) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_ifreq(r2, 0x8991, &(0x7f0000000140)={'bond0\x00@@\xea\xff\xff\x80\x00\x00\x02\x00', @ifru_names='bond_slave_1\x00'}) ioctl$PPPIOCGCHAN(0xffffffffffffffff, 0x80047437, &(0x7f00000000c0)) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x400000, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000001500)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) stat(&(0x7f0000001800)='./file0\x00', 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000ff9000/0x4000)=nil, 0x4000) ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000240)={'bond0\x00\x00\x00\x05\x00!!\x00\x01\x00', @ifru_names='bond_slave_1\x00\x01/&'}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) socketpair(0x0, 0x0, 0x0, 0x0) [ 514.947985][T22479] EPT pointer = 0x00000000a0ccb01e [ 514.976485][T22516] 9pnet: p9_fd_create_unix (22516): problem connecting socket: ./bus: -111 [ 515.089550][T22491] *** Guest State *** [ 515.119917][T22518] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 515.130098][T22491] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 515.191486][T22523] 9pnet: p9_fd_create_unix (22523): problem connecting socket: ./bus: -111 [ 515.214497][T22491] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 515.245140][T22491] CR3 = 0x0000000000000000 [ 515.250906][T22491] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 515.266057][T22491] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 515.272932][T22491] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 515.289252][T22491] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.316420][T22491] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.335614][T22491] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.349555][T22491] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.361840][T22491] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.377465][T22491] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.388125][T22491] GDTR: limit=0x00000000, base=0x0000000000000000 [ 515.397430][T22491] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.411963][T22491] IDTR: limit=0x00000000, base=0x0000000000000000 [ 515.427822][T22491] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.437021][T22491] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 515.444487][T22491] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 515.452640][T22491] Interruptibility = 00000000 ActivityState = 00000000 [ 515.459809][T22491] *** Host State *** [ 515.464205][T22491] RIP = 0xffffffff811b3240 RSP = 0xffff8880858978e0 [ 515.470886][T22491] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 515.478065][T22491] FSBase=00007effb5ee4700 GSBase=ffff8880ae800000 TRBase=fffffe0000033000 [ 515.486787][T22491] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 515.493505][T22491] CR0=0000000080050033 CR3=00000000512db000 CR4=00000000001426f0 [ 515.501228][T22491] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 515.508666][T22491] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 515.515482][T22491] *** Control State *** [ 515.519635][T22491] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 515.527079][T22491] EntryControls=0000d1ff ExitControls=002fefff [ 515.533263][T22491] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 515.540896][T22491] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 515.548418][T22491] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 515.555865][T22491] reason=80000021 qualification=0000000000000000 03:37:31 executing program 5: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000800)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0) ioctl$UI_END_FF_ERASE(r0, 0x400c55cb, &(0x7f0000000840)) 03:37:31 executing program 1: pipe(&(0x7f0000006600)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r3, &(0x7f00001fefe4)={0xa, 0x4e22}, 0x1c) listen(r3, 0x0) sendto$inet6(r2, 0x0, 0x0, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x4e22}, 0x1c) r4 = getpid() setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000100)=[@timestamp, @timestamp, @sack_perm, @timestamp], 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, r0, 0x0, 0x1, &(0x7f0000000040)='\x00', 0x0}, 0x30) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={r4, r0, 0x0, 0x18, &(0x7f0000000000)=']loem1)posix_acl_access\x00', r5}, 0x30) close(r2) r6 = accept4(r3, 0x0, 0x0, 0x800) splice(r6, 0x0, r2, 0x0, 0x3, 0x0) 03:37:31 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8937, &(0x7f0000000000)={'bridge_slave_1\x00\xf0', @random="01003a1e2410"}) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x100, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r1, 0xc0405519, &(0x7f0000000080)={0x4, 0x7, 0x80000000, 0x5, 'syz1\x00', 0x4}) 03:37:31 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x7fffed39}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20\x00', 0x41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 03:37:31 executing program 0: openat$vnet(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhost-net\x00', 0x2, 0x0) r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 515.562901][T22491] IDTVectoring: info=00000000 errcode=00000000 [ 515.569166][T22491] TSC Offset = 0xfffffeea2e0cf917 [ 515.574273][T22491] TPR Threshold = 0x00 [ 515.578348][T22491] EPT pointer = 0x00000000a0ccb01e 03:37:31 executing program 1: r0 = socket(0x10, 0x3, 0x0) syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x0, 0x20000) sendmsg$nl_generic(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000000}, 0xffd7, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYRESDEC=r0], 0x1}}, 0x0) 03:37:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getresgid(&(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)=0x0) getgroups(0x2, &(0x7f0000000180)=[0xffffffffffffffff, 0xffffffffffffffff]) setgroups(0x2, &(0x7f00000001c0)=[r2, r3]) r4 = syz_open_dev$midi(&(0x7f0000000040)='/dev/midi#\x00', 0xc9cd, 0xc1) ioctl$KVM_S390_INTERRUPT_CPU(r4, 0x4010ae94, &(0x7f0000000080)={0x20, 0x159c, 0x62d}) r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_NMI(r0, 0xae9a) ioctl$KVM_GET_FPU(r5, 0x81a0ae8c, &(0x7f0000000300)) 03:37:31 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)) rseq(&(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x2, 0x374f, 0x8, 0x2}, 0x2}, 0x20, 0x0, 0x0) clock_gettime(0x4f3f8163b573a657, 0x0) [ 515.791509][T22543] *** Guest State *** [ 515.803075][T22543] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:31 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x7fffef0a}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 515.851423][T22543] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 515.873624][T22543] CR3 = 0x0000000000000000 [ 515.880554][T22543] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 03:37:31 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) connect$inet(r0, &(0x7f0000000300)={0x2, 0x0, @initdev}, 0x10) listen(r0, 0x100000000009) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r1, 0x4008ae93, &(0x7f0000000200)=0x1000) r2 = dup3(r0, r0, 0x80000) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r2, 0xc10c5541, &(0x7f00000000c0)={0x200, 0x4, 0x3, 0x0, 0x0, [], [], [], 0x7, 0x4}) r3 = accept(r0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x73, &(0x7f0000000240)={0x0, 0x4, 0x20, 0x95b, 0x1038175c}, &(0x7f0000000280)=0x18) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x66, &(0x7f0000000380)={0x0, 0x5}, &(0x7f00000003c0)=0x8) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r3, 0x84, 0x6d, &(0x7f0000000340)={r4, 0xfffffffffffffffd}, &(0x7f00000002c0)=0xfffffc75) [ 515.910919][T22543] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 515.940390][T22543] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 03:37:31 executing program 4: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x400, 0x0) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f00000000c0)=""/70, &(0x7f0000000180)=0x46) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="180000003200010000000000000000000000000004000100f8932c5ba7910d89a825b344882b61d1c62af99f3881eacecc32f84e"], 0x18}}, 0x0) 03:37:31 executing program 5: r0 = socket$inet6(0xa, 0x2000000000000004, 0x3814c67b) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, 0x0) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0x200000bd09) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) pipe(0x0) socket$inet(0x2, 0x0, 0x0) r2 = accept4(r0, 0x0, 0x0, 0x0) ioctl(0xffffffffffffffff, 0x0, 0x0) connect$inet(0xffffffffffffffff, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x98) [ 515.959604][T22543] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 515.987156][T22543] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:31 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) accept4$x25(r0, 0x0, &(0x7f0000000000), 0x80800) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$3(0x3) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x10001, 0x0) [ 516.036681][T22543] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 516.092904][T22543] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 516.119203][T22543] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:31 executing program 4: r0 = openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x400, 0x0) getsockopt$bt_sco_SCO_OPTIONS(r0, 0x11, 0x1, &(0x7f00000000c0)=""/70, &(0x7f0000000180)=0x46) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="180000003200010000000000000000000000000004000100f8932c5ba7910d89a825b344882b61d1c62af99f3881eacecc32f84e"], 0x18}}, 0x0) [ 516.149303][T22543] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 516.170312][T22543] GDTR: limit=0x00000000, base=0x0000000000000000 [ 516.243558][T22543] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:31 executing program 5: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000c40)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket(0x200000000000011, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'bridge_slave_0\x00', 0x0}) bind$packet(r1, &(0x7f0000000200)={0x11, 0x0, r2}, 0x14) io_setup(0x7, &(0x7f0000000000)=0x0) io_submit(r3, 0x1, &(0x7f0000000180)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x100000000001, 0x0, r1, &(0x7f0000000080), 0xffffff8e}]) [ 516.299785][T22543] IDTR: limit=0x00000000, base=0x0000000000000000 [ 516.309860][T22543] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 516.335612][T22543] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 516.369560][T22543] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 516.389618][T22543] Interruptibility = 00000000 ActivityState = 00000000 [ 516.409326][T22543] *** Host State *** [ 516.413707][T22543] RIP = 0xffffffff811b3240 RSP = 0xffff8880a539f8e0 [ 516.420554][T22543] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 516.435095][T22543] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 516.450658][T22543] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 516.460910][T22543] CR0=0000000080050033 CR3=0000000021e8c000 CR4=00000000001426e0 [ 516.471197][T22543] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 516.480914][T22543] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 516.491371][T22543] *** Control State *** [ 516.498019][T22543] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 516.507624][T22543] EntryControls=0000d1ff ExitControls=002fefff [ 516.515991][T22543] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 516.525696][T22543] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 516.535205][T22543] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 516.542592][T22543] reason=80000021 qualification=0000000000000000 [ 516.549612][T22543] IDTVectoring: info=00000000 errcode=00000000 [ 516.555940][T22543] TSC Offset = 0xfffffee961ab4768 [ 516.560970][T22543] TPR Threshold = 0x00 [ 516.565114][T22543] EPT pointer = 0x000000009306001e 03:37:32 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) unlink(&(0x7f0000000000)='./file0\x00') r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:37:32 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = semget(0xffffffffffffffff, 0x3, 0x402) semctl$IPC_STAT(r0, 0x0, 0x2, &(0x7f0000000040)=""/243) 03:37:32 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x7ffff000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:32 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x0, 0x407000}]) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f0000000140)) ioctl$VIDIOC_QUERYSTD(r0, 0x8008563f, &(0x7f0000000180)) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:32 executing program 5: r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f000045fff8)={0x0, 0x0}) gettid() kcmp(r1, r1, 0x7, r0, 0xffffffffffffffff) 03:37:32 executing program 4: sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{0x0, 0x24}], 0x1, 0x0, 0x172}, 0x0) r0 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x2) ioctl$KDADDIO(r0, 0x4b34, 0x9) readv(r0, &(0x7f0000000080), 0x0) write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000200)=ANY=[], 0x0) write$binfmt_elf64(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="5d3a0c8524174c618e1062ab923cd2ea553fe8ba290ea3c4ed3322be62fe7782836f890e3a1ea73c18b57d17de0f08c048554a03001736ae62e70e04a63d9ad949a19231"], 0x1) ioctl$CAPI_INSTALLED(r0, 0x80024322) [ 516.764931][T22605] *** Guest State *** 03:37:32 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) times(&(0x7f0000000000)) sendmsg$nl_netfilter(r0, &(0x7f0000d65000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="2400000002010100000000000000000000000800080015140000000008002800a26aa6b45e0b6bd233735f3fe2f4777b2d92fde61efbb60c95d0012be361e46f78a90eaba43c2d945c6968d29d484b8040e41da51b7fa513d82c85fb7f", @ANYRES32=0x0], 0x24}}, 0x0) socket$inet_dccp(0x2, 0x6, 0x0) 03:37:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x14, 0x2c, 0xffffff1f, 0x0, 0x0, {0x4001}}, 0x14}}, 0x0) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB="7b6563755269747931c59ac1ea1b"]) r1 = syz_open_dev$vcsn(&(0x7f00000000c0)='/dev/vcs#\x00', 0x8, 0x400000) ioctl$TIOCEXCL(r1, 0x540c) [ 516.801217][T22605] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 516.840133][T22605] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 03:37:32 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0xfffffffffffffffb, &(0x7f00000002c0)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) [ 516.873032][T22605] CR3 = 0x0000000000000000 [ 516.882947][T22605] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 516.889674][T22605] RFLAGS=0x00000002 DR7 = 0x0000000000000400 03:37:32 executing program 5: r0 = add_key$user(&(0x7f0000000040)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f00000002c0)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce0000b4ec24c53d3d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0xc0, 0xfffffffffffffffe) r1 = add_key$user(&(0x7f0000000200)='user\x00', &(0x7f00000000c0)={'syz'}, &(0x7f00000000c0), 0x0, 0xfffffffffffffffd) keyctl$dh_compute(0x17, &(0x7f0000000100)={r1, r0, r0}, &(0x7f0000001380)=""/107, 0x6b, &(0x7f0000000280)={&(0x7f00000001c0)={'sha384-avx2\x00'}}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x40000, 0x0) ioctl$KVM_ASSIGN_SET_INTX_MASK(r2, 0x4040aea4, &(0x7f0000000140)={0x8001, 0xae, 0x7, 0x1, 0x72f8}) 03:37:32 executing program 4: r0 = open(&(0x7f0000000040)='./bus\x00', 0x800141042, 0x0) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0)='nbd\x00') sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, r2, 0x300, 0x70bd29, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfffffffffffffffe}]}, 0x20}, 0x1, 0x0, 0x0, 0x4040010}, 0x20000040) close(r1) socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) unlink(&(0x7f0000000000)='./bus\x00') mmap(&(0x7f0000008000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='numa_maps\x00') readv(r3, &(0x7f0000000300)=[{&(0x7f0000001400)=""/4096, 0x1000}], 0x1) [ 516.964226][T22605] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 517.002547][T22605] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 03:37:32 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0x8dffffff}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 517.045695][T22605] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.091349][T22605] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.140494][T22605] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.187592][T22605] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.238550][T22605] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.275723][T22605] GDTR: limit=0x00000000, base=0x0000000000000000 [ 517.309011][T22605] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.345278][T22605] IDTR: limit=0x00000000, base=0x0000000000000000 [ 517.378846][T22605] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.401073][T22605] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 517.410016][T22605] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 517.432497][T22605] Interruptibility = 00000000 ActivityState = 00000000 [ 517.439433][T22605] *** Host State *** [ 517.443432][T22605] RIP = 0xffffffff811b3240 RSP = 0xffff8880503d78e0 [ 517.450227][T22605] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 517.457762][T22605] FSBase=00007effb5f06700 GSBase=ffff8880ae900000 TRBase=fffffe0000033000 [ 517.466579][T22605] GDTBase=fffffe0000031000 IDTBase=fffffe0000000000 [ 517.473254][T22605] CR0=0000000080050033 CR3=000000008946a000 CR4=00000000001426e0 [ 517.481004][T22605] Sysenter RSP=fffffe0000032200 CS:RIP=0010:ffffffff87201360 [ 517.488510][T22605] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 517.495332][T22605] *** Control State *** [ 517.499490][T22605] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 517.506914][T22605] EntryControls=0000d1ff ExitControls=002fefff [ 517.513209][T22605] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 517.520865][T22605] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 517.528343][T22605] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 517.535726][T22605] reason=80000021 qualification=0000000000000000 [ 517.535736][T22605] IDTVectoring: info=00000000 errcode=00000000 [ 517.535751][T22605] TSC Offset = 0xfffffee8dcb63419 [ 517.554045][T22605] TPR Threshold = 0x00 [ 517.554057][T22605] EPT pointer = 0x00000000a97ea01e 03:37:33 executing program 2: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x40, 0x0) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x4000, 0x0) syz_kvm_setup_cpu$x86(r0, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000001c0)="f0440fbab8008000009e0f01ca66b8f8008ee00f20c035000000800f22c0b805000000b9060001000f01c1c4824906a70f0000000f08660f20076665f4650f2125", 0x41}], 0x1, 0x8, &(0x7f0000000140), 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) add_key(0xffffffffffffffff, 0x0, &(0x7f0000000180)="70b179891ddd88b4c00ea679d131ca9918ad5062ded382cb7f7bd95407acc58968d4fe7a41710fbca761cf8289278ccc9645", 0x32, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f00000000c0)) ioctl$KVM_SET_SREGS(r4, 0x4138ae84, &(0x7f0000000380)) ioctl$KVM_RUN(r4, 0xae80, 0x0) 03:37:33 executing program 5: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4) socket$xdp(0x2c, 0x3, 0x0) r1 = dup2(r0, r0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) futimesat(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000200)={{r2, r3/1000+10000}}) clock_getres(0x0, 0x0) r4 = dup(0xffffffffffffffff) r5 = openat$cgroup_ro(r4, &(0x7f0000000340)='stat\t\xc0\xd2\xfe\xbc\a\x00\x00\x00\xf6d\xf4\xac\xf0\x91\xea\xc8\x00w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6\xf7\xff\xff\xff\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1e\x01\x01\x00\x00\xd6\xfd\x00\x00\x0f\x00', 0x275a, 0x0) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x401) write$FUSE_IOCTL(0xffffffffffffffff, 0x0, 0x1bb) ioctl$sock_bt_hidp_HIDPCONNDEL(r5, 0x400448c9, &(0x7f00000001c0)={{0xd70, 0x7, 0x0, 0x3, 0x20, 0x800000000000000}, 0x4000000000}) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000140)={0x3, 0x0, 0x2, 0x8001}) ioctl$DRM_IOCTL_AGP_ALLOC(r5, 0xc0206434, &(0x7f0000000180)={0x9, r6, 0x1, 0x4}) ioctl$PPPIOCSCOMPRESS(r4, 0x4010744d) fcntl$getownex(r5, 0x10, &(0x7f0000000100)) unlinkat(r5, &(0x7f0000000300)='./file0\x00', 0x200) perf_event_open(&(0x7f0000000040)={0x1, 0x2d, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xee68, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket$inet(0x2, 0x1000020010000006, 0x100000009) syz_emit_ethernet(0x2a, &(0x7f00000000c0)=ANY=[@ANYBLOB="aaaaaaaaabaa0008430dd23370d5aa8a1ff27494b3d362004500001c00"], 0x0) ioctl$sock_SIOCINQ(r7, 0x541b, &(0x7f0000000000)) clock_adjtime(0x0, &(0x7f00000001c0)={0x27ff, 0x20000000, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x2000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}) openat$vcs(0xffffffffffffff9c, 0x0, 0x204200, 0x0) ioctl$PIO_FONTRESET(0xffffffffffffffff, 0x4b6d, 0x0) syz_genetlink_get_family_id$tipc2(0x0) sendmsg$TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, 0x0, 0x0) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, 0x0) setsockopt$bt_BT_CHANNEL_POLICY(0xffffffffffffffff, 0x112, 0xa, 0x0, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) 03:37:33 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x132224) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = gettid() setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, 0x0, 0x0) ptrace$setopts(0x4206, r2, 0x0, 0x0) tkill(r2, 0x31) r3 = epoll_create1(0x0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) wait4(0x0, 0x0, 0x0, 0x0) epoll_wait(r3, &(0x7f0000000080)=[{}], 0x1, 0xfff) ioctl$VIDIOC_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f00000000c0)={0x0, @bt={0xbf3, 0x9, 0x1, 0x1, 0x0, 0xffe9, 0x0, 0x80000000, 0x200, 0x1, 0x9, 0xef87, 0x3, 0x30000, 0x4, 0x20}}) 03:37:33 executing program 0: r0 = accept4$nfc_llcp(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80800) r1 = syz_open_dev$mouse(&(0x7f00000002c0)='/dev/input/mouse#\x00', 0x40000007f, 0x10885) ioctl$VIDIOC_QUERYBUF(r1, 0xc0585609, &(0x7f00000006c0)={0xffff, 0x7, 0x4, 0x40020, {0x0, 0x2710}, {0x3, 0x2, 0x3, 0x666f, 0x3, 0x40, "29c975a3"}, 0x878, 0x3, @planes=&(0x7f0000000140)={0x3f, 0x1, @fd=r1, 0x8}, 0x4}) ioctl$EVIOCGABS3F(r1, 0x8018457f, &(0x7f00000003c0)=""/42) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000240)='/dev/autofs\x00', 0x800, 0x0) ioctl$EVIOCGBITSND(r2, 0x80404532, &(0x7f0000000a40)=""/4096) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000600)={r2, 0x28, &(0x7f00000005c0)}, 0x10) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000680)={r1, 0x28, &(0x7f0000000640)={0x0, 0x0}}, 0x10) r4 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000580)={r3, 0x3f, 0x18}, 0x1b3) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000180)={0x0, r4, 0x5b, 0x5, 0x2, 0x100000000}) r5 = mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x22130, r2, 0x17) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000300)={0x44, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07630640000000000e630c402300000203000084000000000c630000106308400000000000420d0000000068cd25060000000003630840", @ANYRES64=r5], 0x90, 0x0, &(0x7f0000000440)="1d3e162393a944e600beaadaaf507fc1ae1af2a069218c39303c7744a74a2750e175946924d08e7feeeec452be9899583ce7af5953746606efcc96e6ca872ae3137e6bded49c14f499f985f5c9224603852c0c917533d6b620de9aacb39ea6f6717952ba6dd2b6092e33cbde1f3ad95824bbee98c18a10e9750217ed6fe0d8d5206e76618610c96162a11cc4b90f4636"}) ioctl$VIDIOC_S_INPUT(r1, 0xc0045627, &(0x7f0000000380)=0x240000) r6 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r2, 0x800448d3, &(0x7f0000000740)={{0x4, 0x2, 0x401, 0x800, 0xfff, 0x756305e0}, 0x1, 0xb8, 0x80, 0x8, 0x7, "72829e66a46eaf678ad465dc03b6442d34e8093e2bc1e0840b0f503a766eec7af2fad1d886496c85ec669c118e49ec431ed71ebcc7230ec60eed4e5308638f4cef958ad5d8cbd6506ec1c6c4dfa3f1edb792f1d2f8f77b4f9690a8e07ad38d553109c42c9113e3106b2b14bc62ecaac708aea5540b8ca824001cfc8179068341"}) ioctl$EXT4_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000100)) io_submit(r7, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r6, &(0x7f0000000000), 0x10000, 0x407000}]) fsetxattr$security_selinux(r4, &(0x7f00000001c0)='security.selinux\x00', &(0x7f0000000200)='unconfined\x00', 0xb, 0xec4558f44f986f89) ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f0000000500)=0x5) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f00000008c0)={'team0\x00', 0x0}) bind$packet(r1, &(0x7f0000000900)={0x11, 0xc, r8, 0x1, 0xa4c8, 0x6, @random="ba330b8e8c79"}, 0x14) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) 03:37:33 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0xa, 0xb, 0x100000000000914, 0x5}, 0x2c) perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 03:37:33 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0xd4030000}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) 03:37:33 executing program 1: r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x200000000000, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x4000000004002, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, 0x0) inotify_init1(0x800) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x200000e, 0x13, r2, 0x0) signalfd4(r2, 0x0, 0x0, 0x800) r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001400)='/dev/nullb0\x00', 0x8004, 0x0) preadv(r3, &(0x7f0000000040), 0x11f, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000200)={0x7fffffff, 0x7, 0xec, 0x3f, 0x40}, 0x14) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/mixer\x00', 0x800, 0x0) r5 = gettid() fcntl$notify(r3, 0x402, 0x8000003f) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f00000002c0)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) rt_sigsuspend(&(0x7f0000000240)={0x10001}, 0x8) fcntl$setstatus(r4, 0x4, 0x4c00) tkill(r5, 0x1000000000016) syz_genetlink_get_family_id$tipc2(&(0x7f0000000280)='TIPCv2\x00') sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, 0x0, 0x20008000) ioctl$VIDIOC_G_TUNER(0xffffffffffffffff, 0xc054561d, 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x0) write$P9_ROPEN(r4, &(0x7f0000000000)={0x18, 0x71, 0x2, {{0xe179cfb45084c118, 0x1, 0x2}, 0x7}}, 0x18) 03:37:33 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0xeffdffff}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 517.765162][T22651] *** Guest State *** [ 517.769179][T22651] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 03:37:33 executing program 5: unshare(0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x10, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xffffffffffffffff, 0x200000) ioctl$SG_GET_ACCESS_COUNT(r0, 0x2289, &(0x7f00000000c0)) ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x100000000) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000fcb000)={0xffffffffffffffff, 0x0, 0x0}, 0x20) syz_open_dev$cec(0x0, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, &(0x7f0000000080), 0x4) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8000fffffffe) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) [ 517.838033][T22651] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 517.873078][T22651] CR3 = 0x0000000000000000 [ 517.883385][T22651] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 517.901189][T22651] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 517.912010][ C1] net_ratelimit: 21 callbacks suppressed [ 517.912019][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 517.916128][T22651] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 517.917710][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 517.960554][T22651] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 517.991984][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 517.997829][ C0] protocol 88fb is buggy, dev hsr_slave_1 03:37:33 executing program 0: r0 = creat(&(0x7f0000000a00)='./bus\x00', 0x0) io_setup(0x9, &(0x7f0000000400)=0x0) ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000100)) io_submit(r1, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x10000, 0x407000}]) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = getpgid(0x0) sched_getattr(r2, &(0x7f0000000000), 0x30, 0x0) truncate(&(0x7f0000000340)='./bus\x00', 0x400002) mount$bpf(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000180)='bpf\x00', 0x2202020, &(0x7f00000001c0)={[{@mode={'mode', 0x3d, 0xd2d}}, {@mode={'mode'}}], [{@measure='measure'}]}) 03:37:33 executing program 3: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000300)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg(r1, &(0x7f0000007b40)=[{{&(0x7f0000000180)=@l2={0x1f, 0xf0ffffff}, 0xf6}}, {{&(0x7f0000007500)=@hci, 0x80, &(0x7f0000007680), 0x141, &(0x7f00000076c0), 0x10}}], 0x4000000000003d5, 0x0) [ 518.008879][T22651] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.032716][T22651] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.092218][T22651] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.104569][T22651] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.122499][T22651] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.139393][T22651] GDTR: limit=0x00000000, base=0x0000000000000000 [ 518.217463][T22651] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.232394][T22651] IDTR: limit=0x00000000, base=0x0000000000000000 [ 518.260127][T22651] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 518.306016][T22651] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 518.313392][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 518.313457][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 518.352974][T22671] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 518.397232][T22651] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 518.450774][T22651] Interruptibility = 00000000 ActivityState = 00000000 [ 518.492096][T22651] *** Host State *** [ 518.504780][T22651] RIP = 0xffffffff811b3240 RSP = 0xffff88804f04f8e0 03:37:34 executing program 5: r0 = syz_open_dev$usbmon(&(0x7f0000000040)='/dev/usbmon#\x00', 0x0, 0x0) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(r0, 0x800442d4, &(0x7f0000000080)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_init_net_socket$nfc_llcp(0x27, 0x0, 0x1) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) prlimit64(0x0, 0x9, &(0x7f0000000100)={0x4}, 0x0) r1 = socket(0xa, 0x1, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'veth1_to_team\x00', 0x8}, 0x18) write$USERIO_CMD_REGISTER(r0, &(0x7f00000000c0)={0x0, 0x4}, 0x2) ioctl$RNDZAPENTCNT(r0, 0x5204, &(0x7f0000000200)=0x10000) syz_init_net_socket$ax25(0x3, 0x7, 0xfe) ioctl(r1, 0x8916, &(0x7f0000000000)) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000140)=0x0) ptrace$setopts(0x4206, r2, 0xc6, 0x41) ioctl(r1, 0x8936, &(0x7f0000000140)) time(0x0) connect(r0, &(0x7f0000000180)=@ethernet={0x1, @broadcast}, 0x80) ioctl$LOOP_CTL_ADD(0xffffffffffffffff, 0x4c80, 0x0) [ 518.541922][ C1] Adjusting tsc more than 11% (8206254 vs 8096837) [ 518.630943][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 518.631601][T22651] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 518.636815][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 518.649705][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 518.667544][T22651] FSBase=00007effb5f06700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 518.683411][T22651] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 518.690259][T22651] CR0=0000000080050033 CR3=000000008e70d000 CR4=00000000001426f0 [ 518.708756][T22651] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 518.738418][T22651] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 518.763970][T22651] *** Control State *** [ 518.772809][T22651] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 518.800675][T22651] EntryControls=0000d1ff ExitControls=002fefff [ 518.806920][T22651] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 518.816484][T22651] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 518.830995][T22651] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 518.848327][T22651] reason=80000021 qualification=0000000000000000 [ 518.859593][T22651] IDTVectoring: info=00000000 errcode=00000000 [ 518.868245][T22651] TSC Offset = 0xfffffee85220913d [ 518.878038][T22651] TPR Threshold = 0x00 [ 518.884475][T22651] EPT pointer = 0x000000008efad01e [ 518.924521][T22694] *** Guest State *** [ 518.928662][T22694] CR0: actual=0x0000000000000020, shadow=0x0000000000000000, gh_mask=fffffffffffffff7 [ 518.945684][T22694] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 518.959379][T22694] CR3 = 0x0000000000000000 [ 518.966495][T22694] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 518.978311][T22694] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 518.985148][T22694] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 519.000113][T22694] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.011394][T22694] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.025244][T22694] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.039946][T22694] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.052361][T22694] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.066052][T22694] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.077431][T22694] GDTR: limit=0x00000000, base=0x0000000000000000 [ 519.091177][T22694] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.102571][T22694] IDTR: limit=0x00000000, base=0x0000000000000000 [ 519.118515][T22694] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 519.132615][T22694] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 519.148284][T22694] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 519.163526][T22694] Interruptibility = 00000000 ActivityState = 00000000 [ 519.170734][T22694] *** Host State *** [ 519.181834][T22694] RIP = 0xffffffff811b3240 RSP = 0xffff88802e3e78e0 [ 519.189101][T22694] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 519.208041][T22694] FSBase=00007effb5e60700 GSBase=ffff8880ae800000 TRBase=fffffe0000003000 [ 519.218228][T22694] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 519.224990][T22694] CR0=0000000080050033 CR3=000000008e70d000 CR4=00000000001426f0 [ 519.240316][T22694] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff87201360 [ 519.250404][T22694] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 519.262279][T22694] *** Control State *** [ 519.271852][T22694] PinBased=0000003f CPUBased=b5a06dfa SecondaryExec=000000c2 [ 519.279250][T22694] EntryControls=0000d1ff ExitControls=002fefff [ 519.286698][T22694] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 519.301726][T22694] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 519.313161][T22694] VMExit: intr_info=00000000 errcode=00000000 ilen=00000003 [ 519.324261][T22694] reason=80000021 qualification=0000000000000000 [ 519.336246][T22694] IDTVectoring: info=00000000 errcode=00000000 [ 519.348843][T22694] TSC Offset = 0xfffffee85220913d [ 519.355566][T22694] TPR Threshold = 0x00 [ 519.359904][T22694] EPT pointer = 0x000000008efad01e [ 523.783822][ C1] net_ratelimit: 21 callbacks suppressed [ 523.783828][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 523.795314][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 523.861729][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 523.867542][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 524.172452][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 524.178253][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 524.485574][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 524.491429][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 524.497254][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 524.503043][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 529.941295][ C1] net_ratelimit: 20 callbacks suppressed [ 529.941303][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 529.952783][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 530.020851][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 530.026678][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 530.339404][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 530.345176][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 530.658256][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 530.664109][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 530.669990][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 530.675757][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 536.167403][ C1] net_ratelimit: 20 callbacks suppressed [ 536.167413][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 536.178926][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 536.247362][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 536.253214][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 536.567069][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 536.572867][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 536.886958][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 536.892779][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 536.898662][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 536.904431][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 542.405083][ C1] net_ratelimit: 20 callbacks suppressed [ 542.405089][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 542.416558][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 542.485073][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 542.490886][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 542.804991][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 542.810779][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 543.125048][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 543.130861][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 543.136776][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 543.142541][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 548.644779][ C1] net_ratelimit: 20 callbacks suppressed [ 548.644785][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 548.656280][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 548.724690][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 548.730471][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 549.044682][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 549.050494][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 549.364697][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 549.370504][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 549.376365][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 549.382135][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 554.884672][ C1] net_ratelimit: 20 callbacks suppressed [ 554.884682][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 554.896211][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 554.964623][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 554.970422][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 555.284604][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 555.290397][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 555.604668][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 555.610482][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 555.616347][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 555.622113][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 561.124657][ C1] net_ratelimit: 20 callbacks suppressed [ 561.124667][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 561.136197][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 561.204610][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 561.210410][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 561.524564][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 561.530337][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 561.844626][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 561.850437][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 561.856300][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 561.862064][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 567.364622][ C1] net_ratelimit: 20 callbacks suppressed [ 567.364632][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 567.376166][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 567.444629][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 567.450451][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 567.764602][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 567.770362][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 568.084638][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 568.090489][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 568.096309][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 568.102077][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 573.604623][ C1] net_ratelimit: 20 callbacks suppressed [ 573.604633][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 573.616114][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 573.684610][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 573.690389][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 574.004603][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 574.010397][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 574.324620][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 574.330451][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 574.336274][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 574.342039][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 579.844632][ C1] net_ratelimit: 20 callbacks suppressed [ 579.844641][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 579.856112][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 579.924619][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 579.930463][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 580.244569][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 580.250379][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 580.564616][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 580.570430][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 580.576284][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 580.582043][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 586.084613][ C1] net_ratelimit: 20 callbacks suppressed [ 586.084622][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 586.096091][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 586.164592][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 586.170383][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 586.484578][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 586.490339][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 586.804597][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 586.810405][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 586.816219][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 586.821991][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 592.324639][ C1] net_ratelimit: 20 callbacks suppressed [ 592.324649][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 592.336116][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 592.404590][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 592.410391][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 592.724585][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 592.730352][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 593.044627][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 593.050448][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 593.056315][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 593.062076][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 598.564612][ C1] net_ratelimit: 20 callbacks suppressed [ 598.564622][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 598.576092][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 598.644608][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 598.650484][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 598.964613][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 598.970385][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 599.284601][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 599.290433][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 599.296267][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 599.302058][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 604.804616][ C1] net_ratelimit: 20 callbacks suppressed [ 604.804625][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 604.816128][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 604.884631][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 604.890457][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 605.204589][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 605.210355][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 605.524631][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 605.530438][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 605.536291][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 605.542056][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 611.044562][ C1] net_ratelimit: 20 callbacks suppressed [ 611.044568][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 611.056052][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 611.124596][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 611.130384][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 611.444539][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 611.450300][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 611.764579][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 611.770375][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 611.776185][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 611.781955][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 617.284632][ C1] net_ratelimit: 20 callbacks suppressed [ 617.284642][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 617.296103][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 617.364608][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 617.370442][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 617.684556][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 617.690345][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 618.004670][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 618.010478][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 618.016329][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 618.022091][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 623.524623][ C1] net_ratelimit: 20 callbacks suppressed [ 623.524633][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 623.536117][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 623.604591][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 623.610386][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 623.924585][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 623.930378][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 624.244639][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 624.250458][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 624.256273][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 624.262076][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 629.764598][ C1] net_ratelimit: 20 callbacks suppressed [ 629.764608][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 629.776091][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 629.844571][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 629.850368][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 630.164541][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 630.170292][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 630.484637][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 630.490435][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 630.496322][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 630.502092][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 636.004618][ C1] net_ratelimit: 20 callbacks suppressed [ 636.004627][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 636.016116][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 636.084574][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 636.090373][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 636.404574][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 636.410341][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 636.724580][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 636.730375][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 636.736221][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 636.742044][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 642.244565][ C1] net_ratelimit: 20 callbacks suppressed [ 642.244571][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 642.256084][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 642.324569][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 642.330344][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 642.644531][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 642.650283][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 642.964576][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 642.970371][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 642.976229][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 642.981994][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 648.484563][ C1] net_ratelimit: 20 callbacks suppressed [ 648.484569][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 648.496049][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 648.564570][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 648.570345][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 648.884586][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 648.890340][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 649.204598][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 649.210408][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 649.216264][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 649.222061][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 654.724588][ C1] net_ratelimit: 20 callbacks suppressed [ 654.724594][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 654.736052][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 654.804561][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 654.810369][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 655.124544][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 655.130314][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 655.444606][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 655.450419][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 655.456269][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 655.462044][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 660.964599][ C1] net_ratelimit: 20 callbacks suppressed [ 660.964609][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 660.976091][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 661.044560][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 661.050363][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 661.364523][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 661.370291][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 661.684577][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 661.690359][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 661.696208][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 661.701993][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 666.884662][ T1044] INFO: task kworker/u4:3:33 blocked for more than 140 seconds. [ 666.892340][ T1044] Not tainted 5.0.0-rc7-next-20190222 #41 [ 666.906532][ T1044] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 666.919522][ T1044] kworker/u4:3 D25472 33 2 0x80000000 [ 666.928191][ T1044] Workqueue: events_unbound fsnotify_connector_destroy_workfn [ 666.939795][ T1044] Call Trace: [ 666.943121][ T1044] __schedule+0x817/0x1cc0 [ 666.949777][ T1044] ? perf_trace_lock_acquire+0xf5/0x580 [ 666.959535][ T1044] ? __sched_text_start+0x8/0x8 [ 666.964420][ T1044] ? mark_held_locks+0xf0/0xf0 [ 666.971472][ T1044] ? debug_smp_processor_id+0x3c/0x280 [ 666.981458][ T1044] schedule+0x92/0x180 [ 666.987816][ T1044] schedule_timeout+0x8ca/0xfd0 [ 666.992698][ T1044] ? wait_for_completion+0x294/0x440 [ 667.002158][ T1044] ? find_held_lock+0x35/0x130 [ 667.009288][ T1044] ? usleep_range+0x170/0x170 [ 667.013997][ T1044] ? mark_held_locks+0xa4/0xf0 [ 667.023013][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 667.030727][ T1044] ? wait_for_completion+0x294/0x440 [ 667.040978][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 667.048540][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 667.053904][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 667.063106][ T1044] ? kasan_check_read+0x11/0x20 [ 667.070248][ T1044] wait_for_completion+0x29c/0x440 [ 667.079609][ T1044] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 667.088328][ T1044] ? __call_srcu+0x3a8/0xcc0 [ 667.092977][ T1044] ? wake_up_q+0xf0/0xf0 [ 667.101441][ T1044] __synchronize_srcu+0x197/0x250 [ 667.108686][ T1044] ? call_srcu+0x10/0x10 [ 667.112953][ T1044] ? rcu_gp_is_expedited+0xb0/0xb0 [ 667.122340][ T1044] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 667.130452][ T1044] ? ktime_get_mono_fast_ns+0x178/0x200 [ 667.140224][ T1044] synchronize_srcu+0x239/0x3e8 [ 667.147323][ T1044] fsnotify_connector_destroy_workfn+0x4e/0xa0 [ 667.153552][ T1044] process_one_work+0x98e/0x1790 [ 667.162670][ T1044] ? pwq_dec_nr_in_flight+0x320/0x320 [ 667.171246][ T1044] ? lock_acquire+0x16f/0x3f0 [ 667.180160][ T1044] worker_thread+0x98/0xe40 [ 667.186885][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 667.191943][ T1044] kthread+0x357/0x430 [ 667.200443][ T1044] ? process_one_work+0x1790/0x1790 [ 667.204628][ C1] net_ratelimit: 20 callbacks suppressed [ 667.204636][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 667.207758][ T1044] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 667.211360][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 667.220964][ T1044] ret_from_fork+0x3a/0x50 [ 667.239862][ T1044] INFO: task kworker/u4:5:7946 blocked for more than 140 seconds. [ 667.247954][ T1044] Not tainted 5.0.0-rc7-next-20190222 #41 [ 667.254206][ T1044] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 667.268888][ T1044] kworker/u4:5 D25184 7946 2 0x80000000 [ 667.276522][ T1044] Workqueue: events_unbound fsnotify_mark_destroy_workfn [ 667.283555][ T1044] Call Trace: [ 667.286942][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 667.286984][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 667.305862][ T1044] __schedule+0x817/0x1cc0 [ 667.310309][ T1044] ? __sched_text_start+0x8/0x8 [ 667.320478][ T1044] ? mark_held_locks+0xf0/0xf0 [ 667.326517][ T1044] ? debug_smp_processor_id+0x3c/0x280 [ 667.332004][ T1044] schedule+0x92/0x180 [ 667.341331][ T1044] schedule_timeout+0x8ca/0xfd0 [ 667.347462][ T1044] ? wait_for_completion+0x294/0x440 [ 667.352771][ T1044] ? find_held_lock+0x35/0x130 [ 667.362748][ T1044] ? usleep_range+0x170/0x170 [ 667.369941][ T1044] ? mark_held_locks+0xa4/0xf0 [ 667.380057][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 667.386588][ T1044] ? wait_for_completion+0x294/0x440 [ 667.391899][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 667.402270][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 667.408943][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 667.413995][ T1044] ? kasan_check_read+0x11/0x20 [ 667.424263][ T1044] wait_for_completion+0x29c/0x440 [ 667.430825][ T1044] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 667.443333][ T1044] ? __call_srcu+0x3a8/0xcc0 [ 667.451376][ T1044] ? wake_up_q+0xf0/0xf0 [ 667.460817][ T1044] __synchronize_srcu+0x197/0x250 [ 667.467198][ T1044] ? call_srcu+0x10/0x10 [ 667.471465][ T1044] ? rcu_gp_is_expedited+0xb0/0xb0 [ 667.481787][ T1044] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 667.488782][ T1044] ? ktime_get_mono_fast_ns+0x178/0x200 [ 667.494357][ T1044] synchronize_srcu+0x2dc/0x3e8 [ 667.505532][ T1044] fsnotify_mark_destroy_workfn+0x110/0x3b0 [ 667.511453][ T1044] ? __fsnotify_recalc_mask+0x2a0/0x2a0 [ 667.522084][ T1044] process_one_work+0x98e/0x1790 [ 667.530392][ T1044] ? pwq_dec_nr_in_flight+0x320/0x320 [ 667.541007][ T1044] ? lock_acquire+0x16f/0x3f0 [ 667.546995][ T1044] worker_thread+0x98/0xe40 [ 667.551545][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 667.561735][ T1044] kthread+0x357/0x430 [ 667.567912][ T1044] ? process_one_work+0x1790/0x1790 [ 667.573132][ T1044] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 667.585635][ T1044] ret_from_fork+0x3a/0x50 [ 667.590259][ T1044] INFO: task syz-executor.2:22650 blocked for more than 140 seconds. [ 667.603393][ T1044] Not tainted 5.0.0-rc7-next-20190222 #41 [ 667.604560][ C1] protocol 88fb is buggy, dev hsr_slave_0 [ 667.610785][ T1044] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 667.615481][ C1] protocol 88fb is buggy, dev hsr_slave_1 [ 667.636152][ T1044] syz-executor.2 D28240 22650 7709 0x00000004 [ 667.642594][ T1044] Call Trace: [ 667.650003][ T1044] __schedule+0x817/0x1cc0 [ 667.656693][ T1044] ? perf_trace_lock_acquire+0xf5/0x580 [ 667.662266][ T1044] ? __sched_text_start+0x8/0x8 [ 667.671312][ T1044] ? mark_held_locks+0xf0/0xf0 [ 667.678318][ T1044] ? debug_smp_processor_id+0x3c/0x280 [ 667.683805][ T1044] schedule+0x92/0x180 [ 667.693062][ T1044] schedule_timeout+0x8ca/0xfd0 [ 667.700966][ T1044] ? wait_for_completion+0x294/0x440 [ 667.710566][ T1044] ? find_held_lock+0x35/0x130 [ 667.717607][ T1044] ? usleep_range+0x170/0x170 [ 667.722313][ T1044] ? kasan_check_write+0x14/0x20 [ 667.731654][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 667.739101][ T1044] ? wait_for_completion+0x294/0x440 [ 667.744411][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 667.753915][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 667.761446][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 667.770797][ T1044] ? kasan_check_read+0x11/0x20 [ 667.777905][ T1044] wait_for_completion+0x29c/0x440 [ 667.783072][ T1044] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 667.793776][ T1044] ? __call_srcu+0x3a8/0xcc0 [ 667.800596][ T1044] ? wake_up_q+0xf0/0xf0 [ 667.808943][ T1044] __synchronize_srcu+0x197/0x250 [ 667.813991][ T1044] ? call_srcu+0x10/0x10 [ 667.820483][ T1044] ? rcu_gp_is_expedited+0xb0/0xb0 [ 667.830681][ T1044] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 667.838793][ T1044] ? ktime_get_mono_fast_ns+0x178/0x200 [ 667.844368][ T1044] synchronize_srcu+0x239/0x3e8 [ 667.853465][ T1044] mmu_notifier_unregister+0x2cf/0x440 [ 667.861370][ T1044] kvm_put_kvm+0x553/0xc70 [ 667.869955][ T1044] ? kvm_vm_release+0x60/0x60 [ 667.876847][ T1044] kvm_vcpu_release+0x7b/0xa0 [ 667.881567][ T1044] __fput+0x2e5/0x8d0 [ 667.889864][ T1044] ____fput+0x16/0x20 [ 667.893876][ T1044] task_work_run+0x14a/0x1c0 [ 667.900745][ T1044] exit_to_usermode_loop+0x273/0x2c0 [ 667.910153][ T1044] do_syscall_64+0x52d/0x610 [ 667.917183][ T1044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 667.923100][ T1044] RIP: 0033:0x411d31 [ 667.927161][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 667.927209][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 667.927288][ C0] protocol 88fb is buggy, dev hsr_slave_0 [ 667.927326][ C0] protocol 88fb is buggy, dev hsr_slave_1 [ 667.960883][ T1044] Code: be b3 34 01 00 00 31 c0 bf bb 36 44 00 e8 17 f3 00 00 8b b3 30 01 00 00 31 c0 bf d0 36 44 00 e8 05 f3 00 00 8b b3 08 01 00 00 <31> c0 bf e4 36 44 00 e8 f3 f2 00 00 8b 83 e0 00 00 00 48 89 ee bf [ 667.986582][ T1044] RSP: 002b:00007ffc8278f430 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 667.998283][ T1044] RAX: 0000000000000000 RBX: 000000000000000b RCX: 0000000000411d31 [ 668.009427][ T1044] RDX: 0000000000000000 RSI: 0000000000741b10 RDI: 000000000000000a [ 668.020555][ T1044] RBP: 0000000000000000 R08: 000000000007e63f R09: 000000000007e63f [ 668.031837][ T1044] R10: 00007ffc8278f360 R11: 0000000000000293 R12: 0000000000000000 [ 668.042983][ T1044] R13: 0000000000000001 R14: 00000000000001b7 R15: 0000000000000002 [ 668.054248][ T1044] INFO: task syz-executor.2:22694 blocked for more than 140 seconds. [ 668.068466][ T1044] Not tainted 5.0.0-rc7-next-20190222 #41 [ 668.077186][ T1044] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 668.090780][ T1044] syz-executor.2 D28600 22694 7709 0x00000004 [ 668.099331][ T1044] Call Trace: [ 668.102650][ T1044] __schedule+0x817/0x1cc0 [ 668.111432][ T1044] ? __sched_text_start+0x8/0x8 [ 668.119187][ T1044] ? mark_held_locks+0xf0/0xf0 [ 668.123977][ T1044] ? debug_smp_processor_id+0x3c/0x280 [ 668.133556][ T1044] schedule+0x92/0x180 [ 668.139870][ T1044] schedule_timeout+0x8ca/0xfd0 [ 668.148875][ T1044] ? wait_for_completion+0x294/0x440 [ 668.154184][ T1044] ? find_held_lock+0x35/0x130 [ 668.161273][ T1044] ? usleep_range+0x170/0x170 [ 668.170165][ T1044] ? kasan_check_write+0x14/0x20 [ 668.177323][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 668.182566][ T1044] ? wait_for_completion+0x294/0x440 [ 668.192063][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 668.199619][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 668.209254][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 668.214308][ T1044] ? kasan_check_read+0x11/0x20 [ 668.222397][ T1044] wait_for_completion+0x29c/0x440 [ 668.231933][ T1044] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 668.240821][ T1044] ? __call_srcu+0x3a8/0xcc0 [ 668.249634][ T1044] ? wake_up_q+0xf0/0xf0 [ 668.253924][ T1044] __synchronize_srcu+0x197/0x250 [ 668.261271][ T1044] ? call_srcu+0x10/0x10 [ 668.269780][ T1044] ? rcu_gp_is_expedited+0xb0/0xb0 [ 668.277218][ T1044] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 668.282963][ T1044] ? ktime_get_mono_fast_ns+0x178/0x200 [ 668.292800][ T1044] synchronize_srcu+0x2dc/0x3e8 [ 668.299961][ T1044] mmu_notifier_unregister+0x2cf/0x440 [ 668.309628][ T1044] kvm_put_kvm+0x553/0xc70 [ 668.314093][ T1044] ? kvm_vm_release+0x60/0x60 [ 668.321077][ T1044] kvm_vcpu_release+0x7b/0xa0 [ 668.330056][ T1044] __fput+0x2e5/0x8d0 [ 668.334090][ T1044] ____fput+0x16/0x20 [ 668.340481][ T1044] task_work_run+0x14a/0x1c0 [ 668.349987][ T1044] exit_to_usermode_loop+0x273/0x2c0 [ 668.357580][ T1044] do_syscall_64+0x52d/0x610 [ 668.362199][ T1044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 668.372253][ T1044] RIP: 0033:0x457e29 [ 668.378500][ T1044] Code: Bad RIP value. [ 668.382584][ T1044] RSP: 002b:00007effb5e5fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 668.397136][ T1044] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000457e29 [ 668.409379][ T1044] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 668.420552][ T1044] RBP: 000000000073c220 R08: 0000000000000000 R09: 0000000000000000 [ 668.431783][ T1044] R10: 0000000000000000 R11: 0000000000000246 R12: 00007effb5e606d4 [ 668.443066][ T1044] R13: 00000000004c0d61 R14: 00000000004d2bb8 R15: 00000000ffffffff [ 668.454230][ T1044] INFO: task syz-executor.1:22660 blocked for more than 140 seconds. [ 668.468469][ T1044] Not tainted 5.0.0-rc7-next-20190222 #41 [ 668.477738][ T1044] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 668.492523][ T1044] syz-executor.1 D28240 22660 7707 0x00000004 [ 668.501154][ T1044] Call Trace: [ 668.508738][ T1044] __schedule+0x817/0x1cc0 [ 668.513187][ T1044] ? __sched_text_start+0x8/0x8 [ 668.520369][ T1044] ? mark_held_locks+0xf0/0xf0 [ 668.529390][ T1044] ? debug_smp_processor_id+0x3c/0x280 [ 668.537098][ T1044] schedule+0x92/0x180 [ 668.541189][ T1044] schedule_timeout+0x8ca/0xfd0 [ 668.550270][ T1044] ? wait_for_completion+0x294/0x440 [ 668.557773][ T1044] ? find_held_lock+0x35/0x130 [ 668.562567][ T1044] ? usleep_range+0x170/0x170 [ 668.573443][ T1044] ? kasan_check_write+0x14/0x20 [ 668.580615][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 668.589953][ T1044] ? wait_for_completion+0x294/0x440 [ 668.597723][ T1044] ? _raw_spin_unlock_irq+0x28/0x90 [ 668.602946][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 668.613208][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 668.620529][ T1044] ? kasan_check_read+0x11/0x20 [ 668.629563][ T1044] wait_for_completion+0x29c/0x440 [ 668.636978][ T1044] ? wait_for_completion_interruptible+0x4b0/0x4b0 [ 668.643539][ T1044] ? wake_up_q+0xf0/0xf0 [ 668.652144][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 668.659753][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 668.668901][ T1044] ? kasan_check_read+0x11/0x20 [ 668.673782][ T1044] __flush_work+0x4ab/0x8a0 [ 668.680516][ T1044] ? insert_work+0x3a0/0x3a0 [ 668.689212][ T1044] ? init_pwq+0x360/0x360 [ 668.693582][ T1044] ? flush_delayed_work+0x74/0x180 [ 668.700933][ T1044] ? fsnotify_wait_marks_destroyed+0x15/0x17 [ 668.711356][ T1044] ? flush_delayed_work+0x74/0x180 [ 668.718687][ T1044] ? idr_callback.cold+0x67/0x67 [ 668.723645][ T1044] ? lockdep_hardirqs_on+0x418/0x5d0 [ 668.734274][ T1044] ? trace_hardirqs_on+0x67/0x230 [ 668.742421][ T1044] ? idr_callback.cold+0x67/0x67 [ 668.751465][ T1044] flush_delayed_work+0xb7/0x180 [ 668.758657][ T1044] fsnotify_wait_marks_destroyed+0x15/0x17 [ 668.768631][ T1044] fsnotify_destroy_group+0x14d/0x330 [ 668.774052][ T1044] ? do_raw_spin_unlock+0x57/0x270 [ 668.781391][ T1044] ? fsnotify_put_group+0x390/0x390 [ 668.790723][ T1044] ? _raw_spin_unlock+0x2d/0x50 [ 668.797894][ T1044] ? locks_remove_file+0x2de/0x460 [ 668.803055][ T1044] ? fcntl_setlk+0xcd0/0xcd0 [ 668.812943][ T1044] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 668.821433][ T1044] ? idr_callback.cold+0x67/0x67 [ 668.830496][ T1044] inotify_release+0x37/0x50 [ 668.837317][ T1044] __fput+0x2e5/0x8d0 [ 668.841327][ T1044] ____fput+0x16/0x20 [ 668.849568][ T1044] task_work_run+0x14a/0x1c0 [ 668.854193][ T1044] exit_to_usermode_loop+0x273/0x2c0 [ 668.861707][ T1044] do_syscall_64+0x52d/0x610 [ 668.871366][ T1044] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 668.879635][ T1044] RIP: 0033:0x411d31 [ 668.883553][ T1044] Code: be b3 34 01 00 00 31 c0 bf bb 36 44 00 e8 17 f3 00 00 8b b3 30 01 00 00 31 c0 bf d0 36 44 00 e8 05 f3 00 00 8b b3 08 01 00 00 <31> c0 bf e4 36 44 00 e8 f3 f2 00 00 8b 83 e0 00 00 00 48 89 ee bf [ 668.913977][ T1044] RSP: 002b:00007ffca42b9740 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 668.922729][ T1044] RAX: 0000000000000000 RBX: 0000000000000005 RCX: 0000000000411d31 [ 668.936934][ T1044] RDX: 0000000000000000 RSI: 00000000007415d8 RDI: 0000000000000004 [ 668.948312][ T1044] RBP: 0000000000000000 R08: 000000000007e6bb R09: 000000000007e6bb [ 668.959564][ T1044] R10: 00007ffca42b9670 R11: 0000000000000293 R12: 0000000000000000 [ 668.970717][ T1044] R13: 0000000000000001 R14: 000000000000027d R15: 0000000000000001 [ 668.982225][ T1044] [ 668.982225][ T1044] Showing all locks held in the system: [ 668.993243][ T1044] 3 locks held by kworker/1:0/17: [ 669.002408][ T1044] 2 locks held by kworker/u4:3/33: [ 669.010861][ T1044] #0: 0000000068022fcb ((wq_completion)"events_unbound"){+.+.}, at: process_one_work+0x87e/0x1790 [ 669.027697][ T1044] #1: 00000000099598bf (connector_reaper_work){+.+.}, at: process_one_work+0x8b4/0x1790 [ 669.039772][ T1044] 1 lock held by khungtaskd/1044: [ 669.050898][ T1044] #0: 0000000010ae7174 (rcu_read_lock){....}, at: debug_show_all_locks+0x5f/0x27e [ 669.062421][ T1044] 1 lock held by khugepaged/1051: [ 669.071569][ T1044] #0: 0000000075829e5c (pcpu_drain_mutex){+.+.}, at: drain_all_pages+0x4d/0x590 [ 669.083078][ T1044] 1 lock held by rsyslogd/7577: [ 669.092178][ T1044] #0: 00000000a8677577 (&f->f_pos_lock){+.+.}, at: __fdget_pos+0xee/0x110 [ 669.103012][ T1044] 2 locks held by getty/7667: [ 669.111805][ T1044] #0: 000000003e689824 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.122973][ T1044] #1: 00000000b871439c (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.141463][ T1044] 2 locks held by getty/7668: [ 669.146492][ T1044] #0: 00000000282ce549 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.161662][ T1044] #1: 00000000af891540 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.171547][ T1044] 2 locks held by getty/7669: [ 669.182226][ T1044] #0: 000000009af5bb0b (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.191498][ T1044] #1: 00000000b5daacea (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.207107][ T1044] 2 locks held by getty/7670: [ 669.211795][ T1044] #0: 000000000a23fad4 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.223764][ T1044] #1: 000000004ae6b193 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.239402][ T1044] 2 locks held by getty/7671: [ 669.244093][ T1044] #0: 00000000da46a338 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.253228][ T1044] #1: 0000000048a89bbc (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.269558][ T1044] 2 locks held by getty/7672: [ 669.274256][ T1044] #0: 00000000a07ae778 (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.284330][ T1044] #1: 00000000d11cd060 (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.299933][ T1044] 2 locks held by getty/7673: [ 669.304790][ T1044] #0: 000000005fbce72a (&tty->ldisc_sem){++++}, at: ldsem_down_read+0x33/0x40 [ 669.313759][ T1044] #1: 000000001f2ec96e (&ldata->atomic_read_lock){+.+.}, at: n_tty_read+0x232/0x1b70 [ 669.329177][ T1044] 2 locks held by kworker/u4:5/7946: [ 669.335581][ T1044] #0: 0000000068022fcb ((wq_completion)"events_unbound"){+.+.}, at: process_one_work+0x87e/0x1790 [ 669.351152][ T1044] #1: 0000000075da6097 ((reaper_work).work){+.+.}, at: process_one_work+0x8b4/0x1790 [ 669.362062][ T1044] 1 lock held by syz-executor.2/8549: [ 669.372922][ T1044] #0: 0000000089e9bcbd (rcu_state.exp_mutex){+.+.}, at: synchronize_rcu_expedited+0x4ab/0x5b0 [ 669.384386][ T1044] 1 lock held by syz-executor.2/8567: [ 669.396468][ T1044] #0: 0000000089e9bcbd (rcu_state.exp_mutex){+.+.}, at: synchronize_rcu_expedited+0x26f/0x5b0 [ 669.410812][ T1044] [ 669.413161][ T1044] ============================================= [ 669.413161][ T1044] [ 669.423738][ T1044] NMI backtrace for cpu 0 [ 669.428178][ T1044] CPU: 0 PID: 1044 Comm: khungtaskd Not tainted 5.0.0-rc7-next-20190222 #41 [ 669.436857][ T1044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 669.446918][ T1044] Call Trace: [ 669.450329][ T1044] dump_stack+0x172/0x1f0 [ 669.454706][ T1044] nmi_cpu_backtrace.cold+0x63/0xa4 [ 669.459963][ T1044] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 669.465615][ T1044] nmi_trigger_cpumask_backtrace+0x1be/0x236 [ 669.471609][ T1044] arch_trigger_cpumask_backtrace+0x14/0x20 [ 669.477513][ T1044] watchdog+0x9b2/0xeb0 [ 669.481688][ T1044] kthread+0x357/0x430 [ 669.485769][ T1044] ? reset_hung_task_detector+0x30/0x30 [ 669.491385][ T1044] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 669.497640][ T1044] ret_from_fork+0x3a/0x50 [ 669.502326][ T1044] Sending NMI from CPU 0 to CPUs 1: [ 669.508169][ C1] NMI backtrace for cpu 1 [ 669.508176][ C1] CPU: 1 PID: 17 Comm: kworker/1:0 Not tainted 5.0.0-rc7-next-20190222 #41 [ 669.508183][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 669.508187][ C1] Workqueue: events rtc_timer_do_work [ 669.508195][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1/0x50 [ 669.508207][ C1] Code: 25 d4 c7 e6 08 41 bc f4 ff ff ff e8 4d 5e ea ff 48 c7 05 be c7 e6 08 00 00 00 00 e9 a4 e9 ff ff 90 90 90 90 90 90 90 90 90 55 <48> 89 e5 48 8b 75 08 65 48 8b 04 25 00 ee 01 00 65 8b 15 e8 97 91 [ 669.508211][ C1] RSP: 0018:ffff8880aa2cf9d0 EFLAGS: 00000093 [ 669.508219][ C1] RAX: ffff8880aa2b6480 RBX: 0000000000000000 RCX: ffffffff8175be85 [ 669.508225][ C1] RDX: 0000000000000000 RSI: ffffffff8175bed1 RDI: 0000000000000005 [ 669.508231][ C1] RBP: ffff8880aa2cfa10 R08: ffff8880aa2b6480 R09: ffffed1013daea55 [ 669.508236][ C1] R10: ffffed1013daea54 R11: ffff88809ed752a3 R12: ffff88809ed752a0 [ 669.508242][ C1] R13: ffffffff8154f08e R14: ffffffff870b3e2b R15: 0000000000000000 [ 669.508248][ C1] FS: 0000000000000000(0000) GS:ffff8880ae900000(0000) knlGS:0000000000000000 [ 669.508253][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 669.508258][ C1] CR2: 000000000217fe90 CR3: 0000000092664000 CR4: 00000000001426e0 [ 669.508262][ C1] Call Trace: [ 669.508265][ C1] ? trace_hardirqs_on+0x4e/0x230 [ 669.508270][ C1] ? kasan_check_read+0x11/0x20 [ 669.508274][ C1] _raw_spin_unlock_irqrestore+0x6b/0xe0 [ 669.508278][ C1] __wake_up_common_lock+0xfe/0x190 [ 669.508282][ C1] ? __wake_up_common+0x620/0x620 [ 669.508286][ C1] ? mark_held_locks+0xa4/0xf0 [ 669.508290][ C1] ? lockdep_hardirqs_on+0x418/0x5d0 [ 669.508294][ C1] ? trace_hardirqs_on+0x67/0x230 [ 669.508298][ C1] ? kasan_check_read+0x11/0x20 [ 669.508301][ C1] __wake_up+0xe/0x10 [ 669.508305][ C1] rtc_handle_legacy_irq+0x8f/0xd0 [ 669.508309][ C1] rtc_uie_update_irq+0x20/0x30 [ 669.508313][ C1] ? rtc_aie_update_irq+0x30/0x30 [ 669.508317][ C1] rtc_timer_do_work+0x1cc/0xeb0 [ 669.508321][ C1] ? mark_held_locks+0xf0/0xf0 [ 669.508325][ C1] ? kasan_check_read+0x11/0x20 [ 669.508329][ C1] ? rtc_irq_set_freq+0x3a0/0x3a0 [ 669.508333][ C1] ? perf_trace_lock+0x510/0x510 [ 669.508337][ C1] process_one_work+0x98e/0x1790 [ 669.508341][ C1] ? rtc_irq_set_freq+0x3a0/0x3a0 [ 669.508345][ C1] ? process_one_work+0x98e/0x1790 [ 669.508349][ C1] ? pwq_dec_nr_in_flight+0x320/0x320 [ 669.508353][ C1] ? lock_acquire+0x16f/0x3f0 [ 669.508357][ C1] worker_thread+0x98/0xe40 [ 669.508361][ C1] kthread+0x357/0x430 [ 669.508365][ C1] ? process_one_work+0x1790/0x1790 [ 669.508369][ C1] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 669.508373][ C1] ret_from_fork+0x3a/0x50 [ 669.516771][ T1044] Kernel panic - not syncing: hung_task: blocked tasks [ 669.780403][ T1044] CPU: 0 PID: 1044 Comm: khungtaskd Not tainted 5.0.0-rc7-next-20190222 #41 [ 669.789080][ T1044] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 669.799140][ T1044] Call Trace: [ 669.802441][ T1044] dump_stack+0x172/0x1f0 [ 669.806794][ T1044] panic+0x2cb/0x65c [ 669.810701][ T1044] ? __warn_printk+0xf3/0xf3 [ 669.815308][ T1044] ? lapic_can_unplug_cpu.cold+0x38/0x38 [ 669.820954][ T1044] ? ___preempt_schedule+0x16/0x18 [ 669.826103][ T1044] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 669.832267][ T1044] ? nmi_trigger_cpumask_backtrace+0x1fa/0x236 [ 669.838437][ T1044] ? nmi_trigger_cpumask_backtrace+0x204/0x236 [ 669.844606][ T1044] ? nmi_trigger_cpumask_backtrace+0x19e/0x236 [ 669.850774][ T1044] watchdog+0x9c3/0xeb0 [ 669.854955][ T1044] kthread+0x357/0x430 [ 669.859058][ T1044] ? reset_hung_task_detector+0x30/0x30 [ 669.864620][ T1044] ? kthread_cancel_delayed_work_sync+0x20/0x20 [ 669.870873][ T1044] ret_from_fork+0x3a/0x50 [ 669.876351][ T1044] Kernel Offset: disabled [ 669.880684][ T1044] Rebooting in 86400 seconds..