[ 29.304377] audit: type=1800 audit(1544796428.874:28): pid=5938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="ssh" dev="sda1" ino=2417 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. [ 30.245152] audit: type=1800 audit(1544796429.854:29): pid=5938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rc.local" dev="sda1" ino=2432 res=0 [ 30.274624] audit: type=1800 audit(1544796429.854:30): pid=5938 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="rmnologin" dev="sda1" ino=2423 res=0 [....] startpar: service(s) returned failure: ssh ...[?25l[?1c7[FAIL8[?25h[?0c failed! Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 33.912943] sshd (6098) used greatest stack depth: 15600 bytes left Warning: Permanently added '10.128.0.25' (ECDSA) to the list of known hosts. 2018/12/14 14:07:20 fuzzer started 2018/12/14 14:07:22 dialing manager at 10.128.0.26:32849 2018/12/14 14:07:22 syscalls: 1 2018/12/14 14:07:22 code coverage: enabled 2018/12/14 14:07:22 comparison tracing: enabled 2018/12/14 14:07:22 setuid sandbox: enabled 2018/12/14 14:07:22 namespace sandbox: enabled 2018/12/14 14:07:22 Android sandbox: /sys/fs/selinux/policy does not exist 2018/12/14 14:07:22 fault injection: enabled 2018/12/14 14:07:22 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2018/12/14 14:07:22 net packet injection: enabled 2018/12/14 14:07:22 net device setup: enabled 14:10:17 executing program 0: pipe2$9p(&(0x7f00000000c0), 0x0) mount$9p_fd(0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write$P9_RLERROR(0xffffffffffffffff, 0x0, 0x0) write$P9_ROPEN(r0, 0x0, 0x0) [ 218.184682] IPVS: ftp: loaded support on port[0] = 21 14:10:17 executing program 1: socket$kcm(0x10, 0x0, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r1, &(0x7f0000000040), 0x9b) [ 218.436023] IPVS: ftp: loaded support on port[0] = 21 14:10:18 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x0, 0x0) r1 = epoll_create1(0x0) r2 = gettid() kcmp$KCMP_EPOLL_TFD(r2, r2, 0x7, r0, &(0x7f0000000000)={r1}) [ 218.739053] IPVS: ftp: loaded support on port[0] = 21 14:10:18 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000380)='net/rt_acct\x00') socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00\b\x00') r2 = getpid() capset(&(0x7f00000003c0)={0x0, r2}, &(0x7f0000000400)) uname(&(0x7f0000000600)=""/84) fstatfs(r1, &(0x7f0000000440)=""/100) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000380)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1001}, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x4000, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x2200, 0x0) r4 = epoll_create1(0x0) write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0x0, 0x7, {0x0, 0x4, 0x4, 0xbeaa}}, 0x20) fcntl$setlease(r3, 0x400, 0x1) r5 = syz_open_dev$vcsn(&(0x7f0000000340)='/dev/vcs#\x00', 0x7b, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000140)={0x2000}) request_key(&(0x7f0000000780)="dc140aac1bfbd34b9aedea8ec5df07a52fd7e600ff84fa2576f6239a49508b520b971e7838d8b189fa73abdaf8a2fd391ebbfedcb5e6d0814af7c5e1301a53a001fd94bb744d98f294529d50160f3ec7c27b88d9934c5fdd69ca", &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000280)='\x00', 0x0) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) ioctl$sock_inet_tcp_SIOCATMARK(r5, 0x8905, &(0x7f0000000080)) close(r3) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000006c0)=0x6) sendmsg$alg(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000980)="673a6140ea2fe4ec1078184a643e001946be59874b8ab0552b5ecbe34aa05c73294e3bca9e1cfd03847db0024125ef8904116d798d621703f7e41da35c6cd28fc7f20608006d90e2c2680356cee1b1ace07036628e946e536c0d4b1fd5be7017100ba05746308d968064fa4a665b23d52f07ad62129e22fb37edd7f27d853ccd4b7b2a5b88b2b8cba6e6953aa26df430371f1f48d98384669a3b5da95fa8abd04bf97648ca313a5822030a85a29be089a3eb0857c3a0", 0xb6}], 0x1}, 0x4000001) syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') epoll_create1(0x80000) [ 219.161974] IPVS: ftp: loaded support on port[0] = 21 14:10:19 executing program 4: r0 = socket$inet6(0xa, 0x1000000000003, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000140)={"62726964676530000000008000", &(0x7f0000000100)=ANY=[@ANYBLOB="0e0000000000000000e0"]}) [ 219.725303] IPVS: ftp: loaded support on port[0] = 21 [ 219.857787] bridge0: port 1(bridge_slave_0) entered blocking state [ 219.864264] bridge0: port 1(bridge_slave_0) entered disabled state [ 219.886350] device bridge_slave_0 entered promiscuous mode [ 220.009992] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.034746] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.051648] device bridge_slave_1 entered promiscuous mode 14:10:19 executing program 5: r0 = socket$inet6(0xa, 0x1000000000003, 0x6) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000140)={"62726964676530000000008000", &(0x7f0000000100)=ANY=[@ANYBLOB="1200000000000000000000200000000002"]}) [ 220.157784] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 220.311733] IPVS: ftp: loaded support on port[0] = 21 [ 220.315843] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 220.421858] bridge0: port 1(bridge_slave_0) entered blocking state [ 220.451629] bridge0: port 1(bridge_slave_0) entered disabled state [ 220.466027] device bridge_slave_0 entered promiscuous mode [ 220.587736] bridge0: port 2(bridge_slave_1) entered blocking state [ 220.596298] bridge0: port 2(bridge_slave_1) entered disabled state [ 220.610786] device bridge_slave_1 entered promiscuous mode [ 220.693880] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 220.737219] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 220.844772] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 220.864928] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 221.004071] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.014909] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.034691] device bridge_slave_0 entered promiscuous mode [ 221.202189] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.212140] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.225104] device bridge_slave_1 entered promiscuous mode [ 221.267921] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 221.359682] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 221.406332] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 221.521811] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 221.535820] team0: Port device team_slave_0 added [ 221.541512] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 221.556798] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 221.563830] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 221.590822] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.620357] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.628008] device bridge_slave_0 entered promiscuous mode [ 221.659316] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 221.676996] team0: Port device team_slave_1 added [ 221.695113] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 221.706808] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 221.762589] bridge0: port 2(bridge_slave_1) entered blocking state [ 221.795882] bridge0: port 2(bridge_slave_1) entered disabled state [ 221.803377] device bridge_slave_1 entered promiscuous mode [ 221.815335] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 221.865096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 221.875830] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 221.938593] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 221.956365] bridge0: port 1(bridge_slave_0) entered blocking state [ 221.962812] bridge0: port 1(bridge_slave_0) entered disabled state [ 221.978443] device bridge_slave_0 entered promiscuous mode [ 221.999770] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 222.033214] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 222.096569] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 222.103992] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.118637] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.126836] device bridge_slave_1 entered promiscuous mode [ 222.136403] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 222.143756] team0: Port device team_slave_0 added [ 222.172234] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 222.188896] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 222.202794] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 222.221156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 222.256639] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 222.283885] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 222.309937] team0: Port device team_slave_1 added [ 222.322716] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 222.350500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 222.360524] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 222.382251] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 222.409431] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 222.437269] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 222.444871] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 222.464094] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 222.492377] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 222.503593] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 222.520047] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 222.529632] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 222.619933] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 222.655698] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 222.678561] bridge0: port 1(bridge_slave_0) entered blocking state [ 222.698178] bridge0: port 1(bridge_slave_0) entered disabled state [ 222.713676] device bridge_slave_0 entered promiscuous mode [ 222.726467] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 222.742774] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 222.766289] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 222.779187] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 222.794217] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 222.819057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 222.846098] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 222.869790] bridge0: port 2(bridge_slave_1) entered blocking state [ 222.882030] bridge0: port 2(bridge_slave_1) entered disabled state [ 222.890477] device bridge_slave_1 entered promiscuous mode [ 222.904075] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 222.920968] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 222.946539] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 222.962389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 222.986918] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 223.001579] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 223.025417] team0: Port device team_slave_0 added [ 223.084121] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 223.157049] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 223.166268] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 223.173687] team0: Port device team_slave_1 added [ 223.285784] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 223.357499] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 223.364367] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 223.373426] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 223.392944] team0: Port device team_slave_0 added [ 223.415325] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 223.429755] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 223.438201] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 223.498517] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 223.522274] team0: Port device team_slave_1 added [ 223.538795] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 223.546296] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 223.554263] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 223.593731] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 223.615429] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 223.623077] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 223.640683] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 223.676177] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 223.685201] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 223.693139] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 223.741130] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 223.776033] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 223.783370] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 223.793597] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 223.830640] bridge0: port 2(bridge_slave_1) entered blocking state [ 223.837220] bridge0: port 2(bridge_slave_1) entered forwarding state [ 223.844193] bridge0: port 1(bridge_slave_0) entered blocking state [ 223.850636] bridge0: port 1(bridge_slave_0) entered forwarding state [ 223.871930] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 223.891092] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 223.904021] team0: Port device team_slave_0 added [ 223.930476] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 223.964479] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 223.985869] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 224.048777] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 224.066569] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 224.082758] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 224.113824] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 224.123140] team0: Port device team_slave_1 added [ 224.245094] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 224.300045] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 224.360647] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 224.388313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 224.399960] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 224.412552] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 224.428078] team0: Port device team_slave_0 added [ 224.475593] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 224.482747] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 224.496160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 224.524813] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 224.533694] team0: Port device team_slave_1 added [ 224.561383] bridge0: port 2(bridge_slave_1) entered blocking state [ 224.567880] bridge0: port 2(bridge_slave_1) entered forwarding state [ 224.574605] bridge0: port 1(bridge_slave_0) entered blocking state [ 224.580977] bridge0: port 1(bridge_slave_0) entered forwarding state [ 224.606371] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 224.640436] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 224.654973] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 224.671151] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 224.713310] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 224.723544] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 224.739731] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 224.835834] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 224.842840] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 224.865394] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 225.005277] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 225.012443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 225.026194] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 225.168255] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 225.194984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 225.211181] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 225.251427] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.257865] bridge0: port 2(bridge_slave_1) entered forwarding state [ 225.264513] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.270946] bridge0: port 1(bridge_slave_0) entered forwarding state [ 225.306031] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 225.315752] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 225.330990] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 225.731222] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.737660] bridge0: port 2(bridge_slave_1) entered forwarding state [ 225.744343] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.750789] bridge0: port 1(bridge_slave_0) entered forwarding state [ 225.783134] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 226.149899] bridge0: port 2(bridge_slave_1) entered blocking state [ 226.156344] bridge0: port 2(bridge_slave_1) entered forwarding state [ 226.163005] bridge0: port 1(bridge_slave_0) entered blocking state [ 226.169436] bridge0: port 1(bridge_slave_0) entered forwarding state [ 226.179504] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 226.324790] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 226.341226] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 226.613264] bridge0: port 2(bridge_slave_1) entered blocking state [ 226.619723] bridge0: port 2(bridge_slave_1) entered forwarding state [ 226.626442] bridge0: port 1(bridge_slave_0) entered blocking state [ 226.632806] bridge0: port 1(bridge_slave_0) entered forwarding state [ 226.675857] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 227.344746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 229.080830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.518348] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 229.588278] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.950349] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 229.965087] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 229.974008] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 230.060236] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 230.285919] 8021q: adding VLAN 0 to HW filter on device bond0 [ 230.416414] 8021q: adding VLAN 0 to HW filter on device team0 [ 230.605430] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 230.611720] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 230.626987] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 230.797940] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 230.971605] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.103568] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.287931] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 231.299217] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.309893] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.404907] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.491102] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 231.607432] 8021q: adding VLAN 0 to HW filter on device bond0 [ 231.815907] 8021q: adding VLAN 0 to HW filter on device team0 [ 231.870134] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 231.924096] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 231.945140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 231.960062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.989569] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 232.325616] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 232.331810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 232.345762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 232.432861] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 232.451709] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 232.475414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 232.489243] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.815110] 8021q: adding VLAN 0 to HW filter on device team0 [ 232.868492] 8021q: adding VLAN 0 to HW filter on device team0 14:10:32 executing program 0: 14:10:33 executing program 0: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r0, 0x0, 0x0) ppoll(&(0x7f00000000c0)=[{r0}], 0x1, 0x0, &(0x7f00000001c0)={0x9}, 0x8) 14:10:33 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bind$alg(r0, &(0x7f00000002c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis256-aesni\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55b062950b86bc01abc8464d4f8a906151", 0x20) r2 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) readv(r2, &(0x7f00000007c0)=[{&(0x7f00000001c0)=""/104, 0x34910}], 0x1) 14:10:33 executing program 1: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200)) 14:10:33 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f00000002c0)=""/91, 0x5b}], 0x1}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/anycast6\x00') preadv(r0, &(0x7f0000000140), 0x100000000000024e, 0x0) 14:10:34 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0x5) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) r2 = accept4(r0, 0x0, 0x0, 0x0) r3 = socket$l2tp(0x18, 0x1, 0x1) ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0a5c2d023c126285718070") setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000040)={0x0, 0x200}, 0x10) sendmmsg$alg(r2, &(0x7f0000002c40)=[{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000100)=':', 0x1}], 0x1}], 0x1, 0x0) 14:10:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x20, 0x1c, 0x1, 0x0, 0x0, {0x2}, [@typed={0xc, 0x1, @u64}]}, 0x20}}, 0x0) 14:10:34 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ppoll(&(0x7f00000000c0)=[{r0}], 0x1, 0x0, 0x0, 0x0) [ 234.647854] netlink: 'syz-executor1': attribute type 1 has an invalid length. 14:10:34 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) [ 235.114583] hrtimer: interrupt took 44147 ns 14:10:34 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000380)='net/rt_acct\x00') socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00\b\x00') r2 = getpid() capset(&(0x7f00000003c0)={0x0, r2}, &(0x7f0000000400)) uname(&(0x7f0000000600)=""/84) fstatfs(r1, &(0x7f0000000440)=""/100) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000380)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1001}, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x4000, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x2200, 0x0) r4 = epoll_create1(0x0) write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0x0, 0x7, {0x0, 0x4, 0x4, 0xbeaa}}, 0x20) fcntl$setlease(r3, 0x400, 0x1) r5 = syz_open_dev$vcsn(&(0x7f0000000340)='/dev/vcs#\x00', 0x7b, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000140)={0x2000}) request_key(&(0x7f0000000780)="dc140aac1bfbd34b9aedea8ec5df07a52fd7e600ff84fa2576f6239a49508b520b971e7838d8b189fa73abdaf8a2fd391ebbfedcb5e6d0814af7c5e1301a53a001fd94bb744d98f294529d50160f3ec7c27b88d9934c5fdd69ca", &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000280)='\x00', 0x0) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) ioctl$sock_inet_tcp_SIOCATMARK(r5, 0x8905, &(0x7f0000000080)) close(r3) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000006c0)=0x6) sendmsg$alg(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000980)="673a6140ea2fe4ec1078184a643e001946be59874b8ab0552b5ecbe34aa05c73294e3bca9e1cfd03847db0024125ef8904116d798d621703f7e41da35c6cd28fc7f20608006d90e2c2680356cee1b1ace07036628e946e536c0d4b1fd5be7017100ba05746308d968064fa4a665b23d52f07ad62129e22fb37edd7f27d853ccd4b7b2a5b88b2b8cba6e6953aa26df430371f1f48d98384669a3b5da95fa8abd04bf97648ca313a5822030a85a29be089a3eb0857c3a0", 0xb6}], 0x1}, 0x4000001) syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') epoll_create1(0x80000) 14:10:35 executing program 4: mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = memfd_create(&(0x7f0000000000)='keyring]selfGPLposix_acl_access.self\\%]em1\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x4d) readv(r1, &(0x7f0000002640)=[{&(0x7f0000001640)=""/4096, 0x1000}], 0x1) 14:10:35 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x0, 0x0) 14:10:35 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000000)={0x31, 0x6, 0x0, {0x0, 0x0, 0x8, 0x0, 'group_id'}}, 0x31) 14:10:35 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:35 executing program 0: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x71, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000980)=[{0x0, 0x0, 0xcb9}]) 14:10:35 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:35 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2203, &(0x7f0000000280)) 14:10:35 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4e23, 0x3fe, @loopback}, 0x1c) r1 = syz_open_procfs(0x0, &(0x7f0000000340)="6e65742f6970365f666c6f776c6162656c006ec03114893458edc1c9d8dc4b0d8dae982640d0e6bb51d7ff596e1c92de0eaa319198e91f0a4d43697c2bcd77f017365af160acf33bd66432ebe50c0e8bdaf7fc39feff34ef27a1397193227f4733c145e66536c6c275112520e72b3097843b5cdac480c3b1384ebf592505f88589fcd2d7") sendfile(r0, r1, &(0x7f00000000c0), 0x401) 14:10:35 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2286, &(0x7f0000000280)) 14:10:35 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000380)='net/rt_acct\x00') socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/kcm\x00\b\x00') r2 = getpid() capset(&(0x7f00000003c0)={0x0, r2}, &(0x7f0000000400)) uname(&(0x7f0000000600)=""/84) fstatfs(r1, &(0x7f0000000440)=""/100) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000380)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1001}, 0x0) openat$audio(0xffffffffffffff9c, &(0x7f0000000140)='/dev/audio\x00', 0x4000, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x2200, 0x0) r4 = epoll_create1(0x0) write$FUSE_IOCTL(r0, &(0x7f0000000040)={0x20, 0x0, 0x7, {0x0, 0x4, 0x4, 0xbeaa}}, 0x20) fcntl$setlease(r3, 0x400, 0x1) r5 = syz_open_dev$vcsn(&(0x7f0000000340)='/dev/vcs#\x00', 0x7b, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000140)={0x2000}) request_key(&(0x7f0000000780)="dc140aac1bfbd34b9aedea8ec5df07a52fd7e600ff84fa2576f6239a49508b520b971e7838d8b189fa73abdaf8a2fd391ebbfedcb5e6d0814af7c5e1301a53a001fd94bb744d98f294529d50160f3ec7c27b88d9934c5fdd69ca", &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000280)='\x00', 0x0) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) ioctl$sock_inet_tcp_SIOCATMARK(r5, 0x8905, &(0x7f0000000080)) close(r3) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000680)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f00000006c0)=0x6) sendmsg$alg(r1, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000980)="673a6140ea2fe4ec1078184a643e001946be59874b8ab0552b5ecbe34aa05c73294e3bca9e1cfd03847db0024125ef8904116d798d621703f7e41da35c6cd28fc7f20608006d90e2c2680356cee1b1ace07036628e946e536c0d4b1fd5be7017100ba05746308d968064fa4a665b23d52f07ad62129e22fb37edd7f27d853ccd4b7b2a5b88b2b8cba6e6953aa26df430371f1f48d98384669a3b5da95fa8abd04bf97648ca313a5822030a85a29be089a3eb0857c3a0", 0xb6}], 0x1}, 0x4000001) syz_genetlink_get_family_id$ipvs(&(0x7f00000002c0)='IPVS\x00') epoll_create1(0x80000) [ 235.602046] Dev loop0: unable to read RDB block 12 [ 235.613504] loop0: unable to read partition table [ 235.629833] loop0: partition table beyond EOD, truncated [ 235.640932] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) [ 235.720475] __loop_clr_fd: partition scan of loop0 failed (rc=-22) 14:10:35 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) r1 = syz_open_dev$amidi(&(0x7f0000000200)='/dev/amidi#\x00', 0x8, 0x80000) ioctl$DRM_IOCTL_VERSION(r1, 0xc0246400, 0x0) socket$xdp(0x2c, 0x3, 0x0) sendto$inet(r0, &(0x7f0000000000), 0x0, 0x200007fe, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000100)={0x4}) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000015c0)="766574683100000000ffffffffffef00", 0xb) setsockopt$inet6_int(r1, 0x29, 0x4e, &(0x7f0000000280)=0xfffffffffffffffc, 0x4) r2 = dup2(r0, r0) connect$bt_rfcomm(0xffffffffffffffff, &(0x7f0000000040)={0x1f, {0x3302, 0x5c, 0x8, 0x5, 0x400, 0x8}, 0xff}, 0xa) syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0xf513000000000000, 0x0, 0x404010}, 0xc, &(0x7f0000000400)={&(0x7f0000000840)=ANY=[@ANYBLOB="800128bd7000fedbdf250d0000001400020014d531422e0c42539f6416254840d70800080002000000fa2fbb71b9473808cf3351a02e0800070000000049001c0002000800039b030000000c0002"], 0x1}, 0x1, 0x0, 0x0, 0x840}, 0x8001) setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f00000008c0)={{0x5d, @loopback, 0x4e22, 0xfffffffffffffffb, 'rr\x00', 0x25, 0x6, 0x40}, {@multicast1, 0x4e23, 0x12000, 0x9, 0x95, 0x8}}, 0x44) r3 = socket(0xa, 0x80005, 0x0) ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000000)={'team0\x00', 0x892}) socket$inet6(0xa, 0x5, 0x0) ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000040)={"7465616d30000000000200000500", 0x79}) sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="6342e20f6c233337d5b40fc08e9151320730d68014f11a5d3aff2b1f8dbb3bae2b5c254068af6aed562e63a8e393e6c527de969b5a3b2b935fcaaf192c88ccb2d65e3d80f3679ab2868476239db13e200c634c9eb6b9f635aa0b466a48980b6cbbe4cf51ee5165f3b5349ea21563f86e5d1acab573c333214110f18a3b1a136c533719c2d10a69b2b1e32c6d0000000000000000000000"], 0x1}}, 0x44801) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000380), 0xfdf5) sendto$inet(r0, &(0x7f0000000000), 0x0, 0xc0, 0x0, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000180)={'\x00', {0x2, 0x4e20, @remote}}) getsockopt$inet_buf(r2, 0x0, 0x0, &(0x7f0000000340)=""/39, &(0x7f00000003c0)=0x27) clock_gettime(0xffffffffffffffff, &(0x7f0000000240)) 14:10:35 executing program 5: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2286, &(0x7f0000000280)) 14:10:35 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:35 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227d, &(0x7f0000000280)) [ 235.857713] Dev loop0: unable to read RDB block 12 [ 235.874742] loop0: unable to read partition table [ 235.890467] loop0: partition table beyond EOD, truncated 14:10:35 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ppoll(&(0x7f00000000c0)=[{r0}], 0x1, 0x0, &(0x7f00000001c0)={0x9}, 0x8) [ 235.936291] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) 14:10:35 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000180)={0x4}) mount(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0) [ 236.082290] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. 14:10:35 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5385, &(0x7f0000000280)) 14:10:35 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:35 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5385, &(0x7f0000000280)) 14:10:35 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227b, &(0x7f0000000280)) [ 236.236974] __loop_clr_fd: partition scan of loop0 failed (rc=-22) 14:10:36 executing program 5: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) rt_sigqueueinfo(0x0, 0x35, &(0x7f00000003c0)) getresgid(0x0, 0x0, 0x0) semget$private(0x0, 0x0, 0x0) 14:10:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:36 executing program 2: 14:10:36 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:36 executing program 4: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) io_setup(0x7, &(0x7f00000000c0)=0x0) io_submit(r1, 0x1, &(0x7f0000001840)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) 14:10:36 executing program 2: madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet(0x10, 0x3, 0xc) sendmsg(r1, &(0x7f0000011fc8)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="2400000002031f001cfffd946fa2830020200a000900010001e700000000a3a20404ff7e", 0x24}], 0x1}, 0x0) [ 236.500621] netlink: 4 bytes leftover after parsing attributes in process `syz-executor2'. 14:10:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:36 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) io_setup(0x0, 0x0) 14:10:36 executing program 4: socketpair$unix(0x1, 0x2000000003, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) set_robust_list(&(0x7f0000000180), 0x18) 14:10:36 executing program 5: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000000)=ANY=[@ANYBLOB="471f"]) ioctl$KVM_NMI(r3, 0xae9a) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000013000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:36 executing program 3: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) clock_nanosleep(0x0, 0x0, 0x0, &(0x7f0000000240)) 14:10:36 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:36 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28}, 0x28) 14:10:36 executing program 2: mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC]) 14:10:36 executing program 4: socketpair$unix(0x1, 0x2000000003, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) getpriority(0xffffffffffffffff, 0x0) 14:10:36 executing program 2: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f00000001c0), 0x10000020c) r3 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r3, 0x2402, 0x1f) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) 14:10:36 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:36 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:36 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28}, 0x28) 14:10:36 executing program 5: 14:10:36 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:36 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28}, 0x28) 14:10:36 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:36 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 3: 14:10:37 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:37 executing program 3: 14:10:37 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:37 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000000)=ANY=[@ANYBLOB="a3"]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000013000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:37 executing program 3: socketpair$unix(0x1, 0x2000000003, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) semctl$SETVAL(0x0, 0x0, 0x10, 0x0) 14:10:37 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:37 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:37 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x1, 0x0) r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) openat$full(0xffffffffffffff9c, 0x0, 0xc000, 0x0) clock_gettime(0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) mkdir(&(0x7f0000000500)='./file0\x00', 0x100) ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, 0x0) readv(r0, &(0x7f0000000040)=[{&(0x7f0000000640)=""/101, 0x65}, {&(0x7f00000006c0)=""/115, 0x73}], 0x2) 14:10:37 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:37 executing program 1: mkdirat(0xffffffffffffff9c, 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) [ 238.015645] mmap: syz-executor3 (7947) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. 14:10:37 executing program 1: mkdirat(0xffffffffffffff9c, 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:37 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:37 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:37 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000000)=ANY=[@ANYBLOB="a3"]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000013000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:37 executing program 1: mkdirat(0xffffffffffffff9c, 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:37 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:38 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/loop-control\x00', 0x1, 0x0) r1 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) openat$full(0xffffffffffffff9c, 0x0, 0xc000, 0x0) clock_gettime(0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r1) mkdir(&(0x7f0000000500)='./file0\x00', 0x100) ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, 0x0) readv(r0, &(0x7f0000000040)=[{&(0x7f0000000640)=""/101, 0x65}, {&(0x7f00000006c0)=""/115, 0x73}], 0x2) 14:10:38 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:38 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:38 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:38 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:38 executing program 2: 14:10:38 executing program 2: 14:10:38 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:38 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:38 executing program 3: 14:10:38 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:10:38 executing program 2: 14:10:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:38 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:38 executing program 3: 14:10:38 executing program 2: 14:10:38 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:38 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:38 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:38 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:38 executing program 3: 14:10:38 executing program 2: 14:10:38 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:38 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2282, &(0x7f0000000280)) 14:10:38 executing program 3: 14:10:38 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, 0x0, &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:38 executing program 2: 14:10:38 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:38 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:38 executing program 0: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:39 executing program 3: 14:10:39 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:39 executing program 2: 14:10:39 executing program 2: 14:10:39 executing program 0: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:39 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:39 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:39 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:39 executing program 3: 14:10:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:39 executing program 2: 14:10:39 executing program 3: 14:10:39 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:39 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:39 executing program 2: 14:10:39 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:39 executing program 3: 14:10:39 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:39 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:39 executing program 2: 14:10:39 executing program 3: 14:10:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:39 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 14:10:39 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:39 executing program 2: 14:10:39 executing program 3: 14:10:39 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:39 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:39 executing program 2: 14:10:39 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:39 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 14:10:39 executing program 3: 14:10:39 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:39 executing program 2: 14:10:39 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 14:10:40 executing program 3: 14:10:40 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:40 executing program 2: 14:10:40 executing program 4: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:40 executing program 3: 14:10:40 executing program 2: 14:10:40 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:40 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:40 executing program 3: 14:10:40 executing program 4: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:40 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:40 executing program 2: 14:10:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:40 executing program 3: 14:10:40 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:40 executing program 2: 14:10:40 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:40 executing program 3: 14:10:40 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:40 executing program 4: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:40 executing program 2: 14:10:40 executing program 3: 14:10:40 executing program 5: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:40 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:40 executing program 2: 14:10:40 executing program 3: 14:10:40 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode'}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:40 executing program 4: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:40 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:40 executing program 5: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:41 executing program 3: 14:10:41 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28}, 0x28) 14:10:41 executing program 2: 14:10:41 executing program 3: 14:10:41 executing program 4: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:41 executing program 5: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:41 executing program 2: 14:10:41 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28}, 0x28) 14:10:41 executing program 3: 14:10:41 executing program 2: 14:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:41 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:41 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:41 executing program 3: 14:10:41 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28}, 0x28) 14:10:41 executing program 2: 14:10:41 executing program 3: 14:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:41 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, 0x0, 0x0) 14:10:41 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:41 executing program 3: 14:10:41 executing program 2: 14:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:41 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:41 executing program 2: 14:10:41 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, 0x0, 0x0) 14:10:41 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:41 executing program 3: 14:10:41 executing program 5: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:41 executing program 2: 14:10:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:42 executing program 3: 14:10:42 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, 0x0, 0x0) 14:10:42 executing program 4: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:42 executing program 2: 14:10:42 executing program 0: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2282, &(0x7f0000000280)) 14:10:42 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:42 executing program 3: 14:10:42 executing program 2: 14:10:42 executing program 1: 14:10:42 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:42 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, 0x0) 14:10:42 executing program 3: 14:10:42 executing program 1: 14:10:42 executing program 2: 14:10:42 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:42 executing program 3: 14:10:42 executing program 0: 14:10:42 executing program 1: 14:10:42 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:42 executing program 2: 14:10:42 executing program 1: 14:10:42 executing program 0: 14:10:42 executing program 3: 14:10:42 executing program 1: 14:10:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:42 executing program 2: 14:10:42 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:43 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:43 executing program 3: 14:10:43 executing program 1: r0 = socket$inet(0x2, 0x3, 0x2) sendmmsg(r0, &(0x7f00000038c0)=[{{&(0x7f00000000c0)=@in={0x2, 0x0, @local}, 0x80, 0x0, 0x0, &(0x7f0000000500)=[{0xc}], 0xc}}], 0x1, 0x7ffff000) 14:10:43 executing program 2: time(&(0x7f0000005ac0)) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x102, 0x4) bind$inet(r0, &(0x7f0000942000)={0x2, 0x4e20, @multicast1}, 0x10) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000040), &(0x7f00000000c0)=0x68) mlockall(0x1) clone(0x100202, 0x0, 0xfffffffffffffffe, &(0x7f0000005480), 0xffffffffffffffff) r1 = add_key(&(0x7f00000053c0)='asymmetric\x00', &(0x7f0000005400)={'syz', 0x0}, &(0x7f0000005440)="f84e0cad4f825044c5b3ce49e3b957cc3997c30212fea77bbce9f3d7851d4d53fc4b6e9f1d822a65d07444d2bcf953b6827a4d0cda715fb3a32c410404bc5d", 0x3f, 0xffffffffffffffff) keyctl$clear(0x7, r1) r2 = open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x40) exit(0x7fffffffbfffffbd) recvmmsg(r2, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000140)=""/226, 0xe2}, {&(0x7f0000000300)=""/206, 0xce}, {&(0x7f0000000400)=""/173, 0xad}, {&(0x7f0000000240)=""/98, 0x62}, {&(0x7f00000004c0)=""/69, 0x45}, {&(0x7f0000000540)=""/101, 0x65}], 0x6, &(0x7f0000000640)=""/231, 0xe7, 0xfc}, 0x1}, {{0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000005b00)=""/221, 0xdd}, {&(0x7f0000000840)=""/220, 0xdc}, {&(0x7f0000000940)=""/252, 0xfc}, {&(0x7f0000000a40)=""/173, 0xad}, {&(0x7f0000000c40)=""/223, 0xdf}, {&(0x7f0000000b00)=""/125, 0x7d}, {&(0x7f0000000d40)=""/219, 0xdb}], 0x7, &(0x7f0000000ec0)=""/157, 0x9d, 0x6}, 0x1}, {{&(0x7f0000000f80)=@nfc_llcp, 0x80, &(0x7f00000011c0)=[{&(0x7f0000001000)=""/139, 0x8b}, {&(0x7f0000001100)=""/181, 0xb5}, {&(0x7f0000000b80)=""/32, 0x20}], 0x3, &(0x7f0000001200)=""/32, 0x20, 0x80000000}, 0x2}, {{&(0x7f0000001240)=@ipx, 0x80, &(0x7f0000001440)=[{&(0x7f00000012c0)=""/71, 0x47}, {&(0x7f0000001340)=""/226, 0xe2}], 0x2, &(0x7f0000001480)=""/148, 0x94, 0x3}, 0x4}, {{&(0x7f0000001540)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}}}, 0x80, &(0x7f00000036c0)=[{&(0x7f00000015c0)=""/212, 0xd4}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/4096, 0x1000}], 0x3, 0x0, 0x0, 0x20}, 0x946}, {{0x0, 0x0, &(0x7f00000037c0)=[{&(0x7f0000003700)=""/173, 0xad}], 0x1, 0x0, 0x0, 0x4}, 0x8}, {{&(0x7f0000003800)=@ipx, 0x80, &(0x7f0000003980)=[{&(0x7f0000003880)=""/42, 0x2a}, {&(0x7f00000038c0)=""/174, 0xae}], 0x2, &(0x7f00000039c0)=""/3, 0x3, 0x8}, 0x6}, {{&(0x7f0000003a00)=@pppoe={0x18, 0x0, {0x0, @dev}}, 0x80, &(0x7f0000003c80)=[{&(0x7f0000003a80)=""/74, 0x4a}, {&(0x7f0000003b00)=""/103, 0x67}, {&(0x7f0000003b80)=""/245, 0xf5}], 0x3, &(0x7f0000003cc0)=""/4096, 0x1000, 0x3}, 0x2}, {{&(0x7f0000004cc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000004e40)=[{&(0x7f0000004d40)=""/12, 0xc}, {&(0x7f0000004d80)=""/16, 0x10}, {&(0x7f0000004dc0)=""/72, 0x48}], 0x3, &(0x7f0000004e80)=""/38, 0x26}}], 0x9, 0x2, &(0x7f0000005100)={0x0, 0x989680}) syz_genetlink_get_family_id$ipvs(&(0x7f0000000800)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r4, &(0x7f0000005280)={&(0x7f0000005140)={0x10, 0x0, 0x0, 0x44000000}, 0xc, &(0x7f0000000740)={&(0x7f0000005d00)=ANY=[@ANYBLOB="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"], 0x1}}, 0x4000841) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlockall(0x3) r5 = accept4$inet(r4, &(0x7f00000007c0), &(0x7f0000000100)=0x10, 0x0) setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f0000005380)=0x1, 0x4) fchmod(r5, 0x180) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) getsockopt$IP_VS_SO_GET_VERSION(r3, 0x0, 0x480, &(0x7f00000052c0), &(0x7f0000005300)=0x40) connect$inet(r0, &(0x7f0000606ff0)={0x2, 0x4e20, @local}, 0x10) syz_genetlink_get_family_id$team(&(0x7f0000000780)='team\x00') ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000054c0)={'bond_slave_0\x00'}) getpeername(r4, &(0x7f0000005500)=@xdp, &(0x7f0000005340)=0x80) accept$packet(r4, &(0x7f00000055c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000005600)=0x14) getsockopt$inet6_mreq(r2, 0x29, 0x20, &(0x7f0000005180)={@ipv4={[], [], @multicast2}}, &(0x7f0000005840)=0xffffffffffffff3c) accept$packet(r3, &(0x7f0000005880)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000058c0)=0x14) getpeername$packet(r2, &(0x7f0000005900)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000005940)=0x14) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000005980)={{{@in=@multicast2}}, {{@in=@multicast1}, 0x0, @in=@loopback}}, &(0x7f0000005a80)=0xe8) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000005c40)={'team0\x00'}) accept$packet(r3, 0x0, &(0x7f0000005cc0)) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000006080)={&(0x7f00000051c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000006040)={&(0x7f00000060c0)=ANY=[@ANYBLOB="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"], 0x1}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg(r0, &(0x7f00000010c0)=[{{&(0x7f0000000bc0)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, &(0x7f0000000d40), 0x2fb, &(0x7f0000000d80)}}], 0x4000000000001b4, 0x40400d4) 14:10:43 executing program 1: ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:43 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:43 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:43 executing program 4: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:43 executing program 0 (fault-call:4 fault-nth:0): r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) [ 243.791807] FAULT_INJECTION: forcing a failure. [ 243.791807] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 243.807370] CPU: 1 PID: 8452 Comm: syz-executor0 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 243.815882] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 243.815916] Call Trace: [ 243.827991] dump_stack+0x244/0x39d [ 243.831648] ? dump_stack_print_info.cold.1+0x20/0x20 [ 243.836937] should_fail.cold.4+0xa/0x17 [ 243.841030] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 243.846212] ? graph_lock+0x270/0x270 [ 243.850032] ? graph_lock+0x270/0x270 [ 243.853848] ? __lock_is_held+0xb5/0x140 [ 243.857940] ? __lock_is_held+0xb5/0x140 [ 243.862078] ? check_preemption_disabled+0x48/0x280 [ 243.867113] ? lock_release+0xa00/0xa00 [ 243.871131] ? perf_trace_sched_process_exec+0x860/0x860 [ 243.876619] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 243.881920] ? rcu_read_unlock_special+0x370/0x370 [ 243.886866] ? __might_sleep+0x95/0x190 [ 243.890911] __alloc_pages_nodemask+0x366/0xec0 [ 243.895605] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 [ 243.900671] ? filemap_map_pages+0x1a20/0x1a20 [ 243.905290] ? __lock_acquire+0x62f/0x4c20 [ 243.909554] ? mark_held_locks+0x130/0x130 [ 243.913858] ? mpol_shared_policy_lookup+0xf7/0x150 [ 243.918923] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 243.924572] alloc_pages_vma+0x13d/0x690 [ 243.929174] shmem_alloc_page+0xa8/0x190 [ 243.929201] ? shmem_swapin+0x230/0x230 [ 243.937247] ? __lock_acquire+0x62f/0x4c20 [ 243.937271] shmem_alloc_and_acct_page+0x248/0xdb0 [ 243.937295] ? shmem_getattr+0x2c0/0x2c0 [ 243.937316] ? mark_held_locks+0x130/0x130 [ 243.954734] ? lock_downgrade+0x900/0x900 [ 243.958892] ? __lock_acquire+0x62f/0x4c20 [ 243.963115] ? print_usage_bug+0xc0/0xc0 [ 243.967168] ? __lock_acquire+0x62f/0x4c20 [ 243.971398] ? mark_held_locks+0x130/0x130 [ 243.975631] shmem_getpage_gfp+0x61b/0x31c0 [ 243.979956] ? shmem_unuse_inode.isra.46+0x1310/0x1310 [ 243.985223] ? print_usage_bug+0xc0/0xc0 [ 243.989274] ? __lock_acquire+0x62f/0x4c20 [ 243.993510] ? print_usage_bug+0xc0/0xc0 [ 243.997579] ? graph_lock+0x270/0x270 [ 244.001389] ? print_usage_bug+0xc0/0xc0 [ 244.005450] ? lock_unpin_lock+0x4a0/0x4a0 [ 244.009684] ? lock_unpin_lock+0x4a0/0x4a0 [ 244.013922] ? print_usage_bug+0xc0/0xc0 [ 244.018025] ? is_bpf_text_address+0xac/0x170 [ 244.022511] ? print_usage_bug+0xc0/0xc0 [ 244.026561] ? __lock_acquire+0x62f/0x4c20 [ 244.030787] ? kasan_check_read+0x11/0x20 [ 244.034933] ? __lock_acquire+0x62f/0x4c20 [ 244.039158] ? print_usage_bug+0xc0/0xc0 [ 244.043237] ? __lock_acquire+0x62f/0x4c20 [ 244.047510] ? __lock_acquire+0x62f/0x4c20 [ 244.051758] ? print_usage_bug+0xc0/0xc0 [ 244.055835] ? mark_held_locks+0x130/0x130 [ 244.060075] ? graph_lock+0x270/0x270 [ 244.063890] ? __lock_acquire+0x62f/0x4c20 [ 244.068131] ? __lock_acquire+0x62f/0x4c20 [ 244.072370] ? print_usage_bug+0xc0/0xc0 [ 244.076433] ? find_held_lock+0x36/0x1c0 [ 244.080506] ? mark_held_locks+0x130/0x130 [ 244.084754] shmem_fault+0x25f/0x960 [ 244.088486] ? find_held_lock+0x36/0x1c0 [ 244.092564] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 244.097847] ? mark_held_locks+0xc7/0x130 [ 244.102009] ? __lock_acquire+0x62f/0x4c20 [ 244.106300] __do_fault+0x100/0x6b0 [ 244.109945] ? pmd_devmap_trans_unstable+0x220/0x220 [ 244.115058] ? mark_held_locks+0x130/0x130 [ 244.119297] ? mark_held_locks+0x130/0x130 [ 244.123534] ? print_bfs_bug+0x80/0x80 [ 244.127431] ? __lock_acquire+0x62f/0x4c20 [ 244.131681] ? find_held_lock+0x36/0x1c0 [ 244.135756] __handle_mm_fault+0x3c82/0x5b70 [ 244.140176] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 244.145032] ? print_usage_bug+0xc0/0xc0 [ 244.149107] ? mark_held_locks+0x130/0x130 [ 244.153362] ? graph_lock+0x270/0x270 [ 244.157165] ? graph_lock+0x270/0x270 [ 244.160980] ? find_held_lock+0x36/0x1c0 [ 244.165055] ? handle_mm_fault+0x42a/0xc70 [ 244.169294] ? lock_downgrade+0x900/0x900 [ 244.173451] ? check_preemption_disabled+0x48/0x280 [ 244.178482] ? kasan_check_read+0x11/0x20 [ 244.182637] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 244.187929] ? rcu_read_unlock_special+0x370/0x370 [ 244.192863] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 244.198405] ? check_preemption_disabled+0x48/0x280 [ 244.203432] handle_mm_fault+0x54f/0xc70 [ 244.207502] ? __handle_mm_fault+0x5b70/0x5b70 [ 244.212137] ? find_vma+0x34/0x190 [ 244.215738] __do_page_fault+0x5f6/0xd70 [ 244.219820] do_page_fault+0xf2/0x7e0 [ 244.223624] ? vmalloc_sync_all+0x30/0x30 [ 244.227826] ? error_entry+0x76/0xd0 [ 244.231557] ? trace_hardirqs_off_caller+0xbb/0x310 [ 244.236607] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 244.241458] ? trace_hardirqs_on_caller+0x310/0x310 [ 244.246488] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 244.251343] page_fault+0x1e/0x30 [ 244.254800] RIP: 0010:__put_user_4+0x1c/0x30 [ 244.259221] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 [ 244.278127] RSP: 0018:ffff88818848f8c8 EFLAGS: 00010293 [ 244.283494] RAX: 0000000000007748 RBX: 00007fffffffeffd RCX: 0000000020000280 [ 244.290763] RDX: 000000000000004b RSI: ffffffff81b2fa73 RDI: 0000000000000282 [ 244.298033] RBP: ffff88818848fc08 R08: 1ffff11031091ef6 R09: 0000000000000008 [ 244.305302] R10: 0000000000000001 R11: ffff8881c2dc6180 R12: 0000000000008000 [ 244.312570] R13: 0000000000002282 R14: ffff8881ca41d580 R15: ffff88818a36c940 [ 244.319862] ? __might_fault+0x1a3/0x1e0 [ 244.323987] ? sg_ioctl+0x970/0x2dd0 [ 244.327716] ? lock_release+0xa00/0xa00 [ 244.331701] ? perf_trace_sched_process_exec+0x860/0x860 [ 244.337163] ? sg_new_write.isra.18+0xa50/0xa50 [ 244.341841] ? find_held_lock+0x36/0x1c0 [ 244.345954] ? __fget+0x4aa/0x740 [ 244.349414] ? lock_downgrade+0x900/0x900 [ 244.353568] ? check_preemption_disabled+0x48/0x280 [ 244.358598] ? kasan_check_read+0x11/0x20 [ 244.362750] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 244.368030] ? rcu_read_unlock_special+0x370/0x370 [ 244.372972] ? __fget+0x4d1/0x740 [ 244.376441] ? ksys_dup3+0x680/0x680 [ 244.380174] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 244.385120] ? sg_new_write.isra.18+0xa50/0xa50 [ 244.389834] do_vfs_ioctl+0x1de/0x1790 [ 244.393729] ? __lock_is_held+0xb5/0x140 [ 244.397802] ? ioctl_preallocate+0x300/0x300 [ 244.402221] ? __fget_light+0x2e9/0x430 [ 244.406209] ? fget_raw+0x20/0x20 [ 244.409679] ? __sb_end_write+0xd9/0x110 [ 244.413750] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 244.419299] ? fput+0x130/0x1a0 [ 244.422589] ? do_syscall_64+0x9a/0x820 [ 244.426570] ? do_syscall_64+0x9a/0x820 [ 244.430550] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 244.435178] ? security_file_ioctl+0x94/0xc0 [ 244.439602] ksys_ioctl+0xa9/0xd0 [ 244.443068] __x64_sys_ioctl+0x73/0xb0 [ 244.446961] do_syscall_64+0x1b9/0x820 [ 244.450854] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 244.456222] ? syscall_return_slowpath+0x5e0/0x5e0 [ 244.461154] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 244.466007] ? trace_hardirqs_on_caller+0x310/0x310 [ 244.471029] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 244.476054] ? prepare_exit_to_usermode+0x291/0x3b0 [ 244.481080] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 244.485938] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 244.491126] RIP: 0033:0x457659 [ 244.494324] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 244.513225] RSP: 002b:00007f0e2666cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 244.520954] RAX: ffffffffffffffda RBX: 00007f0e2666cc90 RCX: 0000000000457659 [ 244.528236] RDX: 0000000020000280 RSI: 0000000000002282 RDI: 0000000000000003 [ 244.535506] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 14:10:44 executing program 0 (fault-call:4 fault-nth:1): r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) [ 244.542776] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e2666d6d4 [ 244.550064] R13: 00000000004c0f5b R14: 00000000004d2240 R15: 0000000000000006 14:10:44 executing program 1 (fault-call:3 fault-nth:0): mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:10:44 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:44 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:44 executing program 4: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 244.741985] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. 14:10:44 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) [ 244.879643] FAULT_INJECTION: forcing a failure. [ 244.879643] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 244.937947] CPU: 1 PID: 8475 Comm: syz-executor0 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 244.946464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.955826] Call Trace: [ 244.958445] dump_stack+0x244/0x39d [ 244.962097] ? dump_stack_print_info.cold.1+0x20/0x20 [ 244.967305] ? print_usage_bug+0xc0/0xc0 [ 244.971379] ? __lock_acquire+0x62f/0x4c20 [ 244.975645] should_fail.cold.4+0xa/0x17 [ 244.979736] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 244.984858] ? graph_lock+0x270/0x270 [ 244.988690] ? print_usage_bug+0xc0/0xc0 [ 244.992769] ? graph_lock+0x270/0x270 [ 244.996590] ? lock_unpin_lock+0x4a0/0x4a0 [ 245.000851] ? __lock_is_held+0xb5/0x140 [ 245.004923] ? __kprobes_text_end+0x141b20/0x1eae18 [ 245.009978] ? lock_release+0xa00/0xa00 [ 245.013956] ? perf_trace_sched_process_exec+0x860/0x860 [ 245.019406] ? print_usage_bug+0xc0/0xc0 [ 245.023468] ? __might_sleep+0x95/0x190 [ 245.027436] __alloc_pages_nodemask+0x366/0xec0 [ 245.032123] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 [ 245.037134] ? print_usage_bug+0xc0/0xc0 [ 245.041214] ? graph_lock+0x270/0x270 [ 245.045010] ? __lock_acquire+0x62f/0x4c20 [ 245.049236] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 245.054764] alloc_pages_current+0x173/0x350 [ 245.059166] pte_alloc_one+0x1b/0x1a0 [ 245.062962] __pte_alloc+0x20/0x300 [ 245.066592] alloc_set_pte+0x1802/0x1f00 [ 245.070659] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 245.076208] ? do_swap_page+0x3660/0x3660 [ 245.080371] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 245.085641] ? mark_held_locks+0xc7/0x130 [ 245.089795] ? __lock_acquire+0x62f/0x4c20 [ 245.094039] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 245.099590] ? __do_fault+0x33a/0x6b0 [ 245.103407] ? pmd_devmap_trans_unstable+0x220/0x220 [ 245.108529] ? mark_held_locks+0x130/0x130 [ 245.112777] ? mark_held_locks+0x130/0x130 [ 245.117029] ? __lock_acquire+0x62f/0x4c20 [ 245.121280] finish_fault+0x179/0x2d0 [ 245.125101] __handle_mm_fault+0x3d87/0x5b70 [ 245.129533] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 245.134392] ? print_usage_bug+0xc0/0xc0 [ 245.138474] ? mark_held_locks+0x130/0x130 [ 245.142728] ? print_usage_bug+0xc0/0xc0 [ 245.146811] ? graph_lock+0x270/0x270 [ 245.150621] ? graph_lock+0x270/0x270 [ 245.154440] ? find_held_lock+0x36/0x1c0 [ 245.158522] ? handle_mm_fault+0x42a/0xc70 [ 245.162771] ? lock_downgrade+0x900/0x900 [ 245.166936] ? check_preemption_disabled+0x48/0x280 [ 245.171973] ? kasan_check_read+0x11/0x20 [ 245.176131] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 245.181431] ? rcu_read_unlock_special+0x370/0x370 [ 245.186380] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 245.191931] ? check_preemption_disabled+0x48/0x280 [ 245.196971] handle_mm_fault+0x54f/0xc70 [ 245.201053] ? __handle_mm_fault+0x5b70/0x5b70 [ 245.205651] ? find_vma+0x34/0x190 [ 245.209227] __do_page_fault+0x5f6/0xd70 [ 245.213340] do_page_fault+0xf2/0x7e0 [ 245.217155] ? vmalloc_sync_all+0x30/0x30 [ 245.221326] ? error_entry+0x76/0xd0 [ 245.225055] ? trace_hardirqs_off_caller+0xbb/0x310 [ 245.230087] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.234946] ? trace_hardirqs_on_caller+0x310/0x310 [ 245.239997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.244867] page_fault+0x1e/0x30 [ 245.248313] RIP: 0010:__put_user_4+0x1c/0x30 [ 245.252725] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 [ 245.271614] RSP: 0018:ffff888187f578c8 EFLAGS: 00010293 [ 245.276965] RAX: 0000000000007748 RBX: 00007fffffffeffd RCX: 0000000020000280 [ 245.284229] RDX: 000000000000004b RSI: ffffffff81b2fa73 RDI: 0000000000000282 [ 245.291527] RBP: ffff888187f57c08 R08: 1ffff11030feaef6 R09: 0000000000000008 [ 245.298808] R10: 0000000000000001 R11: ffff8881c0af81c0 R12: 0000000000008000 [ 245.306086] R13: 0000000000002282 R14: ffff8881ca41d580 R15: ffff88818b4add00 [ 245.313391] ? __might_fault+0x1a3/0x1e0 [ 245.317485] ? sg_ioctl+0x970/0x2dd0 [ 245.321236] ? lock_release+0xa00/0xa00 [ 245.325241] ? perf_trace_sched_process_exec+0x860/0x860 [ 245.330716] ? sg_new_write.isra.18+0xa50/0xa50 [ 245.335402] ? find_held_lock+0x36/0x1c0 [ 245.339495] ? __fget+0x4aa/0x740 [ 245.342969] ? lock_downgrade+0x900/0x900 [ 245.347132] ? check_preemption_disabled+0x48/0x280 [ 245.352172] ? kasan_check_read+0x11/0x20 [ 245.356343] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 245.361635] ? rcu_read_unlock_special+0x370/0x370 [ 245.366600] ? __fget+0x4d1/0x740 [ 245.370074] ? ksys_dup3+0x680/0x680 [ 245.373818] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 245.378764] ? sg_new_write.isra.18+0xa50/0xa50 [ 245.383449] do_vfs_ioctl+0x1de/0x1790 [ 245.387351] ? __lock_is_held+0xb5/0x140 [ 245.391431] ? ioctl_preallocate+0x300/0x300 [ 245.395853] ? __fget_light+0x2e9/0x430 [ 245.399837] ? fget_raw+0x20/0x20 [ 245.403311] ? __sb_end_write+0xd9/0x110 [ 245.407395] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 245.412943] ? fput+0x130/0x1a0 [ 245.416238] ? do_syscall_64+0x9a/0x820 [ 245.420223] ? do_syscall_64+0x9a/0x820 [ 245.424222] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 245.428819] ? security_file_ioctl+0x94/0xc0 [ 245.433243] ksys_ioctl+0xa9/0xd0 [ 245.436713] __x64_sys_ioctl+0x73/0xb0 [ 245.440621] do_syscall_64+0x1b9/0x820 [ 245.444523] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 245.449903] ? syscall_return_slowpath+0x5e0/0x5e0 [ 245.454839] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.459702] ? trace_hardirqs_on_caller+0x310/0x310 [ 245.464762] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 245.469793] ? prepare_exit_to_usermode+0x291/0x3b0 [ 245.474830] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 245.479703] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 245.484923] RIP: 0033:0x457659 [ 245.488129] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 245.507032] RSP: 002b:00007f0e2666cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 245.514730] RAX: ffffffffffffffda RBX: 00007f0e2666cc90 RCX: 0000000000457659 [ 245.521986] RDX: 0000000020000280 RSI: 0000000000002282 RDI: 0000000000000003 [ 245.529242] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 14:10:45 executing program 2: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x1e8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x77, 0x0, 0x5ad, 0x20000000000000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c060000223dd74800000000f2b6811703000000180000001400090060000000000000000000000000000b4401"], 0x2c}}, 0x0) 14:10:45 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:45 executing program 4: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:45 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:45 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x200000e8}, 0x28) [ 245.536499] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e2666d6d4 [ 245.543753] R13: 00000000004c0f5b R14: 00000000004d2240 R15: 0000000000000006 14:10:45 executing program 0 (fault-call:4 fault-nth:2): r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:45 executing program 2: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) getsockopt$bt_BT_SECURITY(r0, 0x12, 0x3, &(0x7f0000000040), 0xffffffffffffff46) r1 = syz_open_dev$mice(&(0x7f0000000000)='/dev/input/mice\x00', 0x0, 0x408100) ioctl$VHOST_GET_VRING_BASE(r1, 0xc008af12, &(0x7f0000000080)) 14:10:45 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0xf}, 0x28) [ 245.739639] FAULT_INJECTION: forcing a failure. [ 245.739639] name failslab, interval 1, probability 0, space 0, times 1 [ 245.782860] CPU: 0 PID: 8503 Comm: syz-executor0 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 245.791376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.801223] Call Trace: [ 245.803830] dump_stack+0x244/0x39d [ 245.807487] ? dump_stack_print_info.cold.1+0x20/0x20 [ 245.812712] ? kasan_check_read+0x11/0x20 [ 245.816885] should_fail.cold.4+0xa/0x17 [ 245.820958] ? check_preemption_disabled+0x48/0x280 [ 245.825987] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 245.826005] ? check_preemption_disabled+0x48/0x280 [ 245.826032] ? __lock_is_held+0xb5/0x140 [ 245.826056] ? graph_lock+0x270/0x270 [ 245.826080] ? find_held_lock+0x36/0x1c0 [ 245.848233] ? __lock_is_held+0xb5/0x140 [ 245.852327] ? perf_trace_sched_process_exec+0x860/0x860 [ 245.857806] __should_failslab+0x124/0x180 [ 245.862055] should_failslab+0x9/0x14 [ 245.865880] kmem_cache_alloc+0x2c4/0x730 [ 245.870043] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 245.870070] ptlock_alloc+0x20/0x80 [ 245.870089] pte_alloc_one+0x6b/0x1a0 14:10:45 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$ion(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ion\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x0, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e24, @local}}, 0x5, 0x8, 0x1, 0x3}, &(0x7f00000000c0)=0x98) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r2, 0x84, 0x23, &(0x7f0000000200)={r3}, 0x8) prctl$PR_SET_FP_MODE(0x2d, 0x1) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000040)={0x10004, 0x1}) 14:10:45 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x0, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 245.879257] __pte_alloc+0x20/0x300 [ 245.879278] alloc_set_pte+0x1802/0x1f00 [ 245.879300] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 245.896307] ? do_swap_page+0x3660/0x3660 [ 245.900473] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 245.905767] ? mark_held_locks+0xc7/0x130 [ 245.909940] ? __lock_acquire+0x62f/0x4c20 [ 245.914191] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 245.919733] ? __do_fault+0x33a/0x6b0 [ 245.923542] ? pmd_devmap_trans_unstable+0x220/0x220 [ 245.928773] ? mark_held_locks+0x130/0x130 [ 245.933016] ? mark_held_locks+0x130/0x130 [ 245.937258] ? __lock_acquire+0x62f/0x4c20 [ 245.941501] finish_fault+0x179/0x2d0 [ 245.945313] __handle_mm_fault+0x3d87/0x5b70 [ 245.949734] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 245.954588] ? print_usage_bug+0xc0/0xc0 [ 245.958669] ? mark_held_locks+0x130/0x130 [ 245.962912] ? print_usage_bug+0xc0/0xc0 [ 245.966986] ? graph_lock+0x270/0x270 [ 245.970790] ? graph_lock+0x270/0x270 [ 245.974604] ? find_held_lock+0x36/0x1c0 [ 245.978690] ? handle_mm_fault+0x42a/0xc70 [ 245.982931] ? lock_downgrade+0x900/0x900 [ 245.987084] ? check_preemption_disabled+0x48/0x280 [ 245.992111] ? kasan_check_read+0x11/0x20 [ 245.996262] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 246.001546] ? rcu_read_unlock_special+0x370/0x370 [ 246.006481] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 246.012023] ? check_preemption_disabled+0x48/0x280 [ 246.017052] handle_mm_fault+0x54f/0xc70 [ 246.021120] ? __handle_mm_fault+0x5b70/0x5b70 [ 246.025713] ? find_vma+0x34/0x190 [ 246.029266] __do_page_fault+0x5f6/0xd70 [ 246.033339] do_page_fault+0xf2/0x7e0 [ 246.037146] ? vmalloc_sync_all+0x30/0x30 [ 246.041298] ? error_entry+0x76/0xd0 [ 246.045023] ? trace_hardirqs_off_caller+0xbb/0x310 [ 246.050042] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 246.054892] ? trace_hardirqs_on_caller+0x310/0x310 [ 246.059927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 246.064781] page_fault+0x1e/0x30 [ 246.068238] RIP: 0010:__put_user_4+0x1c/0x30 [ 246.072649] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 [ 246.091567] RSP: 0018:ffff88818782f8c8 EFLAGS: 00010293 [ 246.096933] RAX: 0000000000007748 RBX: 00007fffffffeffd RCX: 0000000020000280 [ 246.104206] RDX: 000000000000004b RSI: ffffffff81b2fa73 RDI: 0000000000000282 [ 246.111473] RBP: ffff88818782fc08 R08: 1ffff11030f05ef6 R09: 0000000000000008 [ 246.118742] R10: 0000000000000001 R11: ffff8881cd6461c0 R12: 0000000000008000 [ 246.126013] R13: 0000000000002282 R14: ffff8881ca41d580 R15: ffff888187408980 [ 246.133300] ? __might_fault+0x1a3/0x1e0 [ 246.137368] ? sg_ioctl+0x970/0x2dd0 [ 246.141093] ? lock_release+0xa00/0xa00 [ 246.145073] ? perf_trace_sched_process_exec+0x860/0x860 [ 246.150531] ? sg_new_write.isra.18+0xa50/0xa50 [ 246.155204] ? find_held_lock+0x36/0x1c0 [ 246.159277] ? __fget+0x4aa/0x740 [ 246.162734] ? lock_downgrade+0x900/0x900 [ 246.166890] ? check_preemption_disabled+0x48/0x280 [ 246.171918] ? kasan_check_read+0x11/0x20 [ 246.176072] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 246.181351] ? rcu_read_unlock_special+0x370/0x370 [ 246.186293] ? __fget+0x4d1/0x740 [ 246.189759] ? ksys_dup3+0x680/0x680 [ 246.193484] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 246.198423] ? sg_new_write.isra.18+0xa50/0xa50 [ 246.203096] do_vfs_ioctl+0x1de/0x1790 [ 246.206989] ? __lock_is_held+0xb5/0x140 [ 246.211063] ? ioctl_preallocate+0x300/0x300 [ 246.215474] ? __fget_light+0x2e9/0x430 [ 246.219457] ? fget_raw+0x20/0x20 [ 246.222921] ? __sb_end_write+0xd9/0x110 [ 246.226991] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 246.232528] ? fput+0x130/0x1a0 [ 246.235817] ? do_syscall_64+0x9a/0x820 [ 246.239793] ? do_syscall_64+0x9a/0x820 [ 246.243770] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 246.248357] ? security_file_ioctl+0x94/0xc0 [ 246.252772] ksys_ioctl+0xa9/0xd0 [ 246.256233] __x64_sys_ioctl+0x73/0xb0 [ 246.260129] do_syscall_64+0x1b9/0x820 [ 246.264023] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 246.269392] ? syscall_return_slowpath+0x5e0/0x5e0 [ 246.274327] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 246.279178] ? trace_hardirqs_on_caller+0x310/0x310 [ 246.284221] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 246.289247] ? prepare_exit_to_usermode+0x291/0x3b0 [ 246.294274] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 246.299126] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 246.304331] RIP: 0033:0x457659 [ 246.307529] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 246.326427] RSP: 002b:00007f0e2666cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 14:10:45 executing program 5: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:46 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 246.334152] RAX: ffffffffffffffda RBX: 00007f0e2666cc90 RCX: 0000000000457659 [ 246.341420] RDX: 0000000020000280 RSI: 0000000000002282 RDI: 0000000000000003 [ 246.348700] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 246.355975] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0e2666d6d4 [ 246.363241] R13: 00000000004c0f5b R14: 00000000004d2240 R15: 0000000000000006 14:10:46 executing program 0 (fault-call:4 fault-nth:3): r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:46 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x5}, 0x28) 14:10:46 executing program 2: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:46 executing program 5: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:46 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:46 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x0, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:46 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x6}, 0x28) 14:10:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2283, &(0x7f0000000280)) 14:10:46 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:46 executing program 5: socket$inet6(0xa, 0x3, 0x6) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5386, &(0x7f0000000280)) 14:10:46 executing program 2: r0 = socket$inet6(0xa, 0x803, 0x100000003) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0a5c2d023c126285718070") r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x200000, 0x0) ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000100)={0xfffffffffffffff8, 0x100}) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={0x1, 0x28, &(0x7f0000000000)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000000c0)={r2, 0xff, 0x10}, 0xc) 14:10:46 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x2}, 0x28) 14:10:46 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x0, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:46 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:10:46 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xffffffff, 0x1) r2 = fcntl$dupfd(r0, 0x0, r0) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x1) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/autofs\x00', 0x282, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x80000000003) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000040)) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0xe, 0x3, 0x6, 0x2, 0x28, r2}, 0x2c) r6 = memfd_create(&(0x7f0000000140)=')\x00', 0x3) r7 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ce, 0x0, 0x74b, 0x5, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x4}, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)=0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000380)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0xcc) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000280)={@loopback, 0x2c, r8}) setsockopt$inet6_int(r7, 0x29, 0xfb, &(0x7f00000001c0)=0x8, 0x4) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000000c0)={@empty, 0x75, r9}) socket$l2tp(0x18, 0x1, 0x1) ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000100)={@local, @local={0xfe, 0x80, [0x0, 0x130]}, @loopback, 0x3, 0x0, 0x1f, 0x0, 0x8100000000, 0x80000000, r9}) ioctl$sock_inet6_udp_SIOCOUTQ(r7, 0x5411, &(0x7f0000000300)) r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x509000, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r10, 0x5382, &(0x7f0000000480)) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r11 = socket$inet6_sctp(0xa, 0x1, 0x84) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000, 0x2, &(0x7f0000ffa000/0x3000)=nil) sendto$inet6(r11, &(0x7f0000000500)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x100000000000, @loopback}, 0x1c) setsockopt$inet_sctp_SCTP_INITMSG(r6, 0x84, 0x2, &(0x7f0000000180)={0x78e0, 0x8, 0xffffffffffffff7a, 0x1000}, 0x8) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000040)={r5, &(0x7f0000000000), &(0x7f000089b000)}, 0x1ec) 14:10:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2271, &(0x7f0000000280)) 14:10:46 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:46 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:46 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x3}, 0x28) 14:10:46 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227b, &(0x7f0000000280)) 14:10:47 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x0, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:47 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2285, &(0x7f0000000280)) 14:10:47 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0xfffffffffffff000}, 0x28) 14:10:47 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xffffffff, 0x1) r2 = fcntl$dupfd(r0, 0x0, r0) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x1) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/autofs\x00', 0x282, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x80000000003) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000040)) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0xe, 0x3, 0x6, 0x2, 0x28, r2}, 0x2c) r6 = memfd_create(&(0x7f0000000140)=')\x00', 0x3) r7 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ce, 0x0, 0x74b, 0x5, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x4}, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)=0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000380)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0xcc) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000280)={@loopback, 0x2c, r8}) setsockopt$inet6_int(r7, 0x29, 0xfb, &(0x7f00000001c0)=0x8, 0x4) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000000c0)={@empty, 0x75, r9}) socket$l2tp(0x18, 0x1, 0x1) ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000100)={@local, @local={0xfe, 0x80, [0x0, 0x130]}, @loopback, 0x3, 0x0, 0x1f, 0x0, 0x8100000000, 0x80000000, r9}) ioctl$sock_inet6_udp_SIOCOUTQ(r7, 0x5411, &(0x7f0000000300)) r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x509000, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r10, 0x5382, &(0x7f0000000480)) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r11 = socket$inet6_sctp(0xa, 0x1, 0x84) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000, 0x2, &(0x7f0000ffa000/0x3000)=nil) sendto$inet6(r11, &(0x7f0000000500)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x100000000000, @loopback}, 0x1c) setsockopt$inet_sctp_SCTP_INITMSG(r6, 0x84, 0x2, &(0x7f0000000180)={0x78e0, 0x8, 0xffffffffffffff7a, 0x1000}, 0x8) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000040)={r5, &(0x7f0000000000), &(0x7f000089b000)}, 0x1ec) 14:10:47 executing program 3: socket$inet6(0xa, 0x3, 0x6) openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 14:10:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc020660b, &(0x7f0000000280)) 14:10:47 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x800000000000000}, 0x28) 14:10:47 executing program 3: socket$inet6(0xa, 0x3, 0x6) openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 14:10:47 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:47 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x0, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2287, &(0x7f0000000280)) 14:10:47 executing program 3: socket$inet6(0xa, 0x3, 0x6) openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) 14:10:47 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:47 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:47 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xffffffff, 0x1) r2 = fcntl$dupfd(r0, 0x0, r0) open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x1) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/autofs\x00', 0x282, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x80000000003) r4 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r4, 0x401c5504, &(0x7f0000000040)) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0xe, 0x3, 0x6, 0x2, 0x28, r2}, 0x2c) r6 = memfd_create(&(0x7f0000000140)=')\x00', 0x3) r7 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ce, 0x0, 0x74b, 0x5, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x4}, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f00000002c0)=0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000380)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0xcc) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000280)={@loopback, 0x2c, r8}) setsockopt$inet6_int(r7, 0x29, 0xfb, &(0x7f00000001c0)=0x8, 0x4) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'bond_slave_0\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r7, 0x8916, &(0x7f00000000c0)={@empty, 0x75, r9}) socket$l2tp(0x18, 0x1, 0x1) ioctl$sock_inet6_SIOCADDRT(r7, 0x890b, &(0x7f0000000100)={@local, @local={0xfe, 0x80, [0x0, 0x130]}, @loopback, 0x3, 0x0, 0x1f, 0x0, 0x8100000000, 0x80000000, r9}) ioctl$sock_inet6_udp_SIOCOUTQ(r7, 0x5411, &(0x7f0000000300)) r10 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x509000, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r10, 0x5382, &(0x7f0000000480)) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r11 = socket$inet6_sctp(0xa, 0x1, 0x84) mremap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000, 0x2, &(0x7f0000ffa000/0x3000)=nil) sendto$inet6(r11, &(0x7f0000000500)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x100000000000, @loopback}, 0x1c) setsockopt$inet_sctp_SCTP_INITMSG(r6, 0x84, 0x2, &(0x7f0000000180)={0x78e0, 0x8, 0xffffffffffffff7a, 0x1000}, 0x8) bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000040)={r5, &(0x7f0000000000), &(0x7f000089b000)}, 0x1ec) 14:10:47 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:47 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0xf0ffffffffffff}, 0x28) 14:10:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5385, &(0x7f0000000280)) 14:10:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227f, &(0x7f0000000280)) 14:10:47 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:47 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0xf0ffff}, 0x28) 14:10:47 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:47 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:47 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x4020940d, &(0x7f0000000280)) 14:10:47 executing program 3: socket$inet6(0xa, 0x3, 0x6) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:48 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0xf000}, 0x28) 14:10:48 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x7cf, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x8001, 0x412002) ioctl$KVM_SET_CLOCK(r0, 0x4030ae7b, &(0x7f0000000040)={0x8c, 0x8}) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)="2f67726f75702e73746174003c23fb572a1f0294e6f378b41ad54b4d9d9a1f63f8785ad188a7e1c88875e05b18a4cb3a9cd12dcea440d899c22c652b3a471b4a7fa2f3fdf6e034d804e5f0df4b1dee483b157624c59c0100e89e6a357c000000", 0x2761, 0x0) write$cgroup_int(r1, &(0x7f0000000080), 0x297ef) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)="637075733e602e6566466563746976655f6370acdfba", 0x2761, 0x0) 14:10:48 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2203, &(0x7f0000000280)) 14:10:48 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227c, &(0x7f0000000280)) 14:10:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:48 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:48 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x8}, 0x28) 14:10:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:48 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:48 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:48 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x10}, 0x28) 14:10:48 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:48 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5382, &(0x7f0000000280)) 14:10:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:48 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x1000000000000000}, 0x28) 14:10:48 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:48 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12628571") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:48 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2202, &(0x7f0000000280)) 14:10:48 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:48 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0xfffff000}, 0x28) 14:10:49 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12628571") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227d, &(0x7f0000000280)) 14:10:49 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r0, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:10:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:49 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:49 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x8000000}, 0x28) 14:10:49 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12628571") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2201, &(0x7f0000000280)) 14:10:49 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:49 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x10000000}, 0x28) 14:10:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2275, &(0x7f0000000280)) 14:10:49 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c1262857180") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:49 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12628571") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:49 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0xf0}, 0x28) 14:10:49 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:49 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2284, &(0x7f0000000280)) 14:10:49 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12628571") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:49 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x0, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:49 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c1262857180") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:50 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x8}}, 0x28) 14:10:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5451, &(0x7f0000000280)) 14:10:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:50 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c12628571") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:50 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c1262857180") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:50 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x10}}, 0x28) 14:10:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5452, &(0x7f0000000280)) 14:10:50 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c1262857180") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2, &(0x7f0000000280)) 14:10:50 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x227a, &(0x7f0000000280)) 14:10:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:50 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5460, &(0x7f0000000280)) 14:10:50 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0xf0ffffffffffff}}, 0x28) 14:10:50 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c1262857180") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:50 executing program 2: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:50 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0189436, &(0x7f0000000280)) 14:10:50 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0xf0ffff}}, 0x28) 14:10:50 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:50 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:50 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0481273, &(0x7f0000000280)) 14:10:50 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:50 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c1262857180") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:51 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1275, &(0x7f0000000280)) 14:10:51 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0xf000}}, 0x28) 14:10:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:51 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2276, &(0x7f0000000280)) 14:10:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:51 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x10000000}}, 0x28) 14:10:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:51 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5450, &(0x7f0000000280)) 14:10:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:51 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:51 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0xf0}}, 0x28) 14:10:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x40049409, &(0x7f0000000280)) 14:10:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:51 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0xfffffffffffff000}}, 0x28) 14:10:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2279, &(0x7f0000000280)) 14:10:51 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:51 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:10:51 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:51 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x800000000000000}}, 0x28) 14:10:51 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1274, &(0x7f0000000280)) 14:10:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:52 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x0, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:52 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) 14:10:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000280)) 14:10:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:10:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:52 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:52 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x1000000000000000}}, 0x28) 14:10:52 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2205, &(0x7f0000000280)) 14:10:52 executing program 3: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x1000000000000000}, 0x28) 14:10:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:52 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:52 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0045878, &(0x7f0000000280)) 14:10:52 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0xfffff000}}, 0x28) 14:10:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0045878, &(0x7f0000000280)) 14:10:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:52 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:52 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2289, &(0x7f0000000280)) 14:10:52 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x8000000}}, 0x28) 14:10:52 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:52 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5421, &(0x7f0000000280)) 14:10:52 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:53 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:53 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:53 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:53 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x10000000}}, 0x28) 14:10:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1276, &(0x7f0000000280)) 14:10:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:53 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2270, &(0x7f0000000280)) 14:10:53 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:53 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x8000000}}, 0x28) 14:10:53 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:53 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:53 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:53 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xf0}}, 0x28) 14:10:53 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:53 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227e, &(0x7f0000000280)) 14:10:53 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:10:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x0, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:53 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:53 executing program 2: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x227a, &(0x7f0000000280)) 14:10:53 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x8}}, 0x28) 14:10:53 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2286, &(0x7f0000000280)) 14:10:53 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:53 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x0, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, 0x0) 14:10:54 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x10}}, 0x28) 14:10:54 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:10:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000541000/0x2000)=nil, 0x2000, 0xfffffffffffffffe, 0x31, r1, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000080)) 14:10:54 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x0, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:54 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x800000000000000}}, 0x28) 14:10:54 executing program 4 (fault-call:7 fault-nth:0): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x1, 0x2) bind$bt_sco(r2, &(0x7f00000000c0)={0x1f, {0x0, 0x401, 0x0, 0x4, 0x0, 0x3f}}, 0x8) 14:10:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:54 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:54 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xf0ffffffffffff}}, 0x28) 14:10:54 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 254.971512] FAULT_INJECTION: forcing a failure. [ 254.971512] name failslab, interval 1, probability 0, space 0, times 0 [ 255.005719] CPU: 0 PID: 9262 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 255.014229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 255.014244] Call Trace: [ 255.014271] dump_stack+0x244/0x39d [ 255.014299] ? dump_stack_print_info.cold.1+0x20/0x20 [ 255.029867] should_fail.cold.4+0xa/0x17 [ 255.029889] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 255.044231] ? print_usage_bug+0xc0/0xc0 [ 255.048311] ? print_usage_bug+0xc0/0xc0 [ 255.052411] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 255.057959] ? graph_lock+0x270/0x270 [ 255.057977] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 255.058082] ? vmcs_load+0xd3/0x110 [ 255.058104] ? crash_vmclear_local_loaded_vmcss+0x1a0/0x1a0 [ 255.071050] ? find_held_lock+0x36/0x1c0 [ 255.071074] ? __lock_is_held+0xb5/0x140 [ 255.071103] ? mark_held_locks+0x130/0x130 [ 255.071124] ? perf_trace_sched_process_exec+0x860/0x860 [ 255.089162] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 255.089183] ? check_preemption_disabled+0x48/0x280 [ 255.089209] __should_failslab+0x124/0x180 [ 255.089228] should_failslab+0x9/0x14 [ 255.100225] kmem_cache_alloc+0x2c4/0x730 [ 255.100244] ? lock_acquire+0x1ed/0x520 [ 255.100317] ? kvm_arch_vcpu_ioctl_run+0x30f/0x7320 [ 255.100341] mmu_topup_memory_caches+0xfb/0x470 [ 255.121467] ? kvm_inject_realmode_interrupt+0x260/0x260 [ 255.121526] kvm_mmu_load+0x21/0x1290 [ 255.121552] kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 255.131245] ? kvm_vcpu_ioctl+0x1e5/0x1150 [ 255.131284] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 255.145442] ? graph_lock+0x270/0x270 [ 255.158311] ? __lock_acquire+0x62f/0x4c20 [ 255.162561] ? lock_downgrade+0x900/0x900 [ 255.166729] ? check_preemption_disabled+0x48/0x280 [ 255.171776] ? find_held_lock+0x36/0x1c0 [ 255.175918] ? get_task_pid+0x1ea/0x3b0 [ 255.175938] ? lock_downgrade+0x900/0x900 [ 255.175959] ? check_preemption_disabled+0x48/0x280 [ 255.184077] ? kasan_check_read+0x11/0x20 [ 255.193250] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 255.198544] ? rcu_read_unlock_special+0x370/0x370 [ 255.203496] ? get_task_pid+0x211/0x3b0 [ 255.207482] ? find_get_pid+0x270/0x270 [ 255.211472] ? graph_lock+0x270/0x270 [ 255.215290] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 255.220852] kvm_vcpu_ioctl+0x5c8/0x1150 [ 255.224924] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 255.229178] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 255.234908] ? find_held_lock+0x36/0x1c0 [ 255.238989] ? __fget+0x4aa/0x740 [ 255.242463] ? check_preemption_disabled+0x48/0x280 [ 255.247496] ? kasan_check_read+0x11/0x20 [ 255.247513] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 255.247530] ? rcu_read_unlock_special+0x370/0x370 [ 255.247554] ? __fget+0x4d1/0x740 [ 255.265353] ? ksys_dup3+0x680/0x680 14:10:54 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 3: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 3: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 255.269093] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 255.274051] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 255.279779] do_vfs_ioctl+0x1de/0x1790 [ 255.283697] ? __lock_is_held+0xb5/0x140 [ 255.287774] ? ioctl_preallocate+0x300/0x300 [ 255.292192] ? __fget_light+0x2e9/0x430 [ 255.296175] ? fget_raw+0x20/0x20 [ 255.296193] ? __sb_end_write+0xd9/0x110 [ 255.296216] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 255.296229] ? fput+0x130/0x1a0 [ 255.296245] ? do_syscall_64+0x9a/0x820 [ 255.296261] ? do_syscall_64+0x9a/0x820 14:10:54 executing program 3: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:54 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) fadvise64(r0, 0x0, 0x1f, 0x5) r1 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x0, 0x2) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000100)='tls\x00', 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1, 0x31, 0xffffffffffffffff, 0x0) ioctl$int_in(r1, 0x0, &(0x7f0000000140)=0x5) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000080)) [ 255.296278] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 255.296296] ? security_file_ioctl+0x94/0xc0 [ 255.296317] ksys_ioctl+0xa9/0xd0 [ 255.296340] __x64_sys_ioctl+0x73/0xb0 [ 255.336883] do_syscall_64+0x1b9/0x820 [ 255.340789] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 255.346173] ? syscall_return_slowpath+0x5e0/0x5e0 [ 255.351119] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 255.355980] ? trace_hardirqs_on_caller+0x310/0x310 [ 255.361016] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 255.366047] ? prepare_exit_to_usermode+0x291/0x3b0 [ 255.371081] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 255.371106] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 255.371125] RIP: 0033:0x457659 [ 255.371141] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 255.403352] RSP: 002b:00007ffbeb4aac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 255.403367] RAX: ffffffffffffffda RBX: 00007ffbeb4aac90 RCX: 0000000000457659 [ 255.403377] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 255.403401] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 255.403411] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffbeb4ab6d4 [ 255.403421] R13: 00000000004c0505 R14: 00000000004d1580 R15: 0000000000000007 14:10:55 executing program 4 (fault-call:7 fault-nth:1): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:55 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x100037e4af90, 0xfffffffffffffffd) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x101800, 0x0) setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000140)=0x2, 0x4) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x80000, 0x0) r2 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x80000000, 0x42) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x5) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:55 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:55 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xf000}}, 0x28) 14:10:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xfffffffffffffffc) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x8, 0x80081) write$P9_RWALK(r2, &(0x7f0000000100)=ANY=[@ANYBLOB="160000006f02000100160000ebff1400000000000000"], 0x16) write$P9_RLOCK(r2, &(0x7f00000000c0)={0x8, 0x35, 0x1, 0x1}, 0x8) signalfd(r1, &(0x7f0000000140)={0xc00000000000000}, 0x8) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 255.749497] FAULT_INJECTION: forcing a failure. [ 255.749497] name failslab, interval 1, probability 0, space 0, times 0 14:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 255.860732] CPU: 1 PID: 9309 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 255.869264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 255.878624] Call Trace: [ 255.881243] dump_stack+0x244/0x39d [ 255.884901] ? dump_stack_print_info.cold.1+0x20/0x20 [ 255.890115] ? __kernel_text_address+0xd/0x40 [ 255.894629] ? unwind_get_return_address+0x61/0xa0 [ 255.899592] should_fail.cold.4+0xa/0x17 [ 255.903682] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 255.908809] ? save_stack+0xa9/0xd0 [ 255.912454] ? kasan_kmalloc+0xcb/0xd0 [ 255.916359] ? kasan_slab_alloc+0x12/0x20 [ 255.920518] ? kmem_cache_alloc+0x130/0x730 [ 255.924856] ? mmu_topup_memory_caches+0xfb/0x470 [ 255.930181] ? kvm_mmu_load+0x21/0x1290 [ 255.934522] ? kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 255.939638] ? graph_lock+0x270/0x270 [ 255.943458] ? __x64_sys_ioctl+0x73/0xb0 [ 255.947531] ? do_syscall_64+0x1b9/0x820 [ 255.951600] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 255.951624] ? find_held_lock+0x36/0x1c0 [ 255.961039] ? __lock_is_held+0xb5/0x140 [ 255.965129] ? mmu_topup_memory_caches+0xfb/0x470 [ 255.969990] ? perf_trace_sched_process_exec+0x860/0x860 [ 255.975503] __should_failslab+0x124/0x180 [ 255.979756] should_failslab+0x9/0x14 [ 255.983577] kmem_cache_alloc+0x2c4/0x730 [ 255.987814] ? kvm_is_reserved_pfn+0x144/0x1b0 [ 255.992425] mmu_topup_memory_caches+0xfb/0x470 [ 255.997110] kvm_mmu_load+0x21/0x1290 [ 255.997132] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 255.997152] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 255.997174] kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 256.006518] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 256.006534] ? graph_lock+0x270/0x270 [ 256.006552] ? __lock_acquire+0x62f/0x4c20 [ 256.006572] ? lock_downgrade+0x900/0x900 [ 256.034016] ? check_preemption_disabled+0x48/0x280 [ 256.039064] ? find_held_lock+0x36/0x1c0 [ 256.043147] ? get_task_pid+0x1ea/0x3b0 [ 256.047137] ? lock_downgrade+0x900/0x900 [ 256.047157] ? check_preemption_disabled+0x48/0x280 [ 256.047181] ? kasan_check_read+0x11/0x20 [ 256.047206] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 256.047222] ? rcu_read_unlock_special+0x370/0x370 [ 256.047250] ? find_get_pid+0x270/0x270 [ 256.056405] ? graph_lock+0x270/0x270 [ 256.056428] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.056454] kvm_vcpu_ioctl+0x5c8/0x1150 [ 256.056469] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 256.056490] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 256.065900] ? find_held_lock+0x36/0x1c0 [ 256.065928] ? __fget+0x4aa/0x740 [ 256.065950] ? check_preemption_disabled+0x48/0x280 14:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 256.065973] ? kasan_check_read+0x11/0x20 [ 256.065992] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 256.074878] ? rcu_read_unlock_special+0x370/0x370 [ 256.074907] ? __fget+0x4d1/0x740 [ 256.074932] ? ksys_dup3+0x680/0x680 [ 256.074959] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 256.074983] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 256.142832] do_vfs_ioctl+0x1de/0x1790 [ 256.146714] ? __lock_is_held+0xb5/0x140 [ 256.150766] ? ioctl_preallocate+0x300/0x300 [ 256.155163] ? __fget_light+0x2e9/0x430 [ 256.159131] ? fget_raw+0x20/0x20 [ 256.162574] ? __sb_end_write+0xd9/0x110 [ 256.166630] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.172154] ? fput+0x130/0x1a0 [ 256.175423] ? do_syscall_64+0x9a/0x820 [ 256.179390] ? do_syscall_64+0x9a/0x820 [ 256.183372] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 256.187944] ? security_file_ioctl+0x94/0xc0 [ 256.192367] ksys_ioctl+0xa9/0xd0 [ 256.195816] __x64_sys_ioctl+0x73/0xb0 [ 256.199699] do_syscall_64+0x1b9/0x820 [ 256.203590] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 256.208947] ? syscall_return_slowpath+0x5e0/0x5e0 [ 256.213866] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 256.218701] ? trace_hardirqs_on_caller+0x310/0x310 [ 256.223711] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 256.228719] ? prepare_exit_to_usermode+0x291/0x3b0 [ 256.234089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 256.238927] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 256.244109] RIP: 0033:0x457659 [ 256.247315] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 256.266208] RSP: 002b:00007ffbeb4aac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 256.273913] RAX: ffffffffffffffda RBX: 00007ffbeb4aac90 RCX: 0000000000457659 [ 256.281169] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 256.288425] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 256.295691] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffbeb4ab6d4 [ 256.302949] R13: 00000000004c0505 R14: 00000000004d1580 R15: 0000000000000007 14:10:55 executing program 4 (fault-call:7 fault-nth:2): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:55 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x0, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000100)={0x3, &(0x7f00000000c0)=[{0x9, 0x3, 0x1ff, 0xfffffffffffffffa}, {0xfff, 0x1, 0x3, 0x2}, {0x5, 0x3, 0x1, 0x9}]}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:55 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:55 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:55 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xfffffffffffff000}}, 0x28) 14:10:55 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x10002, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x8) setsockopt$RDS_GET_MR_FOR_DEST(r1, 0x114, 0x7, &(0x7f0000000100)={@in={0x2, 0x4e20, @broadcast}, {&(0x7f0000000080)=""/37, 0x25}, &(0x7f00000000c0), 0x8}, 0xa0) [ 256.506164] FAULT_INJECTION: forcing a failure. [ 256.506164] name failslab, interval 1, probability 0, space 0, times 0 [ 256.550301] CPU: 1 PID: 9350 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 256.558831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 256.568196] Call Trace: [ 256.568225] dump_stack+0x244/0x39d [ 256.568254] ? dump_stack_print_info.cold.1+0x20/0x20 [ 256.568281] ? __kernel_text_address+0xd/0x40 [ 256.584155] ? unwind_get_return_address+0x61/0xa0 [ 256.584182] should_fail.cold.4+0xa/0x17 [ 256.584209] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 256.598295] ? save_stack+0xa9/0xd0 [ 256.601935] ? kasan_kmalloc+0xcb/0xd0 [ 256.605840] ? kasan_slab_alloc+0x12/0x20 [ 256.610008] ? kmem_cache_alloc+0x130/0x730 [ 256.614348] ? mmu_topup_memory_caches+0xfb/0x470 [ 256.619213] ? kvm_mmu_load+0x21/0x1290 [ 256.623212] ? kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 256.628330] ? graph_lock+0x270/0x270 [ 256.632140] ? __x64_sys_ioctl+0x73/0xb0 [ 256.632158] ? do_syscall_64+0x1b9/0x820 [ 256.632175] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 256.632205] ? find_held_lock+0x36/0x1c0 [ 256.649735] ? __lock_is_held+0xb5/0x140 [ 256.653832] ? mmu_topup_memory_caches+0xfb/0x470 [ 256.658695] ? perf_trace_sched_process_exec+0x860/0x860 [ 256.664174] __should_failslab+0x124/0x180 [ 256.668436] should_failslab+0x9/0x14 [ 256.672256] kmem_cache_alloc+0x2c4/0x730 [ 256.676428] ? kvm_is_reserved_pfn+0x144/0x1b0 [ 256.681035] mmu_topup_memory_caches+0xfb/0x470 [ 256.685726] kvm_mmu_load+0x21/0x1290 [ 256.689550] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 256.695109] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 14:10:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:56 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) [ 256.700669] kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 256.705607] ? kvm_vcpu_ioctl+0x1e5/0x1150 [ 256.705639] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 256.705656] ? graph_lock+0x270/0x270 [ 256.705686] ? __lock_acquire+0x62f/0x4c20 [ 256.722784] ? lock_downgrade+0x900/0x900 [ 256.726949] ? check_preemption_disabled+0x48/0x280 [ 256.731999] ? find_held_lock+0x36/0x1c0 [ 256.736090] ? get_task_pid+0x1ea/0x3b0 [ 256.740079] ? lock_downgrade+0x900/0x900 [ 256.744238] ? check_preemption_disabled+0x48/0x280 [ 256.749277] ? kasan_check_read+0x11/0x20 [ 256.753441] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 256.758731] ? rcu_read_unlock_special+0x370/0x370 [ 256.763703] ? find_get_pid+0x270/0x270 [ 256.767707] ? graph_lock+0x270/0x270 [ 256.771524] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.771552] kvm_vcpu_ioctl+0x5c8/0x1150 [ 256.771568] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 256.771589] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 256.771611] ? find_held_lock+0x36/0x1c0 [ 256.781224] ? __fget+0x4aa/0x740 [ 256.781247] ? check_preemption_disabled+0x48/0x280 [ 256.781270] ? kasan_check_read+0x11/0x20 [ 256.781287] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 256.781305] ? rcu_read_unlock_special+0x370/0x370 [ 256.803931] ? __fget+0x4d1/0x740 [ 256.803957] ? ksys_dup3+0x680/0x680 [ 256.803985] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 256.804009] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 256.813419] do_vfs_ioctl+0x1de/0x1790 [ 256.813438] ? __lock_is_held+0xb5/0x140 [ 256.813460] ? ioctl_preallocate+0x300/0x300 [ 256.813477] ? __fget_light+0x2e9/0x430 [ 256.813499] ? fget_raw+0x20/0x20 [ 256.855946] ? __sb_end_write+0xd9/0x110 [ 256.860028] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 256.865580] ? fput+0x130/0x1a0 [ 256.868872] ? do_syscall_64+0x9a/0x820 [ 256.872860] ? do_syscall_64+0x9a/0x820 [ 256.872879] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 256.872900] ? security_file_ioctl+0x94/0xc0 [ 256.885859] ksys_ioctl+0xa9/0xd0 [ 256.889338] __x64_sys_ioctl+0x73/0xb0 [ 256.893245] do_syscall_64+0x1b9/0x820 [ 256.897154] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 256.902545] ? syscall_return_slowpath+0x5e0/0x5e0 [ 256.907486] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 256.912348] ? trace_hardirqs_on_caller+0x310/0x310 [ 256.917382] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 256.922417] ? prepare_exit_to_usermode+0x291/0x3b0 [ 256.927447] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 256.927473] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 256.927486] RIP: 0033:0x457659 [ 256.927504] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 256.959642] RSP: 002b:00007ffbeb4aac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 256.967372] RAX: ffffffffffffffda RBX: 00007ffbeb4aac90 RCX: 0000000000457659 [ 256.974651] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 256.981942] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 256.989216] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffbeb4ab6d4 [ 256.996491] R13: 00000000004c0505 R14: 00000000004d1580 R15: 0000000000000007 14:10:56 executing program 4 (fault-call:7 fault-nth:3): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:56 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 14:10:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x4000000000000000, 0x40) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000637000/0x2000)=nil, 0x2000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0xffffffffffffffff) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x3457d7552c18c644, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000000c0), 0x2}}, 0x20) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000680)=""/139, &(0x7f0000000740)=0x8b) 14:10:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:56 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x1000000000000000}}, 0x28) 14:10:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:56 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000080)=0x0) r4 = syz_open_dev$usb(&(0x7f0000000100)='/dev/bus/usb/00#/00#\x00', 0x80, 0x800) getsockopt$inet_sctp_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0xb) sched_setaffinity(r3, 0x8, &(0x7f00000000c0)=0x2) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:56 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:56 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xfffff000}}, 0x28) [ 257.258595] FAULT_INJECTION: forcing a failure. [ 257.258595] name failslab, interval 1, probability 0, space 0, times 0 [ 257.274906] CPU: 0 PID: 9387 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 257.283412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 257.292766] Call Trace: [ 257.295371] dump_stack+0x244/0x39d [ 257.295398] ? dump_stack_print_info.cold.1+0x20/0x20 [ 257.295420] ? __kernel_text_address+0xd/0x40 [ 257.295445] ? unwind_get_return_address+0x61/0xa0 [ 257.313682] should_fail.cold.4+0xa/0x17 [ 257.317773] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 257.322894] ? save_stack+0xa9/0xd0 [ 257.326539] ? kasan_kmalloc+0xcb/0xd0 [ 257.330435] ? kasan_slab_alloc+0x12/0x20 [ 257.334596] ? kmem_cache_alloc+0x130/0x730 [ 257.338939] ? mmu_topup_memory_caches+0xfb/0x470 [ 257.343795] ? kvm_mmu_load+0x21/0x1290 [ 257.343811] ? kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 257.343830] ? graph_lock+0x270/0x270 [ 257.343846] ? __x64_sys_ioctl+0x73/0xb0 [ 257.343863] ? do_syscall_64+0x1b9/0x820 [ 257.343885] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 257.364844] ? find_held_lock+0x36/0x1c0 [ 257.364867] ? __lock_is_held+0xb5/0x140 [ 257.364954] ? crypt_setkey+0x2f8/0x620 [ 257.382324] ? mmu_topup_memory_caches+0xfb/0x470 [ 257.387186] ? perf_trace_sched_process_exec+0x860/0x860 [ 257.392675] __should_failslab+0x124/0x180 [ 257.396928] should_failslab+0x9/0x14 [ 257.400734] kmem_cache_alloc+0x2c4/0x730 [ 257.404887] ? kvm_is_reserved_pfn+0x144/0x1b0 [ 257.409481] mmu_topup_memory_caches+0xfb/0x470 [ 257.414162] kvm_mmu_load+0x21/0x1290 [ 257.417975] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 257.423520] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 257.429069] kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 257.434004] ? kvm_vcpu_ioctl+0x1e5/0x1150 [ 257.438262] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 257.443106] ? graph_lock+0x270/0x270 [ 257.446912] ? __lock_acquire+0x62f/0x4c20 [ 257.451152] ? lock_downgrade+0x900/0x900 [ 257.455309] ? check_preemption_disabled+0x48/0x280 [ 257.460343] ? find_held_lock+0x36/0x1c0 [ 257.464419] ? get_task_pid+0x1ea/0x3b0 [ 257.468397] ? lock_downgrade+0x900/0x900 [ 257.472551] ? check_preemption_disabled+0x48/0x280 [ 257.477578] ? kasan_check_read+0x11/0x20 [ 257.481731] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 257.487017] ? rcu_read_unlock_special+0x370/0x370 [ 257.491966] ? find_get_pid+0x270/0x270 [ 257.495945] ? graph_lock+0x270/0x270 [ 257.499750] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 257.505298] kvm_vcpu_ioctl+0x5c8/0x1150 [ 257.509365] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 257.513611] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 257.519331] ? find_held_lock+0x36/0x1c0 [ 257.523403] ? __fget+0x4aa/0x740 [ 257.526869] ? check_preemption_disabled+0x48/0x280 [ 257.531893] ? kasan_check_read+0x11/0x20 [ 257.536048] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 257.541332] ? rcu_read_unlock_special+0x370/0x370 [ 257.546276] ? __fget+0x4d1/0x740 [ 257.549745] ? ksys_dup3+0x680/0x680 [ 257.553475] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 257.558423] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 257.564144] do_vfs_ioctl+0x1de/0x1790 [ 257.568041] ? __lock_is_held+0xb5/0x140 [ 257.572108] ? ioctl_preallocate+0x300/0x300 [ 257.576522] ? __fget_light+0x2e9/0x430 [ 257.580505] ? fget_raw+0x20/0x20 [ 257.583962] ? __sb_end_write+0xd9/0x110 [ 257.588037] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 257.593577] ? fput+0x130/0x1a0 [ 257.596862] ? do_syscall_64+0x9a/0x820 [ 257.600842] ? do_syscall_64+0x9a/0x820 [ 257.604824] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 257.609412] ? security_file_ioctl+0x94/0xc0 [ 257.613827] ksys_ioctl+0xa9/0xd0 [ 257.617289] __x64_sys_ioctl+0x73/0xb0 [ 257.621183] do_syscall_64+0x1b9/0x820 [ 257.625076] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 257.630444] ? syscall_return_slowpath+0x5e0/0x5e0 [ 257.635379] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 257.640227] ? trace_hardirqs_on_caller+0x310/0x310 [ 257.645249] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 257.650269] ? prepare_exit_to_usermode+0x291/0x3b0 [ 257.655300] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 257.660152] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 257.665342] RIP: 0033:0x457659 [ 257.668541] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 257.687450] RSP: 002b:00007ffbeb4aac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 257.695157] RAX: ffffffffffffffda RBX: 00007ffbeb4aac90 RCX: 0000000000457659 [ 257.702424] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 14:10:56 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 14:10:56 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 257.709708] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 257.716980] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffbeb4ab6d4 [ 257.724277] R13: 00000000004c0505 R14: 00000000004d1580 R15: 0000000000000007 14:10:57 executing program 4 (fault-call:7 fault-nth:4): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:57 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2272, &(0x7f0000000280)) 14:10:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x29) keyctl$session_to_parent(0x12) ioctl$SCSI_IOCTL_SYNC(r2, 0x4) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffff9c, 0xc0086420, &(0x7f00000000c0)={0x0}) ioctl$DRM_IOCTL_LOCK(r2, 0x4008642a, &(0x7f0000000100)={r3, 0x4}) ioctl$SG_GET_COMMAND_Q(r2, 0x2270, &(0x7f0000000000)) mmap(&(0x7f0000ae8000/0x3000)=nil, 0x3000, 0x1, 0x10, r2, 0x0) ioctl$SG_SCSI_RESET(r1, 0x2284, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f00000002c0)) 14:10:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:57 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) 14:10:57 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xf0ffff}}, 0x28) 14:10:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x7, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001fc) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:10:57 executing program 2: r0 = syz_open_dev$sg(0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:57 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 258.072066] FAULT_INJECTION: forcing a failure. [ 258.072066] name failslab, interval 1, probability 0, space 0, times 0 [ 258.099174] CPU: 0 PID: 9423 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 258.107700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.117062] Call Trace: [ 258.119682] dump_stack+0x244/0x39d [ 258.123341] ? dump_stack_print_info.cold.1+0x20/0x20 [ 258.128548] ? __kernel_text_address+0xd/0x40 [ 258.133096] ? unwind_get_return_address+0x61/0xa0 [ 258.138049] should_fail.cold.4+0xa/0x17 [ 258.142128] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 258.147249] ? save_stack+0xa9/0xd0 [ 258.150892] ? kasan_kmalloc+0xcb/0xd0 [ 258.154792] ? kasan_slab_alloc+0x12/0x20 [ 258.158950] ? kmem_cache_alloc+0x130/0x730 [ 258.163286] ? mmu_topup_memory_caches+0xfb/0x470 [ 258.168142] ? kvm_mmu_load+0x21/0x1290 [ 258.172130] ? kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 258.177248] ? graph_lock+0x270/0x270 [ 258.181061] ? __x64_sys_ioctl+0x73/0xb0 [ 258.185134] ? do_syscall_64+0x1b9/0x820 [ 258.189209] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 258.194596] ? find_held_lock+0x36/0x1c0 [ 258.198698] ? __lock_is_held+0xb5/0x140 [ 258.202789] ? mmu_topup_memory_caches+0xfb/0x470 [ 258.207648] ? perf_trace_sched_process_exec+0x860/0x860 [ 258.213138] __should_failslab+0x124/0x180 [ 258.217386] should_failslab+0x9/0x14 [ 258.221201] kmem_cache_alloc+0x2c4/0x730 [ 258.225365] ? kvm_is_reserved_pfn+0x144/0x1b0 [ 258.229969] mmu_topup_memory_caches+0xfb/0x470 [ 258.234658] kvm_mmu_load+0x21/0x1290 [ 258.234699] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 258.234720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 258.244058] kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 258.244095] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 258.244112] ? graph_lock+0x270/0x270 [ 258.244132] ? __lock_acquire+0x62f/0x4c20 [ 258.267457] ? lock_downgrade+0x900/0x900 [ 258.271622] ? check_preemption_disabled+0x48/0x280 [ 258.276720] ? find_held_lock+0x36/0x1c0 [ 258.280808] ? get_task_pid+0x1ea/0x3b0 [ 258.284802] ? lock_downgrade+0x900/0x900 [ 258.288967] ? check_preemption_disabled+0x48/0x280 [ 258.294007] ? kasan_check_read+0x11/0x20 [ 258.298173] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 258.303467] ? rcu_read_unlock_special+0x370/0x370 [ 258.308425] ? find_get_pid+0x270/0x270 [ 258.312413] ? graph_lock+0x270/0x270 [ 258.312434] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 258.312461] kvm_vcpu_ioctl+0x5c8/0x1150 [ 258.312477] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 258.312499] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 258.312520] ? find_held_lock+0x36/0x1c0 [ 258.321854] ? __fget+0x4aa/0x740 [ 258.321876] ? check_preemption_disabled+0x48/0x280 [ 258.321900] ? kasan_check_read+0x11/0x20 [ 258.321916] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 258.321933] ? rcu_read_unlock_special+0x370/0x370 [ 258.321959] ? __fget+0x4d1/0x740 [ 258.366221] ? ksys_dup3+0x680/0x680 14:10:57 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0xf000}}, 0x28) 14:10:57 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pause() ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) io_setup(0x0, &(0x7f0000000000)=0x0) fsetxattr$security_smack_entry(r0, &(0x7f0000000380)='security.SMACK64IPOUT\x00', &(0x7f0000000400)='/dev/sg#\x00', 0x9, 0x400010000000002) io_cancel(r2, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4, r0, &(0x7f0000000100)="0c75a6a2d2a97b7d90263c0c1c754db7a123deb39e95e3653ce9507d93dd52cc9a192bcd09bc2fae9e70645110ed768a82b614515d00ad1c61df5a1ae721d2bedb422d39199c1a124d172f3d16c8a8189de5361f17ca6ff1aeacb62b69f1437d15", 0x61, 0x5, 0x0, 0x1}, &(0x7f00000001c0)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) write$FUSE_BMAP(r0, &(0x7f0000000200)={0x18, 0x0, 0x7, {0x100000000}}, 0x18) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000080)={0x100, 0x80000000, 0x8000, 0x7d06aea1, 0x5}) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) 14:10:58 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 258.369965] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 258.374914] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 258.380638] do_vfs_ioctl+0x1de/0x1790 [ 258.384563] ? __lock_is_held+0xb5/0x140 [ 258.388643] ? ioctl_preallocate+0x300/0x300 [ 258.393082] ? __fget_light+0x2e9/0x430 [ 258.397069] ? fget_raw+0x20/0x20 [ 258.397088] ? __sb_end_write+0xd9/0x110 [ 258.397111] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 258.404604] ? fput+0x130/0x1a0 [ 258.404622] ? do_syscall_64+0x9a/0x820 [ 258.404638] ? do_syscall_64+0x9a/0x820 [ 258.404656] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 258.404693] ? security_file_ioctl+0x94/0xc0 [ 258.404713] ksys_ioctl+0xa9/0xd0 [ 258.433879] __x64_sys_ioctl+0x73/0xb0 [ 258.437780] do_syscall_64+0x1b9/0x820 [ 258.441695] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 258.447075] ? syscall_return_slowpath+0x5e0/0x5e0 [ 258.452017] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 258.456872] ? trace_hardirqs_on_caller+0x310/0x310 [ 258.461898] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 258.466932] ? prepare_exit_to_usermode+0x291/0x3b0 [ 258.471971] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 258.476836] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 258.482035] RIP: 0033:0x457659 [ 258.485241] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 258.504151] RSP: 002b:00007ffbeb4aac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 258.504167] RAX: ffffffffffffffda RBX: 00007ffbeb4aac90 RCX: 0000000000457659 [ 258.504177] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 258.504186] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 258.504196] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffbeb4ab6d4 [ 258.504206] R13: 00000000004c0505 R14: 00000000004d1580 R15: 0000000000000007 14:10:58 executing program 4 (fault-call:7 fault-nth:5): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:58 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:10:58 executing program 5 (fault-call:6 fault-nth:0): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:58 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0xf0}}, 0x28) 14:10:58 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 258.713069] FAULT_INJECTION: forcing a failure. [ 258.713069] name failslab, interval 1, probability 0, space 0, times 0 [ 258.758003] FAULT_INJECTION: forcing a failure. [ 258.758003] name failslab, interval 1, probability 0, space 0, times 0 [ 258.773222] CPU: 0 PID: 9456 Comm: syz-executor5 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 258.781743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 258.791110] Call Trace: [ 258.793727] dump_stack+0x244/0x39d [ 258.797877] ? dump_stack_print_info.cold.1+0x20/0x20 [ 258.803099] should_fail.cold.4+0xa/0x17 14:10:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 258.807186] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 258.812315] ? find_held_lock+0x36/0x1c0 [ 258.816395] ? lock_acquire+0x1ed/0x520 [ 258.820390] ? kvm_vm_ioctl+0x3ee/0x1d60 [ 258.824468] ? find_held_lock+0x36/0x1c0 [ 258.828568] ? perf_trace_sched_process_exec+0x860/0x860 [ 258.834046] __should_failslab+0x124/0x180 [ 258.838296] should_failslab+0x9/0x14 [ 258.842118] kmem_cache_alloc+0x2c4/0x730 [ 258.846287] ? kvm_vm_ioctl+0x467/0x1d60 [ 258.850365] vmx_create_vcpu+0xcf/0x25c0 [ 258.854461] ? print_usage_bug+0xc0/0xc0 [ 258.858532] ? handle_vmwrite+0x1280/0x1280 [ 258.862868] ? kasan_check_write+0x14/0x20 [ 258.867109] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 258.872057] ? wait_for_completion+0x8a0/0x8a0 [ 258.876653] ? lock_downgrade+0x900/0x900 [ 258.880824] ? check_preemption_disabled+0x48/0x280 [ 258.885852] kvm_arch_vcpu_create+0xe5/0x220 [ 258.890269] ? kvm_arch_vcpu_free+0x90/0x90 [ 258.894605] kvm_vm_ioctl+0x472/0x1d60 [ 258.898500] ? graph_lock+0x270/0x270 [ 258.902306] ? dput.part.25+0x26d/0x860 [ 258.906296] ? kvm_set_memory_region+0x50/0x50 [ 258.910884] ? graph_lock+0x270/0x270 [ 258.914717] ? find_held_lock+0x36/0x1c0 [ 258.918785] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 258.924324] ? _parse_integer+0x134/0x180 [ 258.928483] ? graph_lock+0x270/0x270 [ 258.932295] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 258.937841] ? graph_lock+0x270/0x270 [ 258.941647] ? _parse_integer+0x180/0x180 [ 258.945816] ? graph_lock+0x270/0x270 [ 258.949623] ? lock_release+0xa00/0xa00 [ 258.953601] ? perf_trace_sched_process_exec+0x860/0x860 [ 258.959064] ? find_held_lock+0x36/0x1c0 [ 258.963135] ? __fget+0x4aa/0x740 [ 258.966594] ? lock_downgrade+0x900/0x900 [ 258.970746] ? check_preemption_disabled+0x48/0x280 [ 258.975774] ? kasan_check_read+0x11/0x20 [ 258.979925] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 258.985207] ? rcu_read_unlock_special+0x370/0x370 [ 258.990149] ? __fget+0x4d1/0x740 [ 258.993611] ? ksys_dup3+0x680/0x680 [ 258.997342] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 259.002284] ? kvm_set_memory_region+0x50/0x50 [ 259.006876] do_vfs_ioctl+0x1de/0x1790 [ 259.010770] ? __lock_is_held+0xb5/0x140 [ 259.014843] ? ioctl_preallocate+0x300/0x300 [ 259.019254] ? __fget_light+0x2e9/0x430 [ 259.023235] ? fget_raw+0x20/0x20 [ 259.026709] ? __sb_end_write+0xd9/0x110 [ 259.030784] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.036323] ? fput+0x130/0x1a0 [ 259.039609] ? do_syscall_64+0x9a/0x820 [ 259.043588] ? do_syscall_64+0x9a/0x820 [ 259.047571] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 259.052157] ? security_file_ioctl+0x94/0xc0 [ 259.056575] ksys_ioctl+0xa9/0xd0 [ 259.060038] __x64_sys_ioctl+0x73/0xb0 [ 259.063934] do_syscall_64+0x1b9/0x820 [ 259.067825] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 259.073199] ? syscall_return_slowpath+0x5e0/0x5e0 [ 259.078132] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 259.082981] ? trace_hardirqs_on_caller+0x310/0x310 [ 259.088006] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 259.093027] ? prepare_exit_to_usermode+0x291/0x3b0 [ 259.098051] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 259.102908] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 259.108097] RIP: 0033:0x457659 [ 259.111298] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 259.130199] RSP: 002b:00007f0d956d0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 259.137911] RAX: ffffffffffffffda RBX: 00007f0d956d0c90 RCX: 0000000000457659 [ 259.145180] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 259.152447] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 14:10:58 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:58 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x8}}, 0x28) [ 259.159716] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0d956d16d4 [ 259.166988] R13: 00000000004c00c8 R14: 00000000004d1100 R15: 0000000000000007 14:10:58 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'user.', '/dev/sg#\x00'}) 14:10:58 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 259.306855] CPU: 1 PID: 9461 Comm: syz-executor4 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 259.315390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 259.324750] Call Trace: [ 259.324777] dump_stack+0x244/0x39d [ 259.324800] ? dump_stack_print_info.cold.1+0x20/0x20 [ 259.324822] ? __kernel_text_address+0xd/0x40 [ 259.340707] ? unwind_get_return_address+0x61/0xa0 [ 259.340733] should_fail.cold.4+0xa/0x17 [ 259.340754] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 259.354850] ? save_stack+0xa9/0xd0 [ 259.358497] ? kasan_kmalloc+0xcb/0xd0 [ 259.362399] ? kasan_slab_alloc+0x12/0x20 [ 259.366559] ? kmem_cache_alloc+0x130/0x730 [ 259.366581] ? mmu_topup_memory_caches+0xfb/0x470 [ 259.375743] ? kvm_mmu_load+0x21/0x1290 [ 259.375757] ? kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 259.375775] ? graph_lock+0x270/0x270 [ 259.375797] ? __x64_sys_ioctl+0x73/0xb0 [ 259.392713] ? do_syscall_64+0x1b9/0x820 [ 259.396783] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 259.396811] ? find_held_lock+0x36/0x1c0 [ 259.396831] ? __lock_is_held+0xb5/0x140 [ 259.410376] ? tpm1_get_timeouts+0xc88/0x1750 [ 259.414902] ? mmu_topup_memory_caches+0xfb/0x470 [ 259.419760] ? perf_trace_sched_process_exec+0x860/0x860 [ 259.425241] __should_failslab+0x124/0x180 [ 259.429493] should_failslab+0x9/0x14 [ 259.433315] kmem_cache_alloc+0x2c4/0x730 [ 259.437477] ? kvm_is_reserved_pfn+0x144/0x1b0 [ 259.442082] mmu_topup_memory_caches+0xfb/0x470 [ 259.446777] kvm_mmu_load+0x21/0x1290 [ 259.450598] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 259.456158] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 259.461721] kvm_arch_vcpu_ioctl_run+0x2889/0x7320 [ 259.466679] ? kvm_vcpu_ioctl+0x1e5/0x1150 [ 259.470950] ? kvm_arch_vcpu_runnable+0x710/0x710 [ 259.475809] ? graph_lock+0x270/0x270 [ 259.479628] ? __lock_acquire+0x62f/0x4c20 [ 259.483894] ? lock_downgrade+0x900/0x900 [ 259.488051] ? check_preemption_disabled+0x48/0x280 [ 259.493061] ? find_held_lock+0x36/0x1c0 [ 259.497119] ? get_task_pid+0x1ea/0x3b0 [ 259.501096] ? lock_downgrade+0x900/0x900 [ 259.505231] ? check_preemption_disabled+0x48/0x280 [ 259.510239] ? kasan_check_read+0x11/0x20 [ 259.514372] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 259.519635] ? rcu_read_unlock_special+0x370/0x370 [ 259.524582] ? find_get_pid+0x270/0x270 [ 259.528551] ? graph_lock+0x270/0x270 [ 259.532695] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.538223] kvm_vcpu_ioctl+0x5c8/0x1150 [ 259.542267] ? kvm_vcpu_ioctl+0x5c8/0x1150 [ 259.546511] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 259.552212] ? find_held_lock+0x36/0x1c0 [ 259.556267] ? __fget+0x4aa/0x740 [ 259.559709] ? check_preemption_disabled+0x48/0x280 [ 259.564718] ? kasan_check_read+0x11/0x20 [ 259.568852] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 259.574115] ? rcu_read_unlock_special+0x370/0x370 [ 259.579040] ? __fget+0x4d1/0x740 [ 259.582488] ? ksys_dup3+0x680/0x680 [ 259.586199] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 259.591120] ? kvm_uevent_notify_change.part.32+0x450/0x450 [ 259.596818] do_vfs_ioctl+0x1de/0x1790 [ 259.600694] ? __lock_is_held+0xb5/0x140 [ 259.604749] ? ioctl_preallocate+0x300/0x300 [ 259.609149] ? __fget_light+0x2e9/0x430 [ 259.613108] ? fget_raw+0x20/0x20 [ 259.616549] ? __sb_end_write+0xd9/0x110 [ 259.620602] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 259.626123] ? fput+0x130/0x1a0 [ 259.629392] ? do_syscall_64+0x9a/0x820 [ 259.633370] ? do_syscall_64+0x9a/0x820 [ 259.637336] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 259.641906] ? security_file_ioctl+0x94/0xc0 [ 259.646303] ksys_ioctl+0xa9/0xd0 [ 259.649747] __x64_sys_ioctl+0x73/0xb0 [ 259.653620] do_syscall_64+0x1b9/0x820 [ 259.657494] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 259.662844] ? syscall_return_slowpath+0x5e0/0x5e0 [ 259.667759] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 259.672610] ? trace_hardirqs_on_caller+0x310/0x310 [ 259.677632] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 259.682635] ? prepare_exit_to_usermode+0x291/0x3b0 [ 259.687648] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 259.692488] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 259.697670] RIP: 0033:0x457659 [ 259.700855] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 259.719741] RSP: 002b:00007ffbeb4aac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 259.727431] RAX: ffffffffffffffda RBX: 00007ffbeb4aac90 RCX: 0000000000457659 [ 259.734691] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 259.741945] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 259.749202] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffbeb4ab6d4 [ 259.756459] R13: 00000000004c0505 R14: 00000000004d1580 R15: 0000000000000007 14:10:59 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:10:59 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:59 executing program 3: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x1267, &(0x7f0000000280)) 14:10:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x4) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000140)={'ifb0\x00', {0x2, 0x4e23, @empty}}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x2000) ioctl$RTC_UIE_OFF(r2, 0x7004) ioctl$EVIOCSKEYCODE(r2, 0x40084504, &(0x7f0000000000)=[0x401, 0x4]) setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000100)=0x2880, 0x4) 14:10:59 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x10}}, 0x28) 14:10:59 executing program 5 (fault-call:6 fault-nth:1): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:10:59 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:59 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x800000000000000}}, 0x28) 14:10:59 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, 0x0) [ 259.953532] FAULT_INJECTION: forcing a failure. [ 259.953532] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 260.001050] CPU: 1 PID: 9495 Comm: syz-executor5 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 260.009588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.018949] Call Trace: [ 260.021559] dump_stack+0x244/0x39d [ 260.025225] ? dump_stack_print_info.cold.1+0x20/0x20 [ 260.030459] should_fail.cold.4+0xa/0x17 [ 260.030485] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 260.039652] ? graph_lock+0x270/0x270 [ 260.043484] ? lock_downgrade+0x900/0x900 [ 260.043504] ? check_preemption_disabled+0x48/0x280 [ 260.043529] ? kasan_check_read+0x11/0x20 [ 260.056842] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 260.062141] ? find_held_lock+0x36/0x1c0 [ 260.066270] ? nfsd4_open+0x110/0x24e0 [ 260.070196] ? lock_release+0xa00/0xa00 [ 260.074193] ? perf_trace_sched_process_exec+0x860/0x860 [ 260.079685] ? __might_sleep+0x95/0x190 [ 260.083693] __alloc_pages_nodemask+0x366/0xec0 [ 260.088374] ? kasan_slab_alloc+0x12/0x20 [ 260.092537] ? kmem_cache_alloc+0x130/0x730 [ 260.096876] ? vmx_create_vcpu+0xcf/0x25c0 [ 260.101136] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 [ 260.106175] ? __lockdep_init_map+0x105/0x590 [ 260.110700] ? lockdep_init_map+0x9/0x10 [ 260.114789] ? lockdep_init_map+0x9/0x10 [ 260.118863] ? __raw_spin_lock_init+0x2d/0x100 [ 260.123466] ? kvm_async_pf_vcpu_init+0x180/0x200 [ 260.128321] ? kvm_async_pf_deinit+0x30/0x30 [ 260.132752] ? __init_swait_queue_head+0x9e/0x150 [ 260.137613] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 260.143167] alloc_pages_current+0x173/0x350 [ 260.147594] kvm_vcpu_init+0x1ff/0x420 14:10:59 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) openat$dsp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dsp\x00', 0x48400, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x480000, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000240)='/dev/sequencer\x00', 0x8000, 0x0) read(r1, &(0x7f0000001580)=""/4096, 0x1000) r4 = geteuid() syz_open_dev$vivid(&(0x7f0000000080)='/dev/video#\x00', 0x3, 0x2) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f0000000100)=0x0) sendmsg$nl_netfilter(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2106080}, 0xc, &(0x7f0000000140)={&(0x7f0000002580)=ANY=[@ANYBLOB="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", @ANYRES32=r4, @ANYBLOB="8c012900d402b98dd5e6a6c8993396a113bb8a0a0586a1d74dd3ed75a5ed5bd5db7e5f9267bc7b0cd553f7ea7f430c8235ea6ac796288a295635d244a61d6687b3a19f9b0c503519a7bbf3e307fcfdcabe54af192d2b66aeadcb2f64ecb2c88c446e80bbb7d60c9810f14159a9ab87982fae4dea17ef7fb38821b3b268e30c0044001f0000000000000008006b0000000000000000007dea4d6dcec2fd8f47255d32d1a8f17ca47c4c19fb02edfb5830a0a6b00e6052e666e202cd23f361dbc9834b000000000000000000", @ANYRES32=r5, @ANYBLOB="0ead8cee99f9c710390baa65b5063eae0404209ff3e0b36672ea7c5d1e51a8816b0d60d012176247153a3a0d02816ee8fad4f1d8f260c922f9d61de608001e000000000014004d00fe8000000000000000000000000000bb98a582d89ae25a741363d871065179497ffeed8bf5eb7821cc83658979ba3fe586ff46f076f467d458fe5ddd2f012682d61dbae6d20fae08bc2183493445547a036b321d662d16d1b051ab356d440eb113e1602f305fc4043d90959ea0c7da0aab034349d282e18bddd00174b9ca69282fa3b386a327272fcdd2e33be6ff1daeb9f07033b86db86a424fc13485852d9eeecc3ac63fa026bad507600c98dbb2bae9811cf9714ad8a4a27bfb9c586cb33bf26f507b55cba9e3b58fc08eaccac4b3309aebe4cf34363bebd3cb1fc945c900b8fe40ff143faef7fb2840fd549ff2cf88702b98064d560f6bfc7f67eebf020fbac50faec9bef6472a273452a53fa04fcea51fe555f59c3b1271236140d60e1103060457e2659ea7c1f350f633053a180353907c5c72f2c4659a0714341c1ff65c75d7d8c08fa617174af091f683292f5d81a67461ba9040c56f0aa57b4f1b89bef169e7a4a796f774cfa1dab0c5ce876b34b6019c51107d0a438d22afe62962d6b18e0000"], 0x1290}, 0x1, 0x0, 0x0, 0x8000}, 0x1) 14:10:59 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:10:59 executing program 3 (fault-call:4 fault-nth:0): r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 260.147612] ? vcpu_stat_get+0x300/0x300 [ 260.147628] ? kmem_cache_alloc+0x33f/0x730 [ 260.147650] ? kvm_vm_ioctl+0x467/0x1d60 [ 260.163982] vmx_create_vcpu+0x14c/0x25c0 [ 260.168156] ? print_usage_bug+0xc0/0xc0 [ 260.172256] ? handle_vmwrite+0x1280/0x1280 [ 260.176604] ? kasan_check_write+0x14/0x20 [ 260.180858] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 260.185807] ? wait_for_completion+0x8a0/0x8a0 [ 260.190414] ? lock_downgrade+0x900/0x900 [ 260.194597] ? check_preemption_disabled+0x48/0x280 [ 260.199635] kvm_arch_vcpu_create+0xe5/0x220 [ 260.204066] ? kvm_arch_vcpu_free+0x90/0x90 [ 260.208420] kvm_vm_ioctl+0x472/0x1d60 [ 260.212328] ? graph_lock+0x270/0x270 [ 260.216146] ? dput.part.25+0x26d/0x860 [ 260.220147] ? kvm_set_memory_region+0x50/0x50 [ 260.224755] ? graph_lock+0x270/0x270 [ 260.228587] ? find_held_lock+0x36/0x1c0 [ 260.232675] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 260.238228] ? _parse_integer+0x134/0x180 [ 260.242394] ? graph_lock+0x270/0x270 [ 260.246217] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 260.251771] ? graph_lock+0x270/0x270 [ 260.255582] ? _parse_integer+0x180/0x180 [ 260.255599] ? graph_lock+0x270/0x270 [ 260.255616] ? lock_release+0xa00/0xa00 [ 260.255632] ? perf_trace_sched_process_exec+0x860/0x860 [ 260.255655] ? find_held_lock+0x36/0x1c0 [ 260.276798] FAULT_INJECTION: forcing a failure. [ 260.276798] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 260.277075] ? __fget+0x4aa/0x740 [ 260.292333] ? lock_downgrade+0x900/0x900 [ 260.296500] ? check_preemption_disabled+0x48/0x280 [ 260.301532] ? kasan_check_read+0x11/0x20 [ 260.305695] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 260.310989] ? rcu_read_unlock_special+0x370/0x370 [ 260.315939] ? __fget+0x4d1/0x740 [ 260.319408] ? ksys_dup3+0x680/0x680 [ 260.323143] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 260.328100] ? kvm_set_memory_region+0x50/0x50 [ 260.332699] do_vfs_ioctl+0x1de/0x1790 [ 260.336598] ? __lock_is_held+0xb5/0x140 [ 260.340685] ? ioctl_preallocate+0x300/0x300 [ 260.345105] ? __fget_light+0x2e9/0x430 [ 260.349120] ? fget_raw+0x20/0x20 [ 260.352588] ? __sb_end_write+0xd9/0x110 [ 260.356679] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 260.362226] ? fput+0x130/0x1a0 [ 260.365516] ? do_syscall_64+0x9a/0x820 [ 260.369502] ? do_syscall_64+0x9a/0x820 [ 260.373497] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 260.378093] ? security_file_ioctl+0x94/0xc0 [ 260.382519] ksys_ioctl+0xa9/0xd0 [ 260.385989] __x64_sys_ioctl+0x73/0xb0 [ 260.389892] do_syscall_64+0x1b9/0x820 [ 260.393798] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 260.399179] ? syscall_return_slowpath+0x5e0/0x5e0 [ 260.404127] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 260.408986] ? trace_hardirqs_on_caller+0x310/0x310 [ 260.414020] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 260.419050] ? prepare_exit_to_usermode+0x291/0x3b0 [ 260.424083] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 260.428946] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 260.434148] RIP: 0033:0x457659 [ 260.437357] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 260.456265] RSP: 002b:00007f0d956d0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 260.463980] RAX: ffffffffffffffda RBX: 00007f0d956d0c90 RCX: 0000000000457659 [ 260.471258] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 260.478538] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 260.485813] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0d956d16d4 [ 260.493086] R13: 00000000004c00c8 R14: 00000000004d1100 R15: 0000000000000007 [ 260.500394] CPU: 0 PID: 9518 Comm: syz-executor3 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 260.508893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 260.518254] Call Trace: [ 260.520861] dump_stack+0x244/0x39d [ 260.524510] ? dump_stack_print_info.cold.1+0x20/0x20 [ 260.529718] ? mark_held_locks+0x130/0x130 [ 260.529745] should_fail.cold.4+0xa/0x17 [ 260.529767] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 260.538056] ? graph_lock+0x270/0x270 [ 260.538077] ? graph_lock+0x270/0x270 14:11:00 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x8004ae98, 0x0) 14:11:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 260.538093] ? __lock_is_held+0xb5/0x140 [ 260.538127] ? __lock_is_held+0xb5/0x140 [ 260.538226] ? nfsd_cross_mnt+0x7a8/0x890 [ 260.538251] ? check_preemption_disabled+0x48/0x280 [ 260.538269] ? lock_release+0xa00/0xa00 [ 260.538286] ? perf_trace_sched_process_exec+0x860/0x860 [ 260.538301] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 260.538318] ? rcu_read_unlock_special+0x370/0x370 [ 260.538338] ? __might_sleep+0x95/0x190 [ 260.563270] __alloc_pages_nodemask+0x366/0xec0 [ 260.563296] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 [ 260.563317] ? filemap_map_pages+0x1a20/0x1a20 [ 260.577733] ? __lock_acquire+0x62f/0x4c20 [ 260.587919] ? preempt_schedule+0x4d/0x60 [ 260.587952] ? mark_held_locks+0x130/0x130 [ 260.587973] ? mpol_shared_policy_lookup+0xf7/0x150 [ 260.587995] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 260.588015] alloc_pages_vma+0x13d/0x690 [ 260.588039] shmem_alloc_page+0xa8/0x190 [ 260.588057] ? shmem_swapin+0x230/0x230 [ 260.588107] shmem_alloc_and_acct_page+0x248/0xdb0 [ 260.588130] ? shmem_getattr+0x2c0/0x2c0 14:11:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 260.606351] ? lock_downgrade+0x900/0x900 [ 260.606374] ? __lock_acquire+0x62f/0x4c20 [ 260.606391] ? print_usage_bug+0xc0/0xc0 [ 260.606415] ? __lock_acquire+0x62f/0x4c20 [ 260.606439] ? mark_held_locks+0x130/0x130 [ 260.606464] shmem_getpage_gfp+0x61b/0x31c0 [ 260.641730] ? shmem_unuse_inode.isra.46+0x1310/0x1310 [ 260.641751] ? print_usage_bug+0xc0/0xc0 [ 260.659110] ? __lock_acquire+0x62f/0x4c20 [ 260.659132] ? print_usage_bug+0xc0/0xc0 [ 260.659152] ? graph_lock+0x270/0x270 [ 260.659177] ? print_usage_bug+0xc0/0xc0 [ 260.693610] ? lock_unpin_lock+0x4a0/0x4a0 [ 260.701456] ? lock_unpin_lock+0x4a0/0x4a0 [ 260.701475] ? is_bpf_text_address+0xac/0x170 [ 260.701493] ? print_usage_bug+0xc0/0xc0 [ 260.701513] ? __lock_acquire+0x62f/0x4c20 [ 260.709979] ? kasan_check_read+0x11/0x20 [ 260.710001] ? __lock_acquire+0x62f/0x4c20 [ 260.710021] ? print_usage_bug+0xc0/0xc0 [ 260.726933] ? __lock_acquire+0x62f/0x4c20 [ 260.726956] ? print_usage_bug+0xc0/0xc0 [ 260.726976] ? mark_held_locks+0x130/0x130 [ 260.747785] ? __lock_acquire+0x62f/0x4c20 14:11:00 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x4048ae9b, 0x0) 14:11:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 260.752044] ? print_usage_bug+0xc0/0xc0 [ 260.756127] ? mark_held_locks+0x130/0x130 [ 260.760377] ? graph_lock+0x270/0x270 [ 260.764204] ? __lock_acquire+0x62f/0x4c20 [ 260.768457] ? __lock_acquire+0x62f/0x4c20 [ 260.772718] ? print_usage_bug+0xc0/0xc0 [ 260.776787] ? find_held_lock+0x36/0x1c0 [ 260.780875] ? mark_held_locks+0x130/0x130 [ 260.785161] shmem_fault+0x25f/0x960 [ 260.788894] ? find_held_lock+0x36/0x1c0 [ 260.792979] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 260.798750] ? mark_held_locks+0xc7/0x130 [ 260.802931] ? __lock_acquire+0x62f/0x4c20 [ 260.807189] __do_fault+0x100/0x6b0 [ 260.810859] ? print_usage_bug+0xc0/0xc0 [ 260.814938] ? pmd_devmap_trans_unstable+0x220/0x220 [ 260.820062] ? mark_held_locks+0x130/0x130 [ 260.824308] ? mark_held_locks+0x130/0x130 [ 260.828559] ? __lock_acquire+0x62f/0x4c20 [ 260.828578] ? find_held_lock+0x36/0x1c0 [ 260.828607] __handle_mm_fault+0x3c82/0x5b70 [ 260.841303] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 260.841324] ? print_usage_bug+0xc0/0xc0 [ 260.841344] ? mark_held_locks+0x130/0x130 [ 260.854504] ? print_usage_bug+0xc0/0xc0 [ 260.858587] ? graph_lock+0x270/0x270 [ 260.862403] ? graph_lock+0x270/0x270 [ 260.866224] ? find_held_lock+0x36/0x1c0 [ 260.870307] ? handle_mm_fault+0x42a/0xc70 [ 260.874562] ? lock_downgrade+0x900/0x900 [ 260.878728] ? check_preemption_disabled+0x48/0x280 [ 260.883771] ? kasan_check_read+0x11/0x20 [ 260.887936] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 260.893230] ? rcu_read_unlock_special+0x370/0x370 [ 260.893251] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 260.893269] ? check_preemption_disabled+0x48/0x280 [ 260.893292] handle_mm_fault+0x54f/0xc70 [ 260.903758] ? __handle_mm_fault+0x5b70/0x5b70 [ 260.903778] ? find_vma+0x34/0x190 [ 260.903804] __do_page_fault+0x5f6/0xd70 [ 260.912874] do_page_fault+0xf2/0x7e0 [ 260.912892] ? vmalloc_sync_all+0x30/0x30 [ 260.912915] ? error_entry+0x76/0xd0 [ 260.921025] ? trace_hardirqs_off_caller+0xbb/0x310 [ 260.921046] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 260.921064] ? trace_hardirqs_on_caller+0x310/0x310 [ 260.921091] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 260.956445] page_fault+0x1e/0x30 [ 260.956463] RIP: 0010:__put_user_4+0x1c/0x30 [ 260.956481] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 [ 260.956489] RSP: 0018:ffff88818264f8c8 EFLAGS: 00010293 [ 260.956502] RAX: 0000000000040000 RBX: 00007fffffffeffd RCX: 0000000020000280 [ 260.956517] RDX: 0000000000000000 RSI: ffffffff81b2fa73 RDI: ffff8881cf13ab3c [ 260.964361] RBP: ffff88818264fc08 R08: 1ffff110304c9ef6 R09: 0000000000000008 [ 260.964372] R10: 0000000000000001 R11: ffff88818e39e400 R12: ffff8881cf13a680 [ 260.964382] R13: 0000000000001267 R14: ffff8881ca41d580 R15: ffff8881825e5c00 [ 260.964412] ? __might_fault+0x1a3/0x1e0 [ 260.964432] ? sg_ioctl+0x1c19/0x2dd0 [ 261.032892] ? lock_release+0xa00/0xa00 [ 261.036884] ? perf_trace_sched_process_exec+0x860/0x860 [ 261.042351] ? sg_new_write.isra.18+0xa50/0xa50 [ 261.042371] ? find_held_lock+0x36/0x1c0 [ 261.042395] ? __fget+0x4aa/0x740 [ 261.051119] ? lock_downgrade+0x900/0x900 [ 261.051138] ? check_preemption_disabled+0x48/0x280 [ 261.051161] ? kasan_check_read+0x11/0x20 [ 261.067901] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 261.073193] ? rcu_read_unlock_special+0x370/0x370 [ 261.078148] ? __fget+0x4d1/0x740 [ 261.081627] ? ksys_dup3+0x680/0x680 [ 261.085378] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 261.090313] ? sg_new_write.isra.18+0xa50/0xa50 [ 261.094972] do_vfs_ioctl+0x1de/0x1790 [ 261.098856] ? __lock_is_held+0xb5/0x140 [ 261.102909] ? ioctl_preallocate+0x300/0x300 [ 261.107308] ? __fget_light+0x2e9/0x430 [ 261.111285] ? fget_raw+0x20/0x20 [ 261.114748] ? __sb_end_write+0xd9/0x110 [ 261.118801] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 261.124326] ? fput+0x130/0x1a0 [ 261.127596] ? do_syscall_64+0x9a/0x820 [ 261.131559] ? do_syscall_64+0x9a/0x820 [ 261.135523] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 261.140095] ? security_file_ioctl+0x94/0xc0 [ 261.144496] ksys_ioctl+0xa9/0xd0 [ 261.147939] __x64_sys_ioctl+0x73/0xb0 [ 261.151817] do_syscall_64+0x1b9/0x820 [ 261.155699] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 261.161053] ? syscall_return_slowpath+0x5e0/0x5e0 [ 261.165972] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 261.170805] ? trace_hardirqs_on_caller+0x310/0x310 [ 261.175812] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 261.180819] ? prepare_exit_to_usermode+0x291/0x3b0 [ 261.185828] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 261.190671] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 261.195852] RIP: 0033:0x457659 [ 261.199051] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 261.217937] RSP: 002b:00007f00c2fb7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 261.225629] RAX: ffffffffffffffda RBX: 00007f00c2fb7c90 RCX: 0000000000457659 [ 261.232883] RDX: 0000000020000280 RSI: 0000000000001267 RDI: 0000000000000003 [ 261.240137] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 261.247393] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f00c2fb86d4 [ 261.254653] R13: 00000000004c0f5b R14: 00000000004d2240 R15: 0000000000000006 14:11:00 executing program 5 (fault-call:6 fault-nth:2): r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:11:00 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:00 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x8000000}}, 0x28) 14:11:00 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x4020940d, 0x0) 14:11:00 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socket$packet(0x11, 0x3, 0x300) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:00 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:01 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:01 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5385, &(0x7f0000000280)) [ 261.480467] FAULT_INJECTION: forcing a failure. [ 261.480467] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 261.540417] CPU: 0 PID: 9554 Comm: syz-executor5 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 261.548964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 261.558325] Call Trace: [ 261.560944] dump_stack+0x244/0x39d [ 261.564600] ? dump_stack_print_info.cold.1+0x20/0x20 [ 261.569820] should_fail.cold.4+0xa/0x17 [ 261.569843] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 261.569858] ? should_fail+0x22d/0xd01 [ 261.569879] ? graph_lock+0x270/0x270 14:11:01 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x5451, 0x0) [ 261.579033] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 261.579052] ? graph_lock+0x270/0x270 [ 261.579070] ? lock_downgrade+0x900/0x900 [ 261.579087] ? check_preemption_disabled+0x48/0x280 [ 261.579111] ? find_held_lock+0x36/0x1c0 [ 261.579206] ? security_bounded_transition+0x420/0x6a0 [ 261.579235] ? lock_release+0xa00/0xa00 [ 261.618220] ? perf_trace_sched_process_exec+0x860/0x860 [ 261.618247] ? __might_sleep+0x95/0x190 [ 261.618270] __alloc_pages_nodemask+0x366/0xec0 [ 261.627716] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 14:11:01 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 261.627731] ? vmx_create_vcpu+0xcf/0x25c0 [ 261.627753] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 [ 261.627777] ? __lockdep_init_map+0x105/0x590 [ 261.651193] ? lockdep_init_map+0x9/0x10 [ 261.655279] ? lockdep_init_map+0x9/0x10 [ 261.655295] ? __raw_spin_lock_init+0x2d/0x100 [ 261.655314] ? kvm_async_pf_vcpu_init+0x180/0x200 [ 261.655332] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 261.655353] alloc_pages_current+0x173/0x350 [ 261.655374] kvm_arch_vcpu_init+0x201/0x820 [ 261.664006] kvm_vcpu_init+0x2fa/0x420 [ 261.664024] ? vcpu_stat_get+0x300/0x300 [ 261.664042] ? kmem_cache_alloc+0x33f/0x730 [ 261.664062] ? kvm_vm_ioctl+0x467/0x1d60 [ 261.664082] vmx_create_vcpu+0x14c/0x25c0 [ 261.678845] ? print_usage_bug+0xc0/0xc0 [ 261.678876] ? handle_vmwrite+0x1280/0x1280 [ 261.691137] ? kasan_check_write+0x14/0x20 [ 261.691157] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 261.691178] ? wait_for_completion+0x8a0/0x8a0 [ 261.707757] ? trace_hardirqs_off_caller+0x310/0x310 [ 261.707774] ? do_raw_spin_trylock+0x270/0x270 [ 261.707796] kvm_arch_vcpu_create+0xe5/0x220 [ 261.707812] ? kvm_arch_vcpu_free+0x90/0x90 [ 261.707841] kvm_vm_ioctl+0x472/0x1d60 [ 261.707862] ? graph_lock+0x270/0x270 [ 261.721334] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 261.721351] ? _raw_spin_unlock_irqrestore+0x82/0xd0 [ 261.721373] ? kvm_set_memory_region+0x50/0x50 [ 261.721389] ? graph_lock+0x270/0x270 [ 261.721418] ? find_held_lock+0x36/0x1c0 [ 261.731088] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 261.731107] ? _parse_integer+0x134/0x180 [ 261.731126] ? graph_lock+0x270/0x270 [ 261.731144] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 261.731163] ? graph_lock+0x270/0x270 [ 261.752228] ? _parse_integer+0x180/0x180 [ 261.752246] ? graph_lock+0x270/0x270 [ 261.752264] ? lock_release+0xa00/0xa00 [ 261.752280] ? perf_trace_sched_process_exec+0x860/0x860 [ 261.752311] ? find_held_lock+0x36/0x1c0 [ 261.774963] ? __fget+0x4aa/0x740 [ 261.774983] ? lock_downgrade+0x900/0x900 [ 261.775001] ? check_preemption_disabled+0x48/0x280 [ 261.775024] ? kasan_check_read+0x11/0x20 [ 261.775041] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 261.775058] ? rcu_read_unlock_special+0x370/0x370 [ 261.775083] ? __fget+0x4d1/0x740 [ 261.849990] ? ksys_dup3+0x680/0x680 [ 261.853722] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 261.858671] ? kvm_set_memory_region+0x50/0x50 [ 261.863269] do_vfs_ioctl+0x1de/0x1790 [ 261.867162] ? __lock_is_held+0xb5/0x140 [ 261.871229] ? ioctl_preallocate+0x300/0x300 [ 261.875642] ? __fget_light+0x2e9/0x430 [ 261.879631] ? fget_raw+0x20/0x20 [ 261.883094] ? __sb_end_write+0xd9/0x110 [ 261.887165] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 261.892711] ? fput+0x130/0x1a0 [ 261.895999] ? do_syscall_64+0x9a/0x820 [ 261.899976] ? do_syscall_64+0x9a/0x820 [ 261.903958] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 261.908551] ? security_file_ioctl+0x94/0xc0 [ 261.912965] ksys_ioctl+0xa9/0xd0 [ 261.916426] __x64_sys_ioctl+0x73/0xb0 [ 261.920317] do_syscall_64+0x1b9/0x820 [ 261.924207] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 261.929754] ? syscall_return_slowpath+0x5e0/0x5e0 [ 261.934701] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 261.939556] ? trace_hardirqs_on_caller+0x310/0x310 [ 261.944581] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 261.949605] ? prepare_exit_to_usermode+0x291/0x3b0 [ 261.954628] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 261.959487] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 261.964693] RIP: 0033:0x457659 [ 261.967892] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 14:11:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x3, 0x2) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r1, &(0x7f00000001c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2800000007784af43f3c46892c8c708e303b709e2c5fa4de44e94318c6b9288bd874549ffd1b32c83f42758ad2506d2ef9ac92fe0300efc65b014ca40347a37349c9d5d1363f30bd546affd0869fd49a6d1073b496614fb0e99d9d1f6ec85f71ba6920a936d4c5c10eaf4b655a3244970fbaaa4f", @ANYRES16=r2, @ANYBLOB="20002bbd7000fcdbdf251600000014000100100001007564703a73797a3000000000"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4000000) connect$netlink(r1, &(0x7f0000000140)=@kern={0x10, 0x0, 0x0, 0x40004}, 0xc) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) mmap(&(0x7f000065d000/0x2000)=nil, 0x2000, 0xfffffffffffffffe, 0x100031, r3, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) [ 261.986791] RSP: 002b:00007f0d956d0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 261.994501] RAX: ffffffffffffffda RBX: 00007f0d956d0c90 RCX: 0000000000457659 [ 262.001769] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000005 [ 262.009056] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 262.016323] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0d956d16d4 [ 262.023589] R13: 00000000004c00c8 R14: 00000000004d1100 R15: 0000000000000007 14:11:01 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0xf0ffff}}, 0x28) 14:11:01 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:11:01 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:01 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2286, &(0x7f0000000280)) 14:11:01 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xc0045878, 0x0) 14:11:01 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) openat$vimc0(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video0\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = gettid() fcntl$setownex(r1, 0xf, &(0x7f00000001c0)={0x0, r3}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r4 = creat(&(0x7f00000000c0)='./file0\x00', 0xa) getpeername$packet(0xffffffffffffff9c, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000140)=0x14) setsockopt$inet_mreqn(r4, 0x0, 0x0, &(0x7f0000000180)={@empty, @multicast1, r5}, 0xc) 14:11:01 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0xfffffffffffff000}}, 0x28) 14:11:02 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2275, &(0x7f0000000280)) 14:11:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$void(r0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$sndpcmc(&(0x7f00000000c0)='/dev/snd/pcmC#D#c\x00', 0x100000001, 0x2001) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x7ff, 0x8000) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x6) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0x3, 0x2) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) ioctl$BLKTRACESTOP(r2, 0x1275, 0x0) syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0xfffffffffffffff9, 0x68000) 14:11:02 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xc0045878, 0x0) 14:11:02 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x1000000000000000}}, 0x28) 14:11:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2202, &(0x7f0000000280)) 14:11:02 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xc0045878, 0x0) 14:11:02 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x10, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0xf7, 0x40000) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f00000000c0), 0x4) 14:11:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5450, &(0x7f0000000280)) 14:11:02 executing program 2: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x2272, &(0x7f0000000280)) 14:11:02 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0xf0ffffffffffff}}, 0x28) 14:11:02 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x5452, 0x0) 14:11:02 executing program 0: execve(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000180)='/dev/vcs\x00'], &(0x7f0000000700)=[&(0x7f0000000280)='systemwlan0keyring-\x00', &(0x7f0000000240)='/dev/sg#\x00', &(0x7f0000000640)='][\'%bdevmime_type\x00', &(0x7f0000000680)='fou\x00', &(0x7f00000006c0)='\x00']) syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x2) syz_genetlink_get_family_id$fou(&(0x7f0000000080)='fou\x00') r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000100)={0x6, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}]}) ioctl$VIDIOC_SUBDEV_G_EDID(r1, 0xc0285628, &(0x7f0000000780)={0x0, 0x40, 0x2, [], &(0x7f0000000740)=0x8}) 14:11:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0045878, &(0x7f0000000280)) 14:11:02 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, 0x0) 14:11:02 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x5421, 0x0) 14:11:02 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0xfffff000}}, 0x28) 14:11:02 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) prctl$PR_SVE_GET_VL(0x33, 0x1328b) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ppp\x00', 0x400000, 0x0) setsockopt$RDS_CONG_MONITOR(r2, 0x114, 0x6, &(0x7f0000000100)=0x1, 0x4) r3 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video0\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r3, 0x4008ae48, &(0x7f0000000080)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:02 executing program 2 (fault-call:4 fault-nth:0): r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:02 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xc0189436, 0x0) 14:11:02 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0189436, &(0x7f0000000280)) 14:11:02 executing program 0: pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$VIDIOC_S_EDID(r0, 0xc0285629, &(0x7f0000000180)={0x0, 0x8, 0x4, [], &(0x7f0000000140)=0x100000000}) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) getsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000080), &(0x7f00000000c0)=0x10) 14:11:02 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae03, 0x0) 14:11:02 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x10000000}}, 0x28) [ 263.225092] FAULT_INJECTION: forcing a failure. [ 263.225092] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 263.295829] CPU: 0 PID: 9681 Comm: syz-executor2 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 263.304364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 263.313726] Call Trace: [ 263.316333] dump_stack+0x244/0x39d [ 263.319992] ? dump_stack_print_info.cold.1+0x20/0x20 [ 263.325197] ? mark_held_locks+0x130/0x130 [ 263.325223] should_fail.cold.4+0xa/0x17 [ 263.325244] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 263.325263] ? graph_lock+0x270/0x270 [ 263.325283] ? graph_lock+0x270/0x270 [ 263.325299] ? __lock_is_held+0xb5/0x140 [ 263.325328] ? __lock_is_held+0xb5/0x140 [ 263.338717] ? check_preemption_disabled+0x48/0x280 [ 263.338738] ? lock_release+0xa00/0xa00 [ 263.338756] ? perf_trace_sched_process_exec+0x860/0x860 [ 263.338770] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 263.338787] ? rcu_read_unlock_special+0x370/0x370 [ 263.338807] ? __might_sleep+0x95/0x190 [ 263.359520] __alloc_pages_nodemask+0x366/0xec0 [ 263.359546] ? __alloc_pages_slowpath+0x2dc0/0x2dc0 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x0, 0x8000) write$P9_RXATTRCREATE(r2, &(0x7f00000000c0)={0x7, 0x21, 0x2}, 0x7) ioctl$SG_GET_COMMAND_Q(r0, 0x2270, &(0x7f0000000140)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000100)={0x14a, 0x1ff}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) [ 263.359564] ? filemap_map_pages+0x1a20/0x1a20 [ 263.359585] ? __lock_acquire+0x62f/0x4c20 [ 263.368996] ? preempt_schedule+0x4d/0x60 [ 263.369030] ? mark_held_locks+0x130/0x130 [ 263.369051] ? mpol_shared_policy_lookup+0xf7/0x150 [ 263.369075] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 263.369094] alloc_pages_vma+0x13d/0x690 [ 263.424693] shmem_alloc_page+0xa8/0x190 [ 263.428774] ? shmem_swapin+0x230/0x230 [ 263.432788] shmem_alloc_and_acct_page+0x248/0xdb0 [ 263.437742] ? shmem_getattr+0x2c0/0x2c0 [ 263.441835] ? lock_downgrade+0x900/0x900 [ 263.446002] ? __lock_acquire+0x62f/0x4c20 [ 263.450251] ? print_usage_bug+0xc0/0xc0 [ 263.450276] ? __lock_acquire+0x62f/0x4c20 [ 263.450303] ? mark_held_locks+0x130/0x130 [ 263.462839] shmem_getpage_gfp+0x61b/0x31c0 [ 263.462879] ? shmem_unuse_inode.isra.46+0x1310/0x1310 [ 263.472471] ? print_usage_bug+0xc0/0xc0 [ 263.476546] ? __lock_acquire+0x62f/0x4c20 [ 263.480798] ? print_usage_bug+0xc0/0xc0 [ 263.480819] ? graph_lock+0x270/0x270 [ 263.480845] ? print_usage_bug+0xc0/0xc0 [ 263.492770] ? lock_unpin_lock+0x4a0/0x4a0 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x80000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) [ 263.497022] ? lock_unpin_lock+0x4a0/0x4a0 [ 263.497041] ? is_bpf_text_address+0xac/0x170 [ 263.497059] ? print_usage_bug+0xc0/0xc0 [ 263.497079] ? __lock_acquire+0x62f/0x4c20 [ 263.497099] ? kasan_check_read+0x11/0x20 [ 263.497120] ? __lock_acquire+0x62f/0x4c20 [ 263.497140] ? print_usage_bug+0xc0/0xc0 [ 263.497160] ? __lock_acquire+0x62f/0x4c20 [ 263.530803] ? print_usage_bug+0xc0/0xc0 [ 263.534878] ? mark_held_locks+0x130/0x130 [ 263.539160] ? __lock_acquire+0x62f/0x4c20 [ 263.543423] ? print_usage_bug+0xc0/0xc0 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x20000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x1}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) [ 263.547510] ? mark_held_locks+0x130/0x130 [ 263.551764] ? graph_lock+0x270/0x270 [ 263.555593] ? __lock_acquire+0x62f/0x4c20 [ 263.559849] ? __lock_acquire+0x62f/0x4c20 [ 263.564102] ? print_usage_bug+0xc0/0xc0 [ 263.568179] ? find_held_lock+0x36/0x1c0 [ 263.572263] ? mark_held_locks+0x130/0x130 [ 263.576523] shmem_fault+0x25f/0x960 [ 263.580248] ? find_held_lock+0x36/0x1c0 [ 263.584336] ? shmem_read_mapping_page_gfp+0x1f0/0x1f0 [ 263.589631] ? mark_held_locks+0xc7/0x130 [ 263.593820] ? __lock_acquire+0x62f/0x4c20 [ 263.598074] __do_fault+0x100/0x6b0 [ 263.598093] ? print_usage_bug+0xc0/0xc0 [ 263.598114] ? pmd_devmap_trans_unstable+0x220/0x220 [ 263.605801] ? mark_held_locks+0x130/0x130 [ 263.605818] ? mark_held_locks+0x130/0x130 [ 263.605840] ? __lock_acquire+0x62f/0x4c20 [ 263.605857] ? find_held_lock+0x36/0x1c0 [ 263.605883] __handle_mm_fault+0x3c82/0x5b70 [ 263.605908] ? vmf_insert_mixed_mkwrite+0x40/0x40 [ 263.605927] ? print_usage_bug+0xc0/0xc0 [ 263.641103] ? mark_held_locks+0x130/0x130 [ 263.645357] ? print_usage_bug+0xc0/0xc0 [ 263.649440] ? graph_lock+0x270/0x270 [ 263.653248] ? graph_lock+0x270/0x270 [ 263.657067] ? find_held_lock+0x36/0x1c0 [ 263.661155] ? handle_mm_fault+0x42a/0xc70 [ 263.665405] ? lock_downgrade+0x900/0x900 [ 263.669566] ? check_preemption_disabled+0x48/0x280 [ 263.674606] ? kasan_check_read+0x11/0x20 [ 263.678798] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 263.684092] ? rcu_read_unlock_special+0x370/0x370 [ 263.689048] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 263.694601] ? check_preemption_disabled+0x48/0x280 [ 263.699638] handle_mm_fault+0x54f/0xc70 [ 263.703732] ? __handle_mm_fault+0x5b70/0x5b70 [ 263.708335] ? find_vma+0x34/0x190 [ 263.711902] __do_page_fault+0x5f6/0xd70 [ 263.715989] do_page_fault+0xf2/0x7e0 [ 263.719807] ? vmalloc_sync_all+0x30/0x30 [ 263.723964] ? error_entry+0x76/0xd0 [ 263.727704] ? trace_hardirqs_off_caller+0xbb/0x310 [ 263.727724] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 263.727741] ? trace_hardirqs_on_caller+0x310/0x310 [ 263.727769] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 263.747469] page_fault+0x1e/0x30 [ 263.750943] RIP: 0010:__put_user_4+0x1c/0x30 [ 263.755366] Code: 1f 00 c3 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 8b 1c 25 40 ee 01 00 48 8b 9b 18 14 00 00 48 83 eb 03 48 39 d9 73 3c 0f 1f 00 <89> 01 31 c0 0f 1f 00 c3 66 90 66 2e 0f 1f 84 00 00 00 00 00 65 48 [ 263.774279] RSP: 0018:ffff8881805d78c8 EFLAGS: 00010293 [ 263.779647] RAX: 0000000000008000 RBX: 00007fffffffeffd RCX: 0000000020000280 [ 263.786940] RDX: 000000000000004b RSI: ffffffff81b2fa73 RDI: 0000000000000282 [ 263.794223] RBP: ffff8881805d7c08 R08: 1ffff110300baef6 R09: 0000000000000008 [ 263.801938] R10: 0000000000000001 R11: ffff888180768000 R12: ffff8881cf13a680 [ 263.809219] R13: 0000000000002272 R14: ffff8881ca41d580 R15: ffff8881805c85c0 [ 263.816518] ? __might_fault+0x1a3/0x1e0 [ 263.820605] ? sg_ioctl+0x16c5/0x2dd0 [ 263.824429] ? lock_release+0xa00/0xa00 [ 263.828440] ? perf_trace_sched_process_exec+0x860/0x860 [ 263.833912] ? sg_new_write.isra.18+0xa50/0xa50 [ 263.838605] ? find_held_lock+0x36/0x1c0 [ 263.842706] ? __fget+0x4aa/0x740 [ 263.846180] ? lock_downgrade+0x900/0x900 [ 263.850376] ? check_preemption_disabled+0x48/0x280 [ 263.855404] ? kasan_check_read+0x11/0x20 [ 263.859553] ? rcu_dynticks_curr_cpu_in_eqs+0xa2/0x170 [ 263.864821] ? rcu_read_unlock_special+0x370/0x370 [ 263.869745] ? __fget+0x4d1/0x740 [ 263.873193] ? ksys_dup3+0x680/0x680 [ 263.876900] ? __mutex_unlock_slowpath+0x197/0x8c0 [ 263.881820] ? sg_new_write.isra.18+0xa50/0xa50 [ 263.886480] do_vfs_ioctl+0x1de/0x1790 [ 263.890359] ? __lock_is_held+0xb5/0x140 [ 263.894412] ? ioctl_preallocate+0x300/0x300 [ 263.898811] ? __fget_light+0x2e9/0x430 [ 263.902775] ? fget_raw+0x20/0x20 [ 263.906219] ? __sb_end_write+0xd9/0x110 [ 263.910272] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 263.915796] ? fput+0x130/0x1a0 [ 263.919066] ? do_syscall_64+0x9a/0x820 [ 263.923028] ? do_syscall_64+0x9a/0x820 [ 263.926994] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 263.931703] ? security_file_ioctl+0x94/0xc0 [ 263.936153] ksys_ioctl+0xa9/0xd0 [ 263.939601] __x64_sys_ioctl+0x73/0xb0 [ 263.943478] do_syscall_64+0x1b9/0x820 [ 263.947357] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 263.952712] ? syscall_return_slowpath+0x5e0/0x5e0 [ 263.957675] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 263.962516] ? trace_hardirqs_on_caller+0x310/0x310 [ 263.967520] ? prepare_exit_to_usermode+0x3b0/0x3b0 [ 263.972555] ? prepare_exit_to_usermode+0x291/0x3b0 [ 263.977560] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 263.982396] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 263.987570] RIP: 0033:0x457659 [ 263.990754] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 264.009638] RSP: 002b:00007fe2349a7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 264.017340] RAX: ffffffffffffffda RBX: 00007fe2349a7c90 RCX: 0000000000457659 [ 264.024607] RDX: 0000000020000280 RSI: 0000000000002272 RDI: 0000000000000003 [ 264.031885] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 264.039143] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe2349a86d4 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) accept$inet(r0, &(0x7f0000000180)={0x2, 0x0, @dev}, &(0x7f00000001c0)=0x10) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x20800, 0x0) ioctl$DRM_IOCTL_MODE_SETCRTC(r2, 0xc06864a2, &(0x7f0000000100)={&(0x7f00000000c0)=[0x10001, 0x4768c75e, 0x5, 0x0], 0x4, 0x22a1128d, 0x5, 0x4, 0x0, 0x7ff, {0x8, 0x4, 0x2, 0xffffffffffffffff, 0x8, 0x1, 0x8, 0x7, 0x3, 0x8, 0x8046, 0x9f, 0x91b, 0x5fcdc795, "af6d897168560db3e3df792990a23a2694b4c68ac4a951ef653c518d7d151368"}}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:03 executing program 0: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x700, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xd8, r1, 0x302, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0x1}}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x497a}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xfffffffffffffbff}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x62e}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_SERVICE={0x38, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x20}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0x10}}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e20}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1d}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, [], 0xb}}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@local}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x2}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x80}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x20044001}, 0x20040000) r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2282, &(0x7f0000000280)) [ 264.046397] R13: 00000000004c0f5b R14: 00000000004d2240 R15: 0000000000000006 14:11:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0xc00200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = dup2(r0, r1) ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f0000000080)={0x2, 0xffff}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5451, &(0x7f0000000280)) 14:11:03 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xc018ae85, 0x0) 14:11:03 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4010ae42, 0x0) 14:11:03 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0xfffffffffffff000}}, 0x28) 14:11:03 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1274, &(0x7f0000000280)) 14:11:03 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x4000, 0x0) ioctl$PPPIOCGMRU(r1, 0x80047453, &(0x7f0000000100)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x6124) getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000140)={'TPROXY\x00'}, &(0x7f0000000180)=0x1e) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x80000001, 0x4000) setns(r2, 0x7c000000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:03 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1276, &(0x7f0000000280)) 14:11:04 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x4004ae99, 0x0) 14:11:04 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5421, &(0x7f0000000280)) 14:11:04 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227d, &(0x7f0000000280)) 14:11:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$radio(&(0x7f0000000140)='/dev/radio#\x00', 0x2, 0x2) getsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000002c0)=""/4096, &(0x7f0000000180)=0x1000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) setsockopt(r2, 0xffff, 0x80000001, &(0x7f0000000080)="6a91bd44c6941ae5f61daa7e358a8315759ac4c34e2be8587c04edc84c2c60559fa99441a06ca709facfd6267bede9254c654b8bb5e81eda1455abd16bee5705888f350f1b970f9b242e9adace0455a63f9696c81f545f37659a2fc6a2138da6d4a04e9f465b2567a283fd5c266e97183bbc16fae2086673da5b030e0beab608782f6be52d60438945cfcb2835", 0x8d) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:04 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xc0045878, 0x0) 14:11:04 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0x800000000000000}}, 0x28) 14:11:04 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0481273, &(0x7f0000000280)) 14:11:04 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2201, &(0x7f0000000280)) 14:11:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000180)='/dev/dlm-control\x00', 0x402000, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000140)=0x9) openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x4000, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rtc0\x00', 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000002c0)={{0x2, 0x1, 0x1, 0x5, '\x00', 0xe1b}, 0x1, [0x3, 0x43, 0xffffffff, 0x627, 0x2, 0x7, 0xfff, 0x2, 0x467c, 0x36, 0xffffffff, 0xfffffffffffffffc, 0x174, 0xffffffff, 0x2, 0x473, 0xff, 0x2, 0x1, 0x80, 0x1ee, 0x3, 0x2, 0x80000001, 0xffffffffffffff00, 0xea, 0x81, 0xfffffffffffffffb, 0x681, 0x10001, 0x3, 0x40, 0x1c1, 0xd, 0x0, 0x3ff, 0xfff, 0x400, 0x1, 0x0, 0x80, 0xff, 0x100, 0xfffffffffffffffc, 0x3, 0x8, 0x2d435694, 0x5d8, 0x4, 0x7, 0x81, 0x40, 0x101, 0xffffffffffffffff, 0x81, 0xf42, 0x4f, 0x7, 0x9, 0x100000000, 0x4, 0x7, 0x7d4, 0x2, 0x4, 0x6, 0x45a7, 0x44aa, 0x3, 0x5, 0x1, 0x2, 0x0, 0x0, 0x100000000, 0x34ac, 0xb9, 0x8001, 0x7, 0x8000, 0xffffffffffff0001, 0x3, 0x1, 0xfffffffffffffffa, 0x6, 0x2, 0xfff, 0x3, 0x0, 0x1, 0x8001, 0x3f, 0x3f, 0x200, 0x9, 0x6, 0x8, 0x3ff, 0x6, 0x200, 0xf981, 0x1000, 0x600, 0xffffffffffff8001, 0x9, 0xffffffff, 0x8, 0xc7ab, 0x6, 0x1d2cc0a4, 0xd83f, 0x8, 0x8, 0xc7b, 0x7, 0x101, 0x8, 0x80, 0x75eb, 0xa14, 0x6, 0x2ad2, 0x0, 0x800, 0x800000000000000, 0x387, 0x100000000, 0x10000], {r3, r4+30000000}}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:04 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x2, 0x0) 14:11:04 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0xf0}}, 0x28) 14:11:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:04 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0045878, &(0x7f0000000280)) 14:11:04 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4010ae67, 0x0) 14:11:04 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2205, &(0x7f0000000280)) 14:11:04 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227b, &(0x7f0000000280)) 14:11:04 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x5421, 0x0) 14:11:04 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0xf0ffffffffffff}}, 0x28) 14:11:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) syz_open_dev$sndpcmp(&(0x7f0000000240)='/dev/snd/pcmC#D#p\x00', 0x1, 0x400000) r3 = dup3(r1, r0, 0x80000) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/sequencer2\x00', 0x100, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000300)='/dev/qat_adf_ctl\x00', 0x200000, 0x0) r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000340)='/dev/audio\x00', 0x300, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0xfe) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r5 = request_key(&(0x7f0000000100)='keyring\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)='/dev/sg#\x00', 0xfffffffffffffffc) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f00000001c0)=0x0) syz_open_procfs$namespace(r6, &(0x7f0000000200)='ns/cgroup\x00') add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, r5) ioctl$TCSETA(r3, 0x5406, &(0x7f0000000380)={0x4, 0x100000001, 0xc16, 0x1000, 0x2, 0x5c7c, 0x20a, 0x81, 0xfff, 0x4}) 14:11:04 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2287, &(0x7f0000000280)) 14:11:04 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x2, 0x0) 14:11:04 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2287, &(0x7f0000000280)) 14:11:04 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x8, 0x608000) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000000c0)={'nat\x00'}, &(0x7f0000000140)=0x54) 14:11:04 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0xfffff000}}, 0x28) 14:11:04 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2201, &(0x7f0000000280)) 14:11:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1274, &(0x7f0000000280)) 14:11:05 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x5450, 0x0) 14:11:05 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x8138ae83, 0x0) 14:11:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2271, &(0x7f0000000280)) 14:11:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x4, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:05 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0xf0ffff}}, 0x28) 14:11:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5386, &(0x7f0000000280)) 14:11:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2, &(0x7f0000000280)) 14:11:05 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x81a0ae8c, 0x0) 14:11:05 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x5452, 0x0) 14:11:05 executing program 0: r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x0, 0x0) ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f00000000c0)=0x3) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) 14:11:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:11:05 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0x8000000}}, 0x28) 14:11:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5386, &(0x7f0000000280)) 14:11:05 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4008ae61, 0x0) 14:11:05 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x5450, 0x0) 14:11:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_GET_RESERVED_SIZE(r0, 0x2272, &(0x7f0000000000)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_open_dev$usb(&(0x7f0000000200)='/dev/bus/usb/00#/00#\x00', 0x8f45, 0x400000) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r3, 0x84, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="04f2cf607d3b95a540a27f9c"], &(0x7f00000002c0)=0xc) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_S_PARM(r1, 0xc0cc5616, &(0x7f0000000100)={0x0, @capture={0x1000, 0x1, {0x10001, 0x9}, 0xffffffff80000001, 0x100}}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x81, 0x0) ioctl$UI_SET_SNDBIT(r4, 0x4004556a, 0x4) write$P9_RXATTRWALK(r4, &(0x7f00000000c0)={0xf, 0x1f, 0x1, 0xb9}, 0xf) ioctl$ASHMEM_GET_PIN_STATUS(r4, 0x7709, 0x0) 14:11:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227c, &(0x7f0000000280)) 14:11:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1276, &(0x7f0000000280)) 14:11:05 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0x10000000}}, 0x28) 14:11:05 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:05 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup2(r2, r1) setsockopt$inet6_MCAST_JOIN_GROUP(r3, 0x29, 0x2a, &(0x7f0000000180)={0x20, {{0xa, 0x4e22, 0x7, @mcast1}}}, 0x88) r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer\x00', 0x400000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$TIPC_NODE_RECVQ_DEPTH(r3, 0x10f, 0x83, &(0x7f0000000240), &(0x7f00000002c0)=0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r4, 0x84, 0xa, &(0x7f00000000c0)={0xff55, 0x10001, 0x4, 0x5c, 0x0, 0xf915, 0x4, 0x1, 0x0}, &(0x7f0000000100)=0x20) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f0000000140)={r5, 0x200}, 0x8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r4, 0x2405, r4) 14:11:05 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4040ae79, 0x0) 14:11:05 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227e, &(0x7f0000000280)) 14:11:05 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x5460, 0x0) 14:11:06 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0x8}}, 0x28) 14:11:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x8001, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5450, &(0x7f0000000280)) 14:11:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227e, &(0x7f0000000280)) 14:11:06 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x4004ae8b, 0x0) 14:11:06 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0x10}}, 0x28) 14:11:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x6, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x2, 0x2) write$P9_RRENAME(r2, &(0x7f00000000c0)={0x7, 0x15, 0x1}, 0x7) ioctl$SCSI_IOCTL_DOORUNLOCK(r0, 0x5381) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:06 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xc00caee0, 0x0) 14:11:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0189436, &(0x7f0000000280)) 14:11:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227c, &(0x7f0000000280)) 14:11:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x20000000000000a, 0x2, 0x0) getsockopt$sock_buf(r2, 0x1, 0x1c, &(0x7f0000e530e9)=""/16, &(0x7f0000000000)=0x10) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2271, &(0x7f0000000280)) 14:11:06 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x4090ae82, 0x0) 14:11:06 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0x1000000000000000}}, 0x28) 14:11:06 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xc008ae67, 0x0) 14:11:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1275, &(0x7f0000000280)) 14:11:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f0000000100)={{{@in=@empty, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@dev}}, &(0x7f0000000200)=0xe8) getresgid(&(0x7f0000000240), &(0x7f00000002c0), &(0x7f0000000300)=0x0) write$FUSE_ATTR(r2, &(0x7f0000000340)={0x78, 0x0, 0x6, {0x100000000, 0x3, 0x0, {0x4, 0x6, 0xb8b, 0x3, 0xec51, 0x899, 0x0, 0x180, 0xec5, 0x8c, 0x401, r3, r4, 0x5, 0x4}}}, 0x78) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)) openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x20000, 0x9) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x4020940d, &(0x7f0000000280)) 14:11:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x0, 0x0) r3 = mmap$binder(&(0x7f0000620000/0x1000)=nil, 0x1000, 0x2, 0x100010, 0xffffffffffffff9c, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffff9c, 0xc018620b, &(0x7f00000000c0)={0x0}) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000002c0)={0x60, 0x0, &(0x7f0000000100)=[@acquire_done={0x40106309, r3, 0x2}, @decrefs={0x40046307, 0x2}, @dead_binder_done={0x40086310, 0x2}, @exit_looper, @register_looper, @increfs={0x40046304, 0x2}, @exit_looper, @clear_death={0x400c630f, 0x1, 0x3}, @increfs_done={0x40106308, r4, 0x3}], 0xc9, 0x0, &(0x7f0000000180)="a67afc645924fc0c458ab544967d32cee36cd28860ed4cd4ad145cef91f2c3a1081b7f1ad8310004c59d4e852f7f748e8b5429a53afc78fb4c93052115482b493d04fe9f6ad9b923a1f68d6cccede33a66fa6c2f02cc6d0a188343d4e010813404e5278da7dc1d9e85dba7627714cc56c9fe6989f7b00826b3ff8a42702824eb227144de2f1e988919e0648d14aeb18ac2fe800519ac493e7bb1f6c92b38595e4a32e577c6bda61ffdcdf893f8c43f06b18f2a46cc9075baf24965842acacc0c866ccb9de2415bbc57"}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2289, &(0x7f0000000280)) 14:11:06 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x8090ae81, 0x0) 14:11:06 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4020940d, 0x0) 14:11:06 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0x0, 0x0, 0xf000}}, 0x28) 14:11:06 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2289, &(0x7f0000000280)) 14:11:06 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socket$bt_bnep(0x1f, 0x3, 0x4) r2 = open(&(0x7f0000000080)='./file0\x00', 0x200, 0x3e) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffff9c, 0x84, 0x71, &(0x7f0000000140)={0x0, 0x2}, &(0x7f0000000180)=0x8) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f00000001c0)={r3, 0x400}, 0x8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:06 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5452, &(0x7f0000000280)) 14:11:07 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x200000e8) 14:11:07 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5382, &(0x7f0000000280)) 14:11:07 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$audion(&(0x7f0000000100)='/dev/audio#\x00', 0xfb, 0x101000) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, r0, 0x0) r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x40000, 0x0) ioctl$SCSI_IOCTL_TEST_UNIT_READY(r3, 0x2) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r2, 0xc4c85512, &(0x7f00000002c0)={{0xa, 0x0, 0x8001, 0x0, '\x00', 0x9}, 0x0, [0x0, 0x4, 0x5, 0x4, 0x36, 0x8, 0x2, 0x6, 0x800, 0x4, 0xb81, 0x4, 0x40, 0x100000000, 0xf87, 0x94, 0x0, 0xffff, 0x1, 0x401, 0xca08, 0x6, 0x0, 0x71, 0x7, 0x0, 0x641, 0x9, 0x2, 0x10001, 0x1, 0x3, 0x2, 0x40, 0x40, 0x0, 0x2, 0x0, 0x10001, 0x2, 0x8001, 0x400000, 0xb2, 0xfffffffffffffffd, 0xfffffffffffffc00, 0x2, 0x7, 0x80, 0x8, 0xee, 0x9, 0x7f, 0x5, 0xffff, 0x7, 0x6b9e5020, 0x2, 0x9, 0x100000001, 0x5, 0x4, 0x22c0, 0x81, 0x3, 0xbd, 0x6, 0x3204, 0x9, 0x0, 0x8, 0x3, 0x9, 0x3, 0x100, 0x9785, 0xffffffff, 0xffffffffffff7868, 0x80, 0xe2, 0xffff, 0x3, 0x78, 0x1, 0x3, 0x6, 0x2, 0x3, 0x8b9f, 0x7fffffff, 0x100000, 0x7, 0x639, 0x8, 0x5, 0xfffffffffffffffc, 0x1, 0x80, 0x8, 0x1, 0x7, 0x11d, 0x9, 0xffffffffffffff70, 0xe8d4, 0x7ff, 0x7fff, 0x8, 0x5, 0x40, 0x9, 0x0, 0x1f, 0x2, 0xff, 0x5, 0xe33, 0xffffffff, 0x451258cf, 0x1, 0x800, 0x2, 0xfff, 0x9, 0xfffffffffffffffe, 0x20, 0x3, 0xff80000000000000, 0x1]}) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x20200, 0x0) setsockopt$inet6_MRT6_ADD_MIF(r4, 0x29, 0xca, &(0x7f00000000c0)={0x5, 0x1, 0x6, 0x1, 0x5}, 0xc) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:07 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xc020660b, 0x0) 14:11:07 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4010ae68, 0x0) 14:11:07 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x48, 0x0, 0x0) openat$md(0xffffffffffffff9c, &(0x7f0000000140)='/dev/md0\x00', 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) set_robust_list(&(0x7f0000000640), 0x18) ioctl$KVM_RUN(r5, 0xae80, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x200000, 0x0) r7 = fcntl$getown(r1, 0x9) mq_notify(r6, &(0x7f00000000c0)={0x0, 0x7, 0x1, @tid=r7}) 14:11:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x40049409, &(0x7f0000000280)) 14:11:07 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0xf) 14:11:07 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2283, &(0x7f0000000280)) 14:11:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2205, &(0x7f0000000280)) 14:11:07 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4020aea5, 0x0) 14:11:07 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5382, &(0x7f0000000280)) 14:11:07 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x40049409, 0x0) 14:11:07 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180)='/dev/autofs\x00', 0x80000, 0x0) ioctl$KDSKBLED(r1, 0x4b65, 0x3) ioctl$sock_inet6_tcp_SIOCINQ(r1, 0x541b, &(0x7f0000000200)) preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000100)=""/125, 0x7d}], 0x1, 0x0) 14:11:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227f, &(0x7f0000000280)) 14:11:07 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227b, &(0x7f0000000280)) 14:11:07 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x80, 0x0) prctl$PR_SVE_GET_VL(0x33, 0x1358) setsockopt$ALG_SET_AEAD_AUTHSIZE(r1, 0x117, 0x5, 0x0, 0x588d) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x0, 0x0) 14:11:07 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/net/pfkey\x00', 0x8000, 0x0) getsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r2, 0x84, 0x12, &(0x7f0000000100), &(0x7f0000000140)=0x4) ioctl$KVM_SET_ONE_REG(r0, 0x4010aeac, &(0x7f0000000080)={0x59d3, 0x1}) getsockopt$XDP_STATISTICS(r2, 0x11b, 0x7, &(0x7f00000001c0), &(0x7f0000000200)=0x18) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = semget(0x0, 0x2, 0x22) semop(r3, &(0x7f0000000180)=[{0x0, 0x1000, 0x1000}, {0x0, 0x8, 0x1000}, {0x0, 0x1800000000, 0x1000}], 0x3) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) socket$unix(0x1, 0x7, 0x0) 14:11:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:07 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x5451, 0x0) 14:11:07 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x41a0ae8d, 0x0) 14:11:07 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5460, &(0x7f0000000280)) 14:11:07 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2283, &(0x7f0000000280)) 14:11:08 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) ioctl$KVM_DIRTY_TLB(r0, 0x4010aeaa, &(0x7f0000000000)={0x9, 0x1ff}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f00000001c0)='/dev/sg#\x00', 0x0, 0x40010c00) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x82002, 0x0) ioctl$KVM_GET_PIT(r1, 0xc048ae65, &(0x7f00000000c0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000140), &(0x7f0000000180)=0x4) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x40049409, &(0x7f0000000280)) 14:11:08 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4020ae46, 0x0) 14:11:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) restart_syscall() mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:08 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0x4138ae84, 0x0) 14:11:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2, &(0x7f0000000280)) 14:11:08 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) stat(&(0x7f0000000000)='./file1\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r1}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000280)) 14:11:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2203, &(0x7f0000000280)) 14:11:08 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4020ae76, 0x0) 14:11:08 executing program 0: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xffffffffffffffff, 0xfffffffffffffffd) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x400, 0x0) ioctl$EVIOCGSND(r0, 0x8040451a, &(0x7f00000000c0)=""/194) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200)='TIPCv2\x00') sendmsg$TIPC_NL_NET_SET(r0, &(0x7f0000000680)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8804480}, 0xc, &(0x7f0000000640)={&(0x7f0000000240)={0x3e8, r3, 0x208, 0x70bd2d, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0x2c, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffffffffffb}]}, @TIPC_NLA_MON={0x54, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xb88}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x800}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x63}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5b}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5f86}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}, @TIPC_NLA_BEARER={0x64, 0x1, [@TIPC_NLA_BEARER_PROP={0x1c, 0x2, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffffffff0000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb73}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}]}, @TIPC_NLA_MON={0x44, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x32}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x20}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x20}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}]}, @TIPC_NLA_LINK={0xc8, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5c7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2e}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x582}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x266397d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}, @TIPC_NLA_BEARER={0x70, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xf79}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xd7}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffffffffffc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xbd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @udp='udp:syz0\x00'}]}, @TIPC_NLA_SOCK={0xc, 0x2, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0xa7a6}]}, @TIPC_NLA_BEARER={0x168, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @rand_addr=0x2}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xffffffffffffbd37, @mcast1, 0x101}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'ib', 0x3a, 'bond0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @multicast1}}, {0x14, 0x2, @in={0x2, 0x4e20, @multicast2}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffffffffffffffff}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @rand_addr=0xff}}, {0x20, 0x2, @in6={0xa, 0x4e24, 0x8, @mcast2, 0x200}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x2, @remote, 0x7}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x7f, @mcast1, 0x100000001}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'vlan0\x00'}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'veth0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x3, @loopback, 0x8}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x4, @dev={0xfe, 0x80, [], 0x15}, 0x90c}}}}]}]}, 0x3e8}, 0x1, 0x0, 0x0, 0x20000010}, 0x8000) mmap(&(0x7f0000014000/0x2000)=nil, 0x2000, 0xfffffffffffffffe, 0x31, r1, 0x0) 14:11:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227d, &(0x7f0000000280)) 14:11:08 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x4000000000000000) 14:11:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2285, &(0x7f0000000280)) 14:11:08 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x80) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x0, 0x0) ioctl$KVM_NMI(r0, 0xae9a) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="280000000400000000000000000000000000000000000000000000000000000000000035f2ffff00"], 0x28) 14:11:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2285, &(0x7f0000000280)) 14:11:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x0, 0x100) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = syz_open_dev$dmmidi(&(0x7f00000001c0)='/dev/dmmidi#\x00', 0x4, 0x402040) ioctl$sock_inet6_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000200)) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x280, 0x0) arch_prctl$ARCH_SET_GS(0x1001, 0x6) ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205647, &(0x7f0000000100)={0x9a0000, 0x7, 0x100, [], &(0x7f00000000c0)={0x9a0918, 0x3, [], @value=0x1}}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_INFO(r1, 0xc0bc5310, &(0x7f00000002c0)) 14:11:08 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xc0189436, 0x0) 14:11:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5452, &(0x7f0000000280)) 14:11:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0045878, &(0x7f0000000280)) 14:11:08 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x8000000000) 14:11:08 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = fcntl$getown(r0, 0x9) r2 = syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x4, 0x400001) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r2, 0x4020565b, &(0x7f0000000140)={0x0, 0x0, 0x1}) write$FUSE_LK(r0, &(0x7f0000000000)={0x28, 0x0, 0x5, {{0x6315, 0x3, 0x0, r1}}}, 0x28) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:08 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40042409, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:08 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2279, &(0x7f0000000280)) 14:11:08 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0481273, &(0x7f0000000280)) 14:11:09 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x5460, 0x0) 14:11:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2276, &(0x7f0000000280)) 14:11:09 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x300000002000000) 14:11:09 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000001c0)=0x0) fcntl$setown(r0, 0x8, r1) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='rdma.current\x00', 0x0, 0x0) ioctl$VIDIOC_ENUMAUDIO(r2, 0xc0345641, &(0x7f0000000100)={0x0, "8a3d36ae53eb91e70e677686c2defc42fbe34f22d9a25312f3b9670b88b7ded9", 0x2, 0x1}) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="ff676e41e1fa27ac7674f16890097b8be355aa6680de92481db9a7d49ae1bbbabc3b48ed105e27fa9e9a07ed477198d1601531de92b5e00f8bf201f0a0506ac0aacd119b3e716acc212a69e142698469a9c3c97e4bf915e91468435ec961a7f4c120bad8ed5d1397286d9cf1e76b78e88a4e5d70a6c5c91cfb9ea34bba8dc33e17cbe7765c55267718e47c30995cc6118ab9e405be9fdbc8ee9279613e55e3ed3dfc67ba8fe8", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) sendto$inet(r2, &(0x7f0000000140)="b6d4f18be1e69a8b6d034a91f2ae869063c458a1db", 0x15, 0x40040c0, &(0x7f0000000180)={0x2, 0x4e22, @local}, 0x10) write$FUSE_NOTIFY_STORE(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000043f62000000000000000000000000000000000000000000000000006d06000000000000"], 0x28) 14:11:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x400000, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000e0a000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x31, r1, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2275, &(0x7f0000000280)) 14:11:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227a, &(0x7f0000000280)) 14:11:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2276, &(0x7f0000000280)) 14:11:09 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x40049409, 0x0) 14:11:09 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r1 = dup(r0) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000000)=@req3={0x3, 0x6, 0x6480485, 0x4, 0x20, 0x80000001, 0x1}, 0x1c) 14:11:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x5879, 0x81) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:09 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x40000000) 14:11:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5451, &(0x7f0000000280)) 14:11:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2284, &(0x7f0000000280)) 14:11:09 executing program 1: r0 = open(&(0x7f0000000840)='./file0\x00', 0x40, 0x0) mkdirat(r0, &(0x7f0000000240)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r2 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffff9c, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000100)={0xffffffffffffffff}, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000180)={0x13, 0x10, 0xfa00, {&(0x7f0000000480), r3, 0x1}}, 0x18) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0xffffffffffffff25}, 0x28) r4 = getuid() getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280)={0x0, 0x0, 0x0}, &(0x7f00000002c0)=0xc) ioctl$int_out(r1, 0x5462, &(0x7f0000000880)) stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setfsgid(r7) r8 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r8) mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='fuse\x00', 0x8, &(0x7f0000000680)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0xc000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x800}}, {@blksize={'blksize', 0x3d, 0xe00}}, {@max_read={'max_read', 0x3d, 0xc95f}}, {@blksize={'blksize', 0x3d, 0x800}}, {@allow_other='allow_other'}, {@default_permissions='default_permissions'}], [{@dont_appraise='dont_appraise'}, {@appraise_type='appraise_type=imasig'}, {@fowner_gt={'fowner>', r6}}, {@obj_user={'obj_user', 0x3d, 'group_id'}}, {@obj_type={'obj_type', 0x3d, '(@nodevposix_acl_accesseth1,:usersystemvmnet1'}}, {@seclabel='seclabel'}]}}) 14:11:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5421, &(0x7f0000000280)) 14:11:09 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xc020660b, 0x0) 14:11:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2203, &(0x7f0000000280)) 14:11:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x1, 0x0) 14:11:09 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe0ffffff) 14:11:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5385, &(0x7f0000000280)) 14:11:09 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2270, &(0x7f0000000280)) 14:11:09 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) socket$inet6_sctp(0xa, 0x5, 0x84) 14:11:09 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:09 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0x4008ae6a, 0x0) 14:11:09 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:09 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000180)='/dev/swradio#\x00', 0x0, 0x2) connect$vsock_dgram(r1, &(0x7f00000001c0)={0x28, 0x0, 0x2710, @host}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) ioctl$SCSI_IOCTL_DOORUNLOCK(r1, 0x5381) ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000200)={0xf800000000000000, 0xc39, 0x4, 0x0, 0x2, 0x2, 0x46, 0x8, 0x7, 0xffffffff, 0x40, 0xfffffffffffffbff}) r3 = accept(r2, &(0x7f0000000080)=@tipc=@id, &(0x7f0000000100)=0x80) setsockopt$packet_int(r3, 0x107, 0x1f, &(0x7f0000000140)=0x4, 0x4) 14:11:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x4020940d, &(0x7f0000000280)) 14:11:10 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x4) 14:11:10 executing program 0: r0 = syz_open_dev$radio(&(0x7f0000000500)='/dev/radio#\x00', 0x2, 0x2) getsockopt$inet_mreqsrc(r0, 0x0, 0x25, &(0x7f0000000540)={@dev, @multicast2, @multicast2}, &(0x7f0000000580)=0xc) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) readv(r2, &(0x7f0000000480)=[{&(0x7f0000000080)=""/75, 0x4b}, {&(0x7f0000000100)=""/56, 0x38}, {&(0x7f0000000140)=""/110, 0x6e}, {&(0x7f00000001c0)=""/1, 0x1}, {&(0x7f00000002c0)=""/241, 0xf1}, {&(0x7f0000000200)=""/80, 0x50}, {&(0x7f00000003c0)=""/187, 0xbb}], 0x7) 14:11:10 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_INVAL_INODE(r0, &(0x7f0000000000)={0x28, 0x2, 0x0, {0x0, 0x1}}, 0x28) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000140)={0x2d, 0x4, 0x0, {0x2, 0x0, 0x5, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}}, 0x2d) 14:11:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc020660b, &(0x7f0000000280)) 14:11:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc0045878, &(0x7f0000000280)) 14:11:10 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x227f, &(0x7f0000000280)) 14:11:10 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4c) 14:11:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x5460, &(0x7f0000000280)) 14:11:10 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/fuse\x00', 0x2, 0x0) getgroups(0x3, &(0x7f0000000080)=[0x0, 0x0, 0xee00]) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0xffffffffffffffff, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r1}, 0x2c, {[{@allow_other='allow_other'}, {@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x800}}, {@default_permissions='default_permissions'}, {@blksize={'blksize', 0x3d, 0x1a00}}, {@blksize={'blksize', 0x3d, 0x800}}]}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r2 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ip6_tables_targets\x00') ioctl$KVM_GET_XSAVE(r2, 0x9000aea4, &(0x7f0000000700)) write$FUSE_WRITE(r2, &(0x7f0000000280)={0x18, 0x0, 0x5, {0x6}}, 0x18) ioctl$DRM_IOCTL_MODESET_CTL(r2, 0x40086408, &(0x7f0000000240)={0x7fffffff, 0x5}) 14:11:10 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x200000003) 14:11:10 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2284, &(0x7f0000000280)) 14:11:10 executing program 3: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x4000, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f0000000140)={0x0, 0x80000}) r2 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x0, 0x2) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f00000001c0)={r1, 0x80000, r2}) r3 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r3, 0x1267, &(0x7f0000000280)) pipe2(&(0x7f0000000080)={0xffffffffffffffff}, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r5, 0xc028ae92, &(0x7f00000000c0)={0x0, 0x4}) 14:11:10 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x800, 0x0) ioctl$PIO_SCRNMAP(r1, 0x4b41, &(0x7f0000000100)="b0b4a14e95cc89f5989ac237fe0fff6128c9a092ff23f26df766b8c0f1c7abec95dec8e9af1e300f22c829bc06f0ad4884c09ca0861691b731809d57422cc009f33706db42") prctl$PR_GET_NO_NEW_PRIVS(0x27) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rcotmode=00000000000001000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) unlink(&(0x7f0000000180)='./file0\x00') write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:11 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfffffff1) 14:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2202, &(0x7f0000000280)) 14:11:11 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x400000000000000) 14:11:11 executing program 3: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x68001, 0x0) ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000140)='vcan0\x00') r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) get_mempolicy(&(0x7f0000000080), &(0x7f00000000c0), 0xb2, &(0x7f0000ffa000/0x4000)=nil, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x1267, &(0x7f0000000280)) 14:11:11 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x3ff, 0x2) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x80, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f00000000c0)=""/226) socketpair$unix(0x1, 0x200001, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400203) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000200)) ioctl$DRM_IOCTL_RM_MAP(r1, 0x4028641b, &(0x7f0000000280)={&(0x7f00008e9000/0x2000)=nil, 0x0, 0x5, 0xc2, &(0x7f000086d000/0x2000)=nil, 0x53c5}) syz_open_dev$midi(&(0x7f0000000300)='/dev/midi#\x00', 0x101, 0x80) syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x5, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f00000002c0)=0x6, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f00000001c0)={r2}) 14:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2286, &(0x7f0000000280)) 14:11:11 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67526f75705f69643d6f0dff36e01f31711d44b367ad4fd95c3c2dfe1ca89056596645fbf68825ffb3498c944f3f90e676be3f4148ec86a3da3f894684535d19a00a9c3599585046dfddfbfb8616cd735d747044065436b45f208f3e350200786e951e9aaedb73d92e5497e3d8aeea8d9bf10563baafe5b955c6765623d1bf7f03000000000000003660fd50f654f89062256948f02397", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r1 = syz_open_dev$adsp(&(0x7f0000000280)='/dev/adsp#\x00', 0x2, 0x100) getsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f00000002c0), &(0x7f0000000340)=0x4) 14:11:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair(0xf, 0x800, 0x7, &(0x7f0000000140)={0xffffffffffffffff}) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000180)={@in6={{0xa, 0x4e20, 0xfffffffffffffffe, @local, 0xffff}}, 0x0, 0x0, 0x0, "7ba24df6d33ce328f0ee72d528cacc28fe761ccf90ec148b4cbf8f6e9a979650c8d237a3d5a0d8704f4f1a2da55d84b855799e9a51d5aa9347e56b590c6da3c56c1eb1dfc782ae0c48363f1925b07858"}, 0xd8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r3 = request_key(&(0x7f0000000080)='asymmetric\x00', &(0x7f00000000c0)={'syz', 0x3}, &(0x7f0000000100)='%systemeth0em0\x00', 0xfffffffffffffffd) keyctl$invalidate(0x15, r3) 14:11:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$tipc(0x1e, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0xfff, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@ipv4={[], [], @loopback}, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@local}}, &(0x7f0000000200)=0xe8) mount$9p_xen(&(0x7f00000000c0)='/\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='9p\x00', 0x400, &(0x7f00000003c0)={'trans=xen,', {[{@afid={'afid', 0x3d, 0x7fffffff}}, {@access_client='access=client'}, {@posixacl='posixacl'}], [{@euid_lt={'euid<', r3}}, {@seclabel='seclabel'}]}}) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0x2, &(0x7f00000001c0)=0xa, 0x4) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x50000, 0x21) 14:11:11 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6c00000000000000) 14:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2270, &(0x7f0000000280)) 14:11:11 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x2000000) 14:11:11 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) socketpair(0x3, 0x3, 0x9, &(0x7f0000000000)={0xffffffffffffffff}) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000100)={0x0, 0x1000, 0x4, [0xffe00000000, 0x0, 0xfffffffffffff773, 0x38]}, &(0x7f0000000140)=0x10) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000180)={r2, 0x9}, 0x8) setsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000001c0)=@assoc_value={r2, 0xffffffff}, 0x8) 14:11:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x8c0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x2d, &(0x7f0000000080)='/}user%cgroupmime_typeselinux%vmnet1security\x00', 0xffffffffffffffff}, 0x30) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) tgkill(r2, r3, 0x1e) 14:11:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) msgget(0x2, 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400204) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2288, &(0x7f0000000280)) 14:11:11 executing program 3: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/expire_quiescent_template\x00', 0x2, 0x0) ioctl$EVIOCGNAME(r1, 0x80404506, &(0x7f00000002c0)=""/170) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x1267, &(0x7f0000000280)) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="d375d02551b71699b00ee48ad545d25ed0790b813c838757b87edbaf4efae2fb53984847a2fab870053c5066d9c0", 0x2e}, {&(0x7f00000000c0)="6f96c89732947121e1c9854885c6b6e372a4eda1242b5de294879066404dabacf9d5f5037ad503465087e8dc88d5be35dc32682be0bb5f83401a4e5a3e654f782f92fa85625e774da28c80eeb307dc6e1a589f95c40c1f0d611249e9dc12468abc027e7db3c584e7217be60a4e09d86cd2774ad8481e9c6465558f980f171b939f821530065773d1d735247de5f2f69e2b11a54ae1b31bff18d4f9d1cd0d37fc94109aff190ffb5ab23bbe55246b8d284ed3adcd1d7d3b84f64e0fdd0d59db356378a403229512a0a9057ee2b9ecc1ad7791ee48ba860e604fea19b5d9c3", 0xde}], 0x2) 14:11:11 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xfe03000000000000) 14:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0xc020660b, &(0x7f0000000280)) 14:11:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:11 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1100) 14:11:11 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x21f, 0x4, 0x0, {0x2, 0x5, 0x0, 0x0, [0x0, 0x0, 0x0]}}, 0xfffffffffffffefd) 14:11:11 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0xeefe, 0x408400) ioctl$VIDIOC_QUERYCTRL(r3, 0xc0445624, &(0x7f0000000100)={0x2, 0x0, "ba496c07c6642356e57ea5e919f620e1aa17317ac7169ab0af081d26bf3b3779", 0x7056, 0x3, 0x6d, 0x9, 0x100}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$int_out(r1, 0x2, &(0x7f0000000080)) 14:11:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1275, &(0x7f0000000280)) 14:11:11 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000080)={'ip6gre0\x00', {0x2, 0x4e24, @loopback}}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:11 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x10000000) 14:11:11 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c00df57c4156ad72e650f9f351f40fe93685107dd99000000000000000000000000000000000000000000000000"]) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2279, &(0x7f0000000280)) 14:11:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000200)=0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x8, 0x1, 0x6, 0x100, 0x0, 0x9, 0x0, 0xc, 0x82b, 0x7ff, 0x5, 0x4, 0x3, 0x9, 0x0, 0x1, 0x8, 0x5, 0x3812, 0x5, 0x400, 0x0, 0x3, 0x3, 0x57, 0xfffffffffffffffc, 0x5, 0x6, 0x1, 0x9d, 0x8, 0x8, 0x10000, 0x2, 0x0, 0x8001, 0x0, 0x85a9, 0x0, @perf_config_ext={0x8001, 0x9}, 0x12, 0x0, 0x8, 0x5, 0x8001, 0x1000, 0x3e1b360a}, r2, 0x10, 0xffffffffffffffff, 0x9) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) vmsplice(r0, &(0x7f0000000140)=[{&(0x7f0000000100)="fabe74fc1980f2af8bc8f437481a40a3e931d7cfaafd7819daa45e201c761e2ea308f2c93d", 0x25}], 0x1, 0x2) r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nullb0\x00', 0x40841, 0x0) ioctl$BLKRAGET(r3, 0x1263, &(0x7f00000000c0)) 14:11:12 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x700) 14:11:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0xfffffffffffffffe, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pipe(&(0x7f00000002c0)={0xffffffffffffffff}) ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000440)={0x4, 0x5, 0x0, 0xfff, &(0x7f0000000300)=[{}, {}, {}, {}, {}]}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xffff, 0x800) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000140)={{{@in=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@local}}, &(0x7f00000000c0)=0xe8) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000240)={@ipv4={[], [], @local}, 0x4a, r4}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x101000, 0x0) 14:11:12 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x400000, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000140)=0x9d) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d3030303030303030303030303030302030303430dd3030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="280000000400000000000800000000000000000000000000000000000000000000000000000f0000"], 0x28) r2 = semget$private(0x0, 0x2, 0x200) semctl$IPC_RMID(r2, 0x0, 0x0) 14:11:12 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x8) 14:11:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400000) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xfffffefffffffffe, 0x34, 0xffffffffffffffff, 0x0) r2 = request_key(&(0x7f0000000080)='.request_key_auth\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000140)="43c7a5bc8a4475e2b033de330c8b569a783914a9e047c13dabb8d8232791c05fb29dfba5fcdab6dbb5d01ab4ff8a3aabd61a48ee0d21abb75b272983ef57eacd85fe5e3e6c5527e7704f16f9312d887508a91b4256664f4c736533913dbc81758e633595d5e876e68e2aa741aba3b44c87f25d9799810453e2f95e9eedf7d84b4d3cfac00024f76ef6bc97b81dc73600bf821ef68e8c8b0f373e597504b182c872de1d8d6fb524dc1e42329ed684f231243fb46f1b4e8b04fc149f6afc594b3240a315b59930213c1527d2c3c8bf64e34dd756c786c36e25063f77b35c402b61", 0xffffffffffffffff) keyctl$revoke(0x3, r2) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000080)) 14:11:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000100)='/dev/qat_adf_ctl\x00', 0x100, 0x0) getsockopt$inet6_int(r2, 0x29, 0x3c, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x840, 0x0) setsockopt$inet_opts(r3, 0x0, 0x9, &(0x7f00000000c0)="df6f60a71d9789607a7c69a7c0a48cb9a339b71037eb62f638933f943dca51be0b40", 0x22) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000180)='/dev/sg#\x00', 0x1ff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000080)) 14:11:12 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="66d9fb748faa220631434536537b7ae93bd438b490693d7dcef44dac11ea65e8a61c003a102a88d8018f10d33ca1e20994ef98fbf69dbd76333647e8734259fd696e06a289a8b809323c0ca3da297d218c4c088b806f16867920618dbe626d89de0a0ea2ff27e96041810284c30762816469958282c2293f40bb90730bb78f1cc675d76b57cb06c5c57822a012aaab1e7e81cacf52b3f18dc2679e5be32920b1c1873d334b9f351b9a64f437ece0c49a27ac91a5afcc13ffd5540dd59fd29266fbfb001f2ea87b4efa7736081a7602acc6a81846ecd5b7f6a3b38272634537bc23e045b3b502139fd06ada41df2f90c06a60ec18", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000980)=ANY=[@ANYPTR=&(0x7f0000000a00)=ANY=[@ANYRES32=r0, @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYBLOB="6b247b95e6eaec2477fc8cef5a909a8d3b9460dae6623ceaeffde06e3dff344209903050eedf9d03eecc2cd366f1dd0d2d01c5fc7e1f1d26068661c7", @ANYPTR64, @ANYRES64], @ANYPTR=&(0x7f0000000340)=ANY=[@ANYBLOB="fd9a1c2890d13d281f5bfc508c52c05696a67309ab197ef6fa77e5ceb91c830fb79d203ccb28ba5c6f057cf93916906cb68e5cc764e887ecf15315506ed52b43c7ba163febc9e6b25b004a4240cbd2b4249fe470e53d444af270419c64a0c95ff265eb9df7d3a938a6681e9c27fd2e617863a256445d6d9cca0910b4716e47951a7162ed", @ANYPTR64=&(0x7f0000000000)=ANY=[@ANYRES64=r0, @ANYRESHEX=r0], @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYPTR, @ANYRESHEX=r0, @ANYRESDEC=r0]], @ANYRES64, @ANYRESDEC=r0, @ANYRES32=r0, @ANYRES64=r0, @ANYRESOCT=r0], 0x4f) 14:11:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) ioctl$SG_GET_REQUEST_TABLE(r0, 0x2286, &(0x7f0000000080)) 14:11:12 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfdfdffff) 14:11:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) write$binfmt_script(r0, &(0x7f0000000200)={'#! ', './file0', [{0x20, '])\\('}, {0x20, '/dev/sg#\x00'}, {0x20, '/dev/dlm-control\x00'}, {}, {0x20, '/dev/sg#\x00'}, {0x20, '/dev/dlm-control\x00'}, {}, {0x20, 'posix_acl_accesssecuritysystem'}]}, 0x69) write$binfmt_elf64(r1, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x6, 0x0, 0xffffffffffff8001, 0x6, 0x4, 0x40000000000, 0x41, 0x8, 0x161, 0xfffffc29, 0x73, 0x0, 0x1000, 0x38, 0x1, 0x8, 0x9, 0x2}, [{0x3, 0x0, 0x7fffffff, 0x8000, 0x2f82, 0x0, 0x7f5c, 0x9}], "38756b49c9794c338a49dc9d12b2559bfabd0651beb4b8fa24c3e5e5c669f35873a2636634a1a53a95e943d82b22ab10793628c61499fcbb8459", [[]]}, 0x1b2) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x400000, 0x0) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x9}, &(0x7f0000000100)=0x8) getsockopt$inet_sctp6_SCTP_RTOINFO(r3, 0x84, 0x0, &(0x7f0000000140)={r4, 0x7, 0x6, 0x10000}, &(0x7f0000000180)=0x10) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r3, 0x10e, 0x2, &(0x7f00000001c0)=0xb, 0x4) 14:11:12 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6) 14:11:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0xfffffffd, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000100)={{{@in6=@remote, @in6=@dev}}, {{@in=@multicast1}, 0x0, @in=@loopback}}, &(0x7f0000000000)=0xe8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:12 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x200, 0x0) ioctl$TIOCNOTTY(r1, 0x5422) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="28000000040000000000000000000000000000000000000000000000000000000000000000000000b8b9444dc70e7e5876bf6b0ad3ec63018cdbb4c5f79c340b4713f49744c979461dc427be7735203b8740549f1ceecea09b9847b90519d90ad9b4c44222d87688e287527b090dcedd16d01045e50b1cfebdb3b78994e97ae78070a86ee5c850d933fed178d2d276ff980000000000000000000000"], 0x28) syncfs(r1) 14:11:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = dup2(r1, r0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r3, @ANYBLOB="000025bd7000ffdbdf2504000000040002002c000900080001003265ac45080002000500000008000100f9ffffff08000200c400000008000100070000001800060008000100f7ffffff0800010093d4000004000200040006009c0001002c0004001400010002004e21ac14141300000000000000001400024002004e24ac14141c000000000000000038000400200001000a004e2300020000fe8000000000000000000000000000bb010000001400020002004e2000000000000000000000000008000300780000002c0004001400010002004e230000000000000000000000001400020002004e22ac1414aa0000000000000000"], 0xfc}, 0x1, 0x0, 0x0, 0x20000001}, 0x8000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) setxattr$trusted_overlay_origin(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='trusted.overlay.origin\x00', &(0x7f0000000340)='y\x00', 0x2, 0x2) 14:11:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhci\x00', 0x0, 0x0) getsockopt$XDP_MMAP_OFFSETS(r1, 0x11b, 0x1, &(0x7f0000000100), &(0x7f0000000180)=0x60) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x400, 0x8000) 14:11:12 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x11) 14:11:12 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0x0, 0x0) ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f0000000100)={0x4, 0x3ff, 0xd0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000080)) 14:11:12 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:12 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7a00000000000000) 14:11:12 executing program 1: syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x40002) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x102, 0x1ffe) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) fsync(r1) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='memory.current\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r3, 0xc08c5336, &(0x7f0000000140)={0x3, 0x3f, 0x0, 'queue1\x00', 0x7ff}) ioctl$KDGKBLED(r3, 0x4b64, &(0x7f0000000080)) 14:11:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x4, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xffffffffffffc2cf, 0x4000) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e20, @local}, @in6={0xa, 0x4e24, 0x1, @mcast2, 0xfcc}, @in6={0xa, 0x4e24, 0x8, @remote, 0xfffffffffffffffc}, @in6={0xa, 0x4e22, 0x800, @empty, 0x401}, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xe}}, @in={0x2, 0x4e20, @loopback}, @in={0x2, 0x4e21, @remote}, @in6={0xa, 0x4e22, 0x1, @mcast2, 0x2}], 0xb0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000240)={'lo\x00', &(0x7f00000001c0)=@ethtool_regs={0x4, 0x4, 0x46, "1aaf0a9d1fb6bf73000327751e156eaae67f6c9d72a57433db5fcc5677e43f99d44ba333e065e433c72ea4880c1b758000b5a1992f8175739cf08e890ed7a5e1bbf58a7550f4"}}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) fstatfs(r1, &(0x7f00000002c0)=""/4) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:13 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x4000000) 14:11:13 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x5000000) 14:11:13 executing program 2: ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000140)={0xffffffffffffff9c}) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1a, &(0x7f0000000400)=ANY=[@ANYRES32=0x0, @ANYBLOB="8b00000038003919b57d125388ffa045f53659d1973cd2de0ec93905d2d16b9465a0fbec48fb06b98b9c2f9489455e1623b7b8c4d889465adb8170fc336a8cbbdce12cbf0f3454e17dc316f4177c1267f4f1f5df9a2bc5bca1f40739ee9aed54ad639259489c2119259c0572e3ee27e2341c13d2e48814b3e1c8b5783fe2d57f1b541a7f40d363ea59875a37fb56116c9c8b72e23cda0a31c8b4318a0a3e269cb7b77b60f8f61d7d0fbc4728101566d8"], &(0x7f0000000380)=0x93) setsockopt$inet_sctp_SCTP_MAXSEG(r0, 0x84, 0xd, &(0x7f00000003c0)=@assoc_id=r1, 0x4) r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2272, &(0x7f0000000280)) r4 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x84280, 0x0) recvmsg$kcm(r4, &(0x7f0000000240)={&(0x7f00000000c0)=@nfc, 0x80, &(0x7f0000000140), 0x0, &(0x7f0000000180)=""/152, 0x98}, 0x10001) 14:11:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x2, 0x0) lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETGROUP(r2, 0x400454ce, r3) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:13 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000480)=ANY=[], 0x0) ioctl$FICLONE(r0, 0x40049409, r0) 14:11:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x105100, 0x0) ioctl$VIDIOC_QUERY_DV_TIMINGS(r2, 0x80845663, &(0x7f00000000c0)={0x0, @reserved}) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0x40a85323, &(0x7f0000000180)={{0x6, 0x7}, 'port0\x00', 0x80, 0x8, 0x3, 0xfffffffffffffff8, 0x1, 0x80000001, 0xffff, 0x0, 0x1, 0x23}) 14:11:13 executing program 0: r0 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x181000, 0x0) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f00000000c0)=0x88) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000100)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) 14:11:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000140)='/dev/sg#\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = getpgrp(0xffffffffffffffff) ptrace$cont(0xffffffffffffffff, r3, 0x4, 0x84) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x800, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r4, 0x541b, &(0x7f00000002c0)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r5, 0x84, 0xc, &(0x7f00000001c0), &(0x7f0000000200)=0x4) ppoll(&(0x7f0000000080)=[{r2, 0x1000}, {r2, 0x80}, {r0, 0x20}, {r2, 0x2005}], 0x4, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000100)={0x100000001}, 0x8) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'lo\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xb}}}) 14:11:13 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1000000) 14:11:13 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x8000000) 14:11:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000140)='/dev/sg#\x00', 0x0, 0x8001) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BLKIOMIN(r1, 0x1278, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x1f, 0x200400) ioctl$KVM_DEASSIGN_PCI_DEVICE(r3, 0x4040ae72, &(0x7f0000000100)={0x100000000, 0x100000000, 0x4, 0x5}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000986000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x31, r0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000200)) r2 = memfd_create(&(0x7f0000000100)='$\x00', 0x4) socket$pppoe(0x18, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) r3 = socket$inet6(0xa, 0xf, 0x5) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000979000/0x10000)=nil, 0x10000}, &(0x7f00000000c0)=0x10) 14:11:13 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0xc000, 0x0) ioctl$RTC_IRQP_READ(r2, 0x8008700b, &(0x7f0000000140)) getdents(r0, &(0x7f00000000c0)=""/24, 0x18) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000080)) 14:11:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = dup3(r0, r1, 0x80000) ioctl$EVIOCGABS20(r2, 0x80184560, &(0x7f0000000080)=""/126) 14:11:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:13 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4c000000) 14:11:13 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3f000000) 14:11:13 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="28006aa2df9b1db76a14dc00000400000000000000000000000000000000000000000000000000000000000000000000002a9dc4e66011e674f6c9"], 0x28) 14:11:13 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000980)='/dev/vhci\x00', 0x2, 0x0) ioctl$TIOCLINUX5(r3, 0x541c, &(0x7f00000009c0)={0x5, 0x3555, 0x200, 0x101, 0x3ff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) recvmmsg(r1, &(0x7f00000008c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/43, 0x2b}, {&(0x7f00000000c0)=""/255, 0xff}, {&(0x7f00000001c0)=""/131, 0x83}], 0x3, &(0x7f0000000300)=""/186, 0xba}, 0x6}, {{&(0x7f00000003c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000440)=""/234, 0xea}, {&(0x7f0000000540)=""/208, 0xd0}, {&(0x7f0000000640)=""/202, 0xca}, {&(0x7f0000000740)=""/253, 0xfd}], 0x4, &(0x7f0000000880)=""/62, 0x3e}, 0x80000001}], 0x2, 0x1, &(0x7f0000000940)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:13 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x200000000001, 0x200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:13 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000100)={{0xa, 0x4e23, 0x2, @mcast2, 0x3}, {0xa, 0x4e21, 0x8, @mcast1, 0x1}, 0x915, [0x4, 0x9, 0x2, 0x100000000, 0x6, 0x3, 0x8, 0x5]}, 0x5c) ioctl$SCSI_IOCTL_GET_BUS_NUMBER(r3, 0x5386, &(0x7f0000000200)) name_to_handle_at(r3, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000580)=ANY=[@ANYBLOB="d60000003f00000037eacca5e154a939f4b0ec160ec061de30969a01b2ed5ca559dfd4fc9577a309928df9110c9c3d5eb98f92babdb2ed47785b40b95c2580cb97b54aa05213dabb17fcf5af213dd7290a3a9c74d63944e708c9de4e74c445498f25a73951f0f24125b2aa33fb049aeef64682750484aff04f561059c77d3fca45819ae000ea9f63b8cc8ea64d14ef4b48c8a1f4580a84a633e261e4b1fdeca4e68b6c4fec0da965da3c0602c85c4d36abe3d4f08e047efa03861d858ed7c9020469f4ebb008809e6e3ca77e13d5dca79657fdabe1c2bf0e14f19bf8aeb0a50c7c8c4a5f0cf7530e9938ff00dc187ae98028334b67dc4d1134167d6cc3046d052e95867d6d4f88e769682b53d02eb55ac785b05cc297232f5dc0d23a2e33de7f49dbc364c56b5fb57bf788bcf2e253a7"], &(0x7f0000000400), 0x81000) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r1, 0x84, 0x12, &(0x7f00000002c0)=0x1, 0x4) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$TIOCMBIC(r4, 0x5417, &(0x7f0000000240)=0x7e) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) fcntl$getflags(r1, 0xb) 14:11:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x6, &(0x7f00000000c0)='&-@/\'\x00', 0xffffffffffffffff}, 0x30) r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000080)) 14:11:14 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d3030303030756071aa05646d1a303030303034303030302c757365725f69643d", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2800000004000000000800000000000000000000fdffffffffffffff00dc000000004b6e51ba53b519"], 0x28) 14:11:14 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x40, 0x0) r2 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_ADD(r1, 0x4c80, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:14 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$amidi(&(0x7f0000000200)='/dev/amidi#\x00', 0xa6de, 0x103040) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xff) r2 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffffd, 0x200000) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x8, 0x0, [{0x400003ff, 0x0, 0xfffffffffffffff8}, {0x6fd}, {0xb35, 0x0, 0x6}, {0xb7f, 0x0, 0xffffffff}, {0x0, 0x0, 0x2}, {0x27c, 0x0, 0x7}, {0x2a0, 0x0, 0x8}, {0xb43, 0x0, 0xf7c1}]}) r3 = syz_open_dev$swradio(&(0x7f00000002c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f00000000c0)={0x100000}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:14 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x700) 14:11:14 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf) 14:11:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x2, 0x400841) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x2000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x11) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:14 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EXT4_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = fanotify_init(0x21, 0x109000) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000100)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8}) mmap(&(0x7f0000ff1000/0xd000)=nil, 0xd000, 0x2000007, 0x4000000000031, r3, 0x200000000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:14 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f00000001c0)) 14:11:14 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:14 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xffffffffffffffe0) 14:11:14 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x10d) 14:11:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x3, 0x4000) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r2, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x280, r3, 0x800, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x44, 0x2, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xd6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3ff}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffffffff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xc10}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x100000001}]}, @TIPC_NLA_MON={0x34, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x81}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xca0}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffffffffffff3453}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}]}, @TIPC_NLA_MON={0x1c, 0x9, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}, @TIPC_NLA_NET={0x60, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xe62}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x40}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3f}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x59}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x20}]}, @TIPC_NLA_MON={0x34, 0x9, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xe9a}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfffffffffffffeff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7ff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4640000000000000}]}, @TIPC_NLA_LINK={0x144, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xcbfc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffffffffe01}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x37}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffffffff6b38}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb93}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}]}]}, 0x280}, 0x1, 0x0, 0x0, 0x10}, 0x10) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:14 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x0, 0x0) ioctl$ASHMEM_SET_PROT_MASK(r2, 0x40087705, &(0x7f00000000c0)={0xa3, 0x80000001}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:14 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002380)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0xfffffffffffffffc, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x0, 0xfffffffffffffffc, 0x331}}, 0x28) r1 = syz_open_dev$usb(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0xfffffffffffffc01, 0x208000) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r1, 0x12, 0x2, &(0x7f0000001340)=""/4096, &(0x7f00000001c0)=0x1000) r2 = dup2(r0, r0) read$FUSE(r0, &(0x7f0000000340), 0x1000) ioctl$PIO_CMAP(r2, 0x4b71, &(0x7f0000000000)={0x80000001, 0x5, 0x3, 0x2, 0x100, 0x5}) 14:11:14 executing program 2: r0 = memfd_create(&(0x7f0000000140)='mime_type!\x00', 0x3) ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f00000001c0)={0x0, {0x2, 0x4e24, @rand_addr=0x9}, {0x2, 0x4e21, @local}, {0x2, 0x4e21, @loopback}, 0x1d4, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000080)='dummy0\x00', 0x8, 0x0, 0x3}) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2272, &(0x7f0000000280)) 14:11:14 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3f00000000000000) 14:11:14 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x7, 0x2800) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x4) 14:11:14 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x10) 14:11:14 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c0636eeb2f040f07edfc38bc6dad400"]) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r1 = dup(r0) ioctl$VIDIOC_G_AUDIO(r1, 0x80345621, &(0x7f0000000000)) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f00000001c0)={0x1, 0x4, [@link_local, @remote, @link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}]}) 14:11:14 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) getsockopt$inet_opts(r1, 0x0, 0x0, &(0x7f0000000080)=""/145, &(0x7f0000000140)=0x91) 14:11:15 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000000)='trusted.overlay.opaque\x00', &(0x7f0000000100)='y\x00', 0x2, 0x3) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000008040000000000000000000000000000000000000000000000000000000000000000000000"], 0x28) 14:11:15 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3) 14:11:15 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xffe0) 14:11:15 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="66a4b90553e92aa234b225e3fb97ca9470357772c958b8ae567959fb4a171dde", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) prctl$PR_SVE_SET_VL(0x32, 0x32dc4) exit(0xa7d3) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x28, 0x4, 0x0, {0x2}}, 0x28) 14:11:15 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xffffffffff7ffffe, 0x31, 0xffffffffffffffff, 0x3) r2 = msgget(0x1, 0x80) msgctl$IPC_RMID(r2, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:15 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7) 14:11:15 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x55) ioctl$TCSBRK(r2, 0x5409, 0x3) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000000c0)) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000180)) io_setup(0x2fe, &(0x7f00000001c0)=0x0) io_submit(r3, 0x5, &(0x7f0000000640)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x3ff, r0, &(0x7f00000002c0)="9ff8d0a85c0f16f9af225dff8c310daad45871a78e781762d8d494458689e4a3b215991f42f0e7c93e264e1807e204db856756a9867300e8b9a5ed0ae6423f3982daa9b3730bc3101321c78062555211e1f695f3a183156685241df5ef1134fce860ce4fb938612fc0f5eeadb70dc9c2e7491fcf3dd250cc69a4489822c5126e2b", 0x81, 0x8, 0x0, 0x2, r2}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x9, 0x7ff, r1, &(0x7f0000000240)="38b6579f9542344f91", 0x9, 0x0, 0x0, 0x3, r2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x7, 0x1e89, r2, &(0x7f00000003c0)="7f441c289c2e45a4d58e99e1e5d6710bcbfd4aa2c97d3f9edab870dcb6f62ee6205d260c608b0e99c52a761e2f3d5740e4893cdf6c9932dbf7731c27da3152cdae2a6fe2c072bc47468d5d4d0447d80737f0f06a", 0x54, 0x2, 0x0, 0x3, r2}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, r0, &(0x7f0000000480)="9098740de3e9e634820db129f2a3b8e1031fc248858c8b3c46e006f93527b452a2cd00c4176a8e5e8df9b9cceb3c1ae74b5226231ea882238929d3a44dcd1b772db3bde5dfde4ffef7e37be9320a13251ee16015392cb4e755740d6800a50c64e441534e6c6bf82d9de46f701f376040b326640f0e0517b4746f23333fef883fc81caf96496774ead4bf9ada74a83faaf6b921c3309ddcda83a5cc15be1ec1e2af7c17a92c1498557c80d654211196f0a6eecb7cb90daa456fab7da059ce27b0ef099e", 0xc3, 0x2, 0x0, 0x1, r2}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x2, r0, &(0x7f00000005c0)="1300794abda5ac3a3ad3c9bcbc4e354b29b551875847fb40906bd8a0998dc9c3f16f56e7c7ad84f517a79bf75983c454321c4b33bcc06b852d53b5", 0x3b, 0x20, 0x0, 0x1, r2}]) prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:15 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf00) 14:11:15 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000180)={0x0}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0xa4, 0x0, &(0x7f00000002c0)=[@reply_sg={0x40486312, {{0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x20, &(0x7f0000000100), &(0x7f0000000140)=[0x0, 0x0, 0x28, 0x38]}, 0x3}}, @free_buffer={0x40086303, r1}, @reply_sg={0x40486312, {{0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40, 0x28, &(0x7f0000000200)=[@fd={0x66642a85, 0x0, r0, 0x0, 0x4}, @ptr={0x70742a85, 0x0, &(0x7f00000001c0), 0x1, 0x1, 0x1}], &(0x7f0000000240)=[0x0, 0x48, 0x38, 0x38, 0x48]}, 0x6}}], 0x0, 0x0, &(0x7f0000000380)}) r2 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0xffffffff, 0x80) ioctl$KDGKBMETA(r2, 0x4b62, &(0x7f00000000c0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:15 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$swradio(&(0x7f0000000080)='/dev/swradio#\x00', 0x1, 0x2) write$UHID_INPUT(r1, &(0x7f0000002340)={0x8, "c94467734a91ca135a6af6c709b09a7901013927856d539d3c0325bc1762df524b2ea2c773a2fbc7dfeed9d32a12444695fa36a8156aa4351b7ba6eed33dba0c57203befa4e770609ae11156097fa6a299f48a17c6f1cf6ed2cec6800b3e3a4bc3326f0d437a4588d478b2ac6899a541ea567926a0647e5ea878a7ed67314103921b09e7d85422aefcc09ad3c2c3693b07ae5db4bd4021212017f7b738b924b3bd5b0d2bc2e10daff99979a9f72b5f204b5af31fdd9bb285b1da6a0898764098f284e4a7146c11211318238c41ffc1f50c427b89b89041891e572865f5a155d4af59d9a7318fc3ca06569936d74c172973f2ef6c933852d0b0f8f213275c2b911919140b720afcd97f6f8ba7b0693c818a92f74c8b2016dc773907f99c48b6e0ed31310245dffda0db39cc7d05f98b90fe50761a0965c26aa57433eb61a8d980023c132cb2058df05d2a14ab71fe7ccd973759052916f0dba3e19a695d8c1ecada15088f4856147956791f4100177443b3cda4eed0c2189d419f114861744db7f9ee9d5746da134eb3c24424aa238cb6055d198185a16fb0a3bb8360015040ccc5ce5024372dd9bd65917b9346c99d7f400626a89cfc99fd871393985d70ce01a2793b1e64d197e47fbc130b1a353b15222fd3c766cca838de5829a65bd37d0bf7cf1b24c9ea2a27f7ffa0740830c50a624dd02865bc6dd858a28c803ebb97a45f5fc1d6511278dd3c30c0cadd01ce935dc649cadc1d62287396ef957f097b48b57401bd316a570cc097ae0b19030947933c01f7e5fc970efc7f14fa32eb053d3993207fdbb1dbd12a2962f315ad739b212e2fb549dca2b2c2204f02d0185c4511feaaa396f42a4a459aa8a419f80620cb143d8dfc9bf3517d7b3636a4e069bf7156941891cc8af78b1b733c5ba5bae2b23096b2c1ea102eca59b01861652fe4d7404dbd68f6020a91b5118de0a8f3d9c04fe51716079cab8c2c1287d1811560b1b0136922e2846d7539bffc3203b1b8571c9fdc83e330405c26a97b3d5b39cd312c16ab1c897aa4f9792cec69c50f85b95483d964ea0c4b3eeeb6d82d2ce482657078920a726c6772d14c84ab9ddbe2fe527e9f7204972ab8a73859401d99c018426e5d37ed3f75419622309540fe878b30feba4d73f47563e9fda3ac6fd7b9a16ce43387a9c69e6595b5eb474a14792f2900b4b82d818cca1d3d8a50413f8cb4353aa2c046b522214dc7ff6b0d99e6d7084b35c3add0a1844d9444eccfd8f451fd16836cfa3ccf8a49f83b3030706810e8709d7e53372f6cbe06d5e43526bc1fc55d48b84fdb6e58de042217dd32c71b304676d458d1a6eb2b1e6f1afe72ceefc8df2e6d2b80f225ab6d129e46c4c82d569fe42c3a7fc60d8782217080bbaba7f573e6b79631e402a14a549ec9123e2b4aad9c4d8c391e5f7cd92e3ca992d5530a78bb073ea871ddb982fda2caac24898b18158ea370f37a056aaaf47a9f7e5c3a71e3710ae816e6ccb2538e7c33bcefeb09d429df261ece6a3d7e04124bf556a754c7a4789aeb75035d05d471793a07719549f0f5811e41f116f4a7deef73d8f10051c6300bbebc8be71a8b1ed59c53fd0016bf226f29b810e24708e7554f5bd9c57ca01bb991393258ad48f6176b3053f5fc7f0409384e9e432b26356daafb30684b4e59256158ceb11c8358d047eb4e7aa7255b019d8ea7e1d53a742343c6c5d4dd6bfea3174194d03767211f3de22c56dcca617cfd6e5be212f30805361fc16f30b1b6310ae181c3ddc62b626ddc3da834d1c8c4fb3db3b9abb9ceaeea7f780816924f96cad3710ab9d62f82522539218fc2a4e9349def41547eb72b5dd59df53af71311e62d3a019dada633f69afc16f4c7a24a443c9047efafc84965e80697265da4841f98fa57a64414980549d981b9b2b1c4d8da2bdc8b32b8f4deaa7f04a0bc5c5cf3f08e76c29283c1eec6579173555d5bc365f5e4283825deeddec15b3704ff98b1c0da417887076ee180599313f094911c7b36d5051c20b0b8d814867ca546a36ece048a8b753bae9dd4fce42079d0e6f07e9559025dc2e4847c25f13beddb7d23eb56a74de2d45afb4c11fb988a3ca02764d5d9bd074015703af9b0c2d706300746669612426370161e8f5fed84e8e59ec9e756a812ece7823239866083ac361cd942d6d189eb95c91ac5efdc6e63f682f6f1e124b848fe721b05688eba43970fe00b02df9b438059b47481217477d91e6daf5b721d6952daec0ee2ce8af8864de587e4e5b9c10775af95a2e4b296c3e39c7228934fd6e9eb0fc29589f85a23a1925c297f56dedd7d69c29492432c50d6f95b386a3c31021d28373b037d3d74428f184873a46be1ced8e89584172b1e661bfd59458ad2fcc489d420388c8a7f0620d93ca976955ab72a6e5e76712765e45fe5f8316965af878fd54eaa51848fa27b66afe420335e38827d3cb15d5d043533ce9db0343823b5d4118e9bb443ced959bd8322b31eab46c42ff530c7e03f7ea58a92bd48b00e6c4686dbae47a9493d6c7b03d900e234d3d0ade0acbc854ac5c4bb171145ac2f5b8fefa35bdb127b3716c7294845d786e09e71e132ef3640056ac21ef5e7a0799f1a23a433d8a682baa0308d229d80d62e189442b3964ef3c3009f329db467ab87edb8ab343449619755a62cffc3d2290f1b3051572de18fc091d4b1a736813cb21b5efd8ca654137e11faf8e5106f289c193f2c02a5c782b1d2d607f73ceed0c9d46f0ef3299b4ab66072a39d5922d7469e0a8ed2e950635932fc646e626b7405362e0e1ad3cd1a5673d6a78ab52a5376df2048a308ac47f497608fe809fe203df9ddb541b0f60ec410754625b7a21aa30f68257e2f455f49102fc29f4263d7845a4aab9b766a4e0e83301608f9f64de3682aa7547f2d9ac8d3c67d619ce567b0f9c2e8ce8839a8361c6b08fae59fa77b6d8a872d977b3adf0cf08431895a48c1d94f34b8391f3d876c01d4605958b6972f7a11281bbd444ba2f7d89f0e850209679ff5c65fcc6bcd06d670bc894931c64ddd951a982acb588936cae448c14445148dbe0b9bc4f16fcc93b44ceab6daf0269d8072047f73802e6c6d164e624a14abfb0db6fa2b146738b6bcc1b94363805f7654c189ed7fe6288906f274430ee6093493862d0cf2f6b65b7bba4c3fe8ddc8cbc1524724a413b2ab40e4bbb7487bad1a23c5e17defd70de0d33453ebccf9268f62cc6cce5c2ac169bad1f7b467a3782fa0b209ae4c7f224cd939359d1a02f3b8c11dc2dc4faef37b627f6da97edcb8b6d5f8d90ecf152f83aa9d94fa1de92e3673462b8d6fdc04ba1c3c3309557b8dfb263b706655949d9012374f35a00df0cf7ffb98789ee312febf1d1168c4fd1e0a2958d265fbb1c6a5d0d8824358d3b7484bb14caa912f891ee7b568b8a5c0b6f038702d1362e220b27f10bccea2e3b6f5bfad42dbca5b32eb899bed6456f514cbd05818863a14b1bc8e0a96259162a9edafa305eeef15076b54702964ca51390bab890aeb84d48d5488cac59d5233165b8bc168bccd84ca6703b23b89f2043cc55867a75aa3b50eab915153e35461bbda1dc88d632ec1ad15d80f2224b4a16935828c67b784bd9d650714f4cefb06ad07028a036d087e7c86bb3ba4a9a3513002d395eadc32c2849a0517aac01f5efd015adea521036775be6bb49cb53816c7e377233d3a5180514bdfd3df4dad64e3b27a5581d0af65c36030559b27b9fb589c6af565e78721132806b8145f4b2d28c55fa8856c2dcf7744076cbde9f35295a016d4ebf4e0ad9b9118cd550f33124b3d1dd0ec67f36fd2a4e3086b058f7c32ebadf8cd7f63365d074be3f4a4fc856f25f3eb165dd2dc0b8a5b9d90982ef9019eb40f7071bcf5ec7727ddba5a2b172fce2544b4d5440d0a5838d18b09e266c0d46626855a2c9a177eb4ee69167a18a1bd375ce71bdbd2217bc1e0b49ef8ff5dc99118f4a2cb67786ad6915386a51318bdf60c79e69ead46a3587b5802b5043a418e2f97f564bedaf741077b8d876b1df1541aba8ff0e46dc57ec1cef23ccd7921c73b5b94f8104749f2bf9f69ae5ea52aafe4f2996413ea0c1cd68846f0259484648304cd4fd2b29d9965f3b629adb419b92dd2b4967a9d75a87361923c04e3febe38b655825d5222e19b67dbd3228808e742615bd1e568b7cd4cd7ab8bc00e71798e3641fb90ffe5dc333d0c12804cb1e646716c6376351c245d4bb8a11a8f987dc550120e9982dc62dde0e86be6414d4f00b902a04514d42c90955f1be108683e525816b864bf8968f59f2eed995c7f82a90250b55f85a11aa252bf0b8ee3711650e3212f8c8eb08657054500a1ed0c6d9607e3b7d3d2ccda00f61dd8df1fc34700f8fdba2b01cf6e1d19aa35cb5fc502f7ec65792e26deaa7d916d91c4317559fb755d44fe8fff16d2a42254f7a796ea549f8a55a6251f5815e4540a179427b6179c77560179f12110a5834c9e2d970f67f10c4ccb586dd93e0f96075aaf88afa40a04771b14a28d533481f039053edc6359b9bcf71bbdd77d51a0f19a05002c247cb3dc2330478bad99840f6f7388c7fa5ee6a7bff12f3a775bf7076a1db6a74c2ef88e779f3bd538bc97e6cae0ef4103327ee186dd894820c7d43a018658213bf599b03cd72ca1829fc972671f25392aba4b858b08a391d3fa2fab1f850a78502966871266d1840f464e447bb4d75c2cadb6fe3a16e94d16f0343f023fa11bdd07c4d9a34afaaa955b213508ad4408fbd63c0ac5833aa0fa27fc11f5a0c6ec8851190091addacc13930b86328169d14016502f667a51dfcb709d21b1c138aedef66bf1ce10fcb1ab9b896822d58a342ffe3a249ca5d16d79135b8786dfbcc7a65d55ca27c39a7554cc9701254c04a26933fae9e5e093635b45714e6a5acc7a38f752ca04410e7c76e7ffff97c4b5e51fbde1c7c62f4d1e13f389aaa4f4d80cccc8adb85a5d8b952d2e85a4bc84d6e47900c4722bec47af37cbf89bcaca9e28f758b4dc33a8bf4c000000f6c3096d9a8396c77e18f3a579782d2b8a81d998b36f6cb5dc8570e5d7cedf0db0f7d16b51eabc8cdcbc2f8b2ed0c8e869d414319dad3fbc4f801679c72dff5c1a814f8fa2d4e0a80aed77778a40f476033d70ec9760128ea1ca4eeb2f402814956d75236fefd807788533c87c1fd29f9969a498b9b56246dcbd1601a9e511713e0fbd2ecfb6c1ae3ec49aebfca7c9746887e61d8b2c2db965256c13ee86244827e74ce1b3b40cd783f0056d1706c25e5c339aa6ff18c777f979e4f765087e9969f50045211ac34df8ef24992360cbf11793bf7bcd819614e340b8515ec4973f27d73c0340fdd8157911c836c9a5c436df5445337aee7e78e087ce7a9ae4b8bc32a008a50181b115acf8f1803d7651ed35fcc33691173672eaaf5f7f5212fd3d9afe0aa09312561475cdb4ab5c32c5e777cdae79b77fe24b037cf804c3eb67aeb249c45535cf2c20422d0a5f9a8f023a5da1d971cb986e90e4e11a19f92a0967dd2263a91751ac9819aa6ee0bf2a70d3341a77ed7399565f19de57b7d8c36d171b4d4100c5676b6080f3a76417991a50737eb0d90bd77a9a5289be458057c9ff7c16ccee186168387ee9600d0e1682353ec7ad396904cd0c6931cbd281aa124891dd9c6ce61668f6de73cac4c3d6a6a04b2a2eaf231886b41b08ecd545bfea3314ed1ef3abcbbbbab1891125ca711f1fc6079303aa9d52a33c3dab3d8b963cc65b2c58e89daee8685dc01a32d5e05506268c", 0x10f2}, 0x1006) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000600)=0x0) r5 = geteuid() stat(&(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = getpgid(0xffffffffffffffff) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000700)={0x0, 0x0}, &(0x7f0000000740)=0xc) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000780)={0x0, 0x0, 0x0}, &(0x7f00000007c0)=0xc) getsockopt(r2, 0x9, 0x1, &(0x7f0000000a00)=""/114, &(0x7f0000000240)=0x72) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000800)=0x0) getresuid(&(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)=0x0) r12 = getegid() sendmmsg$unix(r1, &(0x7f00000009c0)=[{&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000000580)=[{&(0x7f0000000140)="9c1c6d6c045c0ef34fe0cf405603362ccabf609dcd004048fd34bca7ede7aa89f43309d8907e3b5a1a0eae8ba06948da63f99614d50094d5b29a062f9c73a59f3b7051913da13e2cd9dfa803383bcf4163e5051c1579b75423d5fd9b92b2ee07e271b63d37bda64199b1bd0600b44d004a195d4c50f8567a95734e17ed53f15113ca2d5787224eb0d725b61d22b6b21b3535cd4ec4374c1e35aef4160822fa599371a4f636b65875b0125b3ce1e693b9e00e3801c7f0ed4ef3a9", 0xba}, {&(0x7f0000000200)="9a2f15f0c0c3981ed5f5aeab523ba675ed42fd5b4af54008d6bc37ac98", 0x1d}, {&(0x7f00000002c0)="7a99e7f0d37ee5f6fe69ad9ae72f49796af247c88a5b2b3bdbc0969e4a1434813a87ae4527488e9f765195499b2ba6f8f15d0b3765f7d811f72fd49a1085b08d1346851f958af8190138c69ff307620f7d", 0x51}, {&(0x7f0000000340)="94dddd7ccaddc5fe695cb75fd286d6baacf1b59d4f4ccaef6274f5b67aec59da6c8f0aaa7849c3854fad718439c3aa50bcccda471d432ac2cf4c460c45873e4d4de8d9fb651236acb91f018b46deb03df4c733e8aefe9496a531e0fa4ca5537b1caa6885014904a474e5ef66eb3f9f6f633d9c4b837ed71e0ee8d32435ca7276cbf0da6a8821a013d5df615e1f5e62e319f10ba3674543d56df324ca911547f5103c6438073361327ae22c1a62cb227c5ca5f50139b42028080673cc48d4fc823124e1f56dfb17a1c3d35fda9a470c646317d54f", 0xd4}, {&(0x7f0000000440)="52fe85facaad07edec68febe077760d3de6c5aaf10b4d25f3c20d7a8769f8b0ddae6759d210d9578b894bd6af1803af0a206e208a82144cb6b2d5f483d70dbfabda39823362183cc2980896fc045a66cae84b10ce54e35887548d89366b86c98a4548f0375bb658d6ab05a99da8866415e7e773a2eb7ce7c715726785737c02c455a45bf6bd32142a9d3089d337d84b02e9dd4cd539fece0c4cdade709c42d23e34d771d2b352ca3857480521602d7a1ad1ba97a86133dade32d09279711c9ba52d1dcdf16ab1fa87c40664204fae2dab72485e077bbe228112267c48787b80a86e99804e3", 0xe5}, {&(0x7f0000000240)}, {0xffffffffffffffff}, {&(0x7f0000000540)="4d58eace1d1e0e96c6a2676e26275a974de3ac2afcffb5466d54281b9c64dfc53cb3eb8edc00a395fac2f8ae", 0x2c}], 0x8, &(0x7f0000000900)=[@cred={0x20, 0x1, 0x2, r4, r5, r6}, @rights={0x38, 0x1, 0x1, [r2, r0, r2, r3, r3, r3, r3, r0, r3, r2]}, @cred={0x20, 0x1, 0x2, r7, r8, r9}, @cred={0x20, 0x1, 0x2, r10, r11, r12}], 0x98, 0x80}], 0x1, 0x40) write$UHID_INPUT(r1, &(0x7f0000001300)={0x8, "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", 0x1000}, 0x1006) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:15 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x68000000) 14:11:15 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x4000) 14:11:15 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x33bc00, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r3, 0x84, 0xf, &(0x7f0000000440)={0x0, @in={{0x2, 0x4e23, @remote}}, 0x3, 0x2, 0x0, 0x480000000000000, 0x100}, &(0x7f0000000500)=0x98) getsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000540)={r4, 0x8}, &(0x7f0000000580)=0x8) getsockname$packet(0xffffffffffffff9c, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000180)={{{@in=@loopback, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6}}, &(0x7f00000002c0)=0xe8) r7 = gettid() ptrace$getenv(0x4201, r7, 0x6, &(0x7f0000000080)) setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000300)={{{@in=@local, @in6=@mcast2, 0x4e24, 0xfffffffffffffffd, 0x4e23, 0x9, 0xa, 0x0, 0x20, 0x2f, r5, r6}, {0x3f, 0x2, 0xfffffffffffffffc, 0x5, 0x0, 0x6, 0x9e8, 0x3}, {0x2, 0x3, 0x100000001, 0x1}, 0x42, 0x6e6bb6, 0x0, 0x0, 0x2, 0x3}, {{@in=@rand_addr=0x8, 0x4d4, 0x6f}, 0xa, @in6=@remote, 0x3502, 0x2, 0x3, 0x3, 0x8e, 0xaf4, 0xfffffffffffffffa}}, 0xe8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000400)='/dev/dlm_plock\x00', 0x208000, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) setpgid(r7, r7) 14:11:15 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000080)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_RESERVED(r2, 0x5601, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r0, 0x3) 14:11:15 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = syz_open_dev$swradio(&(0x7f00000001c0)='/dev/swradio#\x00', 0x0, 0x2) sendmsg$inet_sctp(r3, &(0x7f00000013c0)={&(0x7f0000000200)=@in={0x2, 0x4e24, @broadcast}, 0x10, &(0x7f0000000240)=[{&(0x7f00000012c0)="d31b1dd8c7fffe933f60058fbbf2e410b4d15c5bd59fe3a3a73614e6896029d7638fca3420c5245bc2abc30ed72ca86645f1392b04715eb5372df3b754cb3f38460428a5fe7d51452fcaf6a4da52c7ef601977afcf459dfc3c4bd831aebde4ccf98bec9f06f04a54bd28e5e8e3ede0e98f132ca27c1e4605d1145e86cb75ea046ec2640e3e2927b1c8ffacfa18d85db799cc06f6ebdb35fc30d8d6c61df62f2a8f", 0xa1}], 0x1, &(0x7f0000001380)=[@init={0x18, 0x84, 0x0, {0x2, 0x6}}, @dstaddrv4={0x18, 0x84, 0x7, @rand_addr=0x7f}], 0x30, 0x4000}, 0x20000000) r4 = creat(&(0x7f0000001400)='./file0\x00', 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400204) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r5 = fcntl$dupfd(r1, 0x0, r2) getpeername(r5, &(0x7f0000000100)=@generic, &(0x7f0000000180)=0x80) setsockopt$RDS_GET_MR(r5, 0x114, 0x2, &(0x7f00000000c0)={{&(0x7f00000002c0)=""/4096, 0x1000}, &(0x7f0000000080), 0x5c}, 0x20) write$FUSE_OPEN(r5, &(0x7f0000001440)={0x20, 0xfffffffffffffff5, 0x4, {0x0, 0x2}}, 0x20) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:16 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4800) 14:11:16 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x2000000000000000) 14:11:16 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x200000, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f00000002c0)=@filter={'filter\x00', 0xe, 0x1, 0x178, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, &(0x7f00000000c0), &(0x7f0000000100)=[{0x0, '\x00', 0x0, 0x814b4d2d43ecf369}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x1, [{{{0xf, 0x4, 0xfffb, 'vlan0\x00', 'irlan0\x00', '\x00', 'veth1\x00', @remote, [0xff, 0x0, 0x0, 0x0, 0xff, 0xff], @remote, [0x0, 0x0, 0xff, 0xff], 0x70, 0xb8, 0xe8}, [@common=@RATEEST={'RATEEST\x00', 0x20, {{'syz1\x00', 0x7, 0x7, 0x5}}}]}, @common=@STANDARD={'\x00', 0x8, {0xfffffffffffffffd}}}]}]}, 0x1f0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:16 executing program 0: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f0000000100)={'ip6gre0\x00', 0x3}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x10880, 0x0) syz_open_dev$media(&(0x7f0000000180)='/dev/media#\x00', 0x9, 0x1d627fe9473bb4ec) r2 = openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x4000, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000340)='/dev/dsp\x00', 0x101, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x1) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x8010, r1, 0x0) r4 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x4, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r2, 0x10f, 0x83, &(0x7f0000000240), &(0x7f0000000280)=0x4) ioctl$KVM_DEASSIGN_DEV_IRQ(r4, 0x4040ae75, &(0x7f00000000c0)={0x7, 0x0, 0x1, 0x4}) 14:11:16 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = syz_open_dev$vcsa(&(0x7f00000001c0)='/dev/vcsa#\x00', 0x7d, 0x0) accept4$bt_l2cap(r1, &(0x7f0000000140), &(0x7f0000000180)=0xe, 0x800) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) 14:11:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f00009fd000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f0000000080)=0x80) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:16 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f00000000c0)) 14:11:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@ipv4_delroute={0x2c, 0x19, 0x1, 0x0, 0x0, {0x2, 0x20, 0x0, 0x0, 0xff, 0x3, 0xff}, [@RTA_FLOW={0x8, 0xb, 0xbc}, @RTA_DST={0x8, 0x1, @loopback}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x100, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:16 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4000) 14:11:16 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x40000, 0x0) ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000100)) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="66063d", @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000040000000000000000000080000007000000000000000000000000000000000000000000"], 0x28) 14:11:16 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x1100000000000000) 14:11:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffff9c, 0x8933, &(0x7f00000001c0)={'vcan0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xf, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0xb99e, 0x0, 0x0, 0x0, 0x7}, [@jmp={0x5, 0x815, 0x2, 0x0, 0x1, 0xc, 0x4}, @call={0x85, 0x0, 0x0, 0x12}, @alu={0x4, 0x3, 0x7, 0x7, 0x6, 0x18, 0xffffffffffffffff}, @jmp={0x5, 0x3ff, 0xd, 0x0, 0x6, 0x40, 0xfffffffffffffffc}, @jmp={0x5, 0x7, 0xa, 0xc, 0xe, 0xc, 0x8}]}, &(0x7f00000000c0)='GPL\x00', 0x7, 0x8e, &(0x7f0000000100)=""/142, 0x41f00, 0x1, [], r1}, 0x48) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:16 executing program 3: r0 = syz_open_dev$sg(&(0x7f00000001c0)='/dev/sg#\x00', 0xfffffffffffffffe, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) connect$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000100)) 14:11:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000002c40)='/dev/sequencer\x00', 0x0, 0x0) ioctl$sock_bt_hci(r2, 0x0, &(0x7f0000002c80)="e9e8618217e8f1bb030aac89d7a7c1f5709cf52c25d9efb87f9fab023860130ae18a0e22b77d6186ee700f435ccfd366af69939ba99f6e5fc7df2edafc2ff3b178a60184c782106cee2d2dac7d631a7bf2a2e3d80156a26c83917094c4b7624fb7bad60b7ea99068a20cb2fb0f6963bbe246db1d51191157feb04d5b246d4aa97ab90a85f98237ea13c20b371759dced") ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:16 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x1, 0x2) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f0000000340)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000000380)={0x40, 0x204, 0x0, 0x9, 0x0}, &(0x7f00000003c0)=0x10) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000000100)={r2, 0x2}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r1, 0x84, 0x1a, &(0x7f0000000180)={r3, 0x99, "00a75a774cd69f3b0b2a16f2a460719941f1f687653f5a0884c338befda7df9644ead4eb7816e5ccec751033a3a50694bcbd6024be7e15a113b5210a2aec81e6c483ab6ec84ed1be7ad01087b7b243611006654d199bfb8106cf2636e11f12aaac165531ae557cf6f919a12e3a8f63c2a588387303d762560028dd8fc92a353b25a812bf17a07824501afb0e22b019ca61f8b18cbf72189309"}, &(0x7f0000000280)=0xa1) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:16 executing program 3: r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x3ff, 0x2400) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f00000000c0)=[@in6={0xa, 0x4e22, 0x8000, @mcast1, 0x66}, @in6={0xa, 0x4e23, 0x9, @empty, 0x3}, @in={0x2, 0x4e20, @remote}, @in6={0xa, 0x4e22, 0x1, @empty, 0x5}, @in={0x2, 0x4e24, @multicast2}, @in6={0xa, 0x4e23, 0x20, @dev={0xfe, 0x80, [], 0xb}, 0x7}], 0x90) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000180)={0x6, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1000009, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x1267, &(0x7f0000000280)) 14:11:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = gettid() sched_setscheduler(r2, 0x6, &(0x7f0000000080)=0x40000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) socket$inet6_sctp(0xa, 0x5, 0x84) 14:11:16 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) 14:11:16 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x8000000000000000) 14:11:16 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$getownex(r0, 0x10, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:16 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = getegid() stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = semget$private(0x0, 0x1, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f00000000c0)=0xc) semctl$IPC_SET(r4, 0x0, 0x1, &(0x7f0000000100)={{0x5, r2, r5, r2, r1, 0x121, 0x6}, 0x3e3, 0x6, 0x3}) mount$fuse(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000600)='fuse\x00', 0x0, &(0x7f0000000540)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x3ffc}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[], [{@smackfsroot={'smackfsroot', 0x3d, 'fuse\x00'}}, {@smackfstransmute={'smackfstransmute'}}, {@fowner_eq={'fowner', 0x3d, r2}}]}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="280000000400000000000000000000c504000000000000000000000000000000000000000000000000"], 0x28) 14:11:16 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f00000001c0)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) ioctl$RTC_EPOCH_READ(r2, 0x8008700d, &(0x7f0000000200)) r3 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x8883, 0x80000) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f, 0x8}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000140)={0x13, 0x10, 0xfa00, {&(0x7f00000002c0), r4, 0x2}}, 0x18) 14:11:16 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x2) r3 = fcntl$dupfd(r2, 0x0, r2) write$9p(r3, &(0x7f00000001c0)="b8fca638d3f844fcddd3b06aedd20bcea6aa8cb1548b0a91a7cb63dc1b4ed6b3ca5915af", 0x24) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:17 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x500000000000000) 14:11:17 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x5, 0x10000) ioctl$EVIOCGKEYCODE(r1, 0x80084504, &(0x7f0000000100)=""/28) 14:11:17 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x7000000) 14:11:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x7, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = creat(&(0x7f0000000080)='./file0\x00', 0xa) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f00000000c0)={0x7b, @multicast1, 0x4e20, 0x0, 'ovf\x00', 0x0, 0x1, 0x5a}, 0x2c) setsockopt$inet_mreq(r2, 0x0, 0x20, &(0x7f0000000000)={@empty, @multicast1}, 0x8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x32, 0xffffffffffffffff, 0xfffffffffffffffe) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) pipe2(&(0x7f0000000080), 0x4000) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/snapshot\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400201) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:17 executing program 0: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm-monitor\x00', 0x101000, 0x0) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f0000000200)={0xf009, 0x0, 0x101}) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$adsp(&(0x7f0000000100)='/dev/adsp#\x00', 0x6, 0x1) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000140)={0x100000001, 0x80}) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000240)='trusted.overlay.origin\x00', &(0x7f00000002c0)='y\x00', 0x2, 0x1) r4 = syz_open_dev$media(&(0x7f0000000180)='/dev/media#\x00', 0x1, 0x4000a2841) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f00000000c0)={0x80000000, 0x6}) 14:11:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x7, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0xfffffffffffffffc) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000140)='/dev/sg#\x00', 0x3, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)={&(0x7f0000000080)='./file0\x00', 0x0, 0x8}, 0x10) 14:11:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x180) ioctl$EVIOCGBITSND(r2, 0x80404532, &(0x7f00000000c0)=""/249) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:17 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x600000000000000) 14:11:17 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f0000000000)={0x0, @speck128}) 14:11:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000140)) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rtc0\x00', 0x20000, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, &(0x7f0000000180)={0x6b, {{0xa, 0x4e21, 0x960000000000, @dev={0xfe, 0x80, [], 0xe}, 0x3}}}, 0x88) ioctl$VIDIOC_S_MODULATOR(r1, 0x40445637, &(0x7f00000000c0)={0x7, "c6e36f076b389eff21444b665475da88f8a3e60ec949736f82d49d7dc25e3661", 0x480, 0x8, 0x9, 0x5, 0x1}) 14:11:17 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf000000) 14:11:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) prctl$PR_GET_SECCOMP(0x15) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:17 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xc, 0x31, r1, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x404080, 0x0) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) socketpair$unix(0x1, 0x31a088cda681bc01, 0x0, &(0x7f0000000480)) getresgid(&(0x7f0000000180)=0x0, &(0x7f00000001c0)=0x0, &(0x7f0000000200)=0x0) ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000400)={0x0}) ioctl$DRM_IOCTL_SWITCH_CTX(r2, 0x40086424, &(0x7f0000000440)={r8}) fsetxattr$system_posix_acl(r0, &(0x7f0000000240)='system.posix_acl_default\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="02000000010001000000000002000500", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00', @ANYRES32=r3, @ANYBLOB="040001000000000008000100", @ANYRES32=r6, @ANYBLOB="08000400", @ANYRES32=r5, @ANYBLOB="08000500", @ANYRES32=r6, @ANYBLOB="08000200", @ANYRES32=r6, @ANYBLOB="08000200", @ANYRES32=r4, @ANYBLOB="08000200", @ANYRES32=r4, @ANYBLOB="08000200", @ANYRES32=r7, @ANYBLOB="10000700000000002000000000000000"], 0x6c, 0x2) write$P9_RGETATTR(r2, &(0x7f00000002c0)={0xa0, 0x19, 0x2, {0x4, {0x2, 0x2, 0x6}, 0x60, r3, r5, 0x9, 0x8e, 0x20, 0x100000001, 0x100000000, 0x1, 0x6, 0x1ff, 0x10001, 0x1, 0x7fff, 0x4, 0x1000, 0x1f, 0x1000}}, 0xa0) 14:11:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000080)='./file0\x00', 0x200, 0x10) write$P9_RREMOVE(r2, &(0x7f00000000c0)={0x7, 0x7b, 0x1}, 0x7) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000140)) 14:11:17 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000480)='/dev/fuse\x00', 0x2, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x2001, 0x0) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000100)={0x9a, 0x6, 0x3}) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_PORTS(r1, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2040000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x0, 0x70bd2a, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB='CgroupWid=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) setsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000002c0)=@int=0x8, 0x4) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000040000c2b4b8935d5b0756a2a9457d00000000000000000000f91c000000000000000000"], 0x28) 14:11:17 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x74000000) 14:11:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sequencer2\x00', 0x80000008000, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_NUMBER(r3, 0x84, 0x1c, &(0x7f0000000200), &(0x7f0000000240)=0x4) ioctl$VIDIOC_TRY_FMT(r3, 0xc0d05640, &(0x7f00000000c0)={0xb, @pix={0xffffffffffffffff, 0x100, 0x4f4f5f4f, 0x5, 0x3ff, 0x873b, 0x1, 0x401, 0x0, 0x4, 0x3, 0x7}}) fcntl$setpipe(r1, 0x407, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) syz_extract_tcp_res$synack(&(0x7f0000000080), 0x1, 0x0) 14:11:17 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) getsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000000080)=""/21, &(0x7f00000000c0)=0x15) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000100)=0x5) 14:11:17 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = perf_event_open(&(0x7f000025c000)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x6, 0x0, 0xfffffffffffffffe, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x5) clone(0x0, &(0x7f0000000040), &(0x7f0000000100), &(0x7f0000000040), &(0x7f0000000180)) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r3 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r3, 0x2282, &(0x7f0000000280)) 14:11:17 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x20000000) 14:11:17 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xdffffffffffffffe, 0x33, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$swradio(&(0x7f00000000c0)='/dev/swradio#\x00', 0x0, 0x2) ioctl$VIDIOC_SUBDEV_S_SELECTION(r2, 0xc040563e, &(0x7f0000000100)={0x1, 0x0, 0x103, 0x4, {0x9, 0x4, 0x5, 0x40}}) r3 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x5, 0x200000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) accept$inet6(r3, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000180)=0x1c) 14:11:18 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0x8, 0x802) getgroups(0x4, &(0x7f0000000100)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xee01]) ioctl$TUNSETGROUP(r1, 0x400454ce, r2) fcntl$getownex(r1, 0x10, &(0x7f0000000140)={0x0, 0x0}) syz_open_procfs(r3, &(0x7f0000000180)='net/netfilter\x00') mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080)='/dev/rfkill\x00', 0x2000, 0x0) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f00000000c0)={0x9, &(0x7f00000002c0)=[{}, {}, {}, {}, {}, {}, {}, {}, {}]}) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f0000000100)=@sack_info={0x0, 0x80000000, 0x2}, &(0x7f0000000140)=0xc) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000180)={r3, @in6={{0xa, 0x4e23, 0x7ff, @empty, 0x8}}, 0x18, 0x4ea4}, &(0x7f0000000240)=0x90) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:18 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3000000) 14:11:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x200, 0x0) setsockopt$ALG_SET_AEAD_AUTHSIZE(r2, 0x117, 0x5, 0x0, 0x7fff) socket$nl_route(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f00000000c0)) 14:11:18 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm-control\x00', 0x20000, 0x0) ioctl$KVM_PPC_ALLOCATE_HTAB(r1, 0xc004aea7, &(0x7f0000000280)=0xfffffffffffffffd) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000080)) pread64(r2, &(0x7f0000000340)=""/162, 0xa2, 0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r4, 0xc04c5349, &(0x7f00000002c0)={0x0, 0x1, 0xfffffffffffffff9}) setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000006c0)=0x200, 0x20) bind$inet(r5, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r5, &(0x7f00000005c0)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000740)=[{&(0x7f0000003ac0)=""/4096, 0xd400}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000003fe8)={0xaa, 0x10}) move_pages(0x0, 0x0, &(0x7f0000000540), &(0x7f0000000580), 0x0, 0x0) accept$inet(r4, &(0x7f00000000c0)={0x2, 0x0, @dev}, &(0x7f0000000140)=0x10) write$binfmt_elf64(r5, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x101000, 0x0) write$P9_RFLUSH(r6, &(0x7f00000001c0)={0x7, 0x6d, 0x1}, 0x7) ioctl$VIDIOC_TRY_ENCODER_CMD(r6, 0xc028564e, &(0x7f0000000200)={0x2, 0x1, [0x6, 0x1, 0x0, 0x0, 0x3ff, 0xffffffff, 0xad07, 0xfffffffffffffeff]}) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000100)={0xffffffffffffffff}, 0x2, 0x9}}, 0x20) renameat2(r6, &(0x7f00000002c0)='./file0\x00', r6, &(0x7f0000000300)='./file0\x00', 0x6) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r6, &(0x7f0000000180)={0x4, 0x8, 0xfa00, {r7, 0x401}}, 0x10) 14:11:18 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe0ff) 14:11:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, r0, 0x0) syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x8000, 0x1) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:18 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)) fstat(r0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f00000003c0)=0x0, &(0x7f0000000480), &(0x7f00000004c0)) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000200)='fuse\x00', 0x0, &(0x7f0000000280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r1}, 0x2c, {'group_id', 0x3d, r2}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r3 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x8000, 0x2) ioctl$VT_SETMODE(r3, 0x5602, &(0x7f0000000100)={0x7fff, 0x6, 0x2, 0x7, 0x58b4}) 14:11:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x3f, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={0x0, 0x5, 0x20}, &(0x7f0000000100)=0xc) setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000140)={r2, @in={{0x2, 0x4e22, @empty}}}, 0x84) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000200)=0xfffffffffffffeff) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) r4 = shmget(0x0, 0x1000, 0x10, &(0x7f0000ffd000/0x1000)=nil) shmctl$IPC_RMID(r4, 0x0) 14:11:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x400002, 0x0) ioctl$NBD_SET_SIZE(r2, 0xab02, 0x3) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:18 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6800) 14:11:18 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x2, 0x2) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)={0x0, 0x8e, 0x6, &(0x7f00000000c0)=0x9}) openat$cgroup_ro(r2, &(0x7f0000000140)='cgroup.stat\x00', 0x0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:18 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x2) 14:11:18 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x200, 0x0) bind$vsock_stream(r2, &(0x7f00000000c0)={0x28, 0x0, 0x2711, @my=0x0}, 0x10) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:18 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="28000000040410bb678462bad718fd0000000000000000000000000000000000000000010000000000000000000000000000"], 0x28) 14:11:18 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x11000000) 14:11:19 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x7, 0x4b17, 0x1}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x200200, 0x0) ioctl$DRM_IOCTL_GET_MAP(r1, 0xc0286404, &(0x7f0000000100)={&(0x7f0000819000/0x2000)=nil, 0xd28, 0x5, 0x8, &(0x7f000069e000/0x1000)=nil, 0x3}) ioctl$DRM_IOCTL_IRQ_BUSID(r1, 0xc0106403, &(0x7f00000000c0)={0x7, 0x2, 0x20, 0xfffffffffffff001}) ioctl$SG_GET_KEEP_ORPHAN(0xffffffffffffffff, 0x1267, &(0x7f0000000280)) 14:11:19 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x448800, 0x0) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f00000000c0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:19 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x5) 14:11:19 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140)='/dev/fuse\x00', 0x2, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x7, 0x101000) accept4$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14, 0x80800) ioctl$TUNSETIFINDEX(r1, 0x400454da, &(0x7f00000001c0)=r2) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000)) 14:11:19 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000280)='/dev/dsp\x00', 0x408200, 0x0) ioctl$FIONREAD(r2, 0x541b, &(0x7f00000002c0)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) sendto$unix(r2, &(0x7f0000000380)="06ba7d8cd6b5ab9509bd78d2365e54850dad8f8291e2afe670e8f7eb63f927dcce2e4a19f60e9380720e85b94bf06b604021a477a641b7415bc46082cd46cdbbe65733b11e4868b0ff556800960e6b3103a5c746ac86a59fc76357048a5f4af515cf3b66fa02b92f7ea30f06c2773807d1e7e392c3ca801e63c35b110909ed6b0f65f6ea810c493d97dd1757e9265f0200eb24321cd5ff9cf67a617da4dac1f35380c8d9366bbab7db97703489d6c84981538a8f919bd71903a70373d350b02a60728f7362c31593fc1c6432ee0e3cb2554f267da5520a31543c7b00bc90e5cdad20f9a1a500699d77eeb337", 0xec, 0x20000000, &(0x7f0000000480)=@abs={0x1, 0x0, 0x4e22}, 0x6e) mmap(&(0x7f0000a18000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x31, r1, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000340)) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x80000, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000240)={r3, &(0x7f00000000c0)="0f19a575aa81f14b9306adef479f9ad002e432d5ce9d1797e910be11e6bb5bb6882264581ead360e64883ae274a7e8fa10eae298ee1678cb3a6cc9b1ba489ec9996ea21521f04545034fa5d24c549be6b28515634b867f71e4d5d95087ec1af615e305c054ab5c9a73765226c51a6cc15638ac22aec9d091dbb2f77d10328a20e534f23504d94a22cdfecfc38a974724e63705eecfa94ccf43b1ea12021ddb29ae4dba689b6d85fb9d51208ffd64663268947bece3ce3aacbdb7c0be15b57709451f0fd4a63385a71709d0245c769525ab008289dd99f5f8d28d1a0cbfb04a7f72c9fe5419c6514ebd9aabf7603655", &(0x7f00000001c0)="792f996528ff879f0a6e1774914df57bf99d91991c1e2c05e37240d83e102ab29a83655cc65d00a05e58da66ed6caf6eaa248942f6710dc552cbcfd22b6a644d6b9f56f27678c918bb03e119c803675df98f1332ae", 0x4000003}, 0x20) 14:11:19 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe0) 14:11:19 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000180)='/dev/video37\x00', 0x2, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f00000001c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000080)=0x0) ioprio_set$pid(0x1, r1, 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_PROBE_HOST(r0, 0x5385, &(0x7f00000000c0)={0xc, ""/12}) r3 = syz_open_dev$dspn(&(0x7f0000000140)='/dev/dsp#\x00', 0xff, 0x800) openat$uhid(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uhid\x00', 0x802, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) 14:11:19 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r0) ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x0, 0x2ce3}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:19 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x200040, 0x0) ioctl$SIOCGETLINKNAME(r0, 0x89e0, &(0x7f0000000100)={0x0, 0x3}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:19 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x7) 14:11:19 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = memfd_create(&(0x7f0000000080)=')\x00', 0x2) fcntl$getownex(r1, 0x10, &(0x7f00000000c0)={0x0, 0x0}) ioctl$TIOCSPGRP(r2, 0x5410, &(0x7f0000000100)=r3) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f00000001c0)) 14:11:19 executing program 2: r0 = epoll_create1(0x80000) r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0)={&(0x7f0000000180)='./file0\x00', 0x0, 0x8}, 0x10) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200)='/dev/hwrng\x00', 0x30200, 0x0) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000240)={0x0, 0x101, 0x10}, 0xc) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r2, 0xc040564a, &(0x7f0000000380)={0x80, 0x0, 0x201f, 0x401, 0x10001, 0x9, 0xff, 0x1}) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, &(0x7f0000000300)={0x0, 0x80000, 0xffffffffffffffff}) r6 = timerfd_create(0x4, 0x80000) poll(&(0x7f0000000340)=[{r0, 0x8000}, {r1, 0x19}, {r2, 0x14}, {r3, 0x8}, {r4, 0x2000}, {r5, 0x42}, {r6, 0x2100}], 0x7, 0x1) r7 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r8 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x20000, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r8, 0x40082404, &(0x7f00000000c0)=0xcf6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) getsockopt$inet6_mreq(r8, 0x29, 0x15, &(0x7f0000000100)={@mcast2}, &(0x7f0000000140)=0x14) ioctl$SG_GET_KEEP_ORPHAN(r7, 0x2272, &(0x7f0000000280)) 14:11:19 executing program 0: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x101000, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = shmget$private(0x0, 0x2000, 0x10, &(0x7f0000950000/0x2000)=nil) shmat(r3, &(0x7f000071e000/0x400000)=nil, 0x4000) getsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0xb) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x400, 0x0) setsockopt$RDS_FREE_MR(r4, 0x114, 0x3, &(0x7f0000000a00)={{0xc5b1, 0xed}, 0x1}, 0x10) accept4$packet(r4, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14, 0x80800) sendmsg$kcm(r0, &(0x7f00000009c0)={&(0x7f0000000200)=@can={0x1d, r5}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000300)="f8e3e267557265f4ce7a44f5287e8dfe77280f8b5ee90d55c60a99", 0x1b}, {&(0x7f0000000340)="e88cc2a20422e9cd95fd45940df06edc2f44e4d04ca1d43f4696a0ca8fb46c3d53b4a800e393bfba9ffe600542b201f292ffebc874d06bceeae28d0a2a1f569bdb40cbd1bb948b0db5e6e78b93b53e10", 0x50}, {&(0x7f00000003c0)="e9ac6626a3447c50f15fa775dd4f71b2440310e2a6044c3e99113c53312015d0a3ca84006220e370500ff3bc21a98045f4bb7b6544c82b0ec3726a0c28a2dfd1441865b5a45bc3e5d95a70046f553643f273f3fb760c5f", 0x57}, {&(0x7f0000000440)="fe69eb5c727048ab146e213ce46d2eed99eb2916915055475ee1a62f49b3dbe2405d651763094d39ff7d2f8b9ff565481149975ca891a89bc9c7314ba71afd025c1022d75761a56a88061dd5bdf858da8eea3e4ec965722bc8badc8c1c5c8982d2b8a737cc1e856d84414c91f10f4e9dfa5b7e42252e66dc95de6b1c5eee89f0efb76c2977e6c5d6e32fb534007c04df04a655735bd9", 0x96}, {&(0x7f0000000500)="8846665b1717e0f368d8ee66d05c6d93ae8eb5b85abbdb43df9f837919b9acc2fa23c0a8ae3f009c5acb2d75ee58", 0x2e}, {&(0x7f0000000540)="36e2804cfa2af60a00511ab776a434217750d41a192ee1b640e99922117c61d2539c3f8c15cd7d8c679aae65b48844b9a8882e326eff95893f1be3ff2464105116", 0x41}], 0x6, &(0x7f0000000640)=[{0x98, 0x102, 0x11, "d93796e53003ee81343e4b6ba184b817489ac5607c35f86388709db618b37e9b9cf37d8404517db1ac024d7866d90d0719af358fdfc3e1e00bf4108f20c62d1bdcf49fa1b06b6835753174ad0231d35fea7ed61c0e3186a7c8773adec466c0404b80bf29f253dc4efed15dcc798f7e0e8b1d848352df6710214787215bc92c2c5695a9"}, {0x100, 0x0, 0x8, "83e9ae9218959b2d66b0c8b7435164b109d47e5761438bfa4c67ab49200ee36849655a800140ba60733ef36cd9ad7fd576d2eb56c8e13543858fad2ce99d003de32b4710030c5adede4538857c9181b46bdea6076f883983ca1fca0c8e750df297121bafe8fd24d92092157572d8b0cd27033446b65662d3c7346c859858d9a3ff5463f4e5f91b07363ff7aaa3ddbe91605cff1e5c10c6d323ef9f048c2a4f6efb3118333ff7b7635e5ec181200238906adacd087e260f0c0b76c24acb686781d8cbda9b3c19d80ccf9d04545f8bc3c403498fb40619c889f8f171e30ce0da432bfe653e6fd71fb48e3b65"}, {0xe8, 0x13b, 0x5, "c49e81553b7832f99ee9c6c65233492c52a25c564ee546d1fdba5eaeb1686ea5b1f8b6e883815f7b1d83367659c0a3f2349b49ea6107c8633412cf26fb39ec1e9ea8e9642eabd90225659a4db51b0bfde2b148659454815df8d95f175acf57696871f5bf38a05d6bf75110d97254962540943ea563a9ab12ee27ab44d415d2a9a6d319202e6f409f4e9f25bf11767d99d6afcef22b7685e972911aa389856b36cd35216520adeb8c76e1a3ddbed271f95052e8f16c2b6c27d9b5238375d2dcc826e9d15df44bc13be538b4cfeb1f1e1353323c3dddf9"}, {0x20, 0x10f, 0x1f, "bd1f3892aaf76449bc61d74fcc7a44"}, {0xb0, 0x115, 0x40, "0231ed5b23050bec122833d3e0c8821c72f57666a4626236476d4388beb0f3e12e27e8cd030dc58bc416bb7fffeb310e9be744c2c0293d8f4bf89959e1e9f7b6a540621c27ee253860d8252fada14d35865771a2f18751744ff26123812fc6790bb0b5005d71426e1788d6497bc20da97265f396ce22be767cf2c21c00258f30d39822208dfbe9ef83b88e7a378c06c5d6568c091a120c8d071d"}], 0x350}, 0x40000c1) ioctl$RTC_IRQP_READ(r4, 0x8008700b, &(0x7f00000000c0)) 14:11:19 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7a000000) 14:11:19 executing program 3: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x5, &(0x7f0000000080)='bdev\x00'}, 0x30) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000100)={0x0, 0x70, 0x8, 0x8, 0x400, 0x393e, 0x0, 0x6, 0x800, 0x8, 0xfffffffffffffff7, 0x7, 0x1, 0x1, 0x1, 0xff, 0x7, 0x7, 0x101, 0x6, 0x9, 0x5, 0x3, 0x7, 0x80000001, 0x101, 0x1, 0xa2e, 0x6, 0x3f, 0x0, 0x52, 0x401, 0x4, 0x1, 0xffffffff9e5e2ae5, 0x8, 0x800, 0x0, 0xfff, 0x7, @perf_config_ext={0x1, 0x4}, 0x10000, 0x3, 0x8, 0x7, 0xda, 0xffffffff, 0x39ad}) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r3, 0x40a85323, &(0x7f00000001c0)={{0xffffffff}, 'port1\x00', 0x4, 0x100018, 0x8, 0x4, 0x2, 0x7fff, 0x81, 0x0, 0x7, 0x8f1f}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x1267, &(0x7f0000000280)) 14:11:19 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x0, 0x4100) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:19 executing program 0: r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200)='/dev/dlm-monitor\x00', 0x20100, 0x0) ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x11) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/expire_nodest_conn\x00', 0x2, 0x0) statx(r3, &(0x7f00000000c0)='./file0\x00', 0x0, 0x7ff, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2282, &(0x7f0000000280)) 14:11:19 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x7ffbeb4ab700) 14:11:19 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB="2c67726f93705f69643d", @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0xfffffffffffffd80}, 0x28) 14:11:19 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x300) 14:11:19 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:19 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r2, 0x2402, 0x8d67) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:19 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000000)='/dev/admmidi#\x00', 0x8, 0x40) ioctl$RTC_RD_TIME(r1, 0x80247009, &(0x7f0000000100)) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x408080) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:20 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfdfdffff00000000) 14:11:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = accept4(r1, &(0x7f0000000080)=@in={0x2, 0x0, @remote}, &(0x7f0000000100)=0x80, 0x80000) sendmsg$nl_crypto(r3, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4104000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)=@upd={0xe8, 0x12, 0x300, 0x70bd2d, 0x25dfdbfb, {{'drbg_nopr_hmac_sha256\x00'}, [], [], 0x400, 0x400}, [{0x8, 0x1, 0x3}]}, 0xe8}, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) timer_create(0x6, &(0x7f0000000480)={0x0, 0x27, 0x2, @thr={&(0x7f0000000340)="b7a53fd5f70f4553767f4fd3c6cdbd69775df0b7e7eca14a5e883fb1f4f535f37e40b8660a43250f12262c21d7396324c1d3d0a0720c5f866d17310bf5fa370b6bb4fa480736be51ba329d7b53", &(0x7f00000003c0)="c1d65da90c8fa1c5b59c53050776d5bb66aa57130672112fcc4c5f923c4c30b60d921e485fc4795b66ce492d6c7b24fc9a68b4534f8c32df357f1b4cb73968888f9f896309fd583b159ae0baa220d2211777134d49fa99790da7b6a9afec37bfaff81ebaa073c5252dda3e62f04708045ac14aac95473ec93eab5235e12ff48cac07957544c2c6d22d7a526713d7831cb64f6674518e33dd26df6d88ebc3c072867d0b37ebd150fbdd28b020ab040765223f843e7067857bd83910"}}, &(0x7f00000004c0)=0x0) socket$kcm(0x29, 0x5, 0x0) clock_gettime(0x0, &(0x7f0000000500)={0x0, 0x0}) timer_settime(r4, 0x1, &(0x7f0000000540)={{0x0, 0x989680}, {r5, r6+10000000}}, &(0x7f0000000580)) 14:11:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) socket$inet_udp(0x2, 0x2, 0x0) 14:11:20 executing program 3: clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) setitimer(0x0, &(0x7f0000000180)={{}, {r0, r1/1000+10000}}, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000100)={'ip6_vti0\x00', &(0x7f0000000080)=@ethtool_coalesce={0xf, 0x2, 0xccbb, 0x4, 0xde6e, 0x6, 0x7b8, 0x8000, 0x6, 0x2, 0xe7, 0x20, 0x0, 0x6, 0xffff, 0x1, 0xf3, 0x8b, 0x5, 0x60b, 0x3ff, 0x4, 0x6d5f09bd}}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x1267, &(0x7f0000000280)) 14:11:20 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x10d000000000000) 14:11:20 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f00000000c0)={0x28, 0x4, 0x0, {0x3}}, 0x28) setxattr$security_smack_transmute(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000140)='TRUE', 0x4, 0x3) 14:11:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x420003, 0x0) setsockopt$RDS_RECVERR(r2, 0x114, 0x5, &(0x7f00000000c0)=0x1, 0x4) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) syz_open_dev$sndpcmp(&(0x7f0000000140)='/dev/snd/pcmC#D#p\x00', 0x3, 0x1) ioctl$KVM_ASSIGN_DEV_IRQ(r2, 0x4040ae70, &(0x7f0000000100)={0x7, 0x8, 0x7, 0x2}) 14:11:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x40000, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x7, &(0x7f00000000c0)=0x4, 0x4) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, &(0x7f00000000c0)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = dup2(r0, r1) setsockopt$inet_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000080), 0xfffffffffffffce8) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:20 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xe0ffffffffffffff) 14:11:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x8, 0x4002) r1 = accept4$inet(0xffffffffffffffff, &(0x7f0000001580)={0x2, 0x0, @broadcast}, &(0x7f00000015c0)=0x10, 0x80000) accept4$inet(r1, &(0x7f0000001600)={0x2, 0x0, @local}, &(0x7f0000001640)=0x10, 0x800) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$sock_inet_SIOCGIFBRDADDR(r1, 0x8919, &(0x7f0000000080)={'ifb0\x00', {0x2, 0x4e22, @local}}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) 14:11:20 executing program 1: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x1, 0x0) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x4) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mkdirat(r1, &(0x7f0000000000)='./file0\x00', 0x2) flock(r2, 0xc) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) socket$can_raw(0x1d, 0x3, 0x1) write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="28000000040000000000000000000000000000000050daeebcde95b5e03aee5d32515700000000000000000000000000000000000000"], 0x28) 14:11:20 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2000000) 14:11:20 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x4, 0x10000) read(r1, &(0x7f0000000140)=""/71, 0x47) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x2000000400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000100)) 14:11:20 executing program 0: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = memfd_create(&(0x7f0000000080)='\x00', 0x1) setsockopt$inet_sctp_SCTP_RECVRCVINFO(r3, 0x84, 0x20, &(0x7f0000000100)=0x2c4, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2282, &(0x7f0000000280)) mmap(&(0x7f00008dd000/0x1000)=nil, 0x1000, 0x1000001, 0x100012, r1, 0x0) 14:11:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = syz_open_dev$cec(&(0x7f0000000180)='/dev/cec#\x00', 0x3, 0x2) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r0, 0x40045731, &(0x7f0000000200)=0x401) socket$alg(0x26, 0x5, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r3, 0x2272, &(0x7f0000000240)) ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r3, 0xc008551b, &(0x7f0000000280)={0x1, 0x1c, [0x0, 0x5, 0xc4b, 0x7f, 0x23, 0x8001, 0xe7f]}) bind$tipc(r3, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x3}}, 0x10) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000080)="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") 14:11:20 executing program 1: r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f00009b8000/0x2000)=nil, 0x2000, 0xfffffffffffffffd, 0x182010, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:20 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x2000) 14:11:20 executing program 0: r0 = memfd_create(&(0x7f0000001fc1)='#vmnet1nodevem1\x00', 0x0) write(r0, &(0x7f0000002000)='/', 0x1) sendfile(r0, r0, &(0x7f0000001000), 0xfec) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x4, 0x11, r0, 0x0) mount(&(0x7f0000000080), &(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='romfs\x00', 0x1000, &(0x7f00000001c0)) 14:11:20 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6000000) 14:11:20 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:20 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x100000000001, 0x800) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000aa5000/0x4000)=nil, 0x4000, 0xfffffffffffffffe, 0x31, r0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) fcntl$setlease(r1, 0x400, 0x2) 14:11:21 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3) 14:11:21 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x80000, 0x0) ioctl$KVM_X86_SET_MCE(r1, 0x4040ae9e, &(0x7f0000000100)={0x100000000000000, 0x0, 0x4, 0x2, 0x1f}) prctl$PR_SET_FP_MODE(0x2d, 0x2) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r1, &(0x7f0000000140)="d69ff47475f554da977abb36de296e507023b9142c14ba8970ce905d8f8cfd453d24a93baf22330e250c46a9654ae12e8394ded6366cc6449eeb1b4d599ee2268f2ff37b7a806b5d789148e220bb834659cdb3faa863ce589f46d0b6116480c7cabae7aad506f2a22f3c82da784e34321fa01e6d2192aacfac84c44c4180649123aaf4d2f692ecdb4d5ffadde89e3d0264265f668e5ef518abdff2db", &(0x7f0000000480)="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", 0x1}, 0x20) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="280000000400000023000000e389ef7ef3dcea3b6700000000000000000000000000000000000000000000000000000000"], 0x28) 14:11:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x31, r1, 0x3) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer\x00', 0x8000, 0x0) ioctl$VIDIOC_S_SELECTION(r3, 0xc040565f, &(0x7f0000000380)={0x4, 0x103, 0x4, {0x208, 0xfffffffffffffffa, 0x6, 0x1}}) write$FUSE_GETXATTR(r3, &(0x7f0000000340)={0x18, 0xffffffffffffffda, 0x8, {0x2000000000}}, 0x18) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000080)) r4 = syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x3, 0x434042) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r4, 0xc02c5341, &(0x7f0000000100)) sendmsg$alg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)="2010ee612923d4e9410e04a53730c027f17874da4b48ee92b4bd0ea388cfa594b818fe289f633aeb3848e9053fc79d64f44d39430709b9addc9eba45493f232640bddb39fe3d43630617744d41680f30d89fbb127021a539983c9bce62b5b9a0476b42dcf57975224bb97d335dc42b548ea8182ec6816fa9", 0x78}, {&(0x7f0000000200)="776b8a0c39fa3c345440464bc88ae1", 0xf}], 0x2, &(0x7f0000000280)=[@op={0x18}], 0x18, 0x4000}, 0x4000000) 14:11:21 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3f000000) 14:11:21 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x700000000000000) 14:11:21 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000000)={0x0, 0x7, 0x301f, 0x1}) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0100"]) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:21 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/arp\x00') recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x102, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) preadv(r0, &(0x7f00000017c0), 0x1fe, 0x400000000000) 14:11:21 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x1, 0x0) fcntl$getown(r3, 0x9) getsockopt(r2, 0x1, 0x7, &(0x7f0000000100)=""/183, &(0x7f00000001c0)=0xb7) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000200)={0x4, 0x7f, 0x0, 0x5, 0x5, 0x100, 0x8, 0x3f, 0x4, 0x7f}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) socket$inet6(0xa, 0x6, 0x1f) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) poll(&(0x7f0000000080)=[{r0, 0x80}, {r1, 0x4200}, {r2, 0x20c3}, {r2}], 0x4, 0x0) [ 281.917069] Unknown ioctl 21512 14:11:21 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000040000000000000000000000000000000000000014000000000000000000000000050000"], 0x28) 14:11:21 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) msgrcv(0x0, &(0x7f0000000140)={0x0, ""/79}, 0x413, 0x0, 0xa483ad41a879dde0) 14:11:21 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xf00000000000000) 14:11:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100)="2d7354c9dbffc8fed064010c69dee6be35e9f08bab287c53fbb8cd9bec39d5abfa42ad54715e56cf755ea451563c9564141934f6e8edc3f4fa", 0x39, 0xfffffffffffffffc) keyctl$restrict_keyring(0x1d, r3, &(0x7f0000000140)='keyring\x00', &(0x7f0000000180)="7b2d1b776c616e30706f7369785f61636c5f6163636573732f706f7369785f61636c5f6163636573732573656c696e757828766d6e65743000") r4 = fcntl$dupfd(r2, 0x406, r1) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x8000, 0xb) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x4001fc) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfff7fffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_FPU(r4, 0x81a0ae8c, &(0x7f00000002c0)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:21 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socket$tipc(0x1e, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:21 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xa000000) 14:11:21 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) sched_setaffinity(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x6000000000000003, 0x6) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000002c0)='sit0\x00', 0x8b) sendto$inet(r1, 0x0, 0x0, 0x404c0c0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000380)={0x0, 0x0, 0x2ffd}, 0x4) sendto$inet(r1, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) 14:11:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x200000, 0x0) ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r2, 0xc0305710, &(0x7f00000000c0)={0x1, 0x6, 0x9}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:21 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) setsockopt$nfc_llcp_NFC_LLCP_MIUX(r0, 0x118, 0x1, &(0x7f0000000080)=0xf95e, 0x4) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:21 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000040000fcffffffffffffff0000000000000000000000000000000000edffffff00000000"], 0x28) 14:11:21 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x200000000000000) 14:11:21 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$usbmon(&(0x7f0000000100)='/dev/usbmon#\x00', 0x9, 0x440) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x6) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f000007e000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x110, r0, 0x8000000) r3 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x1000, 0x2) write$P9_RXATTRWALK(r3, &(0x7f00000000c0)={0xf, 0x1f, 0x2, 0x5}, 0xf) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:21 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x48000000) 14:11:22 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) chdir(&(0x7f0000000000)='./file0\x00') r1 = dup3(r0, r0, 0x80000) ioctl$PIO_FONT(r1, 0x4b61, &(0x7f0000000900)="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") 14:11:22 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x480141, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/stat\x00') ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0xffff, 0x101000) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x6) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x17) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:22 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) sched_setaffinity(0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x6000000000000003, 0x6) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000002c0)='sit0\x00', 0x8b) sendto$inet(r1, 0x0, 0x0, 0x404c0c0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000380)={0x0, 0x0, 0x2ffd}, 0x4) sendto$inet(r1, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) 14:11:22 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:22 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x300000000000000) 14:11:22 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup3(r2, r1, 0x80000) setsockopt$inet6_group_source_req(r3, 0x29, 0x2c, &(0x7f00000000c0)={0x9, {{0xa, 0x4e20, 0x1000, @dev={0xfe, 0x80, [], 0x1f}, 0x2}}, {{0xa, 0x4e22, 0x162, @dev={0xfe, 0x80, [], 0x11}, 0x3}}}, 0x108) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/dev\x00') ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400000000400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:22 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x600) 14:11:22 executing program 2: syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x0) r0 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x9, 0x80002) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000001c0)={r0, 0x50, &(0x7f0000000140)}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0x10000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0xb4e1) mmap(&(0x7f0000341000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x80000010180810, r1, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2272, &(0x7f0000000100)) 14:11:22 executing program 0: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$inet(0x2, 0x6000000000000003, 0x6) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f00000002c0)='sit0\x00', 0x8b) sendto$inet(r1, 0x0, 0x0, 0x404c0c0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000380)={0x0, 0x0, 0x2ffd}, 0x4) sendto$inet(r1, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) 14:11:22 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0x4, 0x400) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/sync_threshold\x00', 0x2, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ppp\x00', 0x201, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x400000, 0x0) getsockopt$TIPC_SRC_DROPPABLE(r2, 0x10f, 0x80, &(0x7f00000000c0), &(0x7f0000000100)=0x4) 14:11:22 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xffffffe0) 14:11:22 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) perf_event_open$cgroup(&(0x7f00000000c0)={0x3, 0x70, 0x3ff, 0xa0, 0xb76, 0x200, 0x0, 0x8, 0x8000, 0x8, 0x7, 0x6, 0xb83d, 0x3ff, 0xffb, 0x10001, 0x1, 0x8, 0x100, 0x100000000, 0x1, 0x100000001, 0xfffffffffffffffc, 0x100, 0x3, 0x100, 0x0, 0x1, 0x64d, 0x3, 0x6, 0x10001, 0xfa, 0x6, 0x5, 0x4, 0x8, 0x5, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000080), 0xf}, 0x28000, 0xffffffff, 0xb72, 0x7, 0xfffffffffffff2f4, 0x1ff, 0xffffffff}, 0xffffffffffffffff, 0xd, 0xffffffffffffff9c, 0x1) r1 = syz_open_dev$sndpcmp(&(0x7f0000000140)='/dev/snd/pcmC#D#p\x00', 0x7ff, 0x6080) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:23 executing program 1: r0 = add_key$keyring(&(0x7f00000006c0)='keyring\x00', &(0x7f0000000700)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc) add_key$user(&(0x7f0000000600)='user\x00', &(0x7f0000000640)={'syz', 0x1}, &(0x7f0000000680)="870e3e93a017a502a9b7d81d05059e861dbc1cfc69e560b202975ba03b0eb9f6700023dc7c1c8399396a3eab", 0x2c, r0) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r2 = dup3(r1, r1, 0x80000) name_to_handle_at(r2, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0xa8, 0x79, "01acdf0f99eaa4b3c53448da5d6211824a979cf0f765322b245e945a05872a59174e91d39246a979c84ee47542e2d22656f490f7352acd321dd18ef057d2e8ab644fe9d10ca6271b35c140ced2013112349848701adcdcad04a765a1f61c5078b967c640c6067d5b8daa081d95c996e6e3dd19c55344f5cfe88be29e08e99fdcf8f7ca6b96c29df34d33ae8ccd3969bce00bc1327604a6ca5294a4ee4d75d2bb"}, &(0x7f0000000180), 0x1000) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="ea643d", @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$security_capability(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='security.capability\x00', &(0x7f00000005c0)=@v3={0x3000000, [{0x0, 0x8}, {0xfff}], r3}, 0x18, 0x0) write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x28) flistxattr(r2, &(0x7f00000001c0)=""/108, 0x6c) 14:11:23 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6c) 14:11:23 executing program 0: r0 = socket$inet6(0xa, 0x803, 0x3) ioctl(r0, 0x1000008912, &(0x7f0000000180)="0a5c2d023c126285718070") socket$inet(0x2, 0x0, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r1 = inotify_init() r2 = inotify_add_watch(r1, &(0x7f0000000040)='./file0\x00', 0x20000000) inotify_rm_watch(r1, r2) 14:11:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x0, 0x32, r0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$getownex(r2, 0x10, &(0x7f0000000780)={0x0, 0x0}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000007c0)={0x0, 0x0}, &(0x7f0000000800)=0xc) lstat(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = getpgid(0xffffffffffffffff) fstat(r1, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000980)='./file0\x00', &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r9 = gettid() getresuid(&(0x7f0000001f80), &(0x7f0000001fc0)=0x0, &(0x7f0000002000)) r11 = getgid() getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000002040)={0x0}, &(0x7f0000002080)=0xc) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000020c0)={{{@in6=@mcast1, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@loopback}}, &(0x7f00000021c0)=0xe8) r14 = getgid() r15 = fcntl$getown(r2, 0x9) r16 = geteuid() r17 = getegid() r18 = getpid() getresuid(&(0x7f0000002200)=0x0, &(0x7f0000002240), &(0x7f0000002280)) lstat(&(0x7f00000022c0)='./file0\x00', &(0x7f0000002300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r21 = getpgrp(0x0) stat(&(0x7f00000037c0)='./file0\x00', &(0x7f0000003800)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000003880), &(0x7f00000038c0)=0x0, &(0x7f0000003900)) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000003940)={0x0}, &(0x7f0000003980)=0xc) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000039c0)={0x0, 0x0}, &(0x7f0000003a00)=0xc) r26 = getegid() ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000003a40)=0x0) stat(&(0x7f0000003a80)='./file0\x00', &(0x7f0000003ac0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000003b40)={0x0, 0x0, 0x0}, &(0x7f0000003b80)=0xc) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000003e00)=0x0) r31 = geteuid() lstat(&(0x7f0000003e40)='./file0\x00', &(0x7f0000003e80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r33 = getpid() getresuid(&(0x7f0000003f00), &(0x7f0000003f40), &(0x7f0000003f80)=0x0) r35 = getegid() ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000003fc0)=0x0) fstat(r0, &(0x7f0000004000)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000004080), &(0x7f00000040c0)=0x0, &(0x7f0000004100)) r39 = getpid() getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000004140)={{{@in=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in6=@remote}}, &(0x7f0000004240)=0xe8) r41 = getgid() ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000005580)=0x0) stat(&(0x7f00000055c0)='./file0\x00', &(0x7f0000005600)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000005680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$getownex(r2, 0x10, &(0x7f0000005b00)={0x0, 0x0}) lstat(&(0x7f0000005b40)='./file0\x00', &(0x7f0000005b80)={0x0, 0x0, 0x0, 0x0, 0x0}) getresgid(&(0x7f0000005c00)=0x0, &(0x7f0000005c40), &(0x7f0000005c80)) ioctl$TIOCGPGRP(0xffffffffffffff9c, 0x540f, &(0x7f0000005cc0)=0x0) r49 = getuid() lstat(&(0x7f0000005d00)='./file0\x00', &(0x7f0000005d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r51 = getpgid(0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000005dc0)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@loopback}}, &(0x7f0000005ec0)=0xe8) getgroups(0x5, &(0x7f0000005f00)=[0x0, 0x0, 0xee00, 0xee00, 0xee00]) r54 = getpid() getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000005f40)={{{@in6=@loopback, @in6=@ipv4={[], [], @dev}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@dev}}, &(0x7f0000006040)=0xe8) getresgid(&(0x7f0000006080), &(0x7f00000060c0), &(0x7f0000006100)=0x0) r57 = getpgrp(0xffffffffffffffff) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffff9c, 0x29, 0x22, &(0x7f00000065c0)={{{@in=@remote, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@empty}}, &(0x7f00000066c0)=0xe8) fstat(r2, &(0x7f0000006700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000006780)=0x0) getresuid(&(0x7f00000067c0), &(0x7f0000006800)=0x0, &(0x7f0000006840)) getgroups(0x6, &(0x7f0000006880)=[0xee01, 0xee00, 0xee00, 0xee00, 0x0, 0xee01]) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f00000068c0)=0x0) r64 = getuid() fstat(r0, &(0x7f0000006900)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000006980)=0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000069c0)={0x0, 0x0}, &(0x7f0000006a00)=0xc) stat(&(0x7f0000006a40)='./file0\x00', &(0x7f0000006a80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r2, &(0x7f0000006c40)=[{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000100)="074cf9b609e961d3e81e520b9130c5e95e7c608c0decee3b7123778136b8dc83e89af65c554986bc48dcb23abb7b7344d4e8ba7e274a9e0695e7d01010f51f38ae4774177e9d73ae3194db84b663a295b74a667fa515b26caf858461060c28ac245c6dbfc56f60fee722c8adcbd3ebe9504894b73a250dcdab929d8bfd27fa744200872c70deb9f75a03464a0d67973d11ecf0797e5042837ec462", 0x9b}, {&(0x7f00000001c0)="a04035c6c6472331783e0fefb624c7b80c1f65a757d7c57d128470b64725200956f7abed2ee46e759580d2afac6f27d4068dee0c2436a3ee58a1f84d258f317a23c4ce0ec5ee3b0ad8495996579d994c15c2bb08875a932473a47fdee348bc9cfa1849d13b88434d544692fb2b2e2ada34bcf7705eaf94cb6cad", 0x7a}, {&(0x7f00000002c0)="c32fac83619efafe8a45c4599632ff8fce0d3c4a84541dd1a7e30495d29f0b3329e4bc73293145694110a1d686f50139ee98205143b61055a5acb69a582b912bc99c4b50c09e73e1f5c98e2f994ecca72309940cd5df8bb82707427db5e00b9665694cd6b656292e9957588f6a1e988785c0fc7b3c717323c874e7f8f708ee657aa9d260875aaaae02b956240d7966160ff0cba7c39ae5a664ee0f56dd23a083f2872125e8239f11cd04759973661a43c4f5c5e1b4ad3a87bd70cca8c09ff7f2564b9c8d77b6f03d832cf7aa9e46486d058a0cab7cad267e68eab9d10fb03d5d99ec30a2312ea0730e58bdbb83ddc175", 0xf0}], 0x3, 0x0, 0x0, 0x4}, {&(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f0000000700)=[{&(0x7f0000000440)="45a319564937afb580d21be15d64a87c784e9b6f95ec4a4ecfa97ed164b2361076d2ca78f53563594b06b813e38647e0e7b4bb2ea327cd4dca2cc1f511bb5890afc65f8e0d8982777d9dbdf96134ae3dfe00eee1b7c9a0bcc64ededbe617f56fd5e70d708efec691934551e1dd90aa9f10a855e4f55e2552eea9987be0352a84e68ba266e796298be3721cde4b6718d1c12a54186cc2d392fdc81d1b1977cb2008a46cd44e0e3d00ec4e4fc5720b7531b7574c", 0xb3}, {&(0x7f0000000500)="450504a540ecef3924b53566f89c29c403c3e541ffbde2da9e63a66abcd46f7b2862a901ac7f2a4ce142746da29a62f7e0fe67612551f95007d88678388b6a412b39", 0x42}, {&(0x7f0000000580)="b817dc375ada679b02032cf3bf13a0edd4892b4ea5d77b4707aeea2ffddb100495042133b6416789a647df46e0a56d42cbe7276d3f97d165eeeb9ab4413d94c3540efcd0181b6ff80882eab9c878f9569b2acdb3c8ef5f5b2afabb00686840cd6a7dc3d3a93c8945b23b4efca04c945b1a256b6c12417dca1206609ed1c5bd2a0e5407c2f00852b8f7ba7b54278cdd42b9cd24ec3a", 0x95}, {&(0x7f0000000640)="590040c1bbb7ac0f672e0c068cb3b6f4e24705119f3a20d2b128ee5757d82facae5103ef499651b79b9b29619e5f51aea4827c60dd8d8a", 0x37}, {&(0x7f0000000680)="2caa98d9fedbe09421cdf12960ebd11e6a344912a92412f97df48f78b8f27727ede6c6e9d95bb2f1401b818159e94676e173a7e9537cad25dea8467ce9dc5a9acc8a71e297d768abc4cbebb26aeb8a6100e13ee35ba83eb24d31786be19a104181cf5934aa5143", 0x67}], 0x5, &(0x7f0000000a40)=[@rights={0x10}, @cred={0x20, 0x1, 0x2, r3, r4, r5}, @cred={0x20, 0x1, 0x2, r6, r7, r8}], 0x50, 0x4000000}, {&(0x7f0000000ac0)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001d40)=[{&(0x7f0000000b40)="a9a4c3805c1e88c81e534dd2537425b59c01391945e383b73e5875a6719cdd4a058ca198acabe8c1d8ee19fcb8c91d5e2d3ee5a03aad1794828ee833952b46c87246b535a302a8cf4f872505477391b190247c64c376beacb064453e3639363bf57366c190d5cc0ff15796d30ceff20eef6b55ada9c12f4107cfd01e5c51ec122bfe35468ef06ae3acebbdd6cc93be82c0d8da34012dae87b12cb127ce64006488a89f3017badbafda7a1760c55d22c343c6d745b43a5855f7e5639053c475f1dd87ea329464d5a89d5d4ca46d8517d682bae1abe1d01d52658c7c4c051f49695874b311638f91", 0xe7}, {&(0x7f0000000c40)="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", 0x1000}, {&(0x7f0000001c40)="8ebcf191378dcbfd9b2f3855de847f7ada3fbc", 0x13}, {&(0x7f0000001c80)="6b5a8beb300407c2afa0d5eec0c7a30a6e320a6de1bab4315cfcaef6ba733a07a6dd93089202a8", 0x27}, {&(0x7f0000001cc0)="3233b32e396e9f9ea9a9e4f832648548869e75faf3491c657588e72aed24f4779d29642788a33a5a0204738da82b947fad9fa290522a6784a1b10cd0116f98b43417e29b8d2be77126d38d0cc759c9243154e87332912269a769eca82feff94b2b2b94a06e44586bd67ae60481cf2aa94bb94a", 0x73}], 0x5, 0x0, 0x0, 0x40040}, {&(0x7f0000001dc0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001f40)=[{&(0x7f0000001e40)="425d54727e9612a3d0348e62b0880480096d9e215d63179ef7dff1aa58888c9c194448fdd551004ff171d39626", 0x2d}, {&(0x7f0000001e80)="ccd154efd2272461d791159749bca3efba0bb694e059aef34da723248dfd558138f10d18c7ef73c1ce7bd91242dbda3941ef9918c1852133cd6ce424c385ffc209d5c766add6680ad6b2713afcfe0e58190ece0c145f7e035a874ec9c4946b990f4f426b41fa", 0x66}, {&(0x7f0000001f00)="8b0103da23b1b991c91fccaa621dfaf349318dfa75bcf33fa7268d4adbbd8a59b56eca9e491810cee49e011e87e1579178255fe703d1c545c91506f175bfa0bc", 0x40}], 0x3, &(0x7f0000002380)=[@cred={0x20, 0x1, 0x2, r9, r10, r11}, @rights={0x18, 0x1, 0x1, [r2]}, @cred={0x20, 0x1, 0x2, r12, r13, r14}, @cred={0x20, 0x1, 0x2, r15, r16, r17}, @rights={0x18, 0x1, 0x1, [r0]}, @cred={0x20, 0x1, 0x2, r18, r19, r20}], 0xb0, 0x4004040}, {&(0x7f0000002440)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000003740)=[{&(0x7f00000024c0)="6c2db6037c4dc8060c7c64d094287c8578a6acc098e27e5d8e9eaacec555c47134169688c05b8a2cffc8b3eeb4e6f04a8def024c426e160bbb55cbf8650deb72a396d9fa43ba6540c0b726d925ec550afcaf69e0aa941f204dc218c66271b1946f0490eee65664648411831fb7ac77a6932130ced904aa5813163d3f64e473beeae9a7232605d4038e25d395eca2e52ef39009e1e4109f3e08070b79d67c5cafca12efde99cecf54207a005cd8d5099c2feb2df3bab575f39c35433b33d17086d2b32c5e70ee1b361c9628f607076e99bdac3a471875947fc16d3f9c69ab27d6e9119e", 0xe3}, {&(0x7f00000025c0)="478119f42b4b160f25d16394766d6f766a3561e56562fa1a2ad124ae67ea12db2ecb07dd47c5e4a524564784cbaee36df7218e9918", 0x35}, {&(0x7f0000002600)="2552d779f59d316b79a5a98f0577a01945979858786d1ad5f3d3e8a2b76efa6b7bd1a43ce350f46592a30810d604ea7225b2611758a7751dcda71b9bf168c9be04178f1ee2364c8eb8e3a64d84219b29d75f6bd70e67a15791616393699c2d85b88c0512258a5628ce6fed7faf4d8fa74fb4b960ade8af2709ae2740df655f0c6e9090108bfd2b169e9ab4c4fa4a20fc0aa68b879c499407986d9d388bcf4176d627241142bf6ce0155df76dfa880548d762fb9254e9acd607471668666565ad12d5b67a9bd3492d187402960861f61302ac1d9c16ed3740b3302f4c65", 0xdd}, {&(0x7f0000002700)='2', 0x1}, {&(0x7f0000002740)="b677ae4c3004eb7232c5acad5fd136285631d5f50f50c16cc1e58c147627619fa3f417379ac4f2e6a958d071df32701cda8299fa3a2e7e7000ef2205e8114fa79ff35164c4330a083f7d264df91795bd1a301c10e46b69c587de07e35692df181bd5f43e23da24806c869046447dbd3cdf7b18cbec4781501c4a77609b0b76015fcec22b84912916821e831ecf457c085f67f96c3389c4b877145a7a19f24b925bf0a31468c9664d1a0451b5176b3ff9f135924a37eb5dcc8a5dbbd19179aa1b7683a0f86b1d7f2058427bb91c694854df1bc41739287334ad5f6c7807c24ba3b67bee81d9966ceafe52074bdb0565c05b80e3e86b207b0d0fdede53c2ccbe0d7bafbb0694d4ab30a93d51bc9e622b1cdb712c243fcd3a2fae65971d3331856287c71ff02c2ce7ea62c9ecfbae34d39be7bb69acb65b3131831203f847c8430e3065b7e07b5423a9bc16ff48d74ca6c5140f6abc9a26196f6a3a97511f1dc6fca82d0c4bdceb49b18a6b832b399e16abc6fe43ec60b2733cff8163b6981cf7b3da11e7917095d687c8bc64bcf73364ee6f7aa4b6ff6c33e1857d8afeef74815f5953cc8b103c9a9bbc62877f2c7a0aa439d10d71bc836458b6e3c356cca78a22303ec44b2ddd39e2ee26869331fc50b98218db325acfb1e9bd85c73345227c6ddf3644928626a723813c06bc2dc023f88b65a3f72f01d64c4f5d5f76db6c16f0be869681831fe4765730dbe8f94e545b560fb75474320d36ffeab327e3c2736ddb47524281363b35b7b4ae6e7f2fc4da4b339d273743954d4fc876ffd065ae6f6e30e88220b9f13a93792605a4656559fc67a66b11aba088256e183189c6335c3dc25b9bc185984b3516e7f62355461c2d7d221c9c9d570b961780fa529a3ebaa0de35ddb052981c94cff243e80838d135730b21c0ef05d676ebc24cce46da03e2c1de69ea0974735eacca831685329c907663b1f77a012279c345de110c9325792d10304be004d0de462a08d48ae3699d4809b192af2e552c6686229ea7feb08845445fc383e6330740a49779c12adbd4d8a2781c4bdf1f38dbb620ae79527fe82f7a0bc1964ef050a01276e21a66082651d1cd6de0ec6ed313016d61a469cbdef7082371f35265797ba3cf912c165389a05f8b6bf56be995242db631cad27a563ab477bda42d93a05713520536250aef521954a29cc6011972cce9d26372e009b76e3b3fbcdc49c6762bb793b4e20ece6ae79a68fbb547b1cc341a28a9b8cde44d6e4e498388bad482122e2f263625760a8aec38e2841c2f98c73a0c2c176937ed548776e498c1ed75349a98740cef134c7d798f0379dfadf6fdeaa0dd81dac99dc13f9d402b8c8efdef7e7c28b85a23bc1a70e2be1d035242fcc324cb3ebe7a84da7a466936f61290237d5503966e2a2dfb43cbf7656bb0923f930bfb21842ea164b2b5b6e79c81bf5be39ab91d8c50f6a0368f25ee04d413f6df1d6c3c9646eb9cffaba6c3db955aa63369b25eebe4ba2962f222dd10ea40afe9f20d9af689cd32e5b21319ed259be05a7655c25ee0f931e47894f07df0ffceefbe1b27e49085d49d7486121e31f55bc63727bfc9efc10be36d4df3dc34799e0f7a0721be5620ac68d1a4306cfb603bb34aed8304018174a692ded1d7834a82e393dd95a5565f8caba52a1c1795559e6ca0718614d1dd586532176cbe3006a7bd60ccd149b26ee73fff284eaef694ed213fe7faaf58ecba5dddf54bc1a30ef84219bae25838599acac27bdab1d34585e5cc5d9c743285a69b694c40ade1d4ddf1c43007782f0996e54d406ac3177b1555183d97b1fa92535b2cb6d96060c69d6cef2ede97ba6027ec1794f6cd4bfe1bcb6900d5dade4f9c2faed9fcf0411b7c45db6863e6312819ece6d856e4508ed828aa1ce96fce2b464e30913251c9dcbb8fd4c9d4ab8e5a05f27bc784411d0375b00924234e366253427e60f5e5313362bd6ba0f39dc0f7e47dd7c0b26c57d849303b915aab5eb5ac175e3d8dc59128166d7d1d68d93eb6f9324bbf71712f979c871ab9e884f76fb32e486c2b3689623e70d0125190cb401898210f6133355bbe3a7143dba0b39909503ab46f007b2aaf16caf8b4defcc63a03e165af2044b63c27684fe05863c346d2ac46970a499b809112e3c6d461860c1d7f020e2e22166e7666d01f1ac4ad8225e9c61f18ba1565b6329a18604fbbd1f09c5842675e4f451a95a8880254d4d109aa3497490f48c14096a7bf505eb9cae298e5cf0e806498d14871d68d142c6ce5e44b4307768f22e423cba1181133defb05172db41024c05648f15624a12f91941869cc595414e2921c46ba6a39d361fee9413b8a3fd867cc6fc98cd758e959d7a0b4d09dad06c13b3dd687e378919b5e2b772bb26172838dc2407b48d36f9b71c63c3c6271fd865ba3419e780acc0d27b55a8b5d2be52975988fdc4151d72386e515eb95acd46a3841930231c05f01dbf46b216a60b6ddfa034dfcb660716dcde1b23c336ac699d005fdf436b7f06febfcc95e2d5fe708200298f797b2baeb3f34ecc13f34cad3cf423719d189acec824d377515ada836a59d2d49704d0919aee5e819e67656915ed57701c15bee9f938585e66b8f952d8d9d331cf1d60554332fd992b1e25e565c0250e90697aa12b9254f0f5b828ce53b22bb7d9baa648f0bb1de788d7aae91b08527891085c81ba8280f37175770df4c93f22099bad50210d8e5317da5bb1d4234d2b0bd0071d640aff799212c852f6b582746560fbfe0cbf05dc8f58f1d01575796ec0aa3d86216394b7d5a65e7ad907fc78fd4db5e0f8b88aa40bc918da295168c2d9c383655fb469881426df604a6c99c3e61e66d7760198131b29376235b176c273a6c59a3b88c53246cca074db389ed82eca66b1eb75827ffe8909e58d8335428c3d7ca530d4f951ff69bf30444121dd7cc6a92fc2736bd38f0405cbe009d520b4537870cfb1495085d9cb27df9aeb5cf6484a2c04bda1d8f30060f26407163077d77e322d4363d07b5c751d4bc2d226aaeb41ad0fb804567c970e84218d63a1ccd577c542b63f446d6ddc0c926580d29dee456d2c5ddc058466019b075f453437f5284b89bf5a7f3b2e13e8d66b30b60c4ea6c56ba8bf3fe10b14f6a5337f93f5789eebae6e31d12d9194f744a48adba8d39346c7b8005a4d16e487acad63a31c9a73c5df8cdc4358095f859125ea2638586920df6af17352e492e31427d5080b7f281cca2d8443493241604e59c93b4faaa08cb6af4c9b595695062f0f527668db9b392d412e3852acdba13f1670f957a9bfb5138223a2acbcb062b46d7144f982c6c6ef093572798a71e56c24e99086bb7a454edae51c87323368382f7a2eb8754f48ebd15394aef180e3029d869fbb938632356c0f77c3b7f9b2016f446f4f45ba19c1d33f55b1472a68de0451fab69d6712a3a147ddbbc2d6e1e9e9e59ce85cc83ea584ac42be8db8ea74ea910441984a7b8e8748759d611389b90b69d12f86ffc267c099a4f819c978b8c0eb595e9bc18f96cc55cab8c88abfff971d2bd405654dd958ab71dfc424e940dbdf6d3eb9faa4c35ddfe41db3bb23a8ee50f5f64f75cd2bded483962b4789a8a69c3a79076d34dbc00a139c3b1266d5b7c889d58d20c1f04b571231b7d17e0e2b885fc41ecc83f1b7f52a016b86f4f2a7d94acceb0f0f698d1a47d98c2cfacf4e316753606a4cd8772c509ba0ecb7a6d2f75d375c45a5ce141d2bd927a71ea0d707a8f92f273ace6e51421db8d71e7647e012dd3848b7172ebdfee182f84df3334cc135f8757c9d3da6be69b7131a72a325165e2f1e36c3fcf1cda776faa68cd546ebd53278dcfc475daf432f702ce19b2b08dbcfca77bee257b3c2127e5f5c9b2214cc6133ff8a6c17164bf69dfaf61c72a82ec6511445d610b33884d51d257079bb0a2962919bb56e3fe7d16f3c4896100752670574541ddd0b1231ac919ee9946d44ad04e175db1ec58eab11ecbd284a81b307e30b931da127a53132670b6083616d68c3f889f0a5a439264f7e1b71ce94ea37d49c00cdfb5d2350f1182adcce11a3260bee7a5b006d3c6c7f4112a4563cd68b8d246a5cca6582ed012b11601e4707e7d90c450abf66826e3dd61df35d60849458548beca6a3fef95a0624e73137bc8ced6c494ac16abb91e5acbb74783643fccf5485d2a02048eb9c8f4f5c43abc1c8746d11a90978ffeaef22d5f7040f51248b54ae4fdc0c90d41272ca683ad6ac5201ffe3ce6a2b7bcbc48fce90fa715a768b05d2c9c1d85d666f6bff5817293595e904b59da3cc860f66cf071b1d6217d258081647f82cbda0cbe416d99a519face2840bac937a7c25bb65acf8cab3e4347f6ca21f8006df5813cabda871992d749779c7e8e859f03ff121fe288c6766d2a6ad51257275785e1f8059faef0d5ed4dca7f9e0b20900ee84aa067bd2c45118f337bd4eee968883f617e7bedecf3433b068f474605690a553e6e2d9f9e3c438b9c947ac2ce12e53dc4c01a643118f41184a1c7116a81f75fe4cbe0e320e12cb9c56e953829af6d89cb4faecebdb96ae3997dba2234bd12593436236b98b08177e32712ed4d2a0a6f98ff9edaffd2e885f49c30f91f9b567e288caaa8b080ef519191ea1bd4bae6409c7b31b522069cff3183379883b8f7070d21f146e755843ccbcf1b75b5b4370b5e3944df6e2a480bf544f63f74b4c3dcdad7f31e276215a1491765360658cea8517f0df0d87252823f9d8c925cbfd6d4319e72040a06f8e98ed5fd8ac10dec55d26a277e39680d9644262bf655a56d78a582669f24164545930b5c6fbc43abd8013939ad9176165fa7912cc047d31aa70b340224091d7273f4376959c1597d30c5f47763b674c983133c9fd4056176dc1f7bdd03b2d4953dd291807ce4a09109e19297c1fd5342eaa16b1e9b0cf076619bf594129b25713d2a3f49617b638e250a4a3707db162e113b34d30955740ee8d1773474e248186ecdb3669a390e31f7e177ffbe24794fc515253e00c78ed9410c54c3b41a62d291478eae3a9d1172bffb03e52c0204dccb0de660b205b4622a38bea984d58173fe56d942b70881f6eb09815aa189ed8235a086fd08edc21517a43a8fb40680da02df6c39a9183326cd93261fe59864648834e7b0395221045845431bfe9fb78d8d18a9a5adc22fb12bba131b0cb91ee46e854dd593167f9f6132d1c5e5ebd4bd0d2ac8892c2e3d555652e5bb1cb6e066ea1073c6eef8c4588f50a87d3dda239f33582693c62b8b436fe1be29cdd8a02260bd719ca10df289dba94850c4070fe2766576590704942fd8e016e38106df6078cc71864fca85b8cc9437e9d5431ea1cba6b6f7a21b3bb2d2a8ebdc658cd65a9d0f95c4d11c306d16c2c15b20a050331433aa5e67af3518a490ba23806e85466c0f02b1e2f7b06ba6f51f6e7ddc847bc0f320d3aedd1024fa29d798a957bd06679b86d361525f001f77b4290a21783e13c68aa1d2c3d403b292d5f0b1baa27f0c851705bc620f3a33ee856c073a1da02f58505d65ee8a2d63928a228a29e7c383d20fe81a62850c8c03ad32426ecfc02e85ea84dbece527f0e140c29e583d57fdaab65be6ec041186f5c5e9c622aecaf5bf0dfe87fce5192bfa7726b6a5e8bae359841ce96c9904e8f1485e4de41ee5b66c19e058e5b8cb8b14e3f5e13a1d6e8a079237a1db1e3b3a0ce33aec9e785355af36cb47a848b67ec00b9ba04a0ca1b507458afc039218d14e86ef8f3a2214", 0x1000}], 0x5, &(0x7f0000003bc0)=[@rights={0x20, 0x1, 0x1, [r1, r0, r2]}, @cred={0x20, 0x1, 0x2, r21, r22, r23}, @cred={0x20, 0x1, 0x2, r24, r25, r26}, @cred={0x20, 0x1, 0x2, r27, r28, r29}, @rights={0x30, 0x1, 0x1, [r1, r1, r0, r0, r1, r2, r2, r0]}, @rights={0x18, 0x1, 0x1, [r2]}, @rights={0x20, 0x1, 0x1, [r1, r1, r0, r0]}, @rights={0x30, 0x1, 0x1, [r2, r2, r2, r1, r1, r0, r2, r2]}], 0x118, 0x4}, {&(0x7f0000003d00)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000003dc0)=[{&(0x7f0000003d80)="12d1a5ac14aa822a8737fedd6f4751a9013e5f6e1576c56e33", 0x19}], 0x1, &(0x7f0000004280)=[@cred={0x20, 0x1, 0x2, r30, r31, r32}, @rights={0x18, 0x1, 0x1, [r1]}, @cred={0x20, 0x1, 0x2, r33, r34, r35}, @rights={0x20, 0x1, 0x1, [r1, r2, r2]}, @cred={0x20, 0x1, 0x2, r36, r37, r38}, @rights={0x38, 0x1, 0x1, [r1, r1, r0, r2, r0, r1, r0, r1, r2]}, @cred={0x20, 0x1, 0x2, r39, r40, r41}], 0xf0, 0x4000001}, {&(0x7f0000004380)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000005540)=[{&(0x7f0000004400)="43c94b164a523a7bc456a4518df387d8dbcee967e0743e4bde3dbbe466b6120381a0307619509d78e7ca376870346d04cbea5655b746a0b58fa11c22ae6a9d3fc64f70a1c2835446c02a191be59fcbb78f4f3bd535dcd665d0e9919f9fad31b648e2751a946325aac86c2f4fc2e62df81155881c99dcff75fb3e1f77221f0ef6d54fad77ac69f0b66a53098e229f97fa2271c8fd21a9262cd17e4df4ee5e7ecd9a7df885784f8b2ff342eec538e61413efeb7f2316d766879dc78cda59a7d7e06033817b35693bc10a5a0569444cf05b08c5ac795176687b13754a7b4c7609ebde81f8e96cd67ca60c28d1defffb66793acb7c8846eb772b43", 0xf9}, {&(0x7f0000004500)="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", 0x1000}, {&(0x7f0000005500)='z', 0x1}], 0x3, &(0x7f0000005700)=[@rights={0x20, 0x1, 0x1, [r0, r1, r0, r0]}, @cred={0x20, 0x1, 0x2, r42, r43, r44}, @rights={0x28, 0x1, 0x1, [r0, r2, r0, r0, r2]}, @rights={0x30, 0x1, 0x1, [r1, r1, r2, r2, r1, r2, r0, r0]}], 0x98, 0x4008051}, {&(0x7f00000057c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000005ac0)=[{&(0x7f0000005840)="c7e3e956bfe7987108c497543aa89836bad0e95d5746812d6fbfdda79222411eb1314a4e619a5de9ec54a41a037853b640a9146559724327eb7dc7aefff5f6edfb0db4f4023088bcd72a62682e8baad0308b0a4f553a6b2f13b813527735a04b4b942ce736f2e54dc015", 0x6a}, {&(0x7f00000058c0)="5abc7e793ede6b0a0b580b5ef1e46760bba9e5a9f9a7c5277625b32ee9ca9ef843ddd3e4c7565a8a002e1b6311bf3af869d92d65c96599d18f2f99b2da1060733cc4417f71a1b06eb52aab3fc39eb96b32ce4a12e8ea406d0e2a7e1d306e7353c387538e810be62ee5ff9130b448f3ee15127b21c2c1b26755a4", 0x7a}, {&(0x7f0000005940)="6ca3ef9fd2df6cfeee157dbfd3601c37528d8b3699be75e689194499c510492bc32d96bd1e15d6da653bff5d62dfa7e877050b29a56736a4ad25e31c5240c7ff6ca4b49db3f6b57170eea95ef3b83fd2ad3a757b65dcf642f387378f80316732bf64f57faee31389ae3f9a6a84b9f140aed1d4124f69b613e05728ec46f5bb6a9fee52bf793a574ae166a9d3e65a17e7b4d756", 0x93}, {&(0x7f0000005a00)="8fe529256e92f8df0a765316eb4df07cd00e3b8c38bb04c612eb267687c9ea7e361a49efa076b03abd379af6e97e8ec6925329d5ec176a46feb4cc06b0fde156d9568af2275fc98b87052d9107385ce9979d4f8a121af4f398b0c3376abc9d48badece767e297728f4d4be3d13ee565fb512e61cc369cf28beac336f89ff273a3303d998569ad15fc5bab544973cc8278477ff819230e6015581fc23", 0x9c}], 0x4, &(0x7f0000006140)=[@rights={0x20, 0x1, 0x1, [r2, r2, r0]}, @cred={0x20, 0x1, 0x2, r45, r46, r47}, @cred={0x20, 0x1, 0x2, r48, r49, r50}, @rights={0x20, 0x1, 0x1, [r1, r0, r1]}, @rights={0x30, 0x1, 0x1, [r0, r2, r2, r0, r2, r0, r2, r2]}, @cred={0x20, 0x1, 0x2, r51, r52, r53}, @cred={0x20, 0x1, 0x2, r54, r55, r56}], 0xf0, 0x4000080}, {&(0x7f0000006240)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000006540)=[{&(0x7f00000062c0)="10395877ac44db3ab30fb6a7ed1bbc28", 0x10}, {&(0x7f0000006300)="abf2028102cf0da7ab4d41a6abd4b4474e81461023647421766586db106fb86d8fbcae0432c3f450e634520bfdd2d5be45525e7d852bc1f5d9b81fbb3735f8ed67726efad700c8c6b9145481d39c98d90dd17dd79c2522c6497f41485d98b37ca23639b071248ddc79c1dac0502c39e0cb89128375f68da01220d37faee7c45454f0eae1b4213cc5cfc58a949cdc9042a1f4bffda45cf57833b586d482392b821218e321161c361ad3bac64e7538c49da9417a691c9f47", 0xb7}, {&(0x7f00000063c0)="9b4f2fea98918a7001602d92c0dcd1a5c321243c25e333ae2c7c1310c72b6e5f080b40bede3027f75f749fd08359db3d2cee141ecb9a3205fee00e03d8d68565c7c69c5900dacf27e70212d4aaf83535b4", 0x51}, {&(0x7f0000006440)="f199ce16390136cfd5bda48da31bfd36c7dba6180dcd1650f67b59d34f1e785ff9cb8784af46b5f6fb5f0c847d0ceacb4953e8bc7a52524469d5e32f18d5ce1e52bb56369b2da70b7051c6e04e8884ad35ef", 0x52}, {&(0x7f00000064c0)="4292526ab90212a6c6c05d1945ac89378e316e483adbf63da2b0e08c8cad195bf5517bb93343ac9548c534f992631c347e", 0x31}, {&(0x7f0000006500)="7e3ae49a3817f92b8e5f5c599292df70dbfb062c966fba429bab785e44805dd8d9dfbd308c4b55a7ebd185cef9f2b088c194b15bd4efa022363b", 0x3a}], 0x6, &(0x7f0000006b00)=[@cred={0x20, 0x1, 0x2, r57, r58, r59}, @cred={0x20, 0x1, 0x2, r60, r61, r62}, @rights={0x20, 0x1, 0x1, [r2, r1, r1, r0]}, @cred={0x20, 0x1, 0x2, r63, r64, r65}, @rights={0x28, 0x1, 0x1, [r0, r0, r1, r2, r2, r0]}, @rights={0x20, 0x1, 0x1, [r2, r2, r1, r2]}, @rights={0x20, 0x1, 0x1, [r1, r0, r2, r2]}, @cred={0x20, 0x1, 0x2, r66, r67, r68}], 0x108, 0x20000000}], 0x9, 0x20048000) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:23 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3000000) 14:11:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x42002, 0x0) r1 = syz_open_dev$vbi(&(0x7f00000000c0)='/dev/vbi#\x00', 0x1, 0x2) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm-monitor\x00', 0x200, 0x0) setsockopt$nfc_llcp_NFC_LLCP_RW(r1, 0x118, 0x0, &(0x7f00000001c0)=0xa, 0x4) r2 = perf_event_open(&(0x7f0000000140)={0x3, 0x70, 0xffff, 0x3, 0x0, 0x4, 0x0, 0x9, 0x40000, 0x7, 0x7, 0xffffffffffffffff, 0x946d, 0x0, 0x9, 0x6, 0x0, 0x3, 0x254ddf06, 0xb45c, 0x6, 0x1, 0x6, 0x101, 0x8, 0x2, 0x0, 0x2, 0x3, 0x3f, 0x10001, 0x3ff, 0x80000001, 0x9, 0x80000000, 0x1, 0x0, 0x7, 0x0, 0x43b8, 0x4, @perf_config_ext={0x1000}, 0x8, 0x200, 0x80000000, 0x6, 0x1ff, 0x8, 0x8000}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x7) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) socket$bt_rfcomm(0x1f, 0x1, 0x3) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x4000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, r1, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x42, 0x0) 14:11:23 executing program 1: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x80, 0x0) getresuid(&(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)=0x0) r2 = getuid() r3 = geteuid() r4 = getgid() stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = getgid() lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r0, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000580)={{}, {0x1, 0x3}, [{0x2, 0x6, r1}, {0x2, 0x4, r2}, {0x2, 0x2, r3}], {0x4, 0x4}, [{0x8, 0x2, r4}, {0x8, 0x2, r5}, {0x8, 0x3, r6}, {0x8, 0x5, r7}, {0x8, 0x1, r8}], {0x10, 0x7}, {0x20, 0x2}}, 0x64, 0x3) r9 = syz_open_dev$adsp(&(0x7f0000000200)='/dev/adsp#\x00', 0x80000001, 0x10000) mkdirat(r9, &(0x7f0000000280)='./file0\x00', 0x2) uselib(&(0x7f00000003c0)='./file0\x00') r10 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r10}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r10, &(0x7f00000000c0)={0x28}, 0x28) 14:11:23 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x10001000000) 14:11:23 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x3f00) 14:11:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = dup3(r2, r1, 0x80000) getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, &(0x7f0000000000)={'NETMAP\x00'}, &(0x7f0000000080)=0x1e) mmap(&(0x7f000066e000/0x4000)=nil, 0x4000, 0xfdfffffffffffffe, 0x33, r2, 0x2000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:23 executing program 0: capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)) msgget(0x3, 0x39) 14:11:23 executing program 2: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_elf64(r0, &(0x7f00000002c0)={{0x7f, 0x45, 0x4c, 0x46, 0x6, 0xfffffffffffffffe, 0x4, 0x8, 0x2, 0x3, 0x3e, 0x1, 0xa6, 0x40, 0xac, 0x4000000000, 0x1, 0x38, 0x1, 0x80000001, 0x8, 0xff}, [{0x7474e551, 0x6, 0x8, 0x3f, 0x6, 0x80, 0x3b3, 0xd0}], "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", [[], [], [], [], [], [], []]}, 0x1778) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2272, &(0x7f0000000280)) 14:11:23 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) clock_gettime(0x4, &(0x7f0000000180)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000000)={0x9, 0x5c5, 0x6, 0x8, 0x6, 0x5, 0x6, 0x9}, &(0x7f0000000100)={0x20, 0xfffffffffffffffb, 0x6, 0x0, 0x0, 0x1, 0x8}, &(0x7f0000000140)={0x1ff, 0x6, 0x0, 0x9, 0x600, 0x3, 0x6, 0xf6c}, &(0x7f00000001c0)={r0, r1+30000000}, &(0x7f0000000280)={&(0x7f0000000200), 0x8}) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r3 = dup(r2) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f00000002c0)=[@in6={0xa, 0x4e22, 0x5, @local, 0x9}, @in={0x2, 0x4e21, @multicast2}, @in={0x2, 0x4e23, @empty}], 0x3c) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r2, &(0x7f00000000c0)={0x28}, 0x28) 14:11:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x151380) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f00000000c0)) [ 283.821572] capability: warning: `syz-executor0' uses deprecated v2 capabilities in a way that may be insecure 14:11:23 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x300000000000000) 14:11:23 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f00000006c0)='net/snmp\x00') preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000280)=""/202, 0x3}], 0x2000000000000112, 0x0) 14:11:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000140)) 14:11:23 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x80, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0x5, &(0x7f0000000140)='fuse\x00', 0xffffffffffffffff}, 0x30) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000300)={{0x6, 0x6, 0x93, 0x7, '\x00', 0x42}, 0x5, 0x0, 0x9, r2, 0x6, 0x6, 'syz0\x00', &(0x7f0000000280)=['ppp1posix_acl_accessnodevGPLem0\x00', 'rootmode', 'fd', '\x00', 'fd', 'keyringposix_acl_access\x00'], 0x45, [], [0x5, 0xfffffffffffffff9, 0x1, 0x75]}) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='fuse\x00', 0x0, &(0x7f0000000180)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:23 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x100000000000000) 14:11:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = syz_open_dev$usb(&(0x7f0000000080)='/dev/bus/usb/00#/00#\x00', 0x1, 0x80) getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(0xffffffffffffff9c, 0x84, 0x6, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e22, 0x4, @dev={0xfe, 0x80, [], 0x1c}, 0x800}}}, &(0x7f0000000180)=0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000001c0)=@sack_info={r3, 0xa0, 0x8}, 0xc) 14:11:23 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0) 14:11:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e23}, 0x6e) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4001ff) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:23 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='pids.current\x00', 0x0, 0x0) getsockname(r1, &(0x7f0000000680)=@xdp={0x2c, 0x0, 0x0}, &(0x7f0000000700)=0x80) lstat(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_IPSEC_POLICY(r3, 0x29, 0x22, &(0x7f0000000800)={{{@in6=@ipv4={[], [], @broadcast}, @in=@remote, 0x4e20, 0x3ff, 0x4e22, 0x2, 0xa, 0xa007505326cf68cd, 0x80, 0x7f, r4, r5}, {0x2, 0x4, 0x8e7, 0x6, 0x0, 0x800, 0x1c0000000, 0x34e}, {0x3, 0x1, 0x8}, 0x2, 0x6e6bb4, 0x0, 0x1, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x1b}, 0x4d6, 0x33}, 0xa, @in6=@mcast2, 0x0, 0x0, 0x0, 0x6, 0x2, 0x9, 0x1f}}, 0xe8) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:23 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xff00000000000000) 14:11:23 executing program 0: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000012, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000380)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)="7379736673002a864f4bc00bce1bdb20637213b1e894d120715f9dc1125b042c7226eb0136d9624ea1d23374a660fe5ac173722fd367ad22e8553025a2e8be0bc5514379af7213d32b8d5d06dc8fbf2c849ed9cdefc74b03dfa9cb5a90b28b4b24d7862c3d66fca53167d5424235435a3dbb76bc7d3c42fc2e9c696114a6f888f0da85277683cfc1c4d2bf71c255a3134d64cc3fed8e97798deb8631cbf7682c9fa2ed031465aa191df922f764297cba22a8499d177f49fba940f55bbc8b723fd374f1fed78c8aeec6811d9b5879487387d56594a14c2588274de84fa27610302b3fb54172a8c910a07e7c76ea465aa68402", 0x3, 0x0) stat(0x0, 0x0) 14:11:23 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="28000000ade9040000000000000900c1f170eb2df4278adc34296af50000000000e6ff76913d7c6ff59e00000000000000"], 0x28) 14:11:23 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x300) 14:11:23 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xfffffffffffffffd, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x4801ff) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x80, 0x0) ioctl$TUNDETACHFILTER(r2, 0x401054d6, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x56, 0x2, 0x4, 0x2, 0x0, 0x7, 0x22102, 0x4, 0x5, 0x6, 0xfffffffffffffffa, 0x428, 0x0, 0xab34, 0x3, 0x80, 0xfffffffffffffffc, 0x6, 0x5, 0x1, 0xffffffffffff8001, 0xa8, 0x9, 0x5, 0x9, 0x6, 0x8, 0xa95, 0x2, 0x10000, 0xf3, 0x0, 0x40, 0xfffffffffffffffa, 0x1, 0x20, 0x0, 0x4, 0x1, @perf_config_ext={0x9, 0xcc}, 0x24408, 0x1, 0x1000, 0x7, 0x1ff, 0x10000, 0x5}, 0x0, 0xc, r2, 0x3) 14:11:24 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/sync_persist_mode\x00', 0x2, 0x0) setsockopt$inet_sctp6_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f00000000c0)=0x76, 0x4) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:24 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x800000000000000) 14:11:24 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) quotactl(0x80000104, 0x0, 0x0, 0x0) 14:11:24 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000010020000000000000000000000000000000000040000000000000000000000000000000"], 0x28) 14:11:24 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:24 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000080)) 14:11:24 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xfffffdfd) 14:11:24 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'ip6gretap0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000042c0)={&(0x7f0000000b40)=@newlink={0x38, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x18, 0x12, @ip6gretap={{0x10, 0x1, 'ip6gretap\x00'}, {0x4}}}]}, 0x38}}, 0x0) 14:11:24 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg(r0, &(0x7f0000001580)={&(0x7f0000000100)=@llc={0x1a, 0x118, 0x65, 0x4, 0x100, 0x0, @random="60764c5ea8a3"}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000180)="7ef24097b04afbe5627a9040e0fbe17618878e337355730da230b00ba22eed2e2ea31d8a5b8202f8fe84209d3b003e06c0cd9dfd691a74a7c53ef08dbea7e575f52b5207fe1850accbeb2adaf9adc791147c08936eb2c2568396e1bf04555cf28287056629fd6b0db63aa546f17993c70a6dd7dc9db1469e6ce07ea58dd1b770926e949b70c49abe1068cb20", 0x8c}, {&(0x7f0000000280)="054b83a8aba16436a3697ab993ec2c63bac6b9c5b819057f9cdcc340797a665b12a5c5501822479c8f97b2525eb450082599d1cccbc95e44964ab37910df533741324c22156ed76157f766", 0x4b}, {&(0x7f0000000000)="8da592355a3171370f878d1082398720", 0x10}, {&(0x7f0000000340)="589d1e8a3fde5240fae29feb73de9025508e3d9b43b85352ee925314b2be2c3789949bfbf367787a118fd10dcd", 0x2d}, {&(0x7f0000000480)="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", 0x1000}], 0x5, &(0x7f0000001480)=[{0x88, 0x0, 0x1ea8, "18cebea275d0468dd017ee04dddb4cd54a8109df1f8d6b6245404f44e9efe77d27c47faa0fc74bf9f827e162b4b03c3b2a32ec3cdd080309aad113e0ec87c10bd7136f043da015a51f4199a573dbd4d942707068cdf80386773bbc21954ea260df4125156a3ec6723905a05ec36235a4c1161824746823"}, {0x70, 0x111, 0x40, "1d58c74114d509efe09dfe2c8af506b09964d358ff4620f7ef09ef6985b90038473b576b343a8a534c3fa6316b52c2f1dabccad693c5e71b7cdaaced1bdcc3a00928f6e297d1c2312a226524a03b9539f83ab3f9cf1173c07c7b"}], 0xf8}, 0x4008004) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000040000000000000000000000000000000000000000000000000000000000000000008000"], 0x28) 14:11:24 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x800, 0x0) getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f00000000c0), &(0x7f0000000100)=0x4) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x1, 0x40010, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:24 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x80ffff) 14:11:24 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/vs/sync_sock_size\x00', 0x2, 0x0) ioctl$TCFLSH(r2, 0x540b, 0x3ff) fstat(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000002c0)={{{@in6=@remote, @in=@remote, 0x4e22, 0x0, 0x4e22, 0x6, 0xa, 0xa0, 0x20, 0x21, 0x0, r3}, {0x8, 0x8, 0x7, 0x100000001, 0x80, 0x1, 0x40, 0x100000000}, {0x7f, 0x300, 0xee, 0x7}, 0x2, 0x6e6bc0, 0x1, 0x1, 0x1, 0x3}, {{@in6=@dev={0xfe, 0x80, [], 0x10}, 0x4d3, 0xff}, 0x2, @in=@rand_addr=0x2, 0x3503, 0x4, 0x3, 0x3, 0xfff, 0x3, 0x80000000}}, 0xe8) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$UI_SET_MSCBIT(r2, 0x40045568, 0x18) r4 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x8000, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r4, 0x40bc5311, &(0x7f00000003c0)={0x8d8, 0x3, 'client1\x00', 0x5, "eb236bcd031a7a1c", "d0b30fb837978535fc59bd5acd7ba53caa52ea17e0b21d4964b46228ccbd1e61", 0x1, 0x83}) 14:11:24 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x0, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0)=0x10, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:24 executing program 0: r0 = socket(0xa, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000440)={'veth0_to_bridge\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=@ipv4_newaddr={0x28, 0x14, 0x401, 0x0, 0x0, {0x2, 0x18, 0x0, 0xc8, r2}, [@IFA_ADDRESS={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x1b}}, @IFA_LOCAL={0x8, 0x2, @rand_addr=0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x8000) 14:11:24 executing program 1: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) mkdirat(r0, &(0x7f0000000140)='./file0\x00', 0x32) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:24 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x80ffff00000000) 14:11:24 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x10200, 0x0) ioctl$sock_inet_SIOCDELRT(r2, 0x890c, &(0x7f0000000100)={0x0, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x12}}, {0x2, 0x4e23, @multicast1}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xe}}, 0x3, 0x0, 0x0, 0x0, 0x30, &(0x7f00000000c0)='ip6_vti0\x00', 0x6, 0x2a, 0xed14}) mmap(&(0x7f0000c9b000/0x4000)=nil, 0x4000, 0xfffffffffffffffe, 0x13, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:24 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x9) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs\x00', 0x400000, 0x0) ioctl$RTC_AIE_ON(r2, 0x7001) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:24 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000180)='/exe\x00\x00\x00\x00\x00\x00') flistxattr(r0, 0x0, 0x0) 14:11:24 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x40000000) 14:11:24 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) lsetxattr$security_selinux(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='security.selinux\x00', &(0x7f0000000140)='system_u:object_r:fonts_cache_t:s0\x00', 0x23, 0x3) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000180)=0x0) prlimit64(r1, 0x0, 0x0, &(0x7f00000001c0)) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="28000000040000000000000000000000000000000000000000000000000000000000000000000000"], 0x28) 14:11:24 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xb74aebfb7f0000) 14:11:25 executing program 3: syz_open_dev$sg(&(0x7f00000000c0)='/dev/sg#\x00', 0x400, 0x800) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) 14:11:25 executing program 0: perf_event_open(&(0x7f0000000300)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003140)=[{{&(0x7f0000001400)=@ipx, 0x80, 0x0}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000240)="6e65742f6465765f6d6361737400eeaa0800cc7cf08a56ef0da37ba56a9421ffaadc3037519c1c05ab442de6f9b1a7c625a2bc4caf28ffcddff0a55b67833e3904ccc84be62c13eb653b") preadv(r0, &(0x7f00000017c0), 0x1a1, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0) 14:11:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$unix(0x1, 0x7, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) sendmsg$unix(r1, &(0x7f0000000640)={&(0x7f0000000080)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000580)=[{&(0x7f0000000100)="1f329e20590a238ddbf8ebd4746b9b50a08ffe109ec79bfbee2a5ab74aa9ccd688bb7247949529cdbcbb94b9a7bfd683219d06e8163b449ace36fd58da137a1b273e5db2eed351a359f3e759e6e42f8cd03a21058c031a938c65c6b1870bee275b8ad1ee7f5f91b7e09fa096", 0x6c}, {&(0x7f0000000180)="9e07fbf68fa913669728654885f1041ff620cacd75e93531bb7a5eec57d39d4782e0d79fb4fa10a54354dd404b226d68dfce7611aa928fe8ccaa1da85e0581ba6d01fd580db4f703f1bfb75ed141703b46c84272e44288baf2ab0c8ed52c17d6592d9f5a40ba4bdf4adad272b9c374bffcc7dbd5e2dc6ba602495bc7658c0e0b3d844e59d959ac729c3641ede5bb2fa2fd319e10bd8d3acaafa930e16455a0c09a0543cdc1e38471bff3fb62e291510b322d9c26f85c7acb09bd7248dc14e57d7b710ac3b86ef714ee53671dd0ba9f635297a655244b060a0d9e5a451eaa89109d38f853e793065ed55ff4073bde6f2288415bd5a463d612cd", 0xf9}, {&(0x7f00000002c0)="bc0c18646c85845b994db3a412dec36779dfc726de93d7e9ec265b3aee5ab039e54ee72be2a348d4c46a18db9b8a10bb99278a70d25e08a96a97002fdc14a5b7a1d66396b00fa7fba6b259eb43d61f2dfec344ce3fe075e2c2d3d1660274eb7433fec28a7a88697b5261d5600d71262a62c09e2e52caede1e4f093bf50fce6b7770aabc3a6b106f2d1d1b456ac435c5c7b263c23be7f4f5114405914eb9aa0f457747938bd9b9b1dfa8be05faeb9e8a7f4bbe222a5c2bcafb330f00e658d966033e0e4a2ac78b976d774e6e496685df994f7d6bf7d89eae5c5621f6d084f0fb56b446bc0fb2c1778c014c2728accabaf", 0xf0}, {&(0x7f00000003c0)="f62fd0d618adf2b6943acd4bc87ba77ac0c317406c736cffd101f82aa13a66d9eeec27f7", 0x24}, {&(0x7f0000000400)="778060cd727d0e39b54a477c99bfff276af50925580813f9c902532100fac298bbbb358f7169a27d5717410c800e36", 0x2f}, {&(0x7f0000000440)="bb42da573facc58bf23be1957b054410cbe376b5d32dbde2d63bd6048bd639698e67bc7165371db9aa4556de65889390db6c5e7dfdff08200e296aa1dbf495d6142d3c32d9e4738a921cc2b08460ba8100c9ecbb62fde1aa25bbd85c060b444ad4a3f87236c7afbf00ff0e805f8345d20bbb48bdd30c923c50451dfd69ff103be938005023a8a0e169874d9c53421be92ef230c3", 0x94}, {&(0x7f0000000500)="1443cc", 0x3}, {&(0x7f0000000540)="71d5bca34a3df4709be769f19a3cd406fade721cbbae0f049e4dbefb729d98fb3264768736302e59cdb2aced603d38c9ee37088f734006b620e3545ff6ebb0", 0x3f}], 0x8, &(0x7f0000000600)=ANY=[@ANYBLOB='0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r1], 0x30, 0x9fa625b3bcefc842}, 0x40000d1) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:25 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) lsetxattr$security_smack_transmute(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000100)='TRUE', 0x4, 0x3) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:25 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7a00) 14:11:25 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xffff8000) 14:11:25 executing program 2: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x40, 0x0) ioctl$VIDIOC_S_FBUF(r0, 0x4030560b, &(0x7f0000000140)={0x80, 0x2, &(0x7f00000000c0)="f31a1a497d632f1aeb28f8a58870da7f17d3d539dc2372eabae5de083d7a239a39186963dd4cfe5720f6ea7fa6cc208b9b9e9a30d87146bec0172c70f9522a486a7b60e234e3534431e5ab7e723ae4073d2601edfcbf6037cfef775b", {0x7, 0x401, 0x3373575e, 0x0, 0x400, 0x1, 0xf, 0xe612}}) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) get_thread_area(&(0x7f0000000180)={0x8, 0x0, 0xffffffffffffffff, 0x12599051, 0x2, 0x0, 0x400, 0x1c, 0xfffffffffffffeff, 0x800}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2272, &(0x7f0000000280)) 14:11:25 executing program 3: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x40, 0x0) io_setup(0x9, &(0x7f00000001c0)=0x0) io_submit(r1, 0x8, &(0x7f0000000840)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x3ff, r0, &(0x7f00000002c0)="33fe9ca9077b95ea6048fac8e8e8d35d56928daaf01eaf7a7390bd71edff04e373c610cfd5ca84de4272eb7e87356c16b67bf042cfab0f1d344323659f7deaed4cad6b4ea3fb416284703bc5b53772795e8e15bb0b18f4e72f98eedc0346720a23060a2c67eb29da96925b3ecf65248b874031836e00d0215d1823bd00dc53ca4242ab1e1a279f486dc50b09eecb7fb12b3766", 0x93, 0x800, 0x0, 0x2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x6, 0x4, r0, &(0x7f0000000380)="d92756f90c09664f5216ea99fe8437e29869f63b205d63fa192b46a7c59c8a3d81d2ebd5302d2b88cc735159d742f55f4ca8421165f13dc1b1b9e13b4deefb9caf656eb74d556ea7ff31409835807b746a19af561ec336f621ce1f374ad162c658e54db2c85979eb3444feec29572ae09a959ebe5f7133842f84f4c14fe5ec4b356e8bee1a2ab9dd15c6b66288680fcd6c17266de1d270533bf540f6a3cd46c3875c99972c1a2c2db94d11fe8208b45254fb18bf94d5c0ecfaca8724c0c760defc59d3bf986f6c9b4427856ece5e2a72fa9385c71c92adf870e5b52279dc9eb05d9dd3798d2fc33dc30a4149fe3c46556038", 0xf2, 0x4, 0x0, 0x0, 0xffffffffffffff9c}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x7, 0x8001, r0, &(0x7f0000000480)="6c92408fbe35d64fc45fb9268bcce3749b45462106e2f959ea2a4c251ecb6705f40fd01489cd6a700cde6011a421f0f806321c1ddfe544b2d1b01c27062f64c0eb441f83b214b74d925e8676616365a8239f1f3f1ed8e33b4259de88a44707a59a331023258d3edb55d661dc8f0db3a2db95af46536b58", 0x77, 0x1000, 0x0, 0x3, r0}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0x9, r0, &(0x7f0000000540)="5e8403cf7f430f3314175d27ad0f339c2214402ccb2bb7d63534e2fb5fca037c3b3dce751527626adc187901975185d1cbfc5db6325f7f3c710fac63b04049a8fa2f009c7e9882efc81bf4d357bd00044fdb88c1c63a9a12e0be4ba4ce6e77", 0x5f, 0x3ff, 0x0, 0x0, r0}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x8, 0x1, r0, &(0x7f0000000600)="0eea9e8a0dfeee7e5e", 0x9, 0x5}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x1, 0xa53b, r0, &(0x7f0000000680)="af73ba1bd902544c1c9b44446802b500faf87119b615ce38cdc6cfee6ce7279698c64837f8aa090ec357f9aed98d4cfc642d5b82b8a914140499a654f8b4eaeecc41247192f511626f08805f2e50e1668be4d0f4fcee967cbd06b8097946c4d8db89187fa79a485f761e2a", 0x6b, 0x5, 0x0, 0x0, 0xffffffffffffff9c}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x1, 0x3, r0, &(0x7f0000000740)="d58b816fc708864416eb1a34210c538a", 0x10, 0x143, 0x0, 0x3, r0}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x2, 0x2, r0, &(0x7f00000007c0)="7134cbc00db5c0209de16eeeecbee4081298a19d818861e972b4dcf3685360f2bdcdad82c1cc0723", 0x28, 0xcd55, 0x0, 0x2}]) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f00000009c0)=0xfffffffffffffffc, 0x4) sendto$llc(r0, &(0x7f0000000140)="ad4845f03f5928d8c9a9c026f056055e3a32cb5caff8ca52afc03b79cc8a0246c2e9234a9063ae09eec123b23bbf4d4934894b4c988537ad33e61b557da7ad5bd92880989c6fc04b2be9447eabdeaff73087166551dfda103107ba6333688a6a9fc4aa6dca8beb3b1b52ae26388662e93fc15f34598da20e0863a4d86fa3", 0x7e, 0x40, 0x0, 0x0) ioctl$KVM_INTERRUPT(r0, 0x4004ae86, &(0x7f0000000880)=0xfffffffffffff001) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = semget(0x1, 0x3, 0x0) semctl$IPC_RMID(r4, 0x0, 0x0) r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x84000, 0x0) ioctl$SCSI_IOCTL_TEST_UNIT_READY(r5, 0x2) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x1267, &(0x7f0000000280)) write$cgroup_int(r0, &(0x7f0000000100)=0x1000, 0x12) openat$sequencer2(0xffffffffffffff9c, &(0x7f00000008c0)='/dev/sequencer2\x00', 0x400, 0x0) 14:11:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 285.915697] QAT: Invalid ioctl 14:11:25 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0xffffffff00000000) [ 285.979910] QAT: Invalid ioctl 14:11:25 executing program 1: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x10040, 0x0) mkdirat(r0, &(0x7f0000000140)='./file0\x00', 0xfffffffffffffffd) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:25 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x200000000000000) 14:11:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff}, 0x80800) write$P9_RREADLINK(r2, &(0x7f00000000c0)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:25 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x0, 0x100000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:25 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:25 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x80ffff) 14:11:25 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) recvmmsg(r1, &(0x7f0000004240)=[{{&(0x7f0000000080)=@pptp={0x18, 0x2, {0x0, @multicast2}}, 0x80, &(0x7f0000000240)=[{&(0x7f0000000100)=""/113, 0x71}, {&(0x7f0000000180)=""/120, 0x78}, {&(0x7f00000002c0)=""/233, 0xe9}, {&(0x7f0000000200)=""/51, 0x33}], 0x4, &(0x7f00000003c0)=""/74, 0x4a}, 0x80000000}, {{&(0x7f0000000440)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000000b00)=[{&(0x7f00000004c0)=""/106, 0x6a}, {&(0x7f0000000540)=""/117, 0x75}, {&(0x7f00000005c0)=""/141, 0x8d}, {&(0x7f0000000680)=""/107, 0x6b}, {&(0x7f0000000700)=""/223, 0xdf}, {&(0x7f0000000800)=""/98, 0x62}, {&(0x7f0000000880)=""/166, 0xa6}, {&(0x7f0000000940)=""/88, 0x58}, {&(0x7f00000009c0)=""/119, 0x77}, {&(0x7f0000000a40)=""/132, 0x84}], 0xa, &(0x7f0000000bc0)=""/58, 0x3a}, 0x3ff}, {{&(0x7f0000000c00)=@l2, 0x80, &(0x7f0000000d80)=[{&(0x7f0000000c80)=""/57, 0x39}, {&(0x7f0000000cc0)=""/161, 0xa1}], 0x2, &(0x7f0000000dc0)=""/147, 0x93}}, {{&(0x7f0000000e80)=@in6={0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}, 0x80, &(0x7f0000001340)=[{&(0x7f0000000f00)}, {&(0x7f0000000f40)=""/187, 0xbb}, {&(0x7f0000001000)=""/154, 0x9a}, {&(0x7f00000010c0)=""/64, 0x40}, {&(0x7f0000001100)=""/48, 0x30}, {&(0x7f0000001140)=""/192, 0xc0}, {&(0x7f0000001200)=""/9, 0x9}, {&(0x7f0000001240)=""/224, 0xe0}], 0x8, &(0x7f00000013c0)=""/129, 0x81}, 0x2}, {{&(0x7f0000001480)=@rc, 0x80, &(0x7f0000003840)=[{&(0x7f0000001500)=""/116, 0x74}, {&(0x7f0000001580)=""/41, 0x29}, {&(0x7f00000015c0)=""/254, 0xfe}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000026c0)=""/36, 0x24}, {&(0x7f0000002700)=""/99, 0x63}, {&(0x7f0000002780)=""/19, 0x13}, {&(0x7f00000027c0)=""/4096, 0x1000}, {&(0x7f00000037c0)=""/90, 0x5a}], 0x9, &(0x7f0000003900)=""/13, 0xd}, 0x401}, {{&(0x7f0000003940)=@pptp, 0x80, &(0x7f0000003e40)=[{&(0x7f00000039c0)=""/128, 0x80}, {&(0x7f0000003a40)=""/2, 0x2}, {&(0x7f0000003a80)=""/54, 0x36}, {&(0x7f0000003ac0)=""/227, 0xe3}, {&(0x7f0000003bc0)=""/180, 0xb4}, {&(0x7f0000003c80)=""/197, 0xc5}, {&(0x7f0000003d80)=""/146, 0x92}], 0x7, &(0x7f0000003ec0)=""/158, 0x9e}, 0x44419159}, {{&(0x7f0000003f80)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f00000041c0)=[{&(0x7f0000004000)=""/78, 0x4e}, {&(0x7f0000004080)=""/28, 0x1c}, {&(0x7f00000040c0)=""/209, 0xd1}], 0x3, &(0x7f0000004200)=""/59, 0x3b}, 0x2}], 0x7, 0x1, &(0x7f0000004400)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 286.231379] kernel msg: ebtables bug: please report to author: bad policy 14:11:25 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket(0x11, 0x4, 0x5) setsockopt$RDS_GET_MR(r2, 0x114, 0x2, &(0x7f0000000180)={{&(0x7f0000000080)=""/180, 0xb4}, &(0x7f0000000140), 0x5}, 0x20) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 286.283397] kernel msg: ebtables bug: please report to author: bad policy 14:11:25 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:26 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="280100040000000000000000000000d4299b183c9f26882900000000000000000000000000000000f72bb2a47c443359f87183cf20b691943c918fa838d89abf6b127c2f00fe6fc36135d161a4f589da47d2c1766adc30e6402ba132b6616950f42a13c047284c577ddf01ef481522ac29397c18ded159f4cf7cb75208ea39223737a3c6bd689b0fd8fcdaf179bdb25b9ca6dfddedb56a31f4f73cb552fe3d0001630eb92161dee7b0021ae0ec91644f38f87906050b6d57cced0462b417038f3ae84e39f3ffcd5fd24dcd6b96b2cbcd530ae9cedeaadd48ac7ab7a9156b6c5313fe1487cf3d4b"], 0x28) 14:11:26 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xf1ffffff00000000) 14:11:26 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:26 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 286.438200] kernel msg: ebtables bug: please report to author: bad policy 14:11:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x80000) setsockopt$inet_opts(r2, 0x0, 0x9, &(0x7f00000002c0)="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", 0x1000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) write$cgroup_type(r2, &(0x7f0000000140)='threaded\x00', 0x9) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) syz_open_dev$dspn(&(0x7f00000001c0)='/dev/dsp#\x00', 0x2, 0x800) r3 = syz_open_dev$cec(&(0x7f0000000000)='/dev/cec#\x00', 0x3, 0x2) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000012c0)={{{@in6=@ipv4={[], [], @empty}, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@ipv4}}, &(0x7f00000013c0)=0xe8) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000240)=0xc) chown(&(0x7f0000000180)='./file0\x00', r4, r5) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r6, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r6, 0x20000000) r7 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r7, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r8 = accept4(r6, 0x0, &(0x7f0000000000), 0x0) setsockopt$inet6_int(r8, 0x29, 0xb, &(0x7f0000000040)=0x100000000001f, 0x4) sendmmsg(r8, &(0x7f0000003d40)=[{{&(0x7f0000001b00)=@l2, 0x80, &(0x7f0000001d00), 0x0, &(0x7f0000001d40)}}, {{&(0x7f0000002300)=@nl, 0x80, &(0x7f0000003740), 0x0, &(0x7f00000037c0)}}], 0x4000000000001eb, 0x0) write$UHID_DESTROY(r3, &(0x7f0000000080), 0x4) 14:11:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x400, 0x0) ioctl$LOOP_GET_STATUS(r1, 0x4c03, &(0x7f00000000c0)) socketpair$unix(0x1, 0x20000001, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = request_key(&(0x7f0000000180)='dns_resolver\x00', &(0x7f00000001c0)={'syz', 0x2}, &(0x7f0000000200)='/dev/sg#\x00', 0xfffffffffffffffb) keyctl$set_timeout(0xf, r3, 0x7) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:26 executing program 1: umount2(&(0x7f0000000000)='./file0\x00', 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 286.624844] kernel msg: ebtables bug: please report to author: bad policy 14:11:26 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') ioctl$SCSI_IOCTL_SYNC(r0, 0x4) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:26 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x400000000000000) 14:11:26 executing program 4: r0 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x1, 0x2) ioctl$KDGKBTYPE(r0, 0x4b33, &(0x7f00000000c0)) r1 = socket$inet6(0xa, 0x6, 0x10000) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r0, 0x0, 0x2d, &(0x7f0000000100)={0x3, {{0x2, 0x4e23, @multicast1}}}, 0x88) [ 286.835434] kernel msg: ebtables bug: please report to author: bad policy 14:11:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f00006fc000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:26 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x33) r1 = memfd_create(&(0x7f0000000180)='\x00', 0x2) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000100)=0xfff) 14:11:26 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:26 executing program 2: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000200)=0x101, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x0, 0xa01) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r2, &(0x7f00000001c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0x1c, r3, 0x700, 0x70bd2b, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4815) ioctl$BLKBSZSET(r2, 0x40081271, &(0x7f00000000c0)=0xffffffffffffff93) mmap(&(0x7f0000630000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x31, r0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2272, &(0x7f0000000380)) 14:11:26 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:26 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1000000) 14:11:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x20002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000440)={0xffffffffffffffff}) ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f00000000c0)={0x18, 0x6, 0x80000000}) fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, 0x0}) ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f00000002c0)={0x80000001, 0x0, [], {0x0, @reserved}}) openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x80000, 0x0) ptrace(0x4217, r4) syz_open_dev$video4linux(&(0x7f00000001c0)='/dev/v4l-subdev#\x00', 0x400000020000, 0x2) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer2\x00', 0x10000, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r1, 0x5382, &(0x7f0000000180)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:26 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f00000000c0)='p') r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0xa0, 0x80100) write$UHID_GET_REPORT_REPLY(r2, &(0x7f0000000100)={0xa, 0x9, 0x1, 0x5}, 0xa) r3 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 14:11:26 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x42e45d43ec1645ad, 0x4, 0x0, {0x0, 0x10, 0x80}}, 0xfffffe97) 14:11:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x4002, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x1) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:26 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x4, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-monitor\x00', 0x400200, 0x0) ioctl$TIOCSLCKTRMIOS(r2, 0x5457, &(0x7f0000000140)) r3 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x2) bind$inet(r3, &(0x7f00000000c0)={0x2, 0x4e20, @remote}, 0x10) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$SCSI_IOCTL_STOP_UNIT(r2, 0x6) [ 287.263986] kernel msg: ebtables bug: please report to author: bad policy 14:11:26 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0xfe, 0x40000) ioctl$EVIOCSREP(r1, 0x40084503, &(0x7f00000000c0)=[0x1, 0x8]) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0xc028ae92, &(0x7f0000000100)={0x40, 0x8001}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) ioctl$KVM_SET_GUEST_DEBUG(r1, 0x4048ae9b, &(0x7f0000000140)={0x60000, 0x0, [0x1, 0x2, 0x78, 0xffff, 0x5, 0x8, 0xfffffffffffffff8, 0xde8]}) 14:11:26 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3fe) 14:11:27 executing program 0: socket$inet_udp(0x2, 0x2, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:27 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x4) r0 = syz_open_dev$vivid(&(0x7f0000000340)='/dev/video#\x00', 0x2, 0x2) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000, 0x810, r0, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000980)='/dev/fuse\x00', 0x2, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x202000, 0x0) ioctl$RTC_IRQP_READ(r2, 0x8008700b, &(0x7f0000000100)) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000480)={{{@in6=@ipv4={[], [], @remote}, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@broadcast}}, &(0x7f00000001c0)=0xe8) r4 = getegid() getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000580)={{{@in6=@local, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in=@loopback}}, &(0x7f0000000200)=0xe8) mount$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000180)='fuse\x00', 0x101040, &(0x7f0000000780)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, r3}, 0x2c, {'group_id', 0x3d, r4}, 0x2c, {[{@blksize={'blksize'}}, {@max_read={'max_read', 0x3d, 0x1}}, {@default_permissions='default_permissions'}, {@default_permissions='default_permissions'}, {@blksize={'blksize', 0x3d, 0x800}}, {@blksize={'blksize', 0x3d, 0x400}}], [{@context={'context', 0x3d, 'root'}}, {@fowner_lt={'fowner<', r5}}, {@obj_role={'obj_role', 0x3d, ','}}, {@euid_lt={'euid<'}}, {@dont_hash='dont_hash'}, {@obj_user={'obj_user', 0x3d, '(,vboxnet0@vboxnet1user+)trustedsecuritytrusted-GPL'}}, {@obj_type={'obj_type', 0x3d, 'fuse\x00'}}]}}) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f00000002c0)="7f9183") write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x8005) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x200400, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r2, 0xc0a85320, &(0x7f00000002c0)={{0x9, 0x80000000}, 'port1\x00', 0x0, 0x80000, 0x100000001, 0x44f7, 0x734fa345, 0x5, 0xe8b7, 0x0, 0x20000000000000a, 0x3}) r3 = syz_open_dev$sndpcmp(&(0x7f0000000140)='/dev/snd/pcmC#D#p\x00', 0x2000000005, 0x80) setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r3, 0x10e, 0x8, &(0x7f00000000c0)=0x9, 0x4) 14:11:27 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0xfffffffffffffff8, 0x12000) getsockname(r0, &(0x7f0000000140)=@xdp={0x2c, 0x0, 0x0}, &(0x7f00000001c0)=0x80) sendto$packet(r3, &(0x7f00000000c0)="89b29ff10f4fe3a2fb8f4b5b261e3181a5082ccb6b7aa82470d76c49e7cdfdf783d4a967f174129974c31428a43b92e961546ac1b71e85ecacdf448952a64eaaa70b632d60e575a1f32c63ca30628b1ab8cf463da051c7048f184f1be861a379a3", 0x61, 0x0, &(0x7f0000000200)={0x11, 0x4ae76cef4a46af61, r4, 0x1, 0x4, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xf}}, 0x14) r5 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) [ 287.541906] kernel msg: ebtables bug: please report to author: bad policy 14:11:27 executing program 2: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x40, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$EVIOCSKEYCODE_V2(r1, 0x40284504, &(0x7f00000000c0)={0x2, 0xd, 0x6, 0xffffffffffffffff, "b8b16d021ef9eaee296ac6aef87e80f1851eeb021b32bc3b577d61b1740881b9"}) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000100)='/dev/full\x00', 0x60a01, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000140)=[@sack_perm, @window={0x3, 0x0, 0x9215}, @timestamp], 0x3) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, r0, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2272, &(0x7f0000000280)) 14:11:27 executing program 0: socket$inet_udp(0x2, 0x2, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:27 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4) 14:11:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_open_dev$binder(&(0x7f00000000c0)='/dev/binder#\x00', 0x0, 0x802) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r3 = dup3(r2, r1, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r3, 0xc040564a, &(0x7f0000000100)={0x77, 0x0, 0x202e, 0x86, 0x5, 0x5, 0x40, 0x1}) write$P9_RWALK(r3, &(0x7f0000000080)=ANY=[@ANYBLOB="230000006f020002008003000000020000000000000008010000000200000000000000"], 0x23) 14:11:27 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:27 executing program 0: socket$inet_udp(0x2, 0x2, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) [ 287.689345] kernel msg: ebtables bug: please report to author: bad policy 14:11:27 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$amidi(&(0x7f00000000c0)='/dev/amidi#\x00', 0x8, 0x4000) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000100)='/dev/sg#\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000080)) 14:11:27 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) acct(&(0x7f0000000080)='./file0\x00') 14:11:27 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) [ 287.839321] kernel msg: ebtables bug: please report to author: bad policy [ 288.020721] kernel msg: ebtables bug: please report to author: bad policy 14:11:28 executing program 2: syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x0, 0x42) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x8001, 0x20000) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={0x0, 0x2}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000140)={r3, 0x3}, &(0x7f0000000180)=0x8) mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x31, r0, 0x0) 14:11:28 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6c000000) 14:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$DRM_IOCTL_ADD_CTX(0xffffffffffffffff, 0xc0086420, &(0x7f0000000080)={0x0}) ioctl$DRM_IOCTL_GET_SAREA_CTX(r0, 0xc010641d, &(0x7f0000000100)={r2, &(0x7f00000000c0)=""/1}) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$UI_DEV_CREATE(r3, 0x5501) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:28 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:28 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:28 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0xfffffff7ffffffff, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x8000, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x20000, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r4, 0xc008240a, &(0x7f00000000c0)={0x3, 0x0, [0x0, 0x0, 0x0]}) 14:11:28 executing program 0: ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) [ 288.460239] kernel msg: ebtables bug: please report to author: bad policy 14:11:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/thread-self/attr/current\x00', 0x2, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000080)) 14:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) getsockopt$sock_int(r1, 0x1, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4) membarrier(0x0, 0x0) 14:11:28 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x9, 0x264a00) getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000000c0)=0x8dec, &(0x7f0000000100)=0x2) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 288.590050] kernel msg: ebtables bug: please report to author: bad policy 14:11:28 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x101, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(r1, &(0x7f0000000200)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={&(0x7f0000000480)={0xe0, r2, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x19}}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'bridge0\x00'}]}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@rand_addr=0x71}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20, 0x6}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x7f}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf2fe}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xbc}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) mkdirat(r1, &(0x7f0000000100)='./file0\x00', 0x27) 14:11:28 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4c00000000000000) 14:11:28 executing program 2: mlock2(&(0x7f000011b000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$radio(&(0x7f0000000280)='/dev/radio#\x00', 0x3, 0x2) setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0x7, &(0x7f00000002c0)=0x3, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) prctl$PR_GET_SECUREBITS(0x1b) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000300)) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm_plock\x00', 0x8402, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000100)=@assoc_value={0x0, 0x1ff}, &(0x7f0000000180)=0x8) getsockopt$inet_sctp_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f00000001c0)={r4, 0x7}, &(0x7f0000000200)=0x8) r5 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x240, 0x0) setsockopt$TIPC_IMPORTANCE(r5, 0x10f, 0x7f, &(0x7f00000000c0)=0xfffffffffffffffd, 0x4) ioctl$TUNGETFEATURES(r5, 0x800454cf, &(0x7f0000000240)) 14:11:28 executing program 0: socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = accept(r1, &(0x7f0000000080)=@sco, &(0x7f0000000100)=0x80) getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000140)={0x0, 0xfffffffffffffffd, 0x1, 0x10000000000000, 0xa2, 0x3}, &(0x7f0000000180)=0x14) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f00000001c0)={r3, 0xfffffffffffffffd}, &(0x7f0000000200)=0xffffffffffffffcf) pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DRM_IOCTL_GEM_OPEN(0xffffffffffffffff, 0xc010640b, &(0x7f0000000340)={0x0, 0x0, 0x5}) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000780)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000740)={0xffffffffffffffff}, 0x111, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r4, &(0x7f00000007c0)={0xe, 0x18, 0xfa00, @ib_path={&(0x7f0000000580)=[{0x2, 0x0, [0x80, 0x8e, 0x1, 0x9, 0x0, 0x40, 0x7, 0x6, 0x8, 0x8001, 0x9, 0x2, 0x1, 0xb24e, 0x6, 0x5]}, {0x20, 0x0, [0xffff, 0x8, 0x7, 0x9, 0x56, 0x0, 0x8, 0x9, 0x99c, 0x200, 0x7, 0x3dd, 0x27, 0x9, 0x1, 0x7]}, {0x38, 0x0, [0x5, 0x2, 0x40, 0x3ff, 0x1, 0x81, 0x5, 0x0, 0x2, 0x5, 0x3, 0x800, 0x7, 0xfffffffffffffff9, 0xc70, 0x80000001]}, {0x16, 0x0, [0x3, 0x551, 0x7, 0x0, 0x3, 0x0, 0x9, 0x4, 0x9, 0x7, 0x5, 0x3, 0x4, 0x4, 0x2, 0x81]}, {0x1, 0x0, [0x10001, 0x8001, 0x7, 0x10001, 0x6, 0x1, 0xf1, 0x6ade, 0x1, 0x5c43, 0x3d, 0x9, 0x8, 0xfffffffffffffff7, 0x1, 0x715b2256]}, {0x4, 0x0, [0x9, 0x101, 0x7ff, 0x4, 0x9, 0x2, 0xfffffffffffffff9, 0x6, 0x5, 0xe78, 0x9, 0xffffffffffffffff, 0x9, 0x0, 0x8, 0x3c19]}], r8, 0x1, 0x1, 0x1b0}}, 0x20) r9 = syz_open_dev$radio(&(0x7f0000000380)='/dev/radio#\x00', 0x1, 0x2) getsockopt$inet_sctp_SCTP_RECVNXTINFO(r5, 0x84, 0x21, &(0x7f0000000400), &(0x7f0000000440)=0x4) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r4, 0xc00c642e, &(0x7f00000003c0)={r7, 0x80000, r9}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r10, 0xc008640a, &(0x7f0000000800)={r7, r6}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000240)=0x0) sched_rr_get_interval(r11, &(0x7f00000002c0)) ioctl$VIDIOC_G_FMT(r5, 0xc0d05604, &(0x7f0000000480)={0x2, @sdr={0x4c314356, 0x2}}) [ 288.837450] QAT: Invalid ioctl 14:11:28 executing program 4: r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x2000, 0x80) ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r1 = socket$inet6(0xa, 0x3, 0x6) ioctl(r1, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = dup3(r2, r3, 0x80000) ioctl$VIDIOC_ENUMAUDIO(r4, 0xc0345641, &(0x7f0000000080)={0x3, "2309200c0ee3a1557ce3ae43e24588c78d9806d5a3826ec55b1264c0f0cb6759", 0x1, 0x1}) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) syz_open_dev$vbi(&(0x7f0000000100)='/dev/vbi#\x00', 0x1, 0x2) [ 288.875737] kernel msg: ebtables bug: please report to author: bad policy 14:11:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) fcntl$dupfd(r0, 0x0, r0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x20, 0x4000) setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f00000000c0)=@req={0x8, 0x843, 0x8, 0xb4b}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:28 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:28 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0xfffffe1f) 14:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = socket$tipc(0x1e, 0x2, 0x0) r2 = open(&(0x7f0000000100)='./file0\x00', 0x100, 0x2) connect(r1, &(0x7f0000000080)=@sco={0x1f, {0x2, 0x2, 0x7f, 0xffff, 0x8}}, 0x80) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400201) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000002c0)={{{@in, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f0000000200)=0xe8) sendmsg$can_raw(r1, &(0x7f0000000440)={&(0x7f0000000240)={0x1d, r3}, 0x10, &(0x7f0000000400)={&(0x7f00000003c0)=@can={{0x4, 0x401, 0x3, 0x40}, 0x2, 0x1, 0x0, 0x0, "19e28bbdba96f100"}, 0x10}}, 0x20000001) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:28 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xffffffff00000000) 14:11:28 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) [ 289.077434] kernel msg: ebtables bug: please report to author: bad policy 14:11:28 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000740)='/dev/sg#\x00', 0xc4, 0x3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x10080, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r2, 0x84, 0xf, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e23, 0x4, @ipv4={[], [], @local}, 0x1813d71b}}, 0xfffffffffffffffe, 0x4, 0xffff, 0x101, 0x4}, &(0x7f0000000180)=0x98) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f00000001c0)={r3}, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0x6) io_setup(0x1, &(0x7f0000000200)=0x0) io_submit(r4, 0x5, &(0x7f0000000700)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0xb, 0x7f, r0, &(0x7f00000002c0)="14cbd62c1dd6482498619f36ac103c428450219a67a6416c741e8a84c6d606d94fd24fa665fa424fd06b06733ef8747096f9afa91f64ec9b9bb7cc43d836ef81942dc24934038609722889ef270b8d85482ff0ca", 0x54, 0x1f, 0x0, 0x1, r2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0xd, 0x4, r1, &(0x7f0000000340)="f056a253e2937bec88232f43204350de45829d8389708ea95ffe48e29e0708e2acce527245515efb67d4d927e055d948ed674a95226fb241445c099944e66b704c55b97662dc6850ae35f817591945d48fdebe3f6451e94fa5b545a7289512a2c893ae8a42f12b81f256cf36959dac230f960677ab757eb9f9a50fbb68a08544e9f214c13f9e747a9ec884219a5633b621e18767c408a24ef35bfdf115516dc7b254bce8ba569c40bf69324a0bec9c86070e94db539dcde760a7c0fb03754a1aa40b57347578193037933a0cecd638677a218e67be69c73d17abc7b379df0d5ffc98b7a61c2ef18d179b1f6e95b05c71b4e5", 0xf2, 0x10000, 0x0, 0x3, r2}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x8, 0x400, r1, &(0x7f0000000480)="7e8aec05f0eed0f35cd815fed2f8852a6e6a975b5c2a58f53cee14fc90a40713f84ad743a7cb99de71e84dc112d7e16d49f43ad8b59319a14134cd360366bacb2f14872459f912dab57106810cf9d26b5c0d9b60501e7d7f74952e151c7f2580191288794659adbee8d8eea381245e854a", 0x71, 0xfc0, 0x0, 0x0, r2}, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x292a4149, r0, &(0x7f0000000540)="ccdb9133c11f79d667300138528982d1cda6634d5d7c9ff19b80d98b5175663858147b448d4ae82ea68da332bcf3e5212fcabc6eca0c881091e37c8a40f45aedf3eb4cdb7e430b0cd4fa2b6d508cf5bedd8ce3b33be0388aeb38b87a26a8599cb6c8db5cb2b4bf17adb9de115727124ab21099cdd8e9cc28daaf7bc82fbab28d730f631759e284e4a2831a2775f554f25469512a58a4608f80", 0x99, 0x24, 0x0, 0x2, r2}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0xf, 0x0, r1, &(0x7f0000000640)="ca459d4af01f370e8a0b7d877cca5a567dff57275f2b42e7a15b6edd21e7eeecaf599c32f6ab502384c5f1d69fc9a6b02cd485dadee21ecaf07785476f96a8308bd96ae6", 0x44, 0x5, 0x0, 0x0, r2}]) 14:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x3, 0x8000000000000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:28 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f, 0x100000000]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x10000, 0x40000) setsockopt$IP_VS_SO_SET_DELDEST(r4, 0x0, 0x488, &(0x7f00000000c0)={{0x33, @broadcast, 0x4e20, 0x2, 'lc\x00', 0x24, 0x100000000000, 0x2d}, {@loopback, 0x4e20, 0x10000, 0x0, 0x25, 0x7}}, 0x44) 14:11:28 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000100)={{{@in=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@empty}}, &(0x7f0000000000)=0xe8) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c736563ec616c2c7569643c231bb1cc6cc66eaaa1509176107ab95269270351d2f5a707eeec4329226f0d", @ANYRESDEC=r1, @ANYBLOB=',dont_measure,\x00']) creat(&(0x7f0000000200)='./file0\x00', 0x40) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:28 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x0) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) [ 289.279826] kernel msg: ebtables bug: please report to author: bad policy 14:11:28 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x20080, 0x0) setsockopt$inet6_MRT6_ADD_MFC(r2, 0x29, 0xcc, &(0x7f00000000c0)={{0xa, 0x4e24, 0x3, @loopback, 0x2}, {0xa, 0x4e22, 0x4, @local, 0x9}, 0x9, [0x80000001, 0x7, 0x8, 0x7fff, 0x1ff, 0x9, 0xd0, 0x3]}, 0x5c) 14:11:29 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4000000000000000) 14:11:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = syz_open_dev$vbi(&(0x7f0000000080)='/dev/vbi#\x00', 0x2, 0x2) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r3, 0x40045731, &(0x7f00000000c0)=0x800) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) 14:11:29 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000fffff6ff020000000d00000000000000080669726c616e300000000000000000000069705f7674693000000000000000000073797a6b616c6c65723100000000000076657468305f746f5f626f6e64000000aaaaaaaaaabb000000000000ffffffffffff000000000000000070000000a0000000d80000004155444954000000000000000000000000000000000000000000000000000000080000000000000000000000000000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaabb0000ffffffff000000001f000000000000000000626f6e645f736c6176655f310000000073797a6b616c6c65723000000000000079616d3000000000000000000000000062707130000000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaabb00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff00000000"]}, 0x288) [ 289.442563] kernel msg: ebtables bug: please report to author: bad policy 14:11:29 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x0, 0x0) ioctl$KVM_DEASSIGN_PCI_DEVICE(r1, 0x4040ae72, &(0x7f0000000100)={0x200, 0x2, 0x3, 0x4, 0x3ff}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:29 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff}, 0x4000) setsockopt$EBT_SO_SET_COUNTERS(r3, 0x0, 0x81, &(0x7f0000000280)={'filter\x00', 0x0, 0x0, 0x0, [], 0x9, &(0x7f0000000200)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x108) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f0000000100)={0x0, 0x800000000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_GEM_CLOSE(0xffffffffffffffff, 0x40086409, &(0x7f0000000140)={r4}) bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0)={&(0x7f0000000180)='./file0\x00', 0x0, 0x8}, 0x10) 14:11:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x7, 0x80000) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DAEMON(r2, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xd4, r3, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x18, 0x2, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}]}, @IPVS_CMD_ATTR_SERVICE={0x6c, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x88}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@local}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@dev={0xfe, 0x80, [], 0xa}}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x78}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e21}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x6c}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1f}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x401}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x8}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x800}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xffff}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x9}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4000000}, 0x20008000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:29 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x100000000000000) [ 289.618346] kernel msg: ebtables bug: please report to author: bad policy 14:11:29 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vhci\x00', 0x200000, 0x0) symlink(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00') ioctl$VIDIOC_S_TUNER(r0, 0x4054561e, &(0x7f0000000100)={0xbb, "4ab97b3bfc6da5a84d539a79153b806999187e1be5bd1a66f957e8eaa928508e", 0x5, 0x40, 0x0, 0x2, 0x4, 0x2, 0x1, 0x8e}) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="2c0063defbc004383e92b85507542f045c4a21ba1f080400cc3af8676e8cad27b85204b7b650d1feb48461339b5eeb64d4960c780a1016d22deaa258d52a67832de128ac10a2afd27a54a5b64a105dde1c7219f0460ea1d51375775856197145a8ba88615b313bd1282572ec40acfcd08cc3c516652ee3e3ebe8d67b999f0a053b5867e965e5d0f5dcc575841d21a69cbe314755a6ab08dcb817c240997b732f268b02fe974caffe6efb9c0faee0ba503b5d8848c1e4dc238e1f1553d21cadf3f26d2a243472fcb19b1a547d877ad568cb43da4657250c0d98f15a8c78a2ad7924bf90bd564754751e236f50ff7d489d0c18a274171d0e9b4c79"]) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x28) 14:11:29 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x210, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x288) 14:11:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000080)={0x0, 0x0}, &(0x7f00000000c0)=0xc) setuid(r2) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:29 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/net/pfkey\x00', 0x24000, 0x0) setsockopt$packet_buf(r4, 0x107, 0x6, &(0x7f0000000200)="13c90945c6a378e06061819e8c7672f938ac1afe819322e3427f99297a01e3e1fd6e1aa7050ab74356f164fd5d2274edbceadabc777fba574ef8e463e9016e446397e2b1980c0996372110e70d91dd670d74f654965ded0b2a49cd7d4bf64ead08f6d6502fb0f97326eae195c3f9859ec3d3fbb037fb3ab529e68602e785feb76960188593ab4a11d2e16ff507c9f77d7d31a64b017ea10d6a0d0bf0f0b1f4ba5bb956c72abecac7689a7f363cf36b4609dc72da8f4868270978a941e0a35de9b668fd0328f7c78ca31b1cad28eb368be0f2c561a54040d6c12657595babd452e1eb784cf723a31ed9d883de83a5a59f94fb23b2fdd1f8", 0xf7) setsockopt$packet_buf(r4, 0x107, 0x1, &(0x7f0000000180)="c21574a0a9e2972d1f23bc8cd4d1919040bc05291649f13404444252f1d829e6f35e1e55a2e4488a289e7e0bd68deb90c29b072ab91291b3ae2363dbe661ff6b305b8b9c84ed8393624fe0dcae3cf5", 0x4f) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffff9c, 0x84, 0x10, &(0x7f0000000080)=@assoc_value={0x0}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000100)={0x0, 0x7, 0x2, 0x8001, 0x1, 0x10000, 0x8001, 0x100, r5}, 0x20) ioctl$KVM_RUN(r3, 0xae80, 0x0) mq_getsetattr(r4, &(0x7f0000000300)={0x6, 0x5, 0xffffffff, 0xfffffffffffffff7, 0x9, 0x1, 0x1f, 0x1}, &(0x7f0000000340)) 14:11:29 executing program 3: r0 = syz_open_dev$audion(&(0x7f0000000080)='/dev/audio#\x00', 0x5, 0x200) ioctl$SG_SET_COMMAND_Q(r0, 0x2271, &(0x7f00000000c0)=0x1) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x4001ff) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x1267, &(0x7f0000000280)) 14:11:29 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, 0x0, 0x288) 14:11:29 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4c00) 14:11:29 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0}, 0x288) 14:11:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080)='/dev/mixer\x00', 0x101000, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ioctl$PIO_FONT(r1, 0x4b61, &(0x7f00000000c0)="e99f1b355fce95c602e3277daf3c5423df705271adb0c2c354914f608b10fc69202308c2c156722ef1887b8a57092b46793d54797bb176edbe31e982e3424573e6306431a8800bca17abbf181fb564fa0879f19b95f6bfbf1cd4252f4973d9f156") 14:11:29 executing program 2: syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$radio(&(0x7f0000000080)='/dev/radio#\x00', 0x0, 0x2) ioctl$IOC_PR_RESERVE(r1, 0x401070c9, &(0x7f00000000c0)={0x0, 0x2, 0x1}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) 14:11:29 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="2800000004000000000000000000000000000000437f965685c7cec4000000000000000000000000"], 0x28) ioctl$KVM_GET_MP_STATE(r0, 0x8004ae98, &(0x7f0000000000)) 14:11:29 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xa00) 14:11:29 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x1015fe, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000080)={0x0, 0x3}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000100)={r4, 0x2, 0x0, 0x7}, &(0x7f0000000140)=0x10) [ 290.190902] kernel msg: ebtables bug: please report to author: Wrong len argument 14:11:29 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0}, 0x288) 14:11:29 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sequencer\x00', 0x0, 0x0) write$cgroup_subtree(r2, &(0x7f0000000140)={[{0x2d, 'rdma'}, {0x2d, 'rdma'}, {0xaa73f2c7d015c950, 'io'}, {0x2b, 'rdma'}, {0x2f, 'rdma'}]}, 0x1c) prctl$PR_GET_TSC(0x19, &(0x7f00000000c0)) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) ioctl$sock_inet_SIOCGIFPFLAGS(r1, 0x8935, &(0x7f0000000080)={'lo\x00', 0x7f}) setsockopt$IP_VS_SO_SET_EDITDEST(r2, 0x0, 0x489, &(0x7f0000000180)={{0xbf, @remote, 0x4e23, 0x2, 'nq\x00', 0x5, 0xff, 0x6c}, {@dev={0xac, 0x14, 0x14, 0x1c}, 0x4e20, 0x0, 0x1, 0x5, 0xffff}}, 0x44) 14:11:29 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x8400, 0x0) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/rfkill\x00', 0x101000, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) ioctl$KVM_REINJECT_CONTROL(r2, 0xae71, &(0x7f0000000100)={0x8}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:29 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x6, 0x42) write$FUSE_WRITE(r0, &(0x7f0000000100)={0x18, 0x0, 0x7, {0x3}}, 0x18) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:30 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0)='/dev/snd/pcmC#D#p\x00', 0x3, 0x20101) ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000200)) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r0, 0xae44, 0x100) syz_genetlink_get_family_id$tipc2(&(0x7f0000000080)='TIPCv2\x00') syz_kvm_setup_cpu$x86(r3, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f0000000100)="b88a000f00d08023420f2213360f3266b9b508000066b8e000000066ba000000000f30b800010f00d866b95f0300000f322e6665367e7f0f37deaa7736", 0x3d}], 0x1, 0x2, &(0x7f0000000180)=[@dstype0={0x6, 0xc}], 0x1) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 290.425012] kernel msg: ebtables bug: please report to author: Wrong len argument 14:11:30 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0}, 0x288) 14:11:30 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x700000000000000) 14:11:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xffffffdffffffffa, 0x10, 0xffffffffffffffff, 0x2) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm_plock\x00', 0x41ffc, 0x0) ioctl$HDIO_GETGEO(r2, 0x301, &(0x7f00000000c0)) 14:11:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x3f, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$mice(&(0x7f0000000080)='/dev/input/mice\x00', 0x0, 0x200) setsockopt$inet6_MCAST_MSFILTER(r2, 0x29, 0x30, &(0x7f00000000c0)={0x8001, {{0xa, 0x4e20, 0x400, @ipv4={[], [], @loopback}}}, 0x0, 0x2, [{{0xa, 0x4e24, 0x6671, @remote, 0x101}}, {{0xa, 0x4e22, 0x5}}]}, 0x190) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$EVIOCGMTSLOTS(r2, 0x8040450a, &(0x7f00000002c0)=""/68) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:30 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="2800000004000000000000a33850739758b175000000000000000000000000000000000000004000"], 0x28) 14:11:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) syz_open_dev$sg(&(0x7f0000000080)='/dev/sg#\x00', 0x3, 0x10100) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x74) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) [ 290.639939] kernel msg: ebtables bug: please report to author: Wrong len argument 14:11:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x7ff, 0x800) r2 = syz_open_dev$vcsa(&(0x7f0000000240)='/dev/vcsa#\x00', 0x8, 0x800) getsockopt$bt_sco_SCO_OPTIONS(r2, 0x11, 0x1, &(0x7f00000002c0)=""/247, &(0x7f00000003c0)=0xf7) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1d}}, {0x2, 0x4e23, @local}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10, 0x0, 0x0, 0x0, 0xc5f5f27, &(0x7f00000000c0)='bpq0\x00', 0x5, 0x1, 0xa24}) syz_open_dev$mouse(&(0x7f0000000000)='/dev/input/mouse#\x00', 0x200, 0x800) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffdfffe, 0x34, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:30 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[]}, 0x78) 14:11:30 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") mremap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x3000, 0x2, &(0x7f0000ff8000/0x3000)=nil) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x7d, 0x0, [0x7f]}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:11:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000180)=0xfffffffffffffec6) write$FUSE_DIRENTPLUS(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="b800000000000000030000000000000006000000000000000200000000000000020a000000000000496000000000000004000000090000000200000000000000008000000000000005000000000000001f00006d96be31919d302ab9226d7d39c70000000000050000000000000005000000000000000800000003000000010000800600000006000000", @ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="0800000002000000000000000400000000000000070000000000000009000000020000002f6465762f7367230000000000000000"], 0xb8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:30 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) truncate(&(0x7f0000000000)='./file1\x00', 0x9) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040800,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:30 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3f00000000000000) [ 290.861479] kernel msg: ebtables bug: please report to author: Entries_size never zero 14:11:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000bd6000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:30 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[]}, 0x78) 14:11:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f0000000080)=0x1) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:30 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[]}, 0x78) [ 291.034882] kernel msg: ebtables bug: please report to author: Entries_size never zero 14:11:30 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0xfffffffffffffff9, 0x0) write$FUSE_OPEN(r0, &(0x7f0000000100)={0x20, 0x0, 0x2}, 0x20) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x6, 0x400040) write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffff9c, &(0x7f0000000140)={0x16, 0x98, 0xfa00, {&(0x7f0000000100)={0xffffffffffffffff}, 0x4, 0xffffffffffffffff, 0x3c, 0x0, @ib={0x1b, 0x8d, 0x7f, {"74f09ec6a52a75c038fc50c35316992e"}, 0x6, 0x6, 0x8}}}, 0xa0) write$RDMA_USER_CM_CMD_LEAVE_MCAST(r2, &(0x7f0000000200)={0x11, 0x10, 0xfa00, {&(0x7f00000000c0), r3}}, 0x18) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:30 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) r1 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0x4, 0x80) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000000100)=""/254) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x8002, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 14:11:30 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x20080, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x9, 0x3, 0x258, 0xb8, 0x0, 0x0, 0x0, 0x0, 0x1c0, 0x1c0, 0x1c0, 0x1c0, 0x1c0, 0x3, &(0x7f00000000c0), {[{{@uncond, 0x0, 0x98, 0xb8}, @unspec=@TRACE={0x20, 'TRACE\x00'}}, {{@uncond, 0x0, 0xc0, 0x108, 0x0, {}, [@inet=@rpfilter={0x28, 'rpfilter\x00', 0x0, {0x8}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0xfffffffffffffffa, 0x9, 0x1, 'pptp\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x2b8) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:30 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7000000) [ 291.172900] kernel msg: ebtables bug: please report to author: Entries_size never zero 14:11:30 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x0, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB]}, 0x78) 14:11:30 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080)='/dev/sequencer2\x00', 0x101000, 0x0) ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000000c0)={0x0, 0xffffffffffffff9c}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nfc_llcp(r1, &(0x7f00000005c0)={&(0x7f0000000100)={0x27, 0x1, 0x1, 0x5, 0xa0, 0x7fff, "b4ee3281f38c68c2bcc8273d9defc46e9f0bde9bbf7f3f8f434256f17c868a5409b4563509e70301c4ee6d3d085e82e634b5cbf03773f37a38881d8feee414", 0x38}, 0x60, &(0x7f0000000240)=[{&(0x7f0000000180)="5272c3b231ac5aed466ba15871145baefc1d96e249eebf3d4cb62f88aefc6339c90d25220ccd9cac2ff54a9de3677a0d0dafaa9974d62057bfb112c6acddcf3a3ef24330d586cff57270de5df352b286d099783d066c49a204333d52dd3dc2bd5e7e41bd8db90581995943ee54a75cc68515cb2d5ac391c5fc70f872a1a0b2c3a57a839f37bd4e058069b19398b32aaccc0df45d752511ff90dc77b13b3492d0", 0xa0}, {&(0x7f00000002c0)="31d4906a4a09b7afdc056f60af2b460f0adc97cbb692ec491aa41dc5d74d7b5fdeed13763aa846e497d3d25f07127f1b236da0812dde32f238431828c1e254a74cbd8e99a67f34205b77744e2281527c9c825b2edf7e58ceada0b3b507ffd2827d62a1a75a3ec73adf9cb95b19088a0a2fb9924087ac800cda0ce0d2d733d2052c9f4c00c332c9c03bae20d184e1fbf9526846634d54485ddb114f5eb186b83e9e0710e00679bc533b7e22826944f579e9ee77f38376c60f42c7dd710f1f9939fe729bc99409512be4031522691801ba643410914f499d21b1", 0xd9}, {&(0x7f00000003c0)="3902b84fc8a9e8ba59c59c4ffadc0708a1f0bfa3841c608dc8d6c1d63229c5316a0156566f1ce271c78aac26aec5b0253097d4944ef20d8cba0e5dcd480be28f94b02d8a5ff06e7fe399dfc4485744423b64f6fa982b2f18d2dc96cb8438f459045254cfc04d3dad757f7ef27f8704c9f5cad0912743f0599eec79240879774420e6ba27111e915b27745ff8b9d4ac315473b4959866168fdadc3254a2a159818357a579cf9e589e1e226cff4c6a4f2328c9af589080a90157f93cb0c43d730e3fc1ea5a7b399cfb2f", 0xc9}], 0x3, &(0x7f00000004c0)={0xf0, 0x11f, 0x27, "07a7aa96496539ee181f8157228c6d2cb57c82ec31d8154b39dadae0674eeb773e24c631d0bcc145933a05192abcd7e9ad51c49eca3f790bd862fbd7ac42479334f0780aeb55ff38b51eca84dc4c010479935ddb658476fac7fe03ec876d84afd8922107f88e2613514b22f067a814aa7c5ae52281337c54915265e80a07e7b6e79531557a34983b8d29633762a1251147b245e65e3c3d51f72f2eb419d5f85fa40266b7ad3b63569c562a77da267067f6c403a9ea47ee14bd7a9dd69a847ecfd29282acdc503721c0c928750060930372c9e76f1f867d5114a44364"}, 0xf0, 0x4005}, 0x4801) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:30 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x101000, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = open(&(0x7f0000000080)='./file0\x00', 0x1092c0, 0x181) ioctl$BLKRAGET(r2, 0x1263, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0xa480, 0x0) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(r2, 0xc0305615, &(0x7f00000000c0)={0x0, {0x9, 0x5}}) [ 291.433546] kernel msg: ebtables bug: please report to author: Entries_size never zero 14:11:31 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x4000000) 14:11:31 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000004000user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="2800000004000000000000000000000000000000000000000000000000000000f627bc0184b78b5131d08c79635c5bb1b914fd7759a1ac67489ca5aa180c3c4f25b273b7d6a1fe21259edf8dd1142ecddbd0113c3912f5183d83cf28fb49741c39af9e8091a695131039273b44dc5cb5b7b2547565261f907e5e08964fa717b4ff1fa8dfdd51551fb701189fbea93411d34ecd2aff609b96f2cc5c18fdff9dbc671aa2601d55f21ab5b0e069ea75d83ddae33e30949089"], 0x28) 14:11:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) socket$netlink(0x10, 0x3, 0x1d) r2 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0xcbc33d12c000c826, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f00000000c0)={{0x29, @dev={0xac, 0x14, 0x14, 0xd}, 0x4e24, 0x3, 'lc\x00', 0x8, 0xf0, 0x35}, {@multicast1, 0x4e23, 0x0, 0x4, 0x8, 0x1}}, 0x44) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x33, r0, 0x5) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) syz_mount_image$reiserfs(&(0x7f0000000080)='reiserfs\x00', &(0x7f00000000c0)='./file0\x00', 0x5, 0x4, &(0x7f0000000300)=[{&(0x7f0000000100)="951e100aa26f4c5477dc438f27", 0xd, 0x7}, {&(0x7f0000000140)="5e13e01e5a15863c0c1ddff0fd6fccc547f8e6a8f5eb6b9b3d7706f8a5fa8ec826ac02190ef18585693dc6319948d7c33403fbd1b9a1", 0x36, 0x401}, {&(0x7f0000000180)="18a38c2e6df1abf8a7596bb191e2420b5a12c0532968cda27b68b6ce275725c6e977a6f4deda496ccdf3f2f473446749c024e5610c076ed79df156b57228cde0cdd806d1e119d6e874ca6bbeb2c4af2dcdec45011cce05b3e8d33316241c9406fb43942b472d88dcd60e983f0778b93cfab021119f7dad7c4ab950a56f328ff0d880c60d093560c38ae35c591584c9702fc57c824600b11971d9b5d5badcf4f37eb9485d7b8452c46f98c362c4d144ee478fd0b3fb09f1ad1a42ecca2908c45c9bc6f3c5962bf31eb92c7a9392942871bb8623e58ae22ff28de4b7b32855375ee4e5c94f083463182017c06437d1bb45c8a2008d6968f968c3", 0xf9, 0x4a1}, {&(0x7f00000002c0)="1c268d908a591ebee3ce0d57e6d17a9f63daaf383f2c98d1769de6e17ac079dc442f756ad11c0fc59234acce208ee87b927c4b5ef8455f14faed", 0x3a, 0x5}], 0x10800, &(0x7f0000000380)={[{@jdev={'jdev', 0x3d, './file0'}}, {@data_journal='data=journal'}, {@hash_tea='hash=tea'}, {@usrquota='usrquota'}, {@errors_ro_remount='errors=ro-remount'}, {@grpquota='grpquota'}, {@grpquota='grpquota'}]}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:31 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x20000000002) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:11:31 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x108, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x180) [ 291.685066] kernel msg: ebtables bug: please report to author: Valid hook without chain 14:11:31 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$EXT4_IOC_RESIZE_FS(r4, 0x40086610, &(0x7f0000000080)=0xe0) 14:11:31 executing program 3: stat(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffff9c, 0x0, 0x11, &(0x7f0000000400)={{{@in6=@local, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@loopback}}, &(0x7f0000000500)=0xe8) stat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(0xffffffffffffff9c, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = syz_open_dev$admmidi(&(0x7f0000000a00)='/dev/admmidi#\x00', 0x7f, 0x94000) getsockopt$inet_IP_IPSEC_POLICY(r4, 0x0, 0x10, &(0x7f0000000680)={{{@in6=@mcast2, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in=@dev}}, &(0x7f00000009c0)=0xe8) syz_mount_image$gfs2(&(0x7f0000000200)='gfs2\x00', &(0x7f0000000240)='./file0\x00', 0x2, 0x1, &(0x7f0000000300)=[{&(0x7f00000002c0)="7a7cff034b246cbf22c906bb13f889645b761a824224598c6958c5a47c3bed", 0x1f, 0xe58}], 0x80000, &(0x7f00000007c0)={[{@acl='acl'}, {@barrier='barrier'}, {@noloccookie='noloccookie'}, {@lockproto_nolock='lockproto=lock_nolock'}, {@loccookie='loccookie'}, {@data_writeback='data=writeback'}, {@norgrplvb='norgrplvb'}, {@quota_on='quota=on'}], [{@uid_gt={'uid>', r0}}, {@fowner_eq={'fowner', 0x3d, r1}}, {@fsuuid={'fsuuid', 0x3d, {[0x77, 0x39, 0x36, 0x62, 0x7f, 0x62, 0x38, 0x77], 0x2d, [0x0, 0x61, 0x7d, 0x77], 0x2d, [0x66, 0x37, 0x7d, 0x77], 0x2d, [0x31, 0x32, 0x0, 0x36], 0x2d, [0x77, 0x7b, 0x31, 0x3d, 0x7f, 0x0, 0x37, 0xb2ff9c51a7a57547]}}}, {@fsmagic={'fsmagic', 0x3d, 0x3}}, {@uid_lt={'uid<', r2}}, {@euid_eq={'euid', 0x3d, r3}}, {@fsname={'fsname', 0x3d, '/dev/zero\x00'}}, {@uid_eq={'uid', 0x3d, r5}}, {@fsuuid={'fsuuid', 0x3d, {[0x32, 0x0, 0x7f, 0x38, 0x35, 0x73, 0x37, 0x76], 0x2d, [0x62, 0x3b, 0x76, 0x77], 0x2d, [0x7d, 0x65, 0x38, 0x67], 0x2d, [0x3e, 0x3a, 0x7f, 0x37], 0x2d, [0x74, 0x30, 0x7b, 0x77, 0x32, 0x35, 0x62, 0x62]}}}, {@hash='hash'}]}) r6 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x1, 0x0) r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_STATS(r8, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r9, 0x0, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000004}, 0x8081) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r6, 0x1267, &(0x7f0000000280)) [ 291.785513] REISERFS warning (device loop2): super-6502 reiserfs_getopt: unknown mount option "hash=tea" 14:11:31 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x2000, 0x0) ioctl$KVM_PPC_GET_SMMU_INFO(r1, 0x8250aea6, &(0x7f0000000100)=""/89) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:31 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x6c00) 14:11:31 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x18c, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x204) 14:11:31 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x18c, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x204) 14:11:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x10000000000002, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1fffffc, 0x10, r0, 0x400000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 291.995999] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:31 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl(r1, 0x0, &(0x7f0000000440)="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") ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = syz_open_dev$cec(&(0x7f0000000080)='/dev/cec#\x00', 0x1, 0x2) ioctl$BLKPBSZGET(r4, 0x127b, &(0x7f00000000c0)) ioctl$KVM_RUN(r3, 0xae80, 0x0) fsetxattr$trusted_overlay_opaque(r4, &(0x7f0000000180)='trusted.overlay.opaque\x00', &(0x7f00000001c0)='y\x00', 0x2, 0x0) ioctl$TCXONC(r4, 0x540a, 0x4) seccomp(0x0, 0x1, &(0x7f0000000140)={0x3, &(0x7f0000000100)=[{0xfffffffffffffe01, 0x7fff, 0x4cd0, 0x9}, {0x40, 0x8000, 0x6, 0x3}, {0x1, 0x80000001, 0x0, 0x8}]}) 14:11:31 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x48) 14:11:31 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x28) 14:11:31 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = getpgid(0xffffffffffffffff) r2 = perf_event_open(&(0x7f00000000c0)={0x3, 0x70, 0x0, 0x2, 0x4, 0x7, 0x0, 0x5, 0x1, 0x0, 0x6c, 0x8012, 0x3, 0x2, 0x8, 0x1, 0x1, 0x1, 0x3ff, 0x9, 0x3, 0x9, 0x9, 0x40, 0xa2, 0x9, 0x200, 0x500000000000000, 0x800, 0xfffffffffffffffa, 0x4, 0xa7, 0x6, 0x5, 0x1ff, 0xf155, 0x8, 0x3f, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x22000, 0x4, 0x3, 0x7, 0x7, 0x9c, 0x2}, r1, 0x3, 0xffffffffffffff9c, 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) prctl$PR_MCE_KILL_GET(0x22) r4 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000380)='/dev/vga_arbiter\x00', 0x302, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f00000003c0)={0x0, @in={{0x2, 0x4e21, @rand_addr=0x4}}, [0x3, 0x432b, 0xffffffff80000000, 0x5, 0x0, 0x8, 0x1, 0x9, 0x8, 0x0, 0xffff, 0x4, 0x10001, 0x41]}, &(0x7f00000004c0)=0x100) setsockopt$inet_sctp6_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000500)=@assoc_value={r5, 0x2}, 0x8) r6 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x400000, 0x100) ioctl$VIDIOC_QUERYMENU(r6, 0xc02c5625, &(0x7f0000000340)={0x6, 0x0, @name="69cae5a0ede2c35903fd9f17ab6a978c8b0868b99d33011dcff94d90f2730339"}) dup(r2) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(0xffffffffffffffff, 0x84, 0x7c, &(0x7f0000000200)={0x0, 0xf2, 0x7d}, &(0x7f0000000240)=0x8) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r6, 0x84, 0x18, &(0x7f00000002c0)={r7, 0x3f}, &(0x7f0000000300)=0x8) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r8 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/video2\x00', 0x2, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r8, 0x4020565a, &(0x7f0000000180)={0x8001001, 0x9b6, 0x3}) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 292.206974] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:31 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x20440, 0x0) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x1c1400, 0x0) ioctl$VIDIOC_PREPARE_BUF(r2, 0xc058565d, &(0x7f0000000100)={0xffff, 0x7, 0x4, 0x4000000, {0x77359400}, {0x1, 0x0, 0x262, 0x7fffffff, 0xe1, 0x368000000000, "c19f46b9"}, 0x81, 0x1, @fd=r3, 0x4}) 14:11:31 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x18c, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x204) 14:11:32 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x68) [ 292.404364] QAT: Invalid ioctl [ 292.413784] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) fchdir(r1) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) rt_sigaction(0xa, &(0x7f0000000100)={&(0x7f0000000000)="c463797de236c402790ff23e400f1f00652646f65b40c4418dec11c4a2aaf71b400fae8a3f000000f20f2c43a8df5966c4a1a812d1", {0x10000}, 0x0, &(0x7f00000000c0)="660f5849faf346da2dd9cc1290640f71d04e43d9c7c4015972e091c4e27932f0660fe95d0c640f8cb2cb85a166400fdb700043d8ff"}, &(0x7f00000001c0)={&(0x7f0000000140)="c48175fde9c48185ea4600c4a3515c30540f0d19c4e17b2c57450f71d48d0f609500000000c402b537161c20c483fd01f349", {}, 0x0, &(0x7f0000000180)="46dac5660ffbdec442d8f24f21c4e280f5cff30f7e46d0c401fb2d23c462c5a9c28faa58124b00050000006565f2acc442190d0cd506000000"}, 0x8, &(0x7f0000000200)) 14:11:32 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x1ce, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x246) 14:11:32 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = syz_open_dev$sndpcmc(&(0x7f0000000180)='/dev/snd/pcmC#D#c\x00', 0x6, 0x80440) socket$inet6(0xa, 0x1, 0x3f) r1 = openat$nullb(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/nullb0\x00', 0x80, 0x0) r2 = syz_open_dev$media(&(0x7f0000000200)='/dev/media#\x00', 0x0, 0x200180) r3 = fcntl$dupfd(r1, 0x406, r2) ioctl$DRM_IOCTL_GET_CAP(r3, 0xc010640c, &(0x7f0000000280)={0x5, 0x9}) ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f0000000100)) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) openat(r0, &(0x7f0000000140)='./file0\x00', 0x20000, 0x81) getuid() getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000580)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={[], [], @loopback}}, 0x0, @in=@empty}}, &(0x7f0000000000)=0xe8) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x34000, &(0x7f0000000840)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r5}, 0x2c, {'group_id'}, 0x2c, {[{@default_permissions='default_permissions'}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0x9}}, {@default_permissions='default_permissions'}, {@allow_other='allow_other'}], [{@euid_lt={'euid<', r5}}, {@subj_role={'subj_role', 0x3d, 'fuse\x00'}}, {@uid_lt={'uid<', r5}}, {@uid_eq={'uid', 0x3d, r5}}, {@subj_user={'subj_user', 0x3d, 'wlan0'}}, {@euid_gt={'euid>', r5}}, {@smackfsroot={'smackfsroot', 0x3d, 'group_id'}}, {@dont_appraise='dont_appraise'}, {@smackfstransmute={'smackfstransmute', 0x3d, 'group_id'}}]}}) write$FUSE_NOTIFY_STORE(r4, &(0x7f00000000c0)={0x28}, 0x28) 14:11:32 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = memfd_create(&(0x7f0000000080)='/dev/kvm\x00', 0x4) ioctl$RTC_WKALM_SET(r4, 0x4028700f, &(0x7f00000000c0)={0x0, 0x1, {0x1e, 0x2, 0x3, 0x1f, 0x4, 0x5, 0x1, 0x142, 0xffffffffffffffff}}) 14:11:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x11) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 292.654083] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x40c000, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffff9c, 0x84, 0x14, &(0x7f00000000c0)=@assoc_value={0x0}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000140)={r2, 0x8000000000}, 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r3 = open(&(0x7f0000000180)='./file0\x00', 0x20400, 0x40) ioctl$TIOCNXCL(r3, 0x540d) 14:11:32 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x7a) 14:11:32 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x1ef, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x267) 14:11:32 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x20000, 0x0) write$FUSE_NOTIFY_POLL(r0, &(0x7f0000000200)={0x18, 0x1, 0x0, {0x81}}, 0x18) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r2 = msgget(0x2, 0x100) msgctl$MSG_STAT(r2, 0xb, &(0x7f0000000100)=""/198) socket$pppoe(0x18, 0x1, 0x0) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:32 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x1ef, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000fffff6ff020000000d00000000000000080669726c616e300000000000000000000069705f7674693000000000000000000073797a6b616c6c65723100000000000076657468305f746f5f626f6e64000000aaaaaaaaaabb000000000000ffffffffffff000000000000000070000000a0000000d80000004155444954000000000000000000000000000000000000000000000000000000080000000000000000000000000000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaabb0000ffffffff000000001f000000000000000000626f6e645f736c6176655f310000000073797a6b616c6c65723000000000000079616d3000000000000000000000000062707130000000000000000000000000aaaaaaaaaa00000000000000aaaaaaaaaabb00000000000000007000000070000000a80000006172707265706c790000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaaaa0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff00000000000000000000000000000000000000"]}, 0x267) [ 292.899703] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) openat$vhci(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhci\x00', 0x4080, 0x0) memfd_create(&(0x7f00000000c0)='\r*wlan0\x00', 0x6) r1 = syz_open_dev$dspn(&(0x7f0000000100)='/dev/dsp#\x00', 0x80000000, 0x20000) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) fcntl$addseals(r1, 0x409, 0x1) 14:11:32 executing program 4: r0 = socket$inet6(0xa, 0xffffffffffffffff, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000080)={{{@in6=@ipv4={[], [], @multicast2}, @in=@remote}}, {{@in6}, 0x0, @in=@remote}}, &(0x7f0000000180)=0xe8) flock(r1, 0xd) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/dlm_plock\x00', 0x680500, 0x0) write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="2c0000200400000000000000000000000200000000000000f8ffffffffffffff040000000000000000000000a852d56dd3378d933fb0ece37537674de197a21b3510cb5c1b9a30cbe019b19a930c0d8bfba8971de90124bd3158911f30"], 0x2c) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 14:11:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f00000000c0)=0x200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$dspn(&(0x7f0000000080)='/dev/dsp#\x00', 0x9, 0x220000) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) syz_extract_tcp_res$synack(&(0x7f0000000100)={0x41424344, 0x41424344}, 0x1, 0x0) syz_extract_tcp_res$synack(&(0x7f0000000140)={0x41424344, 0x41424344}, 0x1, 0x0) ioctl$KDGKBTYPE(r2, 0x4b33, &(0x7f00000001c0)) syz_emit_ethernet(0x16b, &(0x7f00000002c0)={@broadcast, @remote, [{[{0x9100, 0x200, 0x81, 0x4}], {0x8100, 0xcc8, 0xffffffffffff0000, 0x4}}], {@ipv6={0x86dd, {0xab, 0x6, "c70ffe", 0x12d, 0x88, 0x1, @ipv4={[], [], @remote}, @local, {[@routing={0x89, 0x6, 0x1, 0x8001, 0x0, [@mcast1, @empty, @dev={0xfe, 0x80, [], 0x1a}]}], @tcp={{0x4e23, 0x4e24, r3, r4, 0x8, 0x0, 0xa, 0x44, 0x1ff, 0x0, 0xfffffffffffffff8, {[@exp_fastopen={0xfe, 0xa, 0xf989, "d0e3d013af81"}, @exp_fastopen={0xfe, 0xa, 0xf989, "e4b3ab82463c"}]}}, {"8ba2562c5e2c5a225daf20193c10a40782d85e7fa8b83c68c5ecf2641c1a2315f34456f0930cc461cbb3ebe13d752e879db3dcc52f35036723c071a6f8ee6f051f58979b03fc2cd46c289922c15384d60da74c56ea164b80d9cfc77158b39d98810c38213bc6df079c021f54d870ee7f750b0e292a8f2a12bea5f29658d3a0b3fbe069305af77924a19b9d744eceea2d580d61961e3f721ff4c965731b0cc4dadf6ac53d62f95f06c863b4722c088ccfc6840a64e1cb39b17a6dc3fcb5ac8b4a73cc913a919b73bdf95b7ebc17"}}}}}}}, &(0x7f0000000180)={0x1, 0x1, [0xbbe, 0xf7c, 0xec2, 0x35a]}) 14:11:32 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x80ffff00000000) [ 293.094241] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:32 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80800) readv(r0, &(0x7f0000000280)=[{&(0x7f0000000100)=""/35, 0x23}, {&(0x7f0000000140)=""/201, 0xc9}], 0x2) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000380)='/dev/fuse\x00', 0x2, 0x0) r2 = getpid() ioprio_set$pid(0x1, r2, 0x0) r3 = dup(r0) setsockopt$inet_sctp6_SCTP_NODELAY(r3, 0x84, 0x3, &(0x7f0000000080)=0x7, 0x4) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="280000000400000000000000000000000000ff070000000000000000000000000000000000000000"], 0x28) bind$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e20, 0x7fffffff, @dev={0xfe, 0x80, [], 0x13}, 0x6}, 0x1c) 14:11:32 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x1ef, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x267) 14:11:32 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) 14:11:32 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000100)='/dev/sg#\x00', 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r2, 0x40045542, &(0x7f0000000140)=0x8) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) ustat(0x1f, &(0x7f00000000c0)) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000080)={0x0, 0x3ff}, 0x8) [ 293.360629] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:33 executing program 1: memfd_create(&(0x7f0000000000)='\x00', 0x33f3ddc773a25d6d) mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="280000000400256c9a73000000000000000000000000eb91f8f900000000000008df3504fcf4c70000000000"], 0x28) 14:11:33 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0xf1ffffff) 14:11:33 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) socket$inet6(0xa, 0x805, 0x7f) ioctl$VT_ACTIVATE(r2, 0x5606, 0x5) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 14:11:33 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x200, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x278) 14:11:33 executing program 2: utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x3, 0x9}) r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) openat$ppp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ppp\x00', 0x200, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x2000, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x81) r1 = open(&(0x7f0000000140)='./file0\x00', 0x800, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0xc85e) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000180)) [ 293.578084] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:33 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffff9c) getsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000100)={0x3, [0x5, 0x19bca693, 0x5]}, &(0x7f0000000140)=0xfffffffffffffd31) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0xbaca, 0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) mmap(&(0x7f000056e000/0x3000)=nil, 0x3000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) r3 = semget$private(0x0, 0x5, 0x100) semctl$GETALL(r3, 0x0, 0xd, &(0x7f00000002c0)=""/4096) write(r2, &(0x7f00000000c0)="e7ce8c85ac63e6bf2e58867d143d9ceeca02b07d1c93232a2a8040f3a5bf9b83b6d7e3ba6b", 0x25) ioctl$SG_GET_RESERVED_SIZE(r1, 0x2272, &(0x7f0000000080)) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x1267, &(0x7f0000000280)) 14:11:33 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x200, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x278) 14:11:33 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340)='/dev/vcs\x00', 0x2040, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000003c0)=0x0) ptrace$peekuser(0x3, r1, 0x3) write$P9_RREMOVE(r0, &(0x7f0000000380)={0x7, 0x7b, 0x1}, 0x7) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) r3 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x131001, 0x0) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') lseek(r3, 0x0, 0x7) capget(&(0x7f0000000180)={0x399f1736, r1}, &(0x7f00000001c0)={0xffffffff, 0x100000, 0x6, 0x80000001, 0x3, 0xffffffff80000000}) sendmsg$IPVS_CMD_GET_DAEMON(r3, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="b0000000610a8bb331912f77da4bc6219dd9bf90106836c06f2783e3045b5c7743e116e56abfadfb46003ed5f2d64f2e21dcf99feca3ec", @ANYRES16=r4, @ANYBLOB="00022abd7000fcdbdf250b000000100001000c00070010000000020000004c00030008000500ac141420080008000300000014000600ff010000000000000000000000000001080003000100000008000800060000001400020076657468305f746f5f7465616d00000040000200080009000500000008000b000a000000140001000000000000000000000000000000000108000900faffffff08000b00020000000800030003000000"], 0xb0}, 0x1, 0x0, 0x0, 0x20008040}, 0x4040) write$FUSE_NOTIFY_STORE(r2, &(0x7f00000000c0)={0x28}, 0x28) fstat(r3, &(0x7f0000000600)) 14:11:33 executing program 2: r0 = accept4$unix(0xffffffffffffff9c, 0x0, &(0x7f0000000080), 0x80000) getpeername$unix(r0, &(0x7f0000000180)=@abs, &(0x7f0000000300)=0xffffff46) r1 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x40, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0x7, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2272, &(0x7f0000000280)) 14:11:33 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1000100) [ 293.804443] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:33 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x200, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x278) 14:11:33 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000cf4000/0x1000)=nil, 0x1000, 0xfffffffffffffffe, 0x3f, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) 14:11:33 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000300)='/dev/sequencer2\x00', 0x40004000, 0x0) ioctl$VIDIOC_G_FMT(r2, 0xc0d05604, &(0x7f00000000c0)={0x0, @pix={0x7d7, 0x9, 0x51767e77, 0x2, 0x4, 0x996880b, 0x7, 0x1, 0x1, 0xe, 0x1, 0x5}}) bind$nfc_llcp(r2, &(0x7f0000000200)={0x27, 0x1, 0x1, 0x7, 0x1ff, 0x7f, "dbe00db99df77a6840ccfda58091088b408fc11dbf17ea18e6aab6b619c5884f1ad32d201a7dc0ca367fe133dd5aded841d85b5acfbb60e640f9fb15c30201", 0x3f}, 0x60) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) openat$audio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/audio\x00', 0x2400, 0x0) [ 293.991970] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:33 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x280) 14:11:33 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r3 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x0, 0x0) ioctl$KVM_REINJECT_CONTROL(r3, 0xae71, &(0x7f00000000c0)={0xd94}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 14:11:33 executing program 3: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) iopl(0xfbf1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x1267, &(0x7f0000000280)) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080)='/dev/audio\x00', 0x220100, 0x0) ioctl$DRM_IOCTL_GET_CAP(r2, 0xc010640c, &(0x7f00000000c0)={0x3ff, 0x8}) 14:11:33 executing program 1: r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x1, 0x0) getsockopt$llc_int(r0, 0x10c, 0x7, &(0x7f0000000100), &(0x7f0000000140)=0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r1, &(0x7f00000000c0)={0x28}, 0x28) 14:11:33 executing program 3: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0x800000000000012, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x11, &(0x7f0000000140)={0x7, {{0xa, 0x0, 0x0, @dev}}, {{0xa, 0x0, 0x0, @local}}}, 0x108) 14:11:33 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x500) 14:11:33 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x60) ioctl$VIDIOC_QUERY_DV_TIMINGS(r2, 0x80845663, &(0x7f00000000c0)={0x0, @reserved}) keyctl$set_reqkey_keyring(0xe, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r0, 0x2272, &(0x7f0000000280)) [ 294.260061] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:33 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x400, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = syz_open_dev$adsp(&(0x7f0000000080)='/dev/adsp#\x00', 0x7, 0x200000) ioctl$KVM_S390_UCAS_UNMAP(r3, 0x4018ae51, &(0x7f00000000c0)={0x4, 0x4, 0x1}) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_GET_API_VERSION(r1, 0xae00, 0x0) 14:11:34 executing program 3: seccomp(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000240)=[{0x6, 0x0, 0x0, 0xffffffff}]}) get_robust_list(0x0, &(0x7f00000001c0)=0x0, &(0x7f0000000200)) 14:11:34 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='fuse\x00', 0x0, &(0x7f0000000940)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r1}, 0x2c, {'group_id'}, 0x2c, {[{@max_read={'max_read', 0x3d, 0xffffffff}}, {@default_permissions='default_permissions'}], [{@obj_user={'obj_user', 0x3d, 'group_id'}}, {@seclabel='seclabel'}, {@smackfsroot={'smackfsroot', 0x3d, '.'}}, {@fowner_lt={'fowner<', r1}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@fsname={'fsname', 0x3d, "9f766d6e657430766d6e65743162646576"}}, {@context={'context', 0x3d, 'sysadm_u'}}, {@uid_eq={'uid', 0x3d, r1}}]}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:34 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) clone(0x2102001ffa, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000340)=@nat={'nat\x00', 0x19, 0x2, 0x20c, [0x20000100, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="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"]}, 0x284) 14:11:34 executing program 2: r0 = dup3(0xffffffffffffff9c, 0xffffffffffffffff, 0x80000) r1 = syz_genetlink_get_family_id$fou(&(0x7f00000000c0)='fou\x00') ioctl$NBD_CLEAR_QUE(r0, 0xab05) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000180)={&(0x7f0000000080), 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@FOU_ATTR_PORT={0x8, 0x1, 0x4e23}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000040)='/dev/sg#\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = memfd_create(&(0x7f0000000400)="e83779d80efa45bb7f48bebc95870bd0cd39bd2830ee47afe7b33fc778bde252c50d2e", 0x0) r4 = syz_open_dev$sndseq(&(0x7f0000000700)='/dev/snd/seq\x00', 0x0, 0x1) r5 = dup2(r4, r3) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, "7175657565310000000000000000313b0000000000000000000000000000000000000000060000000000ccbf7ddd00"}) sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x7) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, {0x8001}, 0x0, 0xa019}, 0xe) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f00000001c0)={0xf48b, 0x5, 0x200000000, 'queue1\x00', 0x7fffffff}) write$sndseq(r3, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}], 0xffffff76) io_setup(0x7, 0x0) lseek(0xffffffffffffffff, 0xfffffffffffffffd, 0x100100000000004) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$VIDIOC_SUBDEV_S_EDID(r5, 0xc0285629, &(0x7f0000000380)={0x0, 0x40, 0x7, [], &(0x7f0000000340)=0x7}) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x31, 0xffffffffffffffff, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2272, &(0x7f0000000280)) 14:11:34 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f0000000000)={0x79}) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x3f00) [ 294.609824] kernel msg: ebtables bug: please report to author: entries_size too small 14:11:34 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) write$FUSE_NOTIFY_STORE(r0, &(0x7f00000000c0)={0x28}, 0x28) 14:11:34 executing program 4: r0 = socket$inet6(0xa, 0x3, 0x6) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0a7c2d023c126285718070") r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/zero\x00', 0xb4800, 0x0) ioctl$KVM_SET_NESTED_STATE(r1, 0x4080aebf, &(0x7f0000000440)={0x1, 0x0, 0x2080, {0x2, 0x0, 0x1}, [], "2346b32eeab6dc1f5b37658a3320a3e2b1d6b53cd7f93a5f28632bf4e531b16ecd439311ba8176273a620d87049c094d0b597b6e8555ee643b8cb23ebfc0dc21a61fae8b96c9840be517df85209b0c2d82e69dc5993162021d9a3383b7c798f1f496dbe53d560852674f7790e41916e8237d6ffc9903dba787c58962018a57e0a22b8830114cfe8ce1011d7c5afe72f906fb3d670c75ee1f5d31ef790b5ccaa6a4343ddf09de17822a6582407fd5d54c657a02ef15bc02b80a688b29b69ee7ea9484cabe2a63c672bed4c640555ce7d36cabd8ba0f9ba3dc66f7a6cad2dd1021d57e80cc3ccf3b8b2a4e8821352878ea9bd205c578d20b1f58d8e62631d48922cccdce798a006ba68e1f15c8e4b2c05ddac61bfc654f9562a7b4d6b270e560e903f6926486a45b352b88bd0b106bb5ab45ee2c814764b9fe4eaa922657a2cffe8dddf90e3ec897d8bc36b289349d7748ebcaeac8ba4026ad1008648cc8f4f0005093f39295a56e6e02f6f16e2f5c7bbb8a9091b4ebe0e4952e1b0368123395dc83ecc5e43e03eb44ba018c8f9a3a00d3dfa8d4a9276ec414e331abf7294f5bee3fa3ff7dc77beab5072842953e3163ef17d0c191672b9ea8b67e8cde2ce84242c9a85f7c40aade66440e4aa6eec70bd4f4307e1fb7288772db5764fc4f643cd6053dd1bb2bfa27a8068a2dc746c1ed9a835bc3c3a69cae8ff818959227e61da96be5e2d3dd34e6f7c33599f8d66292dad61aa051264672470ae4716db80c21e41bfdc60b78a62a3629c934de54bf8351d6908276bd9b9642706a264368c5f6bc54efcccfc185a3e14be1d059257ec505b01e66d5bbb2fd25ce545783ef14239a8e9ef9d57e965f82e4759398ad6cd6a2d605d0cb8bd00596d22eead79fe1ca48fe1ea14b3561071ff73ca307051b80a135ff5b4a3a2c6726d16d3f4b50775ba6f38e336a72ab79a92bc2b7cb92357cded4dc6998ae297d07503aabfa5cd6225885f3b6ffe86f7e06f82e0e71f742d066c039a4f9801c51662bcd714b3046a7aeff7c608f6cb5b46974f9d4befac15d43d242a5dd311a1a85daf5043923116891cfc13acda2be1fd8f47a581567fd3382246dd5f78fdfedf0604f5e4f96bd4c265fa1d9cab5edb8301bd125c7c9a0df8d8ff3b7d5a61b83902dd09407bc65e159d0575dbe46f826c091f88b5b6be1af918f59b544a2cda5fbb93207012dafa191d37e98f1d626588c45e31c3b36af72fd61aa9b5e2413f90637bb28037d0e55da98686a566fe705301f8f39fb42548c10372b9fe9b0ef6056c98a62faaad51a0e7f2e0d9912d105235d84f674e9c7bf4770de56eeaa995989b2904f80c08335cc71c86ffe3d1c9880fd41a8db56d891ade816a7a2dfcc05ad22fc9620a48d1e5452861ee2fc6b600b67b75d0c85301a8756d42587fd30c9979a20f0fd0e55b09de6d1bf6c581bd021ae1c8b426a87007f629152a1f84067d557815885fdaa40fc2a83e915a26e4532ffaaf54d17a2924056ddc190f23d5f948880cd742c0576e4cb60afe3d0cec4891b5b97dbc8a9ff64b4931b035bf4881fd8268ab341888a1b77712c927988c46830522ade64bf8978ab73d0bf37496d6370b651d54857938dfa28b513054f4a22d06b9a7cc2015f2c6a1ade27f2062a759b45d2a1c03911e00003fa606f54d0ac3799e388796fdbca2de504c84b10f6d377b407e5880c624ee56ab3d484091c3eff4528fcec97250bd24194face43b36aaee81848bc202190cb8a62dc03e6ebfde9c5049c3c252f5453aed0580f64923278a703ad83e1d70d158a3e983377daf55951ec83338b34857a506a6e96d623205c5a16e8188ddf867219903a1177475f0465f250c8ce100036cf7d6a31f4d471ff71f52693bf5092bdb76d2e46a6a6d48d5d3ec7368a494827703ee0fdea549e7f1f94bbec303bcf25ee61bdc17acd7d99313cf2b1750bae884c69bc72667924b88fa2c19bb0e6e919853d85acf0798934967e1b7527e52381b2fd5c2f88df77f3657256e2a35a3083c7d9241f19c6bb6e27a13d8370cba03ab5489c2d144f89de3f9b11371a01ae49c5d7dbefa49c3cb794f03e94fa0ac4f980c9d8e87d1053f92749a50b4271be743c9804e2d473d2f9e8e35b9d483158bb6a7413cc643cb5874cbfae715633ae836147e3291487f0b66f1ced75432848ec6b78e9318d008c85a9d2ac066857a64ee94ea88b2e56216205356dc0a93ac89d1abb6f071624695c9b8596dde722638754b179d592003c295d7d7b57ad46a766e23f6b5f0f3e40f47d5b4c1de627301ae7dc97fcce0c02bb0a62ff42edb09d60788f59fe285024fef2b63a9cf272353271620b2ab89878ceaedcb9632ef13dc7db1530c20c840209020aaa21eb0cb0833195cd2bf411fbd38a403b00e2080ec39ecb3419a8389fe2f9dae3c60d8b42126647c125f17c80dc081dffd0c192ad2219840e245d070df209693896288805ecaf94ce2732a0e0be93a40ba66a6edcd853638a0a0c4a0f17cc8aa394ae29315bb6cbe3679c10734f6bd4391d4c216093872993f420e8ffa4be54a4fad7920eb2a040fdf24dcbffd2aea5be432c742ae8e3e41deb3e9905097a4df18de13a065300f7bf55f2130d2f6037c2bb0c3b761157acc1dd68c479e42d0b015c2fbb5b31a57a73e239059892e0018ed7516ca1808455726d1fee695cd1f27a8d227323b7f0b2a0d045885489f0437e08acf3a804afdb9400ff2998eac4d57079b4c0aef4340a5bd669e0126048c940346a343420c21193b87f92901b68452d6c3bb12efc245c8daee725d1d01eeb8c58d1bc138f7b23ba289e16350f7fc9b9b0b7aaac32609f31ff9ee63ca37024de607b4b09b7ea0bc45607aa934531e986af009bf2a3b27883a3d1c8b936b80a0d145f4e63e6a353f9f7b726efb3eb7c0c531ffb6b266b631937915ca09395fce99e049c8b8f7b78287b03a1c5271b54b000b5eae96680e7c6f25e1192ededd6ea3abf39f570c714c32392a89b5aef0ea818efbbbed7583bd6d565587ae8001a80458577a8c6aa8eac00e3c68b41648d07f72ff8ba8bce2ce1a1c440506f913eb224c7eb113d7260bab7f5afe4ef0f8620662b107afcb629b127003c52f6673f2d1ebf5b269133a0696b14a9d490bb95e7275b9a4f1bfd590e61c5824d9b7d68881a1dd912a68c7e5ab6ff0b23c48659887eca07ee85f2874e72c117e5e3ec392de7a2f472884890623d84a0f03eae1b45ca6c2ccf3a4cb736b868037e1e866dea68b70f5e916fe6922bdb70abb2119cd01a9fa260ca2e6578ea743803f8d0eb4dcde6cd1d85aa7a87763f9f4fa9fccd9312270a883b2349a05b1ce35f58cb27fa1b6f91c33cc90af2d33c6e295f77916a9964f095ab3cab7b603406f7062e282cf53a504e4601ec30f6be64fd393da41558d8932a4806a780facce29939e623d0336c59e09e6fec181f3ac94acbbd83cc945ece3f113431b6acca02de4526d1422da1a221d2a977061aeb79207f01699c5cda1a8dcb0ca682a370ad3cb5914a6d3993fd1ad47170c72d502fde1f8df8f5aa8d409002592c4f9f3e5395130705623571720c9d6187874d9b5902a9b85db2e1a751e9a692a367cb1d96003808ee4fafffa14d914cdf70b64af91ee663b3d9251ae50b83edfc957951ad40ca9e9df4a2d6b232dcede88d1701a94782c2899c047892ff7e24dc79255d7b42c0cedb2e0f5d31c17246e8a0a706b029914251d6fbb6623575b44dadc49bf6a4e26984a5cae7c7d738fe35a2338624b9e2833b7c4cf1a576baa91a24c1525ff89235264319f46423a5c12f22839b910ab48d9723861e55c0608536de7631cdb738a2a8be8cce543e0625f8554855665dcd53cfea32e85f7a7a0d7f4d6c736661209a81af21d382e13759b8a76569fbeea14298419c314e88e90152118b6ea19e705e401cbd959e7e026313e3444e2342a59a286b8e45eb6fc2c612ae8789ee506ae9e67b713dcee21c46fc0f7c75f227bccdef16ab4a4ebc4aeb5a41363898949b4febcdf6ff2c8c970248b294857471c723261cbea9c53824633b5b4e2fe68d33bbef703ef9ea1a470e8719fec64db9f1db13a59b3b2c6b0e2a7da008ab84ceb0fe2cba8e0b15f3a45b4679883546a8b57e3a9f456c4892069e7720166b891c89cdd00862190e2a213431916360a208f460c9386b247d9f47ef618a3f67fbead5dc88b39217e1928a6a78091be55a2c2fc90c41227d63ff7bb1a1588a4e4c6c8cf580c5258237a67b663d760cd1709f9fc5afda87b5fdcbe7dfdab374480235d4c413ccaef611ecf8d519724b55b96d5bf42bd57b8bd4b0b33419c0ae472d696977dd560c3066be183acd2d9901aa6e51d38542568ccb99eec3c99f8029b2a7b8063a29aaa864222ebbb288916517b8229444965b378f2fe5c451e8f1e81a8878cc855b8d31b56299abeb89f7a8318f46916dd1178fe291adeb75533795c785c1df2ac3a43c88beb8ee9b34ea01c96b3163d852d5741698e1a0f1c0ca357511465272dc76f89e257fef2c8e21c0b30cde1269d580f4188d4ffdad57eedea362d6d08ed8969ce5f0e62f900990ef918d2d27b28469f44c5646d7183da511893c96b36fd729ea549cfeb054d4dfae072ff0c771ccb6cbf8f150968bffc96bc903d5c609c9cfebd8a38c16025e4f0552b7c26ce799ea03b771722eb490a3190cf10f04b2b7a3cfcadbd5ab8a611514a4fabd39610f3f6caae1cb98873aa00063cb08d383a715d96d02f3a76b2e097c1753ea5148d75af9314d2480cc3df63304871763b1022cfab59292f8a89637152bc023a13713a079a07829ab597313e5f89b782c0cdf0ee572ffd7a9fbf1c92abc8353b1f6d50df3f9d3a9132fd16c839665ba1d30cf520100ae9b295286453ea73d346c6f31863b30c388bb4a7abe074de7c7cd83a8ce6b0f609bd717ab1d3b98943dea752913c307f31b64cf98b415bd418b59e2418f7fe8f0b28d50a172ecba3ebad053b443727c5b3b75d06a4069ca91fdc0cfd3e5c5f51a258128ee606b74be649eff74ed4d8a2093eea141c64af028934a1f7ab0cc9541dceb37cf75fd453bba1c45d53407cf458d760414b0628130ef3dfe879176132648090e930b11a00290b8ad0a5d13a454e2ce5adf770bb1ec17fd1df6ce6ce529223df31893b0a0607c42382c8d01aa68c7abb857de647e943700f744440737b9b2f7d9f374bd544a6ffe6e636bda7f61c2a1497b1b7bd2748a8edaa07e7216278e5b9bc137833bb8f9feb38c06e130e572ec11446e5fc72009b9c8fd623c9ec96e74454123ef979378359f9a38b0fcbd4c112a4f40e5c15a7467ae1a659c81c0e1b698ba9a7e80efa564acb7b5a517ca90a34d1ad7e8fd00912cadcaace297fc4a6704f22af475a8a4679550c8fe524517d3d816cd04cd4a8ef2769510d33d704f23f7323058d71d4f46ce896ffc22dc18f428dde1fe3adcef29f36fbf89a4cdf6e14be3c2b79171f7610ab4528a6863bdd309d8fed41575c89a817df536b7316be42da9e5cac37358ff9608fa86de5857d7cd9631a0a1af642efadcfc58dc8014510dcd6b825e3bcd991036b1eee80352393179f4d8885c1df2a5843cd8dd73082ed052f732cfbcc5d3663599afbf3aa75a9992f43b0b521caa01df86bc74c3dd1a834959991feac141cd697703b4c875c8e758261c8b10c08515ad80aaafd3664703f479fd69150b6a3dbb0e5f6f2bd31187053d30e33a0dd633feb9b554b2f3e32992597e25316d005e3405dca520", "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"}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400)='/dev/kvm\x00', 0x0, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0xffffffffffffffff, @local, 0x2}, 0x1c) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r3, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, [0x7f]}) r4 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180)='/dev/rfkill\x00', 0x1ffeff, 0x0) ioctl$BLKZEROOUT(r4, 0x127f, &(0x7f0000000100)={0x140, 0x8d}) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) 14:11:34 executing program 1: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000000)={0x3e0, 0x4, 0x0, {0x0, 0x0, 0x23}}, 0x28) [ 294.833955] audit: type=1326 audit(1544796694.434:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=12421 comm="syz-executor3" exe="/root/syz-executor3" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45a4ba code=0xffff0000 [ 295.102115] kernel msg: ebtables bug: please report to author: entries_size too small [ 295.195188] cgroup: fork rejected by pids controller in /syz0 [ 399.654556] rcu: INFO: rcu_preempt self-detected stall on CPU [ 399.660626] rcu: 0-....: (10499 ticks this GP) idle=252/1/0x4000000000000002 softirq=20408/20408 fqs=5243 [ 399.670813] rcu: (t=10500 jiffies g=20865 q=4065) [ 399.675830] NMI backtrace for cpu 0 [ 399.679445] CPU: 0 PID: 12430 Comm: syz-executor2 Not tainted 4.20.0-rc6-next-20181214+ #171 [ 399.687998] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 399.697332] Call Trace: [ 399.699896] [ 399.702038] dump_stack+0x244/0x39d [ 399.705658] ? dump_stack_print_info.cold.1+0x20/0x20 [ 399.710849] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.716370] ? do_raw_spin_lock+0x14f/0x350 [ 399.720677] nmi_cpu_backtrace.cold.2+0x5c/0xa1 [ 399.725382] ? lapic_can_unplug_cpu.cold.27+0x3f/0x3f [ 399.730561] nmi_trigger_cpumask_backtrace+0x1e8/0x22a [ 399.735826] arch_trigger_cpumask_backtrace+0x14/0x20 [ 399.741004] rcu_dump_cpu_stacks+0x16f/0x1bc [ 399.745402] print_cpu_stall.cold.70+0x218/0x40a [ 399.750144] ? print_other_cpu_stall+0x160/0x160 [ 399.754886] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.760409] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.765965] ? do_trace_rcu_torture_read+0x10/0x10 [ 399.770883] ? __this_cpu_preempt_check+0x1c/0x20 [ 399.775711] ? rcu_preempt_need_deferred_qs+0x71/0x190 [ 399.780969] ? __lock_is_held+0xb5/0x140 [ 399.785016] ? __rcu_read_lock+0x90/0x90 [ 399.789057] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.794577] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.800110] ? check_preemption_disabled+0x48/0x280 [ 399.805120] rcu_check_callbacks+0xf3b/0x13f0 [ 399.809610] ? rcutree_dead_cpu+0x10/0x10 [ 399.813748] ? lock_downgrade+0x900/0x900 [ 399.817886] ? lock_release+0x9b1/0xa00 [ 399.821846] ? graph_lock+0x270/0x270 [ 399.825634] ? graph_lock+0x270/0x270 [ 399.829424] ? graph_lock+0x270/0x270 [ 399.833212] ? graph_lock+0x270/0x270 [ 399.836998] ? find_held_lock+0x36/0x1c0 [ 399.841047] ? cpuacct_account_field+0x219/0x3d0 [ 399.845800] ? graph_lock+0x270/0x270 [ 399.849592] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 399.855118] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.860658] ? check_preemption_disabled+0x48/0x280 [ 399.865675] ? trace_hardirqs_off+0xb8/0x310 [ 399.870071] ? __lock_is_held+0xb5/0x140 [ 399.874118] ? trace_hardirqs_on+0x310/0x310 [ 399.878512] ? check_preemption_disabled+0x48/0x280 [ 399.883567] ? raise_softirq+0x199/0x420 [ 399.887617] ? raise_softirq_irqoff+0x2e0/0x2e0 [ 399.892274] ? account_system_index_time+0x333/0x5d0 [ 399.897363] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 399.903001] ? check_preemption_disabled+0x48/0x280 [ 399.908014] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 399.913586] ? hrtimer_run_queues+0x9a/0x400 [ 399.917998] ? run_local_timers+0x19b/0x230 [ 399.922310] ? timer_clear_idle+0x90/0x90 [ 399.926447] ? irqtime_account_process_tick.isra.6+0x35b/0x490 [ 399.932405] ? account_process_tick+0x282/0x350 [ 399.937065] update_process_times+0x2d/0x70 [ 399.941407] tick_sched_handle+0x9f/0x180 [ 399.945552] tick_sched_timer+0x45/0x130 [ 399.949602] __hrtimer_run_queues+0x41c/0x10d0 [ 399.954172] ? tick_sched_do_timer+0x1a0/0x1a0 [ 399.958856] ? hrtimer_start_range_ns+0xe00/0xe00 [ 399.963694] ? pvclock_read_flags+0x160/0x160 [ 399.968173] ? trace_hardirqs_on+0x310/0x310 [ 399.972570] ? kvm_clock_read+0x18/0x30 [ 399.976529] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 399.981528] ? ktime_get_update_offsets_now+0x3b3/0x540 [ 399.986879] ? do_timer+0x50/0x50 [ 399.990326] ? rwlock_bug.part.2+0x90/0x90 [ 399.994554] ? trace_hardirqs_on+0x310/0x310 [ 399.998951] ? rcu_softirq_qs+0x20/0x20 [ 400.002913] hrtimer_interrupt+0x313/0x780 [ 400.007150] smp_apic_timer_interrupt+0x1a1/0x760 [ 400.011981] ? smp_reschedule_interrupt+0x109/0x650 [ 400.016984] ? smp_call_function_single_interrupt+0x650/0x650 [ 400.022862] ? interrupt_entry+0xb5/0xc0 [ 400.026912] ? trace_hardirqs_off_caller+0xbb/0x310 [ 400.031920] ? trace_hardirqs_off_caller+0xbb/0x310 [ 400.036927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 400.041759] ? trace_hardirqs_on_caller+0x310/0x310 [ 400.046761] ? trace_hardirqs_on_caller+0x310/0x310 [ 400.051761] ? task_prio+0x50/0x50 [ 400.055287] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 400.060817] ? check_preemption_disabled+0x48/0x280 [ 400.065823] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 400.070661] apic_timer_interrupt+0xf/0x20 [ 400.074875] [ 400.077107] RIP: 0010:_raw_spin_unlock_irqrestore+0xaf/0xd0 [ 400.082814] Code: b0 40 72 89 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 75 28 48 83 3d 28 f2 90 01 00 74 15 48 89 df 57 9d <0f> 1f 44 00 00 eb ad e8 7c 2e 1f f9 eb bb 0f 0b 0f 0b e8 2a 09 e3 [ 400.101706] RSP: 0018:ffff88818600f6c0 EFLAGS: 00000282 ORIG_RAX: ffffffffffffff13 [ 400.109841] RAX: dffffc0000000000 RBX: 0000000000000282 RCX: 1ffff1103142b54c [ 400.117094] RDX: 1ffffffff12e4816 RSI: 0000000000000000 RDI: 0000000000000282 [ 400.124352] RBP: ffff88818600f6d0 R08: ffff88818a15aa60 R09: 0000000000000006 [ 400.131617] R10: 0000000000000000 R11: ffff88818a15a1c0 R12: ffff8881ca682980 [ 400.138872] R13: ffffc90012222870 R14: 1ffff11030c01eff R15: ffff8881ca682900 [ 400.146208] snd_seq_cell_alloc.isra.1+0x5a3/0x740 [ 400.151137] ? seq_copy_in_kernel+0x60/0x60 [ 400.155531] ? wake_up_q+0x100/0x100 [ 400.159239] ? find_held_lock+0x36/0x1c0 [ 400.163288] ? mark_held_locks+0xc7/0x130 [ 400.167430] snd_seq_event_dup+0x194/0xaa0 [ 400.171660] ? lockdep_hardirqs_on+0x3bb/0x5b0 [ 400.176276] ? trace_hardirqs_on+0xbd/0x310 [ 400.180594] ? trace_hardirqs_off_caller+0x310/0x310 [ 400.185728] ? snd_seq_cell_free+0x5d0/0x5d0 [ 400.190133] ? _raw_spin_unlock_irqrestore+0x6d/0xd0 [ 400.195225] snd_seq_client_enqueue_event+0x25b/0x510 [ 400.200401] ? snd_seq_deliver_event+0x950/0x950 [ 400.205142] ? snd_seq_write+0x581/0x8d0 [ 400.209192] snd_seq_write+0x3f1/0x8d0 [ 400.213068] ? snd_seq_client_enqueue_event+0x510/0x510 [ 400.218419] ? snd_seq_client_enqueue_event+0x510/0x510 [ 400.223814] __vfs_write+0x119/0xab0 [ 400.227531] ? common_file_perm+0x236/0x7f0 [ 400.231836] ? __fget_light+0x2e9/0x430 [ 400.235793] ? snd_seq_client_enqueue_event+0x510/0x510 [ 400.241146] ? kernel_read+0x120/0x120 [ 400.245017] ? apparmor_path_rmdir+0x30/0x30 [ 400.249410] ? posix_ktime_get_ts+0x15/0x20 [ 400.253717] ? trace_hardirqs_off_caller+0x310/0x310 [ 400.258809] ? __bpf_trace_preemptirq_template+0x30/0x30 [ 400.264244] ? apparmor_file_permission+0x24/0x30 [ 400.269073] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 400.274592] ? security_file_permission+0x2bc/0x320 [ 400.279602] ? rw_verify_area+0x118/0x360 [ 400.283742] vfs_write+0x1fc/0x580 [ 400.287279] ksys_write+0x101/0x260 [ 400.290898] ? __ia32_sys_read+0xb0/0xb0 [ 400.294949] ? trace_hardirqs_off_caller+0x310/0x310 [ 400.300049] __x64_sys_write+0x73/0xb0 [ 400.303936] do_syscall_64+0x1b9/0x820 [ 400.307813] ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe [ 400.313161] ? syscall_return_slowpath+0x5e0/0x5e0 [ 400.318071] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 400.322942] ? trace_hardirqs_on_caller+0x310/0x310 [ 400.327954] ? prepare_exit_to_usermode+0x291/0x3b0 [ 400.332958] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 400.337797] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 400.342976] RIP: 0033:0x457659 [ 400.346161] Code: fd b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b3 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 400.365053] RSP: 002b:00007fe2349a7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 400.372750] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000457659 [ 400.380012] RDX: 00000000ffffff76 RSI: 0000000020000000 RDI: 0000000000000005 [ 400.387270] RBP: 000000000072bf00 R08: 0000000000000000 R09: 0000000000000000 [ 400.394531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fe2349a86d4 [ 400.401785] R13: 00000000004c61e5 R14: 00000000004dadd8 R15: 00000000ffffffff