[ 33.765554] kauditd_printk_skb: 9 callbacks suppressed [ 33.765561] audit: type=1800 audit(1555683592.930:33): pid=6923 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rc.local" dev="sda1" ino=2465 res=0 [ 33.792982] audit: type=1800 audit(1555683592.930:34): pid=6923 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op="collect_data" cause="failed(directio)" comm="startpar" name="rmnologin" dev="sda1" ino=2456 res=0 Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 38.634004] random: sshd: uninitialized urandom read (32 bytes read) [ 38.811611] audit: type=1400 audit(1555683597.980:35): avc: denied { map } for pid=7095 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 [ 38.855926] random: sshd: uninitialized urandom read (32 bytes read) [ 39.550613] random: sshd: uninitialized urandom read (32 bytes read) Warning: Permanently added '10.128.0.215' (ECDSA) to the list of known hosts. [ 45.170671] random: sshd: uninitialized urandom read (32 bytes read) 2019/04/19 14:20:04 fuzzer started [ 45.374582] audit: type=1400 audit(1555683604.540:36): avc: denied { map } for pid=7104 comm="syz-fuzzer" path="/root/syz-fuzzer" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 [ 47.012428] random: cc1: uninitialized urandom read (8 bytes read) 2019/04/19 14:20:06 dialing manager at 10.128.0.105:36703 2019/04/19 14:20:06 syscalls: 2434 2019/04/19 14:20:06 code coverage: enabled 2019/04/19 14:20:06 comparison tracing: ioctl(KCOV_TRACE_CMP) failed: invalid argument 2019/04/19 14:20:06 extra coverage: extra coverage is not supported by the kernel 2019/04/19 14:20:06 setuid sandbox: enabled 2019/04/19 14:20:06 namespace sandbox: enabled 2019/04/19 14:20:06 Android sandbox: /sys/fs/selinux/policy does not exist 2019/04/19 14:20:06 fault injection: enabled 2019/04/19 14:20:06 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/04/19 14:20:06 net packet injection: enabled 2019/04/19 14:20:06 net device setup: enabled [ 48.781890] random: crng init done 14:22:10 executing program 5: semget(0xffffffffffffffff, 0x0, 0x0) add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0) timer_create(0x0, 0x0, 0x0) umount2(0x0, 0x0) timer_settime(0x0, 0x0, 0x0, 0x0) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 14:22:10 executing program 0: r0 = socket$inet(0x10, 0x3, 0x6) sendmsg(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f000000d000)=[{&(0x7f0000000000)="4c0000001200ff09fffefd956fa283b724a6008000000000000000683540150024001d001fc41180b598bc593ab6821148a730de33a49868c62b2ca654a6613b6aabf35d0f1cbc882b079881", 0x4c}], 0x1}, 0x0) 14:22:10 executing program 2: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cachefiles\x00', 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) syz_open_dev$cec(&(0x7f0000000100)='/dev/cec#\x00', 0xffffffffffffffff, 0x2) openat$vnet(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-net\x00', 0x2, 0x0) fanotify_init(0x0, 0x0) openat$vhci(0xffffffffffffff9c, &(0x7f0000000300)='/dev/vhci\x00', 0x0) unshare(0x400) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) 14:22:10 executing program 3: r0 = socket$pptp(0x18, 0x1, 0x2) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(r1, r0) 14:22:10 executing program 4: fdatasync(0xffffffffffffff9c) socket$inet6(0xa, 0x1000000000002, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000abe000)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x4800) r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) r1 = socket$inet_dccp(0x2, 0x6, 0x0) listen(r0, 0x9) ioctl$DRM_IOCTL_GET_STATS(0xffffffffffffffff, 0x80f86406, &(0x7f0000000140)=""/79) connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10) r2 = accept(r0, 0x0, &(0x7f0000000080)=0xfe0f) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4) sendmmsg(r1, &(0x7f0000005700)=[{{&(0x7f0000003900)=@pptp, 0x80, &(0x7f0000003b80), 0x3a5, &(0x7f0000003bc0)}}], 0x3a6, 0x0) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000100)='erspan0\x00', 0xfc) sendmmsg(r1, &(0x7f000000a080)=[{{&(0x7f0000005440)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2, {0xa, 0x0, 0x0, @ipv4={[], [], @local}}}}, 0x80, &(0x7f0000005640)=[{&(0x7f00000097c0)="bf", 0x1}], 0x1, 0x0, 0x0, 0x1}}], 0x1, 0x0) 14:22:10 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f000000aff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) chdir(&(0x7f0000cd2ff8)='./file0\x00') mkdir(&(0x7f0000000300)='./file0\x00', 0x0) mkdir(&(0x7f00000001c0)='./file1\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000280)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}]}) [ 170.989397] audit: type=1400 audit(1555683730.150:37): avc: denied { map } for pid=7120 comm="syz-executor.0" path="/sys/kernel/debug/kcov" dev="debugfs" ino=13813 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 171.285628] IPVS: ftp: loaded support on port[0] = 21 [ 171.387979] IPVS: ftp: loaded support on port[0] = 21 [ 171.454277] chnl_net:caif_netlink_parms(): no params data found [ 171.507362] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.514407] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.521630] device bridge_slave_0 entered promiscuous mode [ 171.533861] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.540327] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.547160] device bridge_slave_1 entered promiscuous mode [ 171.570931] IPVS: ftp: loaded support on port[0] = 21 [ 171.576681] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 171.607036] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 171.658993] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 171.666714] team0: Port device team_slave_0 added [ 171.674955] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 171.682669] team0: Port device team_slave_1 added [ 171.687723] chnl_net:caif_netlink_parms(): no params data found [ 171.704159] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 171.716356] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 171.782655] device hsr_slave_0 entered promiscuous mode [ 171.820333] device hsr_slave_1 entered promiscuous mode [ 171.878470] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 171.890688] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.897098] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.904902] device bridge_slave_0 entered promiscuous mode [ 171.911910] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 171.918668] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.927599] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.934112] IPVS: ftp: loaded support on port[0] = 21 [ 171.934873] device bridge_slave_1 entered promiscuous mode [ 171.966467] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 172.003541] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 172.055413] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 172.062779] team0: Port device team_slave_0 added [ 172.085840] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 172.093301] team0: Port device team_slave_1 added [ 172.098710] chnl_net:caif_netlink_parms(): no params data found [ 172.107095] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 172.117508] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.124007] bridge0: port 2(bridge_slave_1) entered forwarding state [ 172.131230] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.137623] bridge0: port 1(bridge_slave_0) entered forwarding state [ 172.145207] IPVS: ftp: loaded support on port[0] = 21 [ 172.166184] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 172.232601] device hsr_slave_0 entered promiscuous mode [ 172.280451] device hsr_slave_1 entered promiscuous mode [ 172.324236] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 172.332680] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 172.417887] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.424406] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.431435] device bridge_slave_0 entered promiscuous mode [ 172.438219] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.444644] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.451598] device bridge_slave_1 entered promiscuous mode [ 172.493006] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.500928] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.510453] IPVS: ftp: loaded support on port[0] = 21 [ 172.520219] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 172.533613] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 172.551287] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 172.572919] chnl_net:caif_netlink_parms(): no params data found [ 172.644980] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 172.652275] team0: Port device team_slave_0 added [ 172.715191] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 172.722652] team0: Port device team_slave_1 added [ 172.758097] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 172.765742] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 172.785265] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.792001] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.798931] device bridge_slave_0 entered promiscuous mode [ 172.810942] chnl_net:caif_netlink_parms(): no params data found [ 172.836411] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.843286] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.850603] device bridge_slave_1 entered promiscuous mode [ 172.893638] device hsr_slave_0 entered promiscuous mode [ 172.930827] device hsr_slave_1 entered promiscuous mode [ 172.996969] 8021q: adding VLAN 0 to HW filter on device bond0 [ 173.019026] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 173.054523] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.061361] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.068210] device bridge_slave_0 entered promiscuous mode [ 173.076005] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 173.086147] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 173.098742] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 173.108172] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 173.117484] 8021q: adding VLAN 0 to HW filter on device bond0 [ 173.127278] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.133985] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.141572] device bridge_slave_1 entered promiscuous mode [ 173.156148] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 173.175317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 173.183490] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 173.192142] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 173.199324] team0: Port device team_slave_0 added [ 173.205532] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 173.213058] team0: Port device team_slave_1 added [ 173.263387] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 173.285246] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 173.292831] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 173.301729] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 173.307798] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.323915] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 173.334067] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 173.341738] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 173.354928] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 173.361366] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.367525] chnl_net:caif_netlink_parms(): no params data found [ 173.384187] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 173.391439] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 173.411749] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 173.434442] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 173.463910] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 173.471491] team0: Port device team_slave_0 added [ 173.477162] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 173.484658] team0: Port device team_slave_1 added [ 173.523899] device hsr_slave_0 entered promiscuous mode [ 173.580331] device hsr_slave_1 entered promiscuous mode [ 173.620758] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 173.628678] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.636334] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.642725] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.650682] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 173.661490] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 173.677657] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 173.685263] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 173.693439] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 173.701516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 173.709474] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 173.717290] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.723663] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.730652] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 173.738293] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.745943] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.752323] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.760270] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 173.767264] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 173.789510] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 173.804729] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 173.814329] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 173.826763] 8021q: adding VLAN 0 to HW filter on device bond0 [ 173.838715] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.845231] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.852170] device bridge_slave_0 entered promiscuous mode [ 173.866677] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 173.880264] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 173.890776] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 173.897822] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.905205] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.912246] device bridge_slave_1 entered promiscuous mode [ 173.944274] device hsr_slave_0 entered promiscuous mode [ 173.990568] device hsr_slave_1 entered promiscuous mode [ 174.031926] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 174.039158] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 174.048790] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.056706] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.064452] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 174.072745] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 174.080417] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.086791] bridge0: port 2(bridge_slave_1) entered forwarding state [ 174.093931] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 174.105317] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 174.129810] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 174.139836] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 174.148918] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 174.159279] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 174.173006] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 174.181165] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.188795] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.198836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 174.206637] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 174.214474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 174.224025] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 174.244531] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 174.254785] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 174.263847] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 174.271535] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 174.278860] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 174.289120] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 174.297727] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 174.304746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 174.325928] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 174.332936] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 174.343344] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 174.352516] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 174.358582] 8021q: adding VLAN 0 to HW filter on device team0 [ 174.366284] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 174.386832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.395055] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.403573] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 174.418418] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 174.425887] team0: Port device team_slave_0 added [ 174.433230] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 174.442348] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 174.449765] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 174.459706] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 174.467601] team0: Port device team_slave_1 added [ 174.473182] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 174.481339] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 174.488847] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.495220] bridge0: port 1(bridge_slave_0) entered forwarding state [ 174.503770] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.511505] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.519537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 174.528862] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 174.547063] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.555355] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 174.563271] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 174.572279] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 174.582412] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 174.590938] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 174.598401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 174.606320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 174.614359] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.620724] bridge0: port 2(bridge_slave_1) entered forwarding state [ 174.629281] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 174.653718] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 174.661173] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 174.669292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 174.677903] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 174.704226] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 174.710811] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 174.764236] device hsr_slave_0 entered promiscuous mode [ 174.800334] device hsr_slave_1 entered promiscuous mode [ 174.861333] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 174.869527] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 174.881132] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 174.890960] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 174.900940] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 174.914067] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 174.927081] 8021q: adding VLAN 0 to HW filter on device bond0 [ 174.937831] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 174.945730] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.953781] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.961625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.969145] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.976944] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 174.989812] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 175.001807] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 175.009339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 175.020846] 8021q: adding VLAN 0 to HW filter on device bond0 [ 175.034240] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 175.043327] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 175.053021] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 175.060376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 175.067952] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 175.077105] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready [ 175.088527] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 175.098713] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 175.105371] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 175.116676] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 175.132306] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 175.144063] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 175.152413] 8021q: adding VLAN 0 to HW filter on device team0 [ 175.166668] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 175.183913] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 175.191613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 175.198556] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 175.205670] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready 14:22:14 executing program 2: keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000080)={0x0, 0x0, 0x8000}, 0x0, &(0x7f0000000200)="fee7cacd8c4f2aa8777e3834887ef50f9c18bcd4929315bdb58635ff64d163dfed", 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendmsg$nl_route_sched(r0, 0x0, 0x0) [ 175.215660] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 175.222277] 8021q: adding VLAN 0 to HW filter on device team0 [ 175.233446] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 175.262659] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 175.270734] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 175.278623] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 175.303914] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.310358] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.328354] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 175.345942] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 175.359761] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'. [ 175.369223] bridge0: port 1(bridge_slave_0) entered blocking state [ 175.375615] bridge0: port 1(bridge_slave_0) entered forwarding state [ 175.387160] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready 14:22:14 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x119000}) syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x9c, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0) ioctl$KVM_NMI(r3, 0xae9a) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vga_arbiter\x00', 0x0, 0x0) openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 175.408009] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 175.424122] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 175.431567] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 175.439216] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 14:22:14 executing program 2: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x0, 0x0) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, 0x0) ioctl$KDENABIO(0xffffffffffffffff, 0x4b36) ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, 0x0) ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, 0x0) semget$private(0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0) setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) [ 175.467878] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 175.483112] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 175.494396] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.500806] bridge0: port 2(bridge_slave_1) entered forwarding state [ 175.508376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 175.516792] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 175.524583] bridge0: port 2(bridge_slave_1) entered blocking state [ 175.530993] bridge0: port 2(bridge_slave_1) entered forwarding state [ 175.543223] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/l1tf.html for details. [ 175.551015] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 175.573923] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 175.592350] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 175.601057] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready 14:22:14 executing program 2: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 175.625318] 8021q: adding VLAN 0 to HW filter on device bond0 [ 175.636548] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 175.668952] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 175.689133] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 175.697808] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 175.708579] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 175.720892] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 175.738696] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 175.749373] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 175.759979] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready 14:22:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000040)="11dc86055e0bceec7be070") ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000001a40)={"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"}) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000240)={"1635b40580458afc87854e97dbb13eb0df93636f5a8428cb0efea59f647dab5f06f6dbf7bbfdb991381bbbb3ef10b0c18679d3aac6ce023bb2ff39f4ebfb8ba9f8c21fa0419d0406097cd53f207a774cb5c34a1d3f647fd5ca3ff366c9e8d246d551050422e51cd72c0d4dfe22fb448b13879443989250d246f602df82ba3cf341ecc226d5e38ac796fbc54a36b938f2531fa3547bdf0da7f3b91e54343a62d78b8dc8350264f5f7229a41326c0af337e50dae062d140ecf235a013a4cee9938b6e67cfd7bce3cb5ed8eb1bd1952ee3c58959ad738b3225b3adb3404dfe6771be2f3ca2c591b1f4944fde037dec3be423acc977caa1efc0e32b3ba8a978e7b3506455bfcae1cdda0dd04848341be88850217049b602154b6ff7131e46f3778b900399b50438a881057d020b2da5761acbf1f096e7daabb12cced9216d58c86f7589971bc180ed6818662bd1b2364909b4576e0f388a4ac60672ff288f626a5f8bd8a9b9facac526f7f02a84f26b445fdd08a685a3b943939c0654a6a7f174e78681b0aa65f04a3280155cef894665eae394b92629f26444de70bf698680474b292da7c3f0298f4d3e47a6d73bb856067e3f3728ac026dadb38b1cb8c9ea61d90c7b2e43d287b54c63110a0a94497702c80c0dc5865dd05112974a70736a55bb4a152cec048a3f6ab4da880fc3e134952a6934eaf5224f5e59d1e60f68b45a8feb0257a41cc298e08dbe28cd912c9b2ce8415e23772cbc4a61f513c5935c0c0c8184a1dcee1ee10d0248854558ec9eb9a4f7a302ce0ff411dcf67683be1d6372395b70862e5ade629ac55573581a15e8eff4b8057db4af3deea70590a66f149a7d0fa7c603813a133e5b6c7cd3934d7848b20faf623d578616e25a20dccd2134bf3ac822457f52572557c183a7a30d9d4f13bc5d074623f56283a4ab9f3200f577158ebd3ffa42d4dc9bd4b1713df512976dcf7bba3816ebf12d8e1365c8dcb36b8e8f79570dcfd06e885afee88e23130175bf67dd0794e9abc33f02263818bb21942e6b13cefa49b0deebfdec06e97aed344a6499f564be9656bfdb537a0ebd4df6ec85113481b1880de51cc017f7d8e0c5e2ba855daf9b162dd1dd9c8ab0168b400135d05ae81b134d00e56ac23fc185db221558204494bab598d333c06e5cd8d19a78a480049861baf9e47ffa01872f02c33b281e2bc19dd66e0efc3fdd665d35a482e73b8ebd1e36ff39ac8ef774cbed595dc828cc9a0a5179a3704b2eed7be27713d81ace5cf318ed87c642e7ed36afc1affce1308f25fe792eec60127316e63f7dede4be4c6b8e6566d1d84bb55cd514c7478ac04957dbc45413eb8d80eb4127ca368f6f1edc1ba2807eba18b9cc121423329a916be6b33ef2f06d75b994b2201568274a24ff08a2c8489c230c4fdaba586d8813d8ca7048727e235202a"}) [ 175.773352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 175.781810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 175.789837] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 175.798518] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 175.806973] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 175.819376] IPv6: ADDRCONF(NETDEV_UP): veth1: link is not ready [ 175.828105] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 175.848601] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 175.856749] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 175.865914] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready 14:22:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000000)={0x1, 0x0, @pic={0x0, 0x0, 0x7}}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8}) openat$sequencer2(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 175.873466] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 175.881183] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 175.888245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 175.897108] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 175.913012] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 175.927392] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 175.938505] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 175.969135] 8021q: adding VLAN 0 to HW filter on device team0 [ 175.996638] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 176.029739] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 176.047373] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 176.056652] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 176.065661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 176.073840] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 176.084532] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bridge: link is not ready [ 176.102899] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 176.140344] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 176.146451] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 176.156326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 176.164633] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 176.172855] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.179238] bridge0: port 1(bridge_slave_0) entered forwarding state [ 176.186210] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 176.195005] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 176.203070] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 176.212595] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 176.218621] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 176.236292] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bridge: link is not ready [ 176.246502] IPv6: ADDRCONF(NETDEV_UP): veth0_to_bond: link is not ready [ 176.255002] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 176.263136] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 176.271192] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.277531] bridge0: port 2(bridge_slave_1) entered forwarding state [ 176.285939] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 176.299411] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 176.308500] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 176.322669] IPv6: ADDRCONF(NETDEV_UP): veth1_to_bond: link is not ready [ 176.331076] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 176.361498] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 176.370009] IPv6: ADDRCONF(NETDEV_UP): veth0_to_team: link is not ready [ 176.380764] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 176.387591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 176.397164] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 176.413366] IPv6: ADDRCONF(NETDEV_UP): veth1_to_team: link is not ready [ 176.422191] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 176.435653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 176.443968] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 176.454596] IPv6: ADDRCONF(NETDEV_UP): veth0_to_hsr: link is not ready [ 176.467236] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 176.478892] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 176.494334] IPv6: ADDRCONF(NETDEV_UP): veth1_to_hsr: link is not ready [ 176.501883] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 176.509305] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 176.524132] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 176.530779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 176.546959] IPv6: ADDRCONF(NETDEV_UP): vxcan1: link is not ready [ 176.558657] 8021q: adding VLAN 0 to HW filter on device batadv0 14:22:16 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='yeah\x00', 0x5) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) 14:22:16 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x88) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") bind$inet6(r0, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @empty}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) 14:22:16 executing program 0: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) getsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x4, 0x0, &(0x7f0000000040)) 14:22:16 executing program 3: r0 = socket$inet6(0xa, 0x4000000080002, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000000), 0x2bd) [ 177.429543] audit: type=1400 audit(1555683736.590:38): avc: denied { name_bind } for pid=7246 comm="syz-executor.4" src=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 [ 177.457361] audit: type=1400 audit(1555683736.590:39): avc: denied { node_bind } for pid=7246 comm="syz-executor.4" src=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:node_t:s0 tclass=dccp_socket permissive=1 14:22:16 executing program 4: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='security.capability\x00', 0x0, 0x0, 0x0) [ 177.470663] hrtimer: interrupt took 25906 ns [ 177.480999] audit: type=1400 audit(1555683736.590:40): avc: denied { name_connect } for pid=7246 comm="syz-executor.4" dest=20000 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:port_t:s0 tclass=dccp_socket permissive=1 [ 177.517779] dccp_close: ABORT with 1061 bytes unread 14:22:16 executing program 1: getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x0, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) r0 = eventfd2(0x0, 0x0) read$eventfd(r0, &(0x7f00000000c0), 0x8) write(r0, &(0x7f00000003c0)="4dc76f5b0849be2e", 0x8) 14:22:16 executing program 0: unshare(0x20400) r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000040)={0xbd, 0x4, [0x0]}) 14:22:16 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f0000003840)=[{{0x0, 0xfffffffffffffcf5, &(0x7f0000002b80)=[{&(0x7f0000000280)=""/190, 0xbe}], 0x1}}], 0x1, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='comm\x00') preadv(r0, &(0x7f00000017c0), 0x1d0, 0x1f000000) 14:22:16 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000001c0012000c000100626f6e64000000000c00020008000d0005000000"], 0x1}}, 0x0) 14:22:16 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0xb) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x20000806, &(0x7f0000001180)={0x2, 0x4e23, @local}, 0x10) 14:22:16 executing program 4: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x0, 0x0) r1 = syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x1f0, 0x0) ioctl$FICLONE(r0, 0x40049409, r1) [ 177.619242] overlayfs: fs on './file0' does not support file handles, falling back to index=off. [ 177.629135] overlayfs: upper fs does not support tmpfile. [ 177.634935] overlayfs: upper fs does not support xattr. [ 177.644744] audit: type=1400 audit(1555683736.810:41): avc: denied { associate } for pid=7253 comm="syz-executor.1" name="file0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 14:22:16 executing program 5: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x1, 0x4, 0x209e20, 0x8000000001}, 0x3c) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x820000, 0x0, 0x0, [0x0, 0x7f00]}, 0x2c) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r0, &(0x7f00000000c0), 0x0}, 0x18) 14:22:16 executing program 3: r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) syz_open_dev$sndseq(0x0, 0x0, 0x0) read(r0, &(0x7f0000000240)=""/4096, 0x1000) 14:22:16 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000340)='tls\x00', 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000100), 0x28) sendto$inet6(r0, &(0x7f00000005c0), 0xfffffffffffffee0, 0x0, 0x0, 0xb6) 14:22:16 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_mount_image$gfs2(&(0x7f0000000080)='gfs2\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 14:22:16 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$CAPI_GET_SERIAL(r0, 0xc0044308, 0x0) r1 = syz_open_dev$dmmidi(0x0, 0x0, 0x0) shmget$private(0x0, 0x4000, 0x0, &(0x7f0000b60000/0x4000)=nil) syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x1000, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) get_robust_list(0x0, &(0x7f0000000240)=&(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)}, &(0x7f0000000280)=0x18) r2 = shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x0) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000300)={0x0, 0x5}, 0x0) ioctl$VIDIOC_DBG_S_REGISTER(r1, 0x4038564f, &(0x7f0000000680)={{0x0, @addr=0x4c}, 0x8, 0x1}) keyctl$invalidate(0x15, 0x0) shmdt(r2) syz_open_dev$vcsa(&(0x7f0000000640)='/dev/vcsa#\x00', 0x2, 0x200) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x10080a102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 14:22:17 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f3188b070") r2 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_buf(r2, 0x107, 0x17, &(0x7f0000651000)=""/240, &(0x7f0000ca5ffc)=0xf0) setsockopt$inet_tcp_int(r0, 0x6, 0xa, &(0x7f00000005c0)=0x16c, 0x3e3) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0xffffffffffffff44) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x0, @local}}, 0x0, 0x2, 0xd6, "a77760f5a7645bc43c241d69912dda0c63c2a66726f8cfafd6c8fe2c98de7ba44947a79015f0fa57917cb62a93987a938fdedfce7bbba4fec2d8a09c41fb233245f2604b9e07b8ab69ec15ef2818a179"}, 0xd8) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) pipe(0x0) epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0xffffff10) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xcd, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xfc4b}], 0x1, &(0x7f0000000200)=""/20, 0x3d1}, 0x0) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x0, 0x0) r3 = socket$unix(0x1, 0x0, 0x0) write$binfmt_script(r3, 0x0, 0xfffffffffffffe79) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_BT_VOICE(0xffffffffffffffff, 0x112, 0xb, 0x0, 0x0) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) ioctl$sock_bt_bnep_BNEPCONNDEL(0xffffffffffffffff, 0x400442c9, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x118e14d) socket$packet(0x11, 0x0, 0x300) getsockname(0xffffffffffffffff, 0x0, 0x0) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 177.856093] sched: DL replenish lagged too much 14:22:17 executing program 1: dup2(0xffffffffffffff9c, 0xffffffffffffffff) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) shmget(0x3, 0x1000, 0x600, &(0x7f0000001000/0x1000)=nil) 14:22:17 executing program 3: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045003, &(0x7f0000000080)=0x200000100000003) ioctl$int_in(r0, 0x800000c0045002, &(0x7f0000000100)) read$FUSE(r0, &(0x7f0000000140), 0xaa) [ 177.930739] gfs2: not a GFS2 filesystem 14:22:17 executing program 0: perf_event_open(&(0x7f0000000900)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$kcm(0x10, 0x800000000002, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="2e000000120081aee4520cecff0e00fa078b5bdb4cb904e473730e55cff26d1b0e001d800200000a5e510befccd7", 0x2e}], 0x1}, 0x0) 14:22:17 executing program 1: perf_event_open(&(0x7f0000000100)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000540)='coredump_filter\x00') ioctl$CAPI_GET_SERIAL(r0, 0xc0044308, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000340)='/dev/dmmidi#\x00', 0x0, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x40000000000009) syz_open_dev$video4linux(&(0x7f0000000000)='/dev/v4l-subdev#\x00', 0x1000, 0x0) ioctl$VIDIOC_DBG_S_REGISTER(r1, 0x4038564f, &(0x7f0000000680)={{0x0, @addr=0x4c}, 0x8, 0x1}) clone(0x4000, &(0x7f0000000380), 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa000000200000000, 0x800007f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x10080a102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount(0x0, &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 14:22:17 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_dev$sndtimer(&(0x7f0000000180)='/dev/snd/timer\x00', 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, 0x0) [ 178.059736] gfs2: not a GFS2 filesystem 14:22:17 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000200)="11dc8605730bceec7be070") clone(0x202, 0x0, 0x0, 0x0, 0x0) mknod(&(0x7f0000000080)='./file0\x00', 0x103c, 0x0) execve(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000000040)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) clone(0x100000100001ffb, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) kcmp(r1, r1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff) ptrace$setopts(0x4206, r1, 0x0, 0x0) r2 = gettid() tkill(r2, 0x1000000000016) 14:22:17 executing program 4: r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/checkreqprot\x00', 0x1, 0x0) ioctl$TCGETS2(0xffffffffffffffff, 0x802c542a, 0x0) pwritev(r0, &(0x7f0000002680)=[{&(0x7f0000001280)="12", 0x1}, {0x0}], 0x2, 0x0) 14:22:17 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40040, 0x0) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) getpgrp(0xffffffffffffffff) ptrace$poke(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, 0x0) setsockopt$IP_VS_SO_SET_DEL(0xffffffffffffffff, 0x0, 0x484, 0x0, 0x0) renameat(r0, &(0x7f0000000340)='./file0\x00', 0xffffffffffffffff, 0x0) 14:22:17 executing program 1: syz_mount_image$vfat(&(0x7f00000003c0)='vfat\x00', &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 14:22:17 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) getsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x4, 0x0, &(0x7f0000000040)) 14:22:17 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0x0, 0xffffffbf}}, &(0x7f0000003ff6)='OPL\x00', 0x1, 0xc3, &(0x7f000000cf3d)=""/195}, 0x48) dup2(r0, r1) [ 178.350198] FAT-fs (loop1): bogus number of reserved sectors [ 178.401811] FAT-fs (loop1): Can't find a valid FAT filesystem [ 178.481619] FAT-fs (loop1): bogus number of reserved sectors [ 178.487619] FAT-fs (loop1): Can't find a valid FAT filesystem [ 178.640318] protocol 88fb is buggy, dev hsr_slave_0 [ 178.645615] protocol 88fb is buggy, dev hsr_slave_1 14:22:17 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") r1 = syz_open_dev$video(&(0x7f0000000080)='/dev/video#\x00', 0x9, 0x0) ioctl$VIDIOC_S_FMT(r1, 0xc0d05605, &(0x7f00000000c0)={0x9, @raw_data="65959c3418b0a8484247524802000000fe7eadc4e5efe4eb08b2818231f0b171d01a6ccab9aa61f9334780ee00617fd51776eba2ff6638152706d334b8c317bd72cb367b00b738a668c1f265769a8b83bdfba7f2a6a533f765362117325765424a42ff769cc614819d4ffe8bb06797edd61780727c8acae9d1114979bc5a6df889dd78b39d1456720c394c7d690a6659812de9ef718772c8b725bccea7fa69346c281c827ab34639f139b818aeb4219bb23f6072e27fa590731d28c92807ba70d895fb32d01fb64a"}) 14:22:17 executing program 3: r0 = socket$inet(0x2, 0x3, 0x1c) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0ad401003c123f319bd070") r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x8daecf31cfd313da, 0x0) setsockopt$CAIFSO_REQ_PARAM(r1, 0x116, 0x80, &(0x7f0000000180)="785bd9adb7c54f6afe7ef65b9353047b5aaa7c6b640baf589520a61689ce519e4fbaaca1cca172263ff06a02054bf88367ae76034df82f1193c4336c1eaa660bfb9a58a6e1931d16ce152a908de116e9d4b42ee5022c92bdf4b52cfa7e39ea44af88f03523facb16fe515c45f42faa29676202e65e4b9854d6bea477c625511adc8efe93ae57b134f33a3fea1fa7995eb3f003af700b8777cd0f7f08a2647d902ecda84f47825483e5", 0xa9) syslog(0x3, &(0x7f00000000c0)=""/147, 0x2d3) 14:22:17 executing program 2: r0 = socket$inet(0x2, 0x3, 0x1c) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0ad401003c123f319bd070") syslog(0x3, &(0x7f00000000c0)=""/147, 0x37a8ec531be3c402) 14:22:17 executing program 4: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0) 14:22:17 executing program 0: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r0, &(0x7f0000000000)={{0x6, @rose}, [@rose, @rose, @bcast, @netrom, @bcast, @rose]}, 0x48) listen(r0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") 14:22:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000016ffc)=0xfffff7fffffffffd, 0x4) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000015000)=0x1004, 0x4) bind$inet(r1, &(0x7f0000008ff0)={0x2, 0x4e20, @multicast2}, 0x10) ioctl(0xffffffffffffffff, 0x0, 0x0) listen(r2, 0x0) 14:22:18 executing program 1: syz_emit_ethernet(0x0, 0x0, 0x0) openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video2\x00', 0x2, 0x0) r0 = socket$pppoe(0x18, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$pppoe(r0, &(0x7f00000004c0)={0x18, 0x0, {0x2, @link_local, 'ip6gre0\x00'}}, 0x1e) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x10, 0xffffffffffffffff, 0x0) dup3(r1, r0, 0x0) 14:22:18 executing program 5: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000003840)=[{{0x0, 0xfffffffffffffcf5, &(0x7f0000002b80)=[{&(0x7f0000000280)=""/190, 0xbe}], 0x1}}], 0x1, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='comm\x00') dup3(r0, r1, 0x0) preadv(r1, &(0x7f00000017c0), 0x1d0, 0x1f000000) 14:22:18 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/fib_triestat\x00') preadv(r0, &(0x7f0000000480), 0x2000000000000113, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) 14:22:18 executing program 4: mkdir(&(0x7f0000004080)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mount(&(0x7f0000000040)=@nullb='[d::]:/llb:\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000100)='ceph\x00', 0x0, 0x0) 14:22:18 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x1, 0x3, &(0x7f0000c91000)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x8, 0xffffffc5, 0x0, 0x0, 0xffffffffffffffff}}, &(0x7f0000e6bffc)='GPL\x00', 0x1, 0x333, &(0x7f000000d000)=""/153}, 0x3e) 14:22:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:18 executing program 1: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000040)='./file0\x00', 0x0) mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='bpf\x00', 0x0, 0x0) mkdir(&(0x7f00000000c0)='./file0/file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000001c0)='./file0\x00', 0x0, 0x8055, 0x0) mount$bpf(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0) r0 = accept(0xffffffffffffffff, &(0x7f0000000200)=@xdp, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180), 0x4) mount$bpf(0x20000000, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x5004, 0x0) gettid() umount2(&(0x7f0000000800)='./file0\x00', 0x0) 14:22:18 executing program 3: r0 = socket$inet6(0xa, 0x4000000080002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={[], [], @loopback}}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x10000000000001, &(0x7f0000000080)=0x1, 0x4) sendmmsg(r0, &(0x7f0000000240)=[{{0x0, 0x2, &(0x7f0000002d40), 0x2bc}}, {{0x0, 0x0, &(0x7f0000000040), 0x361, &(0x7f0000000140)}}], 0x40001ab, 0x0) 14:22:18 executing program 2: r0 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) r1 = dup(r0) write$cgroup_int(0xffffffffffffffff, 0x0, 0x5ba) r2 = gettid() read(r1, &(0x7f00000000c0)=""/156, 0x9c) flistxattr(0xffffffffffffffff, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000)) write$P9_RLOPEN(0xffffffffffffffff, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) write$P9_RSYMLINK(0xffffffffffffffff, 0x0, 0x0) tkill(r2, 0x1000000000016) 14:22:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000080)=ANY=[@ANYBLOB="1714240e4ef8f28cbb"]) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:18 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000240)={0x11}) [ 179.168356] libceph: connect [d::]:6789 error -101 [ 179.173954] libceph: mon0 [d::]:6789 connect error 14:22:18 executing program 0: r0 = epoll_create1(0x0) close(r0) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380)='/dev/ptmx\x00', 0x0, 0x0) ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040)) 14:22:18 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket(0x8000000000000010, 0x802, 0x0) write(r1, &(0x7f0000000080)="24000000200005fb006b000420edea20021900080110b5000010ffea08000100050000b7", 0x24) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001680), &(0x7f00000016c0)=0xc) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001700), &(0x7f0000001740)=0xc) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000029c0)={0x0, 0xffffffffffffffff, 0x0, 0xf, &(0x7f0000002980)='wlan0keyring!!\x00', 0xffffffffffffffff}, 0x30) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000002a00)={{{@in6=@ipv4={[], [], @empty}, @in6=@local}}, {{@in6=@loopback}, 0x0, @in=@initdev}}, &(0x7f0000002b00)=0xe8) getgid() getgid() gettid() getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000005840)={{{@in=@initdev, @in6}}, {{@in=@initdev}, 0x0, @in=@loopback}}, &(0x7f0000005940)=0xe8) gettid() getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f00000070c0)={{{@in=@loopback}}, {{@in6=@dev}, 0x0, @in=@initdev}}, &(0x7f00000071c0)=0xe8) 14:22:18 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff0200000000000000000100000073"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 14:22:18 executing program 0: r0 = socket$inet6(0xa, 0x4000000080002, 0x0) connect$inet6(r0, &(0x7f0000005d00)={0xa, 0x0, 0x0, @mcast1, 0x2}, 0x1c) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000080)=0x8000000801, 0x4) sendmmsg(r0, &(0x7f0000000240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) [ 179.996288] libceph: connect [d::]:6789 error -101 [ 180.005537] libceph: mon0 [d::]:6789 connect error 14:22:19 executing program 4: 14:22:19 executing program 1: [ 180.071021] libceph: connect [d::]:6789 error -101 [ 180.076071] libceph: mon0 [d::]:6789 connect error 14:22:19 executing program 5: 14:22:19 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff0200000000000000000100000073"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) 14:22:19 executing program 0: 14:22:19 executing program 3: 14:22:19 executing program 5: 14:22:19 executing program 0: 14:22:19 executing program 4: 14:22:19 executing program 1: 14:22:19 executing program 3: 14:22:19 executing program 4: 14:22:19 executing program 0: 14:22:19 executing program 5: r0 = socket$pppoe(0x18, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r1, r0, 0x0) 14:22:19 executing program 2: 14:22:19 executing program 3: 14:22:19 executing program 1: 14:22:19 executing program 4: 14:22:19 executing program 0: 14:22:19 executing program 2: 14:22:19 executing program 5: r0 = socket$pppoe(0x18, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r1, r0, 0x0) 14:22:19 executing program 3: 14:22:19 executing program 1: 14:22:19 executing program 4: 14:22:19 executing program 0: 14:22:19 executing program 0: 14:22:19 executing program 3: 14:22:19 executing program 1: 14:22:19 executing program 4: 14:22:19 executing program 2: 14:22:19 executing program 5: 14:22:19 executing program 3: 14:22:19 executing program 2: 14:22:19 executing program 1: 14:22:19 executing program 0: 14:22:19 executing program 4: 14:22:19 executing program 1: 14:22:19 executing program 5: 14:22:19 executing program 3: 14:22:19 executing program 2: 14:22:20 executing program 0: 14:22:20 executing program 1: 14:22:20 executing program 3: 14:22:20 executing program 5: 14:22:20 executing program 2: 14:22:20 executing program 4: 14:22:20 executing program 0: 14:22:20 executing program 1: 14:22:20 executing program 3: 14:22:20 executing program 5: 14:22:20 executing program 4: 14:22:20 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x1, 0x0) ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000240)={0x10}) 14:22:20 executing program 1: 14:22:20 executing program 2: 14:22:20 executing program 1: 14:22:20 executing program 3: 14:22:20 executing program 4: 14:22:20 executing program 5: 14:22:20 executing program 0: 14:22:20 executing program 2: 14:22:20 executing program 3: 14:22:20 executing program 1: 14:22:20 executing program 4: 14:22:20 executing program 5: 14:22:20 executing program 0: 14:22:20 executing program 2: 14:22:20 executing program 3: 14:22:20 executing program 1: 14:22:20 executing program 5: 14:22:20 executing program 3: 14:22:20 executing program 2: 14:22:20 executing program 4: 14:22:20 executing program 0: 14:22:20 executing program 1: 14:22:20 executing program 4: 14:22:20 executing program 2: 14:22:20 executing program 0: 14:22:20 executing program 1: 14:22:20 executing program 5: 14:22:20 executing program 4: 14:22:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000740)=0x200, 0x4) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x802123001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000600)='/selinux/load\x00', 0x2, 0x0) r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000a00)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000d80)='/proc/self/net/pfkey\x00', 0x0, 0x0) ioctl$VT_GETSTATE(r4, 0x5603, &(0x7f0000000d40)={0x7, 0x10, 0x8000000000008}) write$selinux_load(r2, &(0x7f0000000340)=ANY=[], 0x0) setxattr$security_smack_entry(&(0x7f0000000380)='./bus\x00', &(0x7f00000001c0)='security.SMACK64\x00', &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xe9u\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00', 0x46, 0x1) fcntl$dupfd(r1, 0x0, r2) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000b00)=ANY=[@ANYBLOB="7d1fc4a43bfbae6fc9fea32dd18742b9ee46984c1e56e9c8b22eff63bfd53bd9b54f7d6621812070aa3ed771ecfb893344d2bb96c9290dc569dfcb330266532ebf8b64053c2997951777942cc1647d6bdb627a30e39e551a9160f0591b064789addb55e1c0af02000000000000cf89fb51cd42dfabe96fa1de99ded786ec6abd65cef5ba4a5f0859fa0d3abd51c7b4625d55ab53c3"], 0x95) fcntl$setstatus(r0, 0x4, 0x2000) ioctl$TIOCSBRK(r3, 0x5427) getpid() r5 = creat(&(0x7f0000000080)='./bus\x00', 0x40) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000500)={{{@in6=@local, @in6=@mcast2}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000000700)=0xe8) lstat(&(0x7f0000000400)='./bus\x00', &(0x7f0000000680)) stat(&(0x7f0000002040)='./bus\x00', &(0x7f0000002080)) sendmsg$netlink(r5, &(0x7f0000002180)={&(0x7f0000000440)=@proc={0x10, 0x0, 0x25dfdbfb, 0x1000}, 0xc, &(0x7f00000004c0)=[{&(0x7f0000000640)=ANY=[@ANYBLOB="e25f32cdab7ecc1b4f5b7017b1e2c050000000370000042b0c000000dbdf25"], 0x1}], 0x1}, 0x20000000) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x100) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000f00)=ANY=[@ANYBLOB="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"], 0x48d) getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, &(0x7f00000007c0)={{{@in6=@mcast1}}, {{@in6=@remote}, 0x0, @in=@local}}, &(0x7f0000000900)=0xc0370b659d6a6c58) ioctl$EVIOCGMTSLOTS(0xffffffffffffffff, 0x8040450a, &(0x7f0000000bc0)=""/239) r7 = request_key(&(0x7f0000000dc0)='user\x00', &(0x7f0000000e40)={'syz', 0x3}, &(0x7f0000000e80)='wlan0]\'\x00', 0xfffffffffffffffd) add_key$user(&(0x7f0000000ec0)='user\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000500), 0x0, r7) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='reno\x00', 0x5) bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0xfffffe99, 0x20000801, &(0x7f0000000140)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) 14:22:20 executing program 2: r0 = open(&(0x7f0000000040)='./file0\x00', 0x143042, 0x0) write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0xfffffffffffffe5b) r1 = gettid() ptrace$peekuser(0x3, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) write$P9_RREADLINK(r0, 0x0, 0x0) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) write$nbd(0xffffffffffffffff, 0x0, 0x4d8) tkill(r1, 0x1000000000016) 14:22:20 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/\x00'/14) getdents64(r0, &(0x7f0000000140)=""/58, 0x3a) 14:22:20 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x40000020, r0, 0x0) read(r1, &(0x7f0000000000)=""/64, 0x40) 14:22:20 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x1, 0x4, &(0x7f0000346fc8)=ANY=[@ANYBLOB="1800000000000000000000000000000061102000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x70) 14:22:20 executing program 4: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0) setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/unix\x00') preadv(r0, &(0x7f0000000480), 0x10000000000002a1, 0x0) 14:22:20 executing program 0: openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000080)={0x80000000000009, 0x57308e49}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") 14:22:20 executing program 2: r0 = socket$inet(0x2, 0x80001, 0x0) getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x12, 0x0, &(0x7f0000000080)) [ 181.684389] syz-executor.3: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) 14:22:20 executing program 5: setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0xa, 0x0, @local}}, 0x0, 0x400, 0x0, 0x0, 0x300}, 0x98) r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/uhid\x00', 0x802, 0x0) r1 = dup(r0) syz_open_dev$dmmidi(&(0x7f0000000000)='/dev/dmmidi#\x00', 0x0, 0x101000) r2 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x55d80000000, 0x4000) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) clone(0x2102001ffd, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EVIOCGMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000000000)={0x8f1ff5e4864311ce, 0x0, 0x0}) r3 = openat$vhci(0xffffffffffffff9c, &(0x7f00000012c0)='/dev/vhci\x00', 0x246) write$P9_RLERRORu(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="ff81"], 0x2) close(r3) r4 = openat$vhci(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vhci\x00', 0x0) readv(r4, &(0x7f0000000080)=[{&(0x7f0000000180)=""/217, 0x20000259}], 0x1) nanosleep(&(0x7f0000000140), &(0x7f0000000380)) openat$zero(0xffffffffffffff9c, &(0x7f0000000280)='/dev/zero\x00', 0x80000, 0x0) sync_file_range(r1, 0xfffffffffffffff8, 0x4, 0x4) flistxattr(r3, &(0x7f00000004c0)=""/125, 0x7d) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000340)=[@in={0x2, 0x0, @loopback}], 0x10) ioctl$RNDCLEARPOOL(r1, 0x5206, &(0x7f00000002c0)=0x80) socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$TCSETAW(r1, 0x5407, &(0x7f0000000580)={0x0, 0x2, 0x0, 0x80000000, 0x12, 0x1ff, 0x641, 0x400, 0x10000, 0x20}) setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000740), 0x8) sendmsg$TIPC_CMD_SET_LINK_TOL(r2, &(0x7f0000000700)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x68, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {{}, 0x0, 0x4107, 0x0, {0x4c, 0x18, {0x4f9, @link='broadcast-link\x00'}}}, [""]}, 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) [ 181.758032] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 181.787580] CPU: 0 PID: 7608 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 181.794560] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 181.804020] Call Trace: [ 181.804095] dump_stack+0x138/0x19c [ 181.804131] warn_alloc.cold+0x96/0x1af [ 181.814325] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 181.819195] ? trace_hardirqs_on_caller+0x400/0x590 [ 181.824218] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 181.824245] __vmalloc_node_range+0x3be/0x6a0 [ 181.824260] ? retint_kernel+0x2d/0x2d [ 181.824275] vmalloc+0x46/0x50 [ 181.824298] ? sel_write_load+0x1a0/0x1050 [ 181.824308] sel_write_load+0x1a0/0x1050 [ 181.824323] ? sel_read_bool+0x240/0x240 [ 181.824333] ? trace_hardirqs_on_caller+0x400/0x590 [ 181.824342] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 181.824359] __vfs_write+0x107/0x6c0 [ 181.858142] ? sel_read_bool+0x240/0x240 [ 181.858158] ? kernel_read+0x120/0x120 [ 181.858172] ? __lock_is_held+0xb6/0x140 [ 181.858204] ? check_preemption_disabled+0x3c/0x250 [ 181.858223] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 181.870759] ? rcu_read_lock_sched_held+0x110/0x130 [ 181.870773] ? rcu_sync_lockdep_assert+0x73/0xb0 [ 181.870784] ? __sb_start_write+0x153/0x2f0 [ 181.870798] vfs_write+0x198/0x500 [ 181.870812] SyS_write+0xb8/0x180 [ 181.870825] ? SyS_read+0x180/0x180 [ 181.870838] ? do_syscall_64+0x53/0x630 [ 181.870850] ? SyS_read+0x180/0x180 [ 181.921559] do_syscall_64+0x1eb/0x630 [ 181.925504] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 181.930355] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 181.935563] RIP: 0033:0x458c29 [ 181.938767] RSP: 002b:00007f371873fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 181.946482] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 14:22:21 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'seqiv(rfc4106-gcm-aesni)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ab553fec", 0x4) 14:22:21 executing program 2: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = dup(0xffffffffffffff9c) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, 0x0, 0x0) [ 181.953764] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000005 [ 181.961050] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 181.968334] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f37187406d4 [ 181.975673] R13: 00000000004c8777 R14: 00000000004def48 R15: 00000000ffffffff 14:22:21 executing program 0: creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427) mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) [ 182.217333] Mem-Info: [ 182.220731] active_anon:101308 inactive_anon:189 isolated_anon:0 [ 182.220731] active_file:7987 inactive_file:10415 isolated_file:0 [ 182.220731] unevictable:0 dirty:169 writeback:0 unstable:0 [ 182.220731] slab_reclaimable:10624 slab_unreclaimable:98340 [ 182.220731] mapped:58733 shmem:242 pagetables:1122 bounce:0 [ 182.220731] free:1305560 free_pcp:365 free_cma:0 [ 182.257419] Node 0 active_anon:403108kB inactive_anon:756kB active_file:31808kB inactive_file:41660kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:234832kB dirty:676kB writeback:0kB shmem:968kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 262144kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 182.287822] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 182.316608] Node 0 DMA free:15908kB min:216kB low:268kB high:320kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 182.345801] lowmem_reserve[]: 0 2580 2580 2580 [ 182.351159] Node 0 DMA32 free:1422640kB min:36468kB low:45584kB high:54700kB active_anon:403108kB inactive_anon:756kB active_file:31808kB inactive_file:41660kB unevictable:0kB writepending:676kB present:3129332kB managed:2644924kB mlocked:0kB kernel_stack:7296kB pagetables:4192kB bounce:0kB free_pcp:1200kB local_pcp:656kB free_cma:0kB [ 182.381678] lowmem_reserve[]: 0 0 0 0 [ 182.385784] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 182.412035] lowmem_reserve[]: 0 0 0 0 [ 182.415881] Node 1 Normal free:3786080kB min:53420kB low:66772kB high:80124kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870208kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:120kB local_pcp:120kB free_cma:0kB [ 182.450471] lowmem_reserve[]: 0 0 0 0 [ 182.454314] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 182.471823] Node 0 DMA32: 6667*4kB (UME) 316*8kB (ME) 264*16kB (M) 183*32kB (ME) 38*64kB (ME) 10*128kB (ME) 3*256kB (UME) 5*512kB (UME) 4*1024kB (UME) 4*2048kB (UM) 333*4096kB (M) = 1422572kB [ 182.489602] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 182.500630] Node 1 Normal: 20*4kB (UME) 344*8kB (UME) 261*16kB (UME) 60*32kB (UME) 20*64kB (UME) 9*128kB (UME) 5*256kB (U) 2*512kB (UE) 2*1024kB (ME) 5*2048kB (UME) 918*4096kB (M) = 3786080kB [ 182.518717] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 182.527744] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 182.536836] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 182.545851] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 182.554607] 18647 total pagecache pages [ 182.558773] 0 pages in swap cache [ 182.562372] Swap cache stats: add 0, delete 0, find 0/0 [ 182.567743] Free swap = 0kB 14:22:21 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000740)=0x200, 0x4) sched_setaffinity(0x0, 0x7, &(0x7f00000000c0)=0x9) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x802123001ff6, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000600)='/selinux/load\x00', 0x2, 0x0) r3 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000a00)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000d80)='/proc/self/net/pfkey\x00', 0x0, 0x0) ioctl$VT_GETSTATE(r4, 0x5603, &(0x7f0000000d40)={0x7, 0x10, 0x8000000000008}) write$selinux_load(r2, &(0x7f0000000340)=ANY=[], 0x0) setxattr$security_smack_entry(&(0x7f0000000380)='./bus\x00', &(0x7f00000001c0)='security.SMACK64\x00', &(0x7f0000000200)='/exe\x00\x00\xc1\x00\x00\x00\x00\x00\xe9\xff\a\x00\x00\x00\x00\x00\x00T\xfa\aBJ\xde\xe9\x16\xd2\xe9u\xaf\xe7\v5\xa0\xfdj\x1f\x02\x00\xf5\xab&\xd7\xa0q\xfb53\x1c\xe3\x9cZehd\x10\x06\xd7\xc0 jt\xe33&S\x00', 0x46, 0x1) fcntl$dupfd(r1, 0x0, r2) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000b00)=ANY=[@ANYBLOB="7d1fc4a43bfbae6fc9fea32dd18742b9ee46984c1e56e9c8b22eff63bfd53bd9b54f7d6621812070aa3ed771ecfb893344d2bb96c9290dc569dfcb330266532ebf8b64053c2997951777942cc1647d6bdb627a30e39e551a9160f0591b064789addb55e1c0af02000000000000cf89fb51cd42dfabe96fa1de99ded786ec6abd65cef5ba4a5f0859fa0d3abd51c7b4625d55ab53c3"], 0x95) fcntl$setstatus(r0, 0x4, 0x2000) ioctl$TIOCSBRK(r3, 0x5427) getpid() r5 = creat(&(0x7f0000000080)='./bus\x00', 0x40) getsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000500)={{{@in6=@local, @in6=@mcast2}}, {{@in6=@loopback}, 0x0, @in=@multicast1}}, &(0x7f0000000700)=0xe8) lstat(&(0x7f0000000400)='./bus\x00', &(0x7f0000000680)) stat(&(0x7f0000002040)='./bus\x00', &(0x7f0000002080)) sendmsg$netlink(r5, &(0x7f0000002180)={&(0x7f0000000440)=@proc={0x10, 0x0, 0x25dfdbfb, 0x1000}, 0xc, &(0x7f00000004c0)=[{&(0x7f0000000640)=ANY=[@ANYBLOB="e25f32cdab7ecc1b4f5b7017b1e2c050000000370000042b0c000000dbdf25"], 0x1}], 0x1}, 0x20000000) r6 = creat(&(0x7f0000000100)='./bus\x00', 0x100) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6100) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000f00)=ANY=[@ANYBLOB="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"], 0x48d) getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, &(0x7f00000007c0)={{{@in6=@mcast1}}, {{@in6=@remote}, 0x0, @in=@local}}, &(0x7f0000000900)=0xc0370b659d6a6c58) ioctl$EVIOCGMTSLOTS(0xffffffffffffffff, 0x8040450a, &(0x7f0000000bc0)=""/239) r7 = request_key(&(0x7f0000000dc0)='user\x00', &(0x7f0000000e40)={'syz', 0x3}, &(0x7f0000000e80)='wlan0]\'\x00', 0xfffffffffffffffd) add_key$user(&(0x7f0000000ec0)='user\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000500), 0x0, r7) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='reno\x00', 0x5) bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0xfffffe99, 0x20000801, &(0x7f0000000140)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r0, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) 14:22:21 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x40000020, r0, 0x0) read(0xffffffffffffffff, &(0x7f0000000000)=""/64, 0x40) 14:22:21 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-serpent-avx\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) 14:22:21 executing program 4: r0 = memfd_create(&(0x7f00000001c0)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa2Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8bcc\xad\x89\x9ck\xde\xc5\xe96\xddUE\xc98M\xcd\xfb\xcc\x97\xb4\v\xa9=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93?\x88Q\xf7\xd6\x1d\xa1\xce\x8b\x19\xea\xef\xe3\xab\x00\xa5\xc24\xd6\xfe7\x0f', 0x3) mincore(&(0x7f0000d2e000/0x4000)=nil, 0x4000, 0x0) fcntl$addseals(r0, 0x409, 0x5) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) write$cgroup_int(r1, &(0x7f00000000c0), 0x12) 14:22:21 executing program 2: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x400000101000, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff43) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="3034ecfa19b4490be0766e702b8d36f05839aa7ecf07323a34") ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:22:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000000)={0x7b, 0x0, [0x49, 0x8]}) [ 182.570954] Total swap = 0kB [ 182.573979] 1965979 pages RAM [ 182.577067] 0 pages HighMem/MovableOnly [ 182.581105] 333219 pages reserved [ 182.584569] 0 pages cma reserved [ 182.588247] syz-executor.3: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 182.598797] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 182.608201] CPU: 0 PID: 7619 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 182.615227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 182.624580] Call Trace: [ 182.627375] dump_stack+0x138/0x19c [ 182.631014] warn_alloc.cold+0x96/0x1af [ 182.634990] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 182.639839] ? lock_downgrade+0x6e0/0x6e0 [ 182.643998] ? avc_has_perm+0x2df/0x4b0 [ 182.647990] __vmalloc_node_range+0x3be/0x6a0 [ 182.652500] vmalloc+0x46/0x50 [ 182.655701] ? sel_write_load+0x1a0/0x1050 [ 182.659952] sel_write_load+0x1a0/0x1050 [ 182.664025] ? save_trace+0x290/0x290 [ 182.667842] ? sel_read_bool+0x240/0x240 [ 182.671912] ? trace_hardirqs_on+0x10/0x10 [ 182.676153] ? save_trace+0x290/0x290 [ 182.679968] __vfs_write+0x107/0x6c0 [ 182.683688] ? __lock_is_held+0xb6/0x140 [ 182.687767] ? sel_read_bool+0x240/0x240 [ 182.691834] ? kernel_read+0x120/0x120 [ 182.695726] ? __lock_is_held+0xb6/0x140 [ 182.695738] ? check_preemption_disabled+0x3c/0x250 [ 182.695752] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 182.695764] ? rcu_read_lock_sched_held+0x110/0x130 [ 182.715294] ? rcu_sync_lockdep_assert+0x73/0xb0 [ 182.720054] ? __sb_start_write+0x153/0x2f0 [ 182.724381] vfs_write+0x198/0x500 [ 182.727923] SyS_write+0xb8/0x180 [ 182.731371] ? SyS_read+0x180/0x180 [ 182.735087] ? do_syscall_64+0x53/0x630 [ 182.739056] ? SyS_read+0x180/0x180 [ 182.743462] do_syscall_64+0x1eb/0x630 [ 182.747343] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 182.752202] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 182.757396] RIP: 0033:0x458c29 [ 182.760589] RSP: 002b:00007f371873fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 14:22:21 executing program 5: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dc86055e0bceec7be070") fchdir(r0) truncate(&(0x7f00000002c0)='./bus\x00', 0x0) [ 182.768288] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 182.775552] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000005 [ 182.782815] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 182.790075] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f37187406d4 [ 182.797339] R13: 00000000004c8777 R14: 00000000004def48 R15: 00000000ffffffff 14:22:22 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='io.\xbdtI\xf9@', 0x275a, 0x0) pread64(r0, 0x0, 0x3da, 0x400000000000000) [ 182.860347] audit: type=1400 audit(1555683742.000:42): avc: denied { create } for pid=7676 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 14:22:22 executing program 0: r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x10080}, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x11\x00\x00\x00\x00\x00\xe3\xc2\xbc\xf6T\xfa\x8e\xb0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\"\x00'}) 14:22:22 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000ef8cfd)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0x4) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) write$binfmt_misc(r1, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x4) write(r1, &(0x7f0000000200)='}', 0x1) r2 = accept4(r0, 0x0, 0x0, 0x0) shutdown(r1, 0x1) write$binfmt_script(r2, &(0x7f0000001380)={'#! ', './file0'}, 0xa0) 14:22:22 executing program 4: r0 = open(&(0x7f0000000040)='./file0\x00', 0x143042, 0x0) write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0xfffffffffffffe5b) r1 = gettid() ptrace$peekuser(0x3, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) write$nbd(r0, 0x0, 0xfffffffffffffe0a) tkill(r1, 0x1000000000016) [ 182.967477] audit: type=1400 audit(1555683742.020:43): avc: denied { write } for pid=7676 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 14:22:22 executing program 0: r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/null\x00', 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0) ioctl$KDGETMODE(0xffffffffffffffff, 0x4b3b, 0x0) ioctl$TIOCGRS485(0xffffffffffffffff, 0x542e, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, 0x0, 0x0) fstat(0xffffffffffffffff, 0x0) [ 183.054061] audit: type=1400 audit(1555683742.020:44): avc: denied { read } for pid=7676 comm="syz-executor.2" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 183.094306] sctp: failed to load transform for md5: -2 [ 183.126187] syz-executor.3: vmalloc: allocation failure: 0 bytes, mode:0x14000c0(GFP_KERNEL), nodemask=(null) [ 183.155283] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 183.179249] CPU: 1 PID: 7690 Comm: syz-executor.3 Not tainted 4.14.112 #2 [ 183.186210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 183.195559] Call Trace: [ 183.198161] dump_stack+0x138/0x19c [ 183.201818] warn_alloc.cold+0x96/0x1af [ 183.205799] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 183.205815] ? retint_kernel+0x2d/0x2d [ 183.205831] ? trace_hardirqs_on_caller+0x400/0x590 [ 183.205852] ? check_preemption_disabled+0x3c/0x250 [ 183.214694] __vmalloc_node_range+0x3be/0x6a0 [ 183.214714] vmalloc+0x46/0x50 [ 183.214728] ? sel_write_load+0x1a0/0x1050 [ 183.214740] sel_write_load+0x1a0/0x1050 [ 183.224770] ? save_trace+0x290/0x290 [ 183.224787] ? sel_read_bool+0x240/0x240 [ 183.224799] ? trace_hardirqs_on+0x10/0x10 [ 183.224811] ? save_trace+0x290/0x290 [ 183.224829] __vfs_write+0x107/0x6c0 [ 183.224839] ? __lock_is_held+0xb6/0x140 [ 183.224848] ? sel_read_bool+0x240/0x240 [ 183.224859] ? kernel_read+0x120/0x120 [ 183.224870] ? __lock_is_held+0xb6/0x140 [ 183.224884] ? check_preemption_disabled+0x3c/0x250 [ 183.252902] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 183.260402] ? rcu_read_lock_sched_held+0x110/0x130 [ 183.260413] ? rcu_sync_lockdep_assert+0x73/0xb0 [ 183.260424] ? __sb_start_write+0x153/0x2f0 [ 183.260450] vfs_write+0x198/0x500 [ 183.260464] SyS_write+0xb8/0x180 [ 183.260476] ? SyS_read+0x180/0x180 [ 183.260487] ? do_syscall_64+0x53/0x630 [ 183.260497] ? SyS_read+0x180/0x180 [ 183.260510] do_syscall_64+0x1eb/0x630 [ 183.323075] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 183.327912] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 183.333084] RIP: 0033:0x458c29 [ 183.336262] RSP: 002b:00007f371871ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 183.343967] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 183.351238] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000005 [ 183.358492] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 183.365746] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f371871f6d4 [ 183.373008] R13: 00000000004c8777 R14: 00000000004def48 R15: 00000000ffffffff [ 183.380770] warn_alloc_show_mem: 1 callbacks suppressed [ 183.380774] Mem-Info: [ 183.388803] active_anon:101325 inactive_anon:190 isolated_anon:0 [ 183.388803] active_file:7987 inactive_file:10481 isolated_file:0 [ 183.388803] unevictable:0 dirty:186 writeback:0 unstable:0 [ 183.388803] slab_reclaimable:10745 slab_unreclaimable:99623 [ 183.388803] mapped:58718 shmem:242 pagetables:1077 bounce:0 [ 183.388803] free:1303951 free_pcp:412 free_cma:0 [ 183.423551] Node 0 active_anon:405300kB inactive_anon:760kB active_file:31808kB inactive_file:41948kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:234912kB dirty:800kB writeback:0kB shmem:968kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 262144kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 183.451982] Node 1 active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 183.477884] Node 0 DMA free:15908kB min:216kB low:268kB high:320kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 183.504123] lowmem_reserve[]: 0 2580 2580 2580 [ 183.508739] Node 0 DMA32 free:1414964kB min:36468kB low:45584kB high:54700kB active_anon:405300kB inactive_anon:760kB active_file:31808kB inactive_file:41948kB unevictable:0kB writepending:808kB present:3129332kB managed:2644924kB mlocked:0kB kernel_stack:7264kB pagetables:4308kB bounce:0kB free_pcp:1344kB local_pcp:656kB free_cma:0kB [ 183.538703] lowmem_reserve[]: 0 0 0 0 [ 183.542614] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 183.567973] lowmem_reserve[]: 0 0 0 0 [ 183.571876] Node 1 Normal free:3786080kB min:53420kB low:66772kB high:80124kB active_anon:0kB inactive_anon:0kB active_file:140kB inactive_file:0kB unevictable:0kB writepending:0kB present:3932160kB managed:3870208kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:120kB local_pcp:0kB free_cma:0kB [ 183.599902] lowmem_reserve[]: 0 0 0 0 [ 183.603820] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 183.617530] Node 0 DMA32: 7994*4kB (UME) 885*8kB (UME) 485*16kB (ME) 252*32kB (UME) 72*64kB (ME) 11*128kB (ME) 3*256kB (UME) 5*512kB (UME) 3*1024kB (ME) 0*2048kB 329*4096kB (M) = 1414880kB [ 183.635106] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 183.645894] Node 1 Normal: 20*4kB (UME) 344*8kB (UME) 261*16kB (UME) 60*32kB (UME) 20*64kB (UME) 9*128kB (UME) 5*256kB (U) 2*512kB (UE) 2*1024kB (ME) 5*2048kB (UME) 918*4096kB (M) = 3786080kB [ 183.663228] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 183.672111] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 14:22:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_IRQ_LINE_STATUS(r1, 0x4008ae61, &(0x7f0000000100)={0x8, 0x8}) 14:22:22 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x4b5a, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0xb8}}, 0x0) 14:22:22 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_mount_image$jfs(&(0x7f0000000100)='jfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)={[{@discard_size={'d%scard'}}]}) 14:22:22 executing program 5: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x65c15bf2) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000300)=0x800) [ 183.680766] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 183.689607] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 183.698237] 18726 total pagecache pages [ 183.702304] 0 pages in swap cache [ 183.705757] Swap cache stats: add 0, delete 0, find 0/0 [ 183.711149] Free swap = 0kB [ 183.714173] Total swap = 0kB [ 183.717191] 1965979 pages RAM [ 183.720366] 0 pages HighMem/MovableOnly [ 183.724347] 333219 pages reserved [ 183.727791] 0 pages cma reserved [ 183.757955] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.1'. [ 183.772862] jfs: Unrecognized mount option "d%scard=0x0000000000000000" or missing value [ 183.864021] jfs: Unrecognized mount option "d%scard=0x0000000000000000" or missing value [ 183.930256] IPVS: ftp: loaded support on port[0] = 21 14:22:23 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") unshare(0x68000200) socket(0x0, 0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000080)={'security\x00', 0x4, [{}, {}, {}, {}]}, 0x68) 14:22:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/\x00'/14) getdents64(r1, &(0x7f0000000140)=""/58, 0x3a) 14:22:23 executing program 1: clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = msgget$private(0x0, 0x0) syz_execute_func(&(0x7f0000000080)="410f01f964ff0941c38fe868cfe400c4e2c9975842450f3806fd66420fe2e33e0f1110c4e1401256cb82") msgrcv(r0, 0x0, 0xffffff9d, 0x0, 0x0) socket$inet(0x2, 0x0, 0x0) msgsnd(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="03"], 0x1, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) 14:22:23 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x2, 0xfffffffffffffbc9}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:23 executing program 0: r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x11, &(0x7f0000000180)={0x6, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108) 14:22:23 executing program 5: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045003, &(0x7f0000000080)=0x200000100000003) ioctl$int_in(r0, 0x800000c0045002, &(0x7f0000000100)) read$FUSE(r0, &(0x7f0000000140), 0x1000) 14:22:23 executing program 4: r0 = perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) 14:22:23 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c) recvmmsg(r0, &(0x7f0000000200), 0x38c, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={[], [], @loopback}}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 14:22:23 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000180)=0x580, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x20000000004e20, 0x0, @ipv4}, 0x1c) keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000140)={0x0, 0x7fff, 0x1f}, 0x0, 0x0, 0x0) connect$inet6(r0, &(0x7f00000005c0)={0xa, 0x4e1f, 0x0, @ipv4={[], [], @remote}}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x31, &(0x7f00000002c0)=0x4000008, 0x4) recvmsg(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/36, 0x3bfde9d00c37b4f0}, 0x2000) sendmmsg(r0, &(0x7f00000000c0), 0x40000000000025b, 0x0) 14:22:23 executing program 1: getpid() perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0) munlockall() mremap(&(0x7f0000a94000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) 14:22:23 executing program 4: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_emit_ethernet(0xffffffffffffffbe, &(0x7f0000000080)={@local, @dev, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x2ce, 0x0, 0x0, 0x0, 0xffffff84, 0x0, @rand_addr, @multicast1}, @icmp=@address_reply={0x2b6, 0x8848}}}}}, &(0x7f0000000040)={0x0, 0x3, [0x0, 0x2d9, 0x3]}) 14:22:23 executing program 3: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c0000001100ab040000800000000000fe8000000008000000000000000000bb000000000000000014000d00000000001b44dad629679b8b299cde8914a349472222b9d21a23200d5105c4eeaf11c50000000000ebffffffffffffff0000010000000000000000"], 0x1}}, 0x0) 14:22:24 executing program 2: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x1, 0x0) gettid() write$P9_RMKNOD(0xffffffffffffffff, 0x0, 0x0) ioctl$KDSKBSENT(0xffffffffffffffff, 0x4b49, 0x0) ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, 0x0) accept$inet6(0xffffffffffffffff, 0x0, 0x0) lsetxattr$security_smack_transmute(0x0, 0x0, 0x0, 0x0, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) write$P9_RLOCK(r0, 0x0, 0x0) 14:22:24 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/\x00'/14) fchdir(r1) r2 = inotify_init() inotify_add_watch(r2, &(0x7f00000000c0)='.\x00', 0x1) 14:22:24 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x65c15bf2) mmap(&(0x7f0000a35000/0x400000)=nil, 0x400000, 0x0, 0x10, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000300)=0x800) 14:22:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:24 executing program 0: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_READ(r0, 0xc008551a, &(0x7f0000000040)={0xbd, 0x4, [0x0]}) 14:22:24 executing program 5: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="3034ecfa19b4490be0766e702b8d36f05839aa7ecf07323a34") ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:22:24 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x5000008912, &(0x7f0000000140)="0adc1f123c123f319bd070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x101) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 14:22:24 executing program 3: r0 = socket$inet(0x2, 0x80001, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x4, 0x228, [0x200002c0, 0x0, 0x0, 0x200003d0, 0x200004d8], 0x0, 0x0, &(0x7f00000002c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{{{0x15, 0x2, 0x88a8, 'ip6gretap0\x00', 'veth0_to_team\x00', 'veth1_to_bridge\x00', 'team0\x00', @remote, [0x0, 0xff, 0x0, 0xff], @empty, [0xff, 0x0, 0x0, 0xff, 0x0, 0xff], 0x70, 0xa8, 0xe0}, [@arpreply={'arpreply\x00', 0x10, {{@remote, 0xfffffffffffffffd}}}]}, @arpreply={'arpreply\x00', 0x10, {{@dev={[], 0x20}, 0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff}, {0x0, '\x00', 0x2, 0xfffffffffffffffe, 0x1, [{{{0x3, 0x0, 0x0, 'bpq0\x00', 'ip6erspan0\x00', 'ifb0\x00', 'caif0\x00', @broadcast, [], @link_local, [], 0x70, 0x70, 0xb8}}, @common=@ERROR={'ERROR\x00', 0x20, {"8ce9f1f840763e7af16b6ee67d21acc54b353cf755a441e0176b57c1a4ad"}}}]}]}, 0x2a0) 14:22:24 executing program 2: r0 = socket$inet(0xa, 0x801, 0x84) connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @local}, 0x10) listen(r0, 0x100000001) r1 = accept4(r0, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000000)={0x0, 0x0, 0x30}, 0x0) [ 185.314187] *** Guest State *** [ 185.325765] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 185.380629] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 185.432341] CR3 = 0x00000000fffbc000 14:22:24 executing program 3: [ 185.454623] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 185.488767] RFLAGS=0x00000002 DR7 = 0x0000000000000400 14:22:24 executing program 0: 14:22:24 executing program 3: [ 185.517183] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 14:22:24 executing program 2: [ 185.563012] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 185.587221] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:22:24 executing program 0: setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x916f133f5929a356) r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup3(r0, r0, 0x80000) r1 = dup3(r0, r0, 0x80000) ioctl$EVIOCGMASK(r1, 0x80104592, 0x0) r2 = socket$inet6(0xa, 0x400000000001, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x44101440}, 0xc, &(0x7f00000002c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="080128bd7000fbdbdf250100000000000000024100000010001369623a677265746170300000"], 0x1}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008001) r3 = dup(r2) getsockname$inet(r3, &(0x7f0000000080)={0x2, 0x0, @multicast2}, 0x0) setsockopt$netlink_NETLINK_RX_RING(0xffffffffffffffff, 0x10e, 0x6, 0x0, 0x0) ioctl$sock_SIOCBRDELBR(r2, 0x89a1, &(0x7f0000000140)='veth1_to_bridge\x00') ioctl$int_in(r2, 0x5452, &(0x7f00000003c0)=0x2) setsockopt$inet6_tcp_int(r2, 0x6, 0xa, &(0x7f0000000000)=0x81, 0x4) bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @rand_addr, 0x8000000000000000}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x7e, 0x0, 0xfffffffffffffec4) pause() ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000340)=@generic={0x0, 0x0, 0x4}) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x19, &(0x7f0000000180)=0x6, 0x4) r5 = getpgrp(0x0) fcntl$setownex(r4, 0xf, &(0x7f0000000200)={0x3, r5}) arch_prctl$ARCH_MAP_VDSO_X32(0x2001, 0x0) ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000440)={0x0, 0x0}) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, 0x0) timer_create(0x7, &(0x7f0000000240), 0x0) timer_delete(0x0) ioctl$TIOCNXCL(0xffffffffffffffff, 0x540d) r6 = open(&(0x7f00000001c0)='./file0\x00', 0x141042, 0x8) ftruncate(r6, 0x7fff) sendfile(r3, r6, 0x0, 0x8000fffffffe) [ 185.617191] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 185.665935] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 185.693961] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 185.718439] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 185.737724] GDTR: limit=0x00000000, base=0x0000000000000000 [ 185.755345] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 185.772746] IDTR: limit=0x00000000, base=0x0000000000000000 [ 185.790525] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 185.809268] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 185.822953] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 185.839664] Interruptibility = 00000008 ActivityState = 00000000 [ 185.855039] *** Host State *** [ 185.861974] RIP = 0xffffffff8117479a RSP = 0xffff88805b337998 [ 185.876348] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 185.889771] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 185.908481] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 185.921829] CR0=0000000080050033 CR3=00000000961ef000 CR4=00000000001426f0 [ 185.938278] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 185.953361] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 185.966737] *** Control State *** [ 185.975134] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 185.990287] EntryControls=0000d1ff ExitControls=002fefff [ 186.003262] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 186.018652] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 186.034582] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 186.049832] reason=80000021 qualification=0000000000000000 [ 186.071904] IDTVectoring: info=00000000 errcode=00000000 [ 186.078762] TSC Offset = 0xffffff9a0b787a3e [ 186.090265] EPT pointer = 0x00000000a993801e 14:22:25 executing program 1: 14:22:25 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000080)={0x80000000000009, 0x57308e49}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000140)={[], 0x0, 0xfffffffffffffffd}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") 14:22:25 executing program 2: 14:22:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:25 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:25 executing program 2: 14:22:25 executing program 1: [ 186.404784] *** Guest State *** [ 186.420604] *** Guest State *** [ 186.421273] *** Guest State *** [ 186.427355] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 186.439137] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:22:25 executing program 1: 14:22:25 executing program 2: [ 186.447785] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 186.486488] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 186.502732] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 186.505803] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:22:25 executing program 2: 14:22:25 executing program 1: [ 186.536832] CR3 = 0x00000000fffbc000 [ 186.545629] CR3 = 0x00000000fffbc000 [ 186.551793] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 186.561783] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 186.575883] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 186.586303] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 186.610315] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 186.618406] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 186.624270] CR3 = 0x00000000fffbc000 [ 186.638681] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 186.649493] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 186.649505] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 186.649516] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 186.649525] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 186.649540] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.649553] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.649564] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.649578] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:22:25 executing program 0: 14:22:25 executing program 1: [ 186.649592] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.649602] GDTR: limit=0x00000000, base=0x0000000000000000 [ 186.649617] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 186.649627] IDTR: limit=0x00000000, base=0x0000000000000000 [ 186.649641] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 186.649649] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 186.649659] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 186.668274] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 186.691875] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.704366] Interruptibility = 00000008 ActivityState = 00000000 [ 186.739751] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 186.760364] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.804007] *** Host State *** [ 186.807470] RIP = 0xffffffff8117479a RSP = 0xffff88805b33f998 [ 186.816341] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 186.819652] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 186.845701] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 186.848907] FSBase=00007f97eae0c700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 186.858286] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.875755] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 186.881942] CR0=0000000080050033 CR3=00000000a8791000 CR4=00000000001426f0 [ 186.889161] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 186.894795] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.897317] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 186.905496] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 186.910219] *** Control State *** [ 186.922089] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 186.927089] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 186.943745] EntryControls=0000d1ff ExitControls=002fefff [ 186.947277] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 186.957539] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 186.964795] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 186.968249] GDTR: limit=0x00000000, base=0x0000000000000000 [ 186.971931] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 186.986533] reason=80000021 qualification=0000000000000000 [ 186.990151] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 186.993411] IDTVectoring: info=00000000 errcode=00000000 [ 187.005802] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 187.006572] TSC Offset = 0xffffff9973e1e06d [ 187.019003] EPT pointer = 0x00000000a8fe501e [ 187.024528] IDTR: limit=0x00000000, base=0x0000000000000000 [ 187.027780] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 187.040205] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 187.045773] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 187.057015] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 187.063629] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 187.069570] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 187.078080] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 187.081493] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 187.091310] Interruptibility = 00000000 ActivityState = 00000000 [ 187.099690] *** Host State *** [ 187.108698] Interruptibility = 00000008 ActivityState = 00000000 [ 187.109694] RIP = 0xffffffff8117479a RSP = 0xffff88805a74f998 [ 187.115239] *** Host State *** [ 187.139938] RIP = 0xffffffff8117479a RSP = 0xffff88805a747998 [ 187.155195] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 187.160149] *** Guest State *** [ 187.167012] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 [ 187.169686] FSBase=00007f3718740700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 187.176064] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 187.190838] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 187.199772] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 187.208645] CR3 = 0x00000000fffbc000 [ 187.209999] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 187.212592] RSP = 0x0000000000000000 RIP = 0x0000000000000000 [ 187.224540] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 187.226685] CR0=0000000080050033 CR3=000000008c8b1000 CR4=00000000001426e0 [ 187.231162] CR0=0000000080050033 CR3=000000008be9f000 CR4=00000000001426e0 [ 187.244667] RFLAGS=0xffffffffffffffff DR7 = 0x0000000000000400 [ 187.246668] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 187.251494] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 187.264934] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 187.268266] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 187.271762] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 187.284691] CS: sel=0xf000, attr=0x0009b, limit=0x0000ffff, base=0x00000000ffff0000 [ 187.286350] *** Control State *** [ 187.292801] *** Control State *** [ 187.296256] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000c3 [ 187.299735] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 187.312833] EntryControls=0000d1ff ExitControls=002fefff [ 187.314516] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 187.319924] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 187.326696] SS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 187.338663] VMEntry: intr_info=80000001 errcode=00000000 ilen=00000000 [ 187.341787] EntryControls=0000d1ff ExitControls=002fefff [ 187.348460] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 187.356401] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 187.369372] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 187.372276] reason=80000021 qualification=0000000000000000 [ 187.377494] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 187.388655] IDTVectoring: info=00000000 errcode=00000000 [ 187.390505] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 187.390564] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 187.396074] TSC Offset = 0xffffff9976a97f49 [ 187.404323] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 187.417137] TPR Threshold = 0x00 [ 187.423943] GDTR: limit=0x0000ffff, base=0x0000000000000000 [ 187.426640] EPT pointer = 0x000000008972401e [ 187.434703] LDTR: sel=0x0000, attr=0x00082, limit=0x0000ffff, base=0x0000000000000000 [ 187.434720] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 187.434736] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 187.434744] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 187.434755] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 187.455292] reason=80000021 qualification=0000000000000000 [ 187.483576] Interruptibility = 00000000 ActivityState = 00000000 [ 187.489870] *** Host State *** [ 187.493184] RIP = 0xffffffff8117479a RSP = 0xffff88805b4cf998 [ 187.502800] IDTVectoring: info=00000000 errcode=00000000 [ 187.508356] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 187.514946] TSC Offset = 0xffffff997571f86a [ 187.519343] EPT pointer = 0x000000008997401e [ 187.523913] FSBase=00007f37186fc700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 187.537312] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 187.552095] CR0=0000000080050033 CR3=000000008c8b1000 CR4=00000000001426f0 [ 187.561466] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 187.568245] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 187.575146] *** Control State *** [ 187.578699] PinBased=0000003f CPUBased=b6a1edfa SecondaryExec=000000c3 [ 187.586342] EntryControls=0000d1ff ExitControls=002fefff [ 187.592055] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 187.599071] VMEntry: intr_info=80000001 errcode=00000000 ilen=00000000 [ 187.605902] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 14:22:26 executing program 3: 14:22:26 executing program 2: 14:22:26 executing program 0: 14:22:26 executing program 1: 14:22:26 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 187.612684] reason=80000021 qualification=0000000000000000 [ 187.619040] IDTVectoring: info=00000000 errcode=00000000 [ 187.624594] TSC Offset = 0xffffff990cfbc551 [ 187.628918] TPR Threshold = 0x00 [ 187.632386] EPT pointer = 0x00000000a867601e 14:22:26 executing program 1: 14:22:26 executing program 0: 14:22:26 executing program 2: 14:22:26 executing program 3: 14:22:27 executing program 2: 14:22:27 executing program 3: [ 187.803402] *** Guest State *** [ 187.806808] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 187.810721] *** Guest State *** 14:22:27 executing program 1: 14:22:27 executing program 0: [ 187.853538] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 187.857419] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 187.875930] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 187.884995] CR3 = 0x00000000fffbc000 [ 187.888793] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 187.899891] RFLAGS=0x00000002 DR7 = 0x0000000000000400 14:22:27 executing program 2: 14:22:27 executing program 0: [ 187.955213] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 187.981866] CR3 = 0x00000000fffbc000 [ 188.013133] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 188.015466] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 188.048098] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 188.059727] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.083951] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 188.087331] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.103518] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 188.107412] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.116475] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.123765] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.128309] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.140319] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.145080] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.151986] GDTR: limit=0x00000000, base=0x0000000000000000 [ 188.160786] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.168361] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.180968] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.184338] IDTR: limit=0x00000000, base=0x0000000000000000 [ 188.196338] GDTR: limit=0x00000000, base=0x0000000000000000 [ 188.200363] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.200413] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 188.209223] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.217223] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 188.228136] IDTR: limit=0x00000000, base=0x0000000000000000 [ 188.231092] Interruptibility = 00000008 ActivityState = 00000000 [ 188.231096] *** Host State *** [ 188.231105] RIP = 0xffffffff8117479a RSP = 0xffff8880599c7998 [ 188.231121] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 188.231134] FSBase=00007f97eae0c700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 188.245119] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.246821] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 188.253318] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 188.256205] CR0=0000000080050033 CR3=000000008256a000 CR4=00000000001426f0 [ 188.262528] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 188.273022] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 188.276782] Interruptibility = 00000008 ActivityState = 00000000 [ 188.284662] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 188.290865] *** Host State *** [ 188.301533] *** Control State *** [ 188.304550] RIP = 0xffffffff8117479a RSP = 0xffff888059fff998 [ 188.316318] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 188.318538] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 188.324845] EntryControls=0000d1ff ExitControls=002fefff [ 188.331310] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 188.338542] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 188.343953] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 188.351113] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 188.357218] CR0=0000000080050033 CR3=00000000a6314000 CR4=00000000001426e0 [ 188.366864] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 188.370651] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 188.377305] reason=80000021 qualification=0000000000000000 [ 188.383524] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 188.394316] IDTVectoring: info=00000000 errcode=00000000 [ 188.397531] *** Control State *** [ 188.403733] TSC Offset = 0xffffff98b80d8880 [ 188.410695] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 188.421510] EPT pointer = 0x00000000a608701e [ 188.423217] EntryControls=0000d1ff ExitControls=002fefff [ 188.443223] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 188.453162] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 188.469952] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 188.476609] reason=80000021 qualification=0000000000000000 14:22:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:27 executing program 1: 14:22:27 executing program 3: 14:22:27 executing program 0: 14:22:27 executing program 2: [ 188.483472] IDTVectoring: info=00000000 errcode=00000000 [ 188.488934] TSC Offset = 0xffffff98b8e7b8b8 [ 188.493538] EPT pointer = 0x0000000089b2a01e 14:22:27 executing program 1: 14:22:27 executing program 2: 14:22:27 executing program 0: 14:22:27 executing program 3: [ 188.636014] *** Guest State *** 14:22:27 executing program 3: 14:22:27 executing program 0: [ 188.669625] *** Guest State *** [ 188.677062] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 188.703830] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 188.725681] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 188.735597] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 188.751803] CR3 = 0x00000000fffbc000 [ 188.755669] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 188.765647] CR3 = 0x00000000fffbc000 [ 188.772087] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 188.785210] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 188.796420] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 188.804266] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 188.811191] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 188.817999] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 188.826221] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 188.834555] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.843446] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.851649] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.860500] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.868688] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.878512] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.891530] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.899610] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.899643] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.908244] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 188.918897] GDTR: limit=0x00000000, base=0x0000000000000000 [ 188.924795] GDTR: limit=0x00000000, base=0x0000000000000000 [ 188.933534] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.939934] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.951003] IDTR: limit=0x00000000, base=0x0000000000000000 [ 188.957670] IDTR: limit=0x00000000, base=0x0000000000000000 [ 188.968863] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.973259] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 188.980383] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 188.988639] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 188.999270] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 189.001654] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 189.009586] Interruptibility = 00000008 ActivityState = 00000000 [ 189.016799] Interruptibility = 00000008 ActivityState = 00000000 [ 189.027158] *** Host State *** [ 189.029036] *** Host State *** [ 189.032407] RIP = 0xffffffff8117479a RSP = 0xffff888068de7998 [ 189.032424] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 189.032443] FSBase=00007f97eae0c700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 189.032453] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 189.032464] CR0=0000000080050033 CR3=000000008256a000 CR4=00000000001426f0 [ 189.032475] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 189.032484] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 189.032487] *** Control State *** [ 189.032492] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 189.032497] EntryControls=0000d1ff ExitControls=002fefff [ 189.032507] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 189.032517] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 189.038634] RIP = 0xffffffff8117479a RSP = 0xffff888068f87998 [ 189.041856] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 189.048268] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 189.060818] reason=80000021 qualification=0000000000000000 [ 189.062412] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 189.069161] IDTVectoring: info=00000000 errcode=00000000 [ 189.076152] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 189.086361] TSC Offset = 0xffffff984674a1c8 [ 189.092424] CR0=0000000080050033 CR3=0000000069329000 CR4=00000000001426f0 [ 189.097723] EPT pointer = 0x000000008c15e01e [ 189.104978] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 14:22:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 189.130542] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 189.130547] *** Control State *** [ 189.130553] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 189.130559] EntryControls=0000d1ff ExitControls=002fefff [ 189.130570] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 189.130576] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 189.130582] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 189.130587] reason=80000021 qualification=0000000000000000 14:22:28 executing program 2: 14:22:28 executing program 1: 14:22:28 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r3, 0x4008ae89, &(0x7f0000000280)={0x7b, 0x0, [0x49, 0x1]}) 14:22:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:28 executing program 0: r0 = open(&(0x7f0000000140)='./file0\x00', 0x10d242, 0x0) write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0xffffffffffffffec) r1 = gettid() ptrace$peekuser(0x3, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) getsockname$unix(r0, 0x0, 0x0) write$nbd(0xffffffffffffffff, 0x0, 0x4d8) prctl$PR_SVE_GET_VL(0x33, 0x0) tkill(r1, 0x1000000000016) [ 189.130593] IDTVectoring: info=00000000 errcode=00000000 [ 189.130597] TSC Offset = 0xffffff9840954095 [ 189.130603] EPT pointer = 0x00000000a5d5c01e 14:22:28 executing program 1: perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) open(0x0, 0x0, 0x0) uname(&(0x7f0000000300)=""/66) [ 189.296217] audit: type=1800 audit(1555683748.460:45): pid=7971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.0" name="file0" dev="sda1" ino=16634 res=0 14:22:28 executing program 2: perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x5c64, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) io_getevents(r0, 0x7, 0x8000000000001a5, &(0x7f00000000c0)=[{}, {}], 0x0) r1 = memfd_create(&(0x7f0000000340)=';+lo#\x00`vo\xdc.\a8\xd6d\xc9~\'\x06\x00v9\xf5\xdd\xc4\xcc+\xed\xd6\xb4\xb2#\x82\x16\xa1\xc5\b\xf7\xf3_\x9dy\\\xb6\xe3b\x02\xdc\x87\xaed\xa8\xd0 X\xd8\xff\x19\teP0\xe1?6\a\xb1\xa7\xdd \x94D\xfe\xd0\x16\x7f\xc2\xce\x93\xf8i\xcc\x06\x01\x8dSj\xc6\xfb{\x9cA\xb8\x19x\xc4\x16\x17\xd48\x91\xd8\xd9\xf7V6H{_\xf3\xdc\x8eh\xbdL\xf3\x9b\x83\xb6\xb2I\'\xc6$\x0f4\xaaa\xa1F[\x9e\x98\xa86\xf3\x03\x1d\x95W\x8f\xf9C\xa9\x83s\xd0\x13\x86\xbcDI\x06\xf6\x8e\x94\xd0#\x19\xf65Y!\xc1}\x81\xf0>@\xbf\xa3B:\xa8W\x84\xdc&\x87\xcb\xba\x85\xa6\xa3\f&\xa7\x87c{\x13\x9b\x1e\xbd\xe9\xc0J\xb3\xe6\x1d#h\xad\xa9\x8ce$\xca\xf1p^\x97\xf1\x04@\xc1s\a\xe6\x05(\xc4Q\xea\x04:fl\xd2\x84\x13\x87\xe0!d\xda&\a\xffG\xfdk8$_\xf9l\xf0\xfa\x1b\xec\xf7\xdd\xe2\xe3\xc2\xc8\x05Pvu\x92@\\\xc4\x10\xfe0`\x98\xd3\x12\xbe\x05]\xe1\x94\x86\x84F;\'\x87\x10+d&\xeb_\r\x947\xd3\xecry\xdc\x80qgG\x16\x17[<)\x9b\xd6Uz\x81F\xbbpz\x8d\xf1~\xe4@|\n\xb6]H\x10U\x84\xc2\x91\xa6\xb5YU]\xee\x8e\xb7\xaeE\x8b\xe9\xf44p\xbb((\xd3\x99\x9c\xa7\xb1\t\x912\xb5\x1b=\x16\x00', 0x0) io_submit(r0, 0x1, &(0x7f0000001280)=[&(0x7f0000001100)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) [ 189.386083] audit: type=1800 audit(1555683748.520:46): pid=7971 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.0" name="file0" dev="sda1" ino=16634 res=0 14:22:28 executing program 0: setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, 0x0, 0xea) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x1, 0x0) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/hash_stats\x00', 0x0, 0x0) keyctl$setperm(0x5, 0x0, 0x20000010) ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000380)={0x7fffffff, 0x96ed, 0x1ff, 0x8, 0x3}) lseek(r1, 0x3, 0x2) request_key(0x0, &(0x7f0000000180)={'syz', 0x1}, &(0x7f00000001c0)='trusted.overlay.origin\x00', 0xfffffffffffffff8) ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000280)={0x38, 0x35, 0x0, 0x3, 0x0, 0x800, 0x5, 0x56, 0x1}) keyctl$negate(0xd, 0x0, 0x6, 0x0) setsockopt$ARPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x61, &(0x7f0000000400)={'filter\x00', 0x4}, 0x68) openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000300)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) restart_syscall() ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) syz_mount_image$f2fs(&(0x7f0000000240)='f2fs\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="1020f5f20100070009000000030000000c0000000900000001000000020000000000000000300000000000000e00000016000000020000000200000002000000020000000e000000000400000004000000080000000c00000010000000140000030000000100000002", 0x69, 0x1400}], 0x0, 0x0) write$P9_RUNLINKAT(r1, &(0x7f00000003c0)={0x7, 0x4d, 0x2}, 0x7) keyctl$join(0x1, &(0x7f0000000480)={'syz', 0x2}) 14:22:28 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00') sendfile(r0, r2, &(0x7f0000000040)=0x100000, 0x8001) 14:22:28 executing program 3: add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff9) keyctl$restrict_keyring(0x1d, 0x0, 0x0, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x0, 0x0) ioctl$VT_SETMODE(r0, 0x5602, 0x0) r1 = gettid() ptrace$peekuser(0x3, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) umount2(0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0) ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) getpeername$netlink(0xffffffffffffffff, 0x0, 0x0) rename(0x0, 0x0) tkill(r1, 0x1000000000016) 14:22:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 189.603950] F2FS-fs (loop0): Magic Mismatch, valid(0xf2f52010) - read(0x0) 14:22:28 executing program 2: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f000013a000/0xc000)=nil], 0x0, &(0x7f0000000080), 0x0) 14:22:28 executing program 1: bind$inet6(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[]}}, 0x0) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000184000)=ANY=[@ANYBLOB="020100021000000000000600000000000800120000ffff00000000000000000006000000000000060000800000000000e00000010b00000000000000000035000000000000000000000000ff00000000030006000000000002000004000000bb000000000000000003000500000000000200423b000000000000004000000000"], 0x80}}, 0x0) r0 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/status\x00', 0x0, 0x0) write$apparmor_exec(r0, &(0x7f0000000140)={'exec ', 'em1{$\x00'}, 0xb) socket$unix(0x1, 0x7, 0x0) r1 = socket$key(0xf, 0x3, 0x2) socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg(r1, &(0x7f0000000180), 0x400000000000117, 0x0) 14:22:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) connect$inet6(0xffffffffffffffff, &(0x7f00000000c0), 0x1c) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 189.649285] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock 14:22:28 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) read(r0, &(0x7f0000000540)=""/11, 0x485) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200)) syz_execute_func(&(0x7f0000000040)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socketpair(0x0, 0x0, 0x0, 0x0) r1 = creat(&(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0) dup2(r0, r1) ioctl$TUNSETVNETLE(r1, 0x400454dc, 0x0) [ 189.716972] attempt to access beyond end of device [ 189.753637] loop0: rw=12288, want=8200, limit=20 [ 189.764657] F2FS-fs (loop0): invalid crc value 14:22:28 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000080)) syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff0200000000000000000100000073"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) 14:22:28 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:29 executing program 1: clone(0x200, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x5, 0x400200) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000180)=0x4) mknod(&(0x7f00000000c0)='./file0\x00', 0x81, 0x0) execve(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000000040)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) clone(0x2000002100001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) ptrace(0x10, r1) tkill(r1, 0x1000000000016) [ 189.795184] attempt to access beyond end of device [ 189.807828] loop0: rw=12288, want=12296, limit=20 [ 189.839521] F2FS-fs (loop0): invalid crc value [ 189.862486] F2FS-fs (loop0): Failed to get valid F2FS checkpoint [ 189.903463] F2FS-fs (loop0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 189.932889] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 189.954525] attempt to access beyond end of device [ 189.969726] loop0: rw=12288, want=8200, limit=20 [ 189.975163] F2FS-fs (loop0): invalid crc value [ 189.979905] attempt to access beyond end of device [ 189.985184] loop0: rw=12288, want=12296, limit=20 [ 189.990239] F2FS-fs (loop0): invalid crc value [ 189.995260] F2FS-fs (loop0): Failed to get valid F2FS checkpoint [ 190.057959] ptrace attach of ""[8029] was attempted by "/root/syz-executor.1"[8041] [ 190.108505] attempt to access beyond end of device [ 190.114102] loop0: rw=12288, want=8200, limit=20 [ 190.118946] attempt to access beyond end of device [ 190.128308] loop0: rw=12288, want=12296, limit=20 [ 190.138576] attempt to access beyond end of device [ 190.144047] loop0: rw=12288, want=8200, limit=20 [ 190.148924] attempt to access beyond end of device [ 190.156832] loop0: rw=12288, want=12296, limit=20 14:22:29 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup\x00', 0x200002, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = openat$cgroup_subtree(r0, &(0x7f0000000080)='cgroup.subtree_control\x00', 0x2, 0x0) close(r2) openat$cgroup_ro(r0, &(0x7f0000000000)='io.stat\x00', 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000019c0)=""/61, 0x3d}}], 0x1, 0x0, 0x0) readv(r2, &(0x7f00000002c0), 0x1a5) 14:22:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:29 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000080)) syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff0200000000000000000100000073"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) 14:22:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:29 executing program 1: clone(0x200, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x5, 0x400200) getsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f0000000100), &(0x7f0000000180)=0x4) mknod(&(0x7f00000000c0)='./file0\x00', 0x81, 0x0) execve(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000000040)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) clone(0x2000002100001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000140)='./file0\x00', 0x0, 0x0) ptrace(0x10, r1) tkill(r1, 0x1000000000016) 14:22:29 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000080)) syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff0200000000000000000100000073"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) 14:22:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 190.327126] *** Guest State *** [ 190.346813] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:22:29 executing program 0: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045003, &(0x7f0000000080)=0x200000100000003) ioctl$int_in(r0, 0x800000c0045002, &(0x7f0000000100)) [ 190.373098] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 190.397081] CR3 = 0x00000000fffbc000 [ 190.416670] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 190.430800] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 190.460577] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 190.467290] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 190.492062] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 190.500305] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 190.508355] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 190.518423] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 190.526615] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 190.534975] GDTR: limit=0x00000000, base=0x0000000000000000 [ 190.543118] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 190.553171] IDTR: limit=0x00000000, base=0x0000000000000000 [ 190.561289] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 190.569269] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 190.575778] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 190.583297] Interruptibility = 00000008 ActivityState = 00000000 [ 190.589532] *** Host State *** 14:22:29 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128l-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r2, &(0x7f0000003e80)=[{0x0, 0x0, &(0x7f0000002a80), 0x167, &(0x7f0000000100)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) recvmmsg(r2, &(0x7f0000001280)=[{{&(0x7f0000000ec0)=@nl=@proc, 0x5, &(0x7f0000001180)=[{&(0x7f0000001080)=""/251, 0xfb}], 0x11, &(0x7f00000011c0)=""/157, 0x9d}}], 0x1500, 0x0, &(0x7f0000001380)={0x77359400}) 14:22:29 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) getsockname(0xffffffffffffffff, 0x0, &(0x7f0000000080)) syz_emit_ethernet(0x1, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000000000086dd6002290f00300000fe800000000000008000000000000000ff0200000000000000000100000073"], 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={&(0x7f0000f4dff4), 0x4d9, &(0x7f0000000040)={&(0x7f0000000080)=@migrate={0x15c, 0x21, 0x1, 0x0, 0x0, {{@in6=@ipv4={[], [], @multicast1}, @in6=@dev}}, [@migrate={0x10c}]}, 0x15c}}, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) 14:22:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:29 executing program 0: r0 = semget$private(0x0, 0x20000000106, 0x0) semtimedop(r0, &(0x7f0000033816)=[{}, {0x0, 0x8091}], 0x2, 0x0) semctl$GETNCNT(r0, 0x0, 0xe, 0x0) [ 190.593293] RIP = 0xffffffff8117479a RSP = 0xffff888058d67998 [ 190.599361] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 190.606385] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 190.617194] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 190.629719] CR0=0000000080050033 CR3=000000008d801000 CR4=00000000001426f0 14:22:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 190.660397] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 190.667112] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 190.679057] *** Control State *** [ 190.698305] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 190.698305] The task syz-executor.0 (8112) triggered the difference, watch for misbehavior. [ 190.710091] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 190.744519] EntryControls=0000d1ff ExitControls=002fefff [ 190.766303] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 190.783886] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 190.806016] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 14:22:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:30 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="11dca5055e0bcfec7be070") r1 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f00000001c0)={'lo\x00\x00\x00\x00\x00\x00\xed\xff\xff\xff\xff\xff\xff\xff'}) r2 = socket(0x80000000000000a, 0x2, 0x0) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={[0xfeffffff], [], @loopback}}, 0x1c) ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000000)={'lo\x00\x00\x00\x00\x04\x00\x00\x00\x00\x06\x00', 0xfd}) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000040), 0x10) 14:22:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 190.821592] reason=80000021 qualification=0000000000000000 [ 190.827926] IDTVectoring: info=00000000 errcode=00000000 [ 190.838050] TSC Offset = 0xffffff975bec7b75 [ 190.842850] EPT pointer = 0x000000008ba5801e [ 190.944702] *** Guest State *** [ 190.948152] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 190.974629] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 190.983871] CR3 = 0x00000000fffbc000 [ 190.987609] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 190.993913] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 190.999888] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 191.006907] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 191.014966] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 191.023012] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 191.031807] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 191.039786] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 191.047823] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 191.055873] GDTR: limit=0x00000000, base=0x0000000000000000 [ 191.063924] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 191.071948] IDTR: limit=0x00000000, base=0x0000000000000000 [ 191.079920] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 191.087937] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 191.094396] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 191.101896] Interruptibility = 00000008 ActivityState = 00000000 [ 191.108126] *** Host State *** [ 191.111573] RIP = 0xffffffff8117479a RSP = 0xffff88806434f998 [ 191.117607] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 191.124095] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 191.131974] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 191.137959] CR0=0000000080050033 CR3=00000000a013c000 CR4=00000000001426f0 [ 191.145010] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 191.151717] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 191.157777] *** Control State *** [ 191.161300] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 191.167971] EntryControls=0000d1ff ExitControls=002fefff [ 191.173498] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 191.180482] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 191.187145] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 191.193810] reason=80000021 qualification=0000000000000000 [ 191.200169] IDTVectoring: info=00000000 errcode=00000000 [ 191.205638] TSC Offset = 0xffffff970691f486 [ 191.209951] EPT pointer = 0x00000000a816901e 14:22:32 executing program 1: 14:22:32 executing program 3: setreuid(0x0, 0xee00) setresuid(0x0, 0x0, 0x0) r0 = msgget$private(0x0, 0x2c8) msgctl$IPC_SET(r0, 0x1, &(0x7f0000000280)={{0x7, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4}, 0x5, 0xfffffffffffffff9, 0x100000001, 0x10000, 0x1, 0x3b}) 14:22:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:32 executing program 2: 14:22:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:32 executing program 0: 14:22:32 executing program 1: 14:22:32 executing program 2: 14:22:32 executing program 0: 14:22:32 executing program 3: perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x5c64, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) io_getevents(r0, 0x7, 0x8000000000001a5, &(0x7f00000000c0)=[{}, {}], 0x0) r1 = memfd_create(&(0x7f0000000340)=';+lo#\x00`vo\xdc.\a8\xd6d\xc9~\'\x06\x00v9\xf5\xdd\xc4\xcc+\xed\xd6\xb4\xb2#\x82\x16\xa1\xc5\b\xf7\xf3_\x9dy\\\xb6\xe3b\x02\xdc\x87\xaed\xa8\xd0 X\xd8\xff\x19\teP0\xe1?6\a\xb1\xa7\xdd \x94D\xfe\xd0\x16\x7f\xc2\xce\x93\xf8i\xcc\x06\x01\x8dSj\xc6\xfb{\x9cA\xb8\x19x\xc4\x16\x17\xd48\x91\xd8\xd9\xf7V6H{_\xf3\xdc\x8eh\xbdL\xf3\x9b\x83\xb6\xb2I\'\xc6$\x0f4\xaaa\xa1F[\x9e\x98\xa86\xf3\x03\x1d\x95W\x8f\xf9C\xa9\x83s\xd0\x13\x86\xbcDI\x06\xf6\x8e\x94\xd0#\x19\xf65Y!\xc1}\x81\xf0>@\xbf\xa3B:\xa8W\x84\xdc&\x87\xcb\xba\x85\xa6\xa3\f&\xa7\x87c{\x13\x9b\x1e\xbd\xe9\xc0J\xb3\xe6\x1d#h\xad\xa9\x8ce$\xca\xf1p^\x97\xf1\x04@\xc1s\a\xe6\x05(\xc4Q\xea\x04:fl\xd2\x84\x13\x87\xe0!d\xda&\a\xffG\xfdk8$_\xf9l\xf0\xfa\x1b\xec\xf7\xdd\xe2\xe3\xc2\xc8\x05Pvu\x92@\\\xc4\x10\xfe0`\x98\xd3\x12\xbe\x05]\xe1\x94\x86\x84F;\'\x87\x10+d&\xeb_\r\x947\xd3\xecry\xdc\x80qgG\x16\x17[<)\x9b\xd6Uz\x81F\xbbpz\x8d\xf1~\xe4@|\n\xb6]H\x10U\x84\xc2\x91\xa6\xb5YU]\xee\x8e\xb7\xaeE\x8b\xe9\xf44p\xbb((\xd3\x99\x9c\xa7\xb1\t\x912\xb5\x1b=\x16\x00', 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x11, r1, 0x0) io_submit(r0, 0x1, &(0x7f0000001280)=[&(0x7f0000001100)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) 14:22:32 executing program 1: r0 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) gettid() read(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, 0x0) 14:22:32 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 193.367761] *** Guest State *** 14:22:32 executing program 2: r0 = socket(0xa, 0x2, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\xfb\x00\x88M\xe9{\x00', 0x8}, 0x18) ioctl(r0, 0x8918, &(0x7f0000000000)) 14:22:32 executing program 0: r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x0, 0x0) ioctl(r0, 0x8000000008009373, &(0x7f0000000140)="010000000000000018") [ 193.412045] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:22:32 executing program 1: connect$inet(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@link_local, @empty=[0x0, 0x0, 0x14], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414bb, @multicast1=0xac14140a}, @udp={0x0, 0x0, 0x8}}}}}, 0x0) [ 193.487832] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:22:32 executing program 3: clone(0x4000003102041ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() futex(&(0x7f0000000140)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x2f) write$P9_RREAD(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB="e63ed7a35cfe566fc75d286559eea3d72665ce48181122f1c2ff8a68069de483604e38df716ed3e67cd3bb4ff323f312650bddf6e9d2e70f9f"], 0x39) ptrace$cont(0x18, r0, 0x0, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f00000000c0)) ptrace$cont(0x7, r0, 0x0, 0x0) [ 193.552908] CR3 = 0x00000000fffbc000 [ 193.560946] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 193.596651] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 193.632528] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 193.670787] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 193.702314] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 193.710847] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 193.726161] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 193.738607] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 193.762936] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 193.776063] GDTR: limit=0x00000000, base=0x0000000000000000 [ 193.784586] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 193.793251] IDTR: limit=0x00000000, base=0x0000000000000000 [ 193.802376] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 193.810748] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 193.817264] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 193.825106] Interruptibility = 00000008 ActivityState = 00000000 [ 193.831739] *** Host State *** [ 193.834968] RIP = 0xffffffff8117479a RSP = 0xffff888064f67998 [ 193.841361] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 193.847772] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 193.855631] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 193.861565] CR0=0000000080050033 CR3=0000000087e32000 CR4=00000000001426f0 [ 193.868576] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 193.875415] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 193.881527] *** Control State *** [ 193.884979] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 193.891709] EntryControls=0000d1ff ExitControls=002fefff [ 193.897161] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 193.904147] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 193.910847] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 193.917439] reason=80000021 qualification=0000000000000000 14:22:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:33 executing program 1: perf_event_open(&(0x7f0000000500)={0x2, 0x70, 0x71, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$smack_task_current(0xffffffffffffff9c, &(0x7f0000000480)='/proc/self/attr/current\x00', 0x2, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000066000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) r1 = socket$inet6(0xa, 0x400000000001, 0x0) r2 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$BLKSECDISCARD(0xffffffffffffffff, 0x127d, 0x0) r3 = dup(r1) setsockopt$inet6_tcp_int(r1, 0x6, 0x400000000000000a, &(0x7f0000000000)=0x81, 0x4) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xc7e4) bind$inet6(r1, &(0x7f0000000300)={0xa, 0x4e20}, 0x1c) sendto$inet6(r1, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r4 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000001c0)=0x2, 0x4) ioctl$TIOCNXCL(0xffffffffffffffff, 0x540d) ioctl$TIOCLINUX6(r3, 0x541c, &(0x7f0000000100)={0x6, 0x8001}) r5 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x0) getresuid(&(0x7f00000003c0), &(0x7f0000000380), &(0x7f0000001380)) perf_event_open(&(0x7f00000012c0)={0x5, 0x70, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) times(&(0x7f0000000080)) getsockopt$inet_mreqn(r2, 0x0, 0x24, &(0x7f00000002c0)={@multicast2, @initdev}, &(0x7f0000000340)=0xc) vmsplice(r4, &(0x7f0000000280)=[{&(0x7f0000000200)="f44e72ca2cc1bbb2ea1fd2b32c520a202dc2be63d6d35de1e75cbadd860a0e2387a8026a116a4a2281d295039391aee2261a7321c046db8ad6afe1be5cfb3bc959fdcf7c06497a4445f6dfdf44d5213003", 0x51}], 0x1, 0x8) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r3, 0x28, &(0x7f0000000140)}, 0x10) ftruncate(r5, 0x7fff) sendfile(r3, r5, 0x0, 0x8000fffffffe) tkill(r0, 0x1000000000016) 14:22:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@mcast1={0xff, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f000000]}, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0xffffff7f}}}, 0xb8}}, 0x0) 14:22:33 executing program 2: mmap(&(0x7f0000005000/0x1000)=nil, 0x1000, 0xc, 0x8004001f071, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) shutdown(r1, 0x1) recvmmsg(r0, &(0x7f0000001f4c), 0x63154ab2b52ee4, 0x0, 0x0) 14:22:33 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xd1, &(0x7f0000000000)={{0xa, 0x0, 0x0, @dev}, {0xa, 0x0, 0x0, @mcast2}}, 0x4) setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f00000000c0)={{0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00]}}, {0xa, 0x0, 0x0, @mcast1}}, 0x5c) [ 193.923812] IDTVectoring: info=00000000 errcode=00000000 [ 193.929277] TSC Offset = 0xffffff95bb950998 [ 193.933646] EPT pointer = 0x00000000a06ee01e 14:22:33 executing program 0: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) read(r0, &(0x7f0000000240)=""/4096, 0x1000) 14:22:33 executing program 3: sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = open(&(0x7f0000000480)='./file0\x00', 0x80000000000206, 0x0) truncate(&(0x7f0000000100)='./file0\x00', 0x608020001) lseek(r0, 0x0, 0x3) poll(&(0x7f00000000c0)=[{r0}], 0x1, 0x0) fcntl$setflags(0xffffffffffffffff, 0x2, 0x0) setsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x10, 0x0, 0x0) clock_settime(0x0, 0x0) mkdir(&(0x7f0000000240)='./file0\x00', 0x0) 14:22:33 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x400000032, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000003fe8)) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000001fe2)={{&(0x7f0000011000/0x3000)=nil, 0x3000}, 0x1}) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000013e95), 0x4) getsockopt$IP_VS_SO_GET_VERSION(r2, 0x0, 0x480, &(0x7f0000000040), &(0x7f0000000080)=0x40) close(r2) close(r1) [ 194.108708] *** Guest State *** 14:22:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 194.130151] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:22:33 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000dddfc8)={0x0, 0x0, &(0x7f00008a7000)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000006060501ff0080ff2a3fff2e0a0000001c01000600129d7f0a00010c0002000000228b4bb646d400"], 0x2c}}, 0x0) [ 194.184124] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:22:33 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000240)="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") r1 = syz_open_dev$loop(&(0x7f0000000200)='/dev/loop#\x00', 0x0, 0x82) sendfile(r1, r1, 0x0, 0x20002000005) [ 194.240422] audit: type=1400 audit(1555683753.400:47): avc: denied { create } for pid=8212 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 194.273417] CR3 = 0x00000000fffbc000 [ 194.296945] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 194.335605] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 194.372007] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 194.416091] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 194.437162] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 194.455658] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 194.489654] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 194.498058] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 194.506865] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 194.515422] GDTR: limit=0x00000000, base=0x0000000000000000 [ 194.523614] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 194.537622] IDTR: limit=0x00000000, base=0x0000000000000000 [ 194.546562] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 194.560451] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 194.566971] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 194.575034] Interruptibility = 00000008 ActivityState = 00000000 [ 194.581623] *** Host State *** [ 194.584909] RIP = 0xffffffff8117479a RSP = 0xffff888063457998 [ 194.594553] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 194.601250] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 194.609148] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 194.615151] CR0=0000000080050033 CR3=0000000095fbe000 CR4=00000000001426f0 [ 194.622996] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 194.629749] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 194.635887] *** Control State *** [ 194.639344] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 194.646169] EntryControls=0000d1ff ExitControls=002fefff [ 194.651721] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 194.658660] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 194.665651] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 194.672309] reason=80000021 qualification=0000000000000000 [ 194.678681] IDTVectoring: info=00000000 errcode=00000000 [ 194.684270] TSC Offset = 0xffffff9555e1a20c 14:22:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:33 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) ptrace$peekuser(0x3, 0x0, 0x0) write$P9_RAUTH(0xffffffffffffffff, 0x0, 0x165) write$P9_RRENAME(0xffffffffffffffff, 0x0, 0x49e) timer_create(0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, 0x0) write$P9_RGETLOCK(r0, 0x0, 0x0) fcntl$lock(r0, 0x0, 0x0) 14:22:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:33 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x40000020, r0, 0x0) read(r1, &(0x7f0000000000)=""/64, 0x40) 14:22:33 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000400)={'syz1\x00'}, 0x45c) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x2) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1) ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0) 14:22:33 executing program 1: r0 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c) sendmmsg(r0, &(0x7f0000000100), 0x8000000000002e3, 0x0) [ 194.688595] EPT pointer = 0x000000008aeff01e 14:22:33 executing program 3: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dsp\x00', 0x0, 0x0) ioctl$int_in(r0, 0x800000c0045003, &(0x7f0000000080)=0x200000100000003) ioctl$int_in(r0, 0x800000c0045002, &(0x7f0000000100)=0xeaba) read$FUSE(r0, &(0x7f0000000140), 0x1000) read$FUSE(r0, &(0x7f0000001200), 0x1000) [ 194.769509] input: syz1 as /devices/virtual/input/input5 14:22:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 194.821313] *** Guest State *** [ 194.835952] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 194.861341] input: syz1 as /devices/virtual/input/input6 14:22:34 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_sys\x00\xc7\xec\xac\xd9&{\x0f\x96\xad\xd1\x8fl![\x8f\xb9\f\xca\x1d\xc2{\xee\xb7\x03K\x0f\xa6\xaa;\xf6\x89\xf7b^\xa5\xafI\r\xc4\x9f\v\xf2\x1c\xdc\xddp2\xb7\xbb\x1b\xfev\xea\xed\xe0\xaa\xe8\xceR`\xbb\xf2\xed;pC\x19\xbfn\x16\xaa\x199\xfe.Q\xebvB\xd2\x19&l?\x87\x17H\x1f.\xdbA\x1b\xafz\xe3\xdc};*\xec\xfe\xfa\xfb/\x18g\x80y\xfe\x89', 0x26e1, 0x0) r2 = socket$kcm(0xa, 0x0, 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r1, 0x89e1, &(0x7f00000002c0)={r1}) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$kcm(r2, &(0x7f0000000280)={&(0x7f0000000000)=@in6, 0x80, 0x0}, 0x200008c4) ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x5452, &(0x7f0000000140)) close(r0) close(r1) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000040)) write$cgroup_type(r1, &(0x7f0000000080)='threaded\x00', 0xfffffc61) recvmsg$kcm(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000300)=""/204, 0xcc}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000140)={0x0, 0x1d, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/110, 0x2000012e}], 0x1}, 0x3f00) [ 194.917859] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 194.990791] CR3 = 0x00000000fffbc000 14:22:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:34 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x2) setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'e \x00\b\x00', 0x3}, 0xfffffffffffffe1f) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket(0x2, 0x807, 0xffffffff) r1 = socket(0xa, 0x1, 0x0) ioctl(r1, 0x8916, &(0x7f0000000000)) [ 195.015056] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 195.072076] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 195.091204] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 195.118246] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 14:22:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 195.178080] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 195.199670] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 195.229863] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 195.253890] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 195.310902] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 195.370101] GDTR: limit=0x00000000, base=0x0000000000000000 [ 195.411840] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 195.453372] IDTR: limit=0x00000000, base=0x0000000000000000 [ 195.478874] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 195.498717] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 195.515676] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 195.534574] Interruptibility = 00000008 ActivityState = 00000000 [ 195.545118] *** Host State *** [ 195.549682] RIP = 0xffffffff8117479a RSP = 0xffff888061777998 [ 195.568566] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 195.586557] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 195.629347] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 195.635609] CR0=0000000080050033 CR3=000000008987b000 CR4=00000000001426e0 [ 195.647906] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 195.655816] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 195.674729] *** Control State *** [ 195.678355] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 195.690722] EntryControls=0000d1ff ExitControls=002fefff [ 195.696321] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 195.707655] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 195.716281] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 195.727203] reason=80000021 qualification=0000000000000000 [ 195.734911] IDTVectoring: info=00000000 errcode=00000000 [ 195.745237] TSC Offset = 0xffffff94f4090200 [ 195.749744] EPT pointer = 0x000000008bee701e 14:22:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:34 executing program 3: bpf$MAP_CREATE(0x0, &(0x7f0000001700)={0x5, 0x6, 0x100000001, 0x8000000001, 0x1}, 0x3c) bpf$MAP_CREATE(0x2, &(0x7f0000000080)={0x3, 0x0, 0x77fffb, 0x0, 0x820005, 0x0}, 0x2c) 14:22:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:34 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x40000020, r0, 0x0) read(r1, &(0x7f0000000000)=""/64, 0x40) 14:22:35 executing program 3: socket$inet6_udplite(0xa, 0x2, 0x88) r0 = socket$inet_udplite(0x2, 0x2, 0x88) close(r0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r1, &(0x7f00000001c0)={0x2, 0x2000003, @broadcast}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='/\x02roup.stap\x00', 0x2761, 0x0) r2 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) write$cgroup_int(r2, &(0x7f00000000c0), 0x4557434d) sendfile(r0, r2, 0x0, 0x20000000006) [ 195.952128] *** Guest State *** [ 195.972448] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 196.043827] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 196.081616] CR3 = 0x00000000fffbc000 [ 196.105255] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 196.117619] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 196.138150] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 196.145387] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 196.154772] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 196.163161] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 196.173706] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 196.182012] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 196.191096] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:22:35 executing program 1: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) futimesat(r0, 0x0, 0x0) 14:22:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:35 executing program 0: r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x10080}, '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x11\x00\x00\x00\x00\x00\xe3\xc2\xbc\xf6T\xfa\x8e\xb0\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\"\x00'}) open(0x0, 0x0, 0x0) fchdir(0xffffffffffffffff) gettid() open(0x0, 0x0, 0x0) process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, 0x0, 0x0) [ 196.199340] GDTR: limit=0x00000000, base=0x0000000000000000 [ 196.242622] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 14:22:35 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:35 executing program 0: r0 = memfd_create(&(0x7f0000000300)='\x00\x00\x06\x00', 0x0) write$binfmt_elf32(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c46000000000080000000000000030006000000000000000000380000007fffffff000000000000200002"], 0x2d) execveat(r0, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1000) [ 196.283258] IDTR: limit=0x00000000, base=0x0000000000000000 [ 196.297805] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 196.347850] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 196.372334] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 196.421063] Interruptibility = 00000008 ActivityState = 00000000 [ 196.452815] *** Host State *** 14:22:35 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:35 executing program 1: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cpu.weight.nice\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000100), 0x12) [ 196.473305] RIP = 0xffffffff8117479a RSP = 0xffff888092cbf998 [ 196.502655] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 196.526048] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 196.546595] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 196.553173] CR0=0000000080050033 CR3=0000000097198000 CR4=00000000001426e0 [ 196.574927] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 196.620848] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 196.630355] *** Control State *** [ 196.633830] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 196.678047] EntryControls=0000d1ff ExitControls=002fefff [ 196.693647] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 196.720572] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 196.760121] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 14:22:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:36 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x0, 0x0) ioctl(r0, 0x8000000000009371, &(0x7f0000000280)="010000000000000018") 14:22:36 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:36 executing program 2: syz_emit_ethernet(0x66, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0xe403}, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, 'v`Q', 0x30, 0x3a, 0xffffffffffffffff, @remote={0xfe, 0x80, [0x4, 0x543, 0x700, 0x5, 0x500000000000000], 0xffffffffffffffff}, @mcast2={0xff, 0x2, [0x0, 0xfffffffffffff000]}, {[], @icmpv6=@dest_unreach={0xffffff86, 0x0, 0x0, 0x0, [0x7, 0x2], {0x0, 0x6, "c5961e", 0x0, 0x0, 0x28, @mcast1={0xff, 0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, 0x3, 0x0, 0x0, 0x5]}, @mcast2}}}}}}}, 0x0) [ 196.766736] reason=80000021 qualification=0000000000000000 [ 196.787482] IDTVectoring: info=00000000 errcode=00000000 [ 196.796295] TSC Offset = 0xffffff9457d1496c [ 196.804235] EPT pointer = 0x000000009323c01e [ 196.998330] *** Guest State *** [ 197.015649] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 197.035040] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 197.044545] CR3 = 0x00000000fffbc000 [ 197.048529] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 197.055737] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 197.063791] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 197.071268] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 197.079692] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.088251] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.096427] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.106521] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.115004] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.125895] GDTR: limit=0x00000000, base=0x0000000000000000 [ 197.134141] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 14:22:36 executing program 3: 14:22:36 executing program 1: 14:22:36 executing program 2: 14:22:36 executing program 0: 14:22:36 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:36 executing program 2: 14:22:36 executing program 1: [ 197.142930] IDTR: limit=0x00000000, base=0x0000000000000000 [ 197.151318] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 197.159534] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 197.180745] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 197.220404] Interruptibility = 00000008 ActivityState = 00000000 [ 197.264146] *** Host State *** 14:22:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 197.288852] RIP = 0xffffffff8117479a RSP = 0xffff888094717998 [ 197.340547] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 197.358079] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 197.382373] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 197.398155] CR0=0000000080050033 CR3=0000000088764000 CR4=00000000001426f0 [ 197.414866] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 197.425592] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 197.433196] *** Control State *** [ 197.436816] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 197.446086] EntryControls=0000d1ff ExitControls=002fefff [ 197.452784] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 197.459814] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 197.467370] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 197.474063] reason=80000021 qualification=0000000000000000 14:22:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:36 executing program 3: 14:22:36 executing program 0: 14:22:36 executing program 2: 14:22:36 executing program 1: 14:22:36 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 197.480754] IDTVectoring: info=00000000 errcode=00000000 [ 197.486215] TSC Offset = 0xffffff93c9a1a0f3 [ 197.490864] EPT pointer = 0x000000008252501e 14:22:36 executing program 1: 14:22:36 executing program 3: 14:22:36 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:36 executing program 0: 14:22:36 executing program 2: [ 197.671061] *** Guest State *** 14:22:36 executing program 1: [ 197.701572] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 197.765164] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 197.800317] CR3 = 0x00000000fffbc000 [ 197.813615] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 197.830934] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 197.838579] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 197.846858] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 197.861543] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.875769] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.895163] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.906349] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.923225] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 197.933451] GDTR: limit=0x00000000, base=0x0000000000000000 [ 197.941546] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 197.949527] IDTR: limit=0x00000000, base=0x0000000000000000 [ 197.958367] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 197.966551] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 197.973079] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 197.982371] Interruptibility = 00000008 ActivityState = 00000000 [ 197.988604] *** Host State *** [ 197.991991] RIP = 0xffffffff8117479a RSP = 0xffff88805d7ef998 [ 197.997980] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 198.004635] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 198.012492] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 198.018370] CR0=0000000080050033 CR3=000000009bac8000 CR4=00000000001426e0 [ 198.025433] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 198.032163] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 198.038216] *** Control State *** [ 198.041767] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 198.048564] EntryControls=0000d1ff ExitControls=002fefff [ 198.054087] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 198.061063] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 14:22:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:37 executing program 2: 14:22:37 executing program 0: 14:22:37 executing program 3: 14:22:37 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:37 executing program 1: [ 198.067727] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 198.075864] reason=80000021 qualification=0000000000000000 [ 198.082257] IDTVectoring: info=00000000 errcode=00000000 [ 198.087695] TSC Offset = 0xffffff936ddf6ef3 [ 198.092329] EPT pointer = 0x0000000092c9001e 14:22:37 executing program 0: 14:22:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:37 executing program 2: 14:22:37 executing program 1: 14:22:37 executing program 3: 14:22:37 executing program 0: 14:22:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:37 executing program 1: 14:22:37 executing program 2: 14:22:37 executing program 0: 14:22:37 executing program 3: 14:22:37 executing program 0: 14:22:37 executing program 1: 14:22:37 executing program 2: 14:22:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:37 executing program 3: [ 198.588561] *** Guest State *** 14:22:37 executing program 1: [ 198.623161] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 198.691136] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 198.706839] CR3 = 0x00000000fffbc000 [ 198.712010] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 198.718778] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 198.754779] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 198.778170] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 198.802232] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 198.810643] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 198.818746] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 198.827525] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 198.835648] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 198.843675] GDTR: limit=0x00000000, base=0x0000000000000000 [ 198.851738] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 198.859709] IDTR: limit=0x00000000, base=0x0000000000000000 [ 198.867782] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 198.876149] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 198.882820] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 198.891368] Interruptibility = 00000008 ActivityState = 00000000 [ 198.897692] *** Host State *** [ 198.902410] RIP = 0xffffffff8117479a RSP = 0xffff88805b0ff998 [ 198.908495] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 198.915066] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 198.922963] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 198.928933] CR0=0000000080050033 CR3=000000008bf5d000 CR4=00000000001426e0 [ 198.935999] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 198.942695] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 198.948743] *** Control State *** 14:22:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:38 executing program 2: 14:22:38 executing program 0: 14:22:38 executing program 3: 14:22:38 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:38 executing program 1: [ 198.952329] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 198.959007] EntryControls=0000d1ff ExitControls=002fefff [ 198.964514] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 198.971708] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 198.978394] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 198.985005] reason=80000021 qualification=0000000000000000 [ 198.991366] IDTVectoring: info=00000000 errcode=00000000 [ 198.996825] TSC Offset = 0xffffff92f092975b [ 199.001239] EPT pointer = 0x000000008b88301e 14:22:38 executing program 1: 14:22:38 executing program 0: 14:22:38 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:38 executing program 3: 14:22:38 executing program 2: [ 199.171337] *** Guest State *** [ 199.191480] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 14:22:38 executing program 1: [ 199.228955] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 199.289954] CR3 = 0x0000000000000000 [ 199.313182] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 199.320815] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 199.326921] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 199.334828] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.343110] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.351805] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.359860] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.368020] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.376084] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.384118] GDTR: limit=0x00000000, base=0x0000000000000000 [ 199.392161] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.400238] IDTR: limit=0x00000000, base=0x0000000000000000 [ 199.408217] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.416273] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 199.422719] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 199.430411] Interruptibility = 00000000 ActivityState = 00000000 [ 199.436653] *** Host State *** [ 199.439830] RIP = 0xffffffff8117479a RSP = 0xffff88805cf5f998 [ 199.445863] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 199.452317] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 199.460225] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 199.466117] CR0=0000000080050033 CR3=00000000a1b3e000 CR4=00000000001426e0 [ 199.473182] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 199.479855] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 199.485968] *** Control State *** [ 199.489425] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 199.496138] EntryControls=0000d3ff ExitControls=002fefff [ 199.501654] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 14:22:38 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:38 executing program 3: 14:22:38 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:38 executing program 2: 14:22:38 executing program 0: 14:22:38 executing program 1: [ 199.508566] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 199.515921] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 199.522571] reason=80000021 qualification=0000000000000000 [ 199.528907] IDTVectoring: info=00000000 errcode=00000000 [ 199.534410] TSC Offset = 0xffffff92a30bc891 [ 199.538772] EPT pointer = 0x00000000a91ba01e 14:22:38 executing program 2: 14:22:38 executing program 1: 14:22:38 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:38 executing program 3: 14:22:38 executing program 0: 14:22:38 executing program 1: [ 199.709559] *** Guest State *** [ 199.743122] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 [ 199.804222] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 199.842036] CR3 = 0x0000000000000000 [ 199.846777] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 199.853518] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 199.859590] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 199.866590] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.874996] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.883054] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.891058] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.899018] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.907047] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.915087] GDTR: limit=0x00000000, base=0x0000000000000000 [ 199.923168] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.931945] IDTR: limit=0x00000000, base=0x0000000000000000 [ 199.939919] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 199.947964] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 199.954409] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 199.961923] Interruptibility = 00000000 ActivityState = 00000000 [ 199.968155] *** Host State *** [ 199.971384] RIP = 0xffffffff8117479a RSP = 0xffff888094ab7998 [ 199.977379] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 199.983820] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 199.991777] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 199.997665] CR0=0000000080050033 CR3=000000008a430000 CR4=00000000001426f0 [ 200.004733] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 200.011460] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 200.017519] *** Control State *** [ 200.021030] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 200.027696] EntryControls=0000d3ff ExitControls=002fefff [ 200.033205] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 200.040196] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 200.046855] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 14:22:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:39 executing program 2: 14:22:39 executing program 3: 14:22:39 executing program 0: 14:22:39 executing program 1: 14:22:39 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 200.053496] reason=80000021 qualification=0000000000000000 [ 200.059822] IDTVectoring: info=00000000 errcode=00000000 [ 200.065888] TSC Offset = 0xffffff92559fc680 [ 200.070942] EPT pointer = 0x000000008cb1c01e 14:22:39 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00') sendfile(r0, r2, &(0x7f0000000040)=0x100000, 0x8001) 14:22:39 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x8000001000008912, &(0x7f0000000180)="11dca5055e0bcfec7be070") syz_open_procfs(0x0, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000080)='../net\x00') 14:22:39 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x14) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e23}, 0x1c) listen(r0, 0x8) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10) 14:22:39 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$inet6(0xa, 0x3, 0x1e) getsockopt$inet6_int(r1, 0x29, 0x3c, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 14:22:39 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 200.226815] *** Guest State *** 14:22:39 executing program 3: [ 200.255103] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 [ 200.326150] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 200.384858] CR3 = 0x0000000000000000 [ 200.403465] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 200.425226] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 200.436688] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 200.447064] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.455549] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.464190] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.472446] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.480837] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.488978] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.497112] GDTR: limit=0x00000000, base=0x0000000000000000 [ 200.505197] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.513351] IDTR: limit=0x00000000, base=0x0000000000000000 [ 200.522469] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 200.531942] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 200.538349] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 200.545837] Interruptibility = 00000000 ActivityState = 00000000 [ 200.552108] *** Host State *** [ 200.555382] RIP = 0xffffffff8117479a RSP = 0xffff8880876f7998 [ 200.561402] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 200.568002] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 200.575884] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 200.581831] CR0=0000000080050033 CR3=000000009703f000 CR4=00000000001426f0 [ 200.588838] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 200.595570] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 200.602525] *** Control State *** [ 200.606166] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 200.612888] EntryControls=0000d3ff ExitControls=002fefff [ 200.618343] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 14:22:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:39 executing program 1: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) ioctl$EVIOCGEFFECTS(0xffffffffffffffff, 0x80044584, 0x0) syz_open_dev$sndseq(0x0, 0x0, 0x0) creat(0x0, 0x0) 14:22:39 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:39 executing program 0: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x89f0, &(0x7f0000000040)={'bridge0\x00', &(0x7f0000000000)=@ethtool_ringparam={0xf}}) 14:22:39 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:22:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 200.625300] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 200.632025] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 200.638609] reason=80000021 qualification=0000000000000000 [ 200.644972] IDTVectoring: info=00000000 errcode=00000000 [ 200.652069] TSC Offset = 0xffffff9211b96bb2 [ 200.656392] EPT pointer = 0x000000008e0ee01e 14:22:39 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:39 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:40 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10) connect$inet(r0, &(0x7f0000000240)={0x2, 0x0, @multicast1}, 0x10) setsockopt$inet_int(r0, 0x0, 0x1, &(0x7f0000000000)=0xfffffffffffffff9, 0x4) [ 200.817365] *** Guest State *** [ 200.828999] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:22:40 executing program 1: r0 = getpgrp(0x0) r1 = gettid() rt_sigprocmask(0x0, &(0x7f0000000040)={0xfffffffffffffffe}, 0x0, 0x8) rt_tgsigqueueinfo(r0, r1, 0x12, &(0x7f0000000080)) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={0xfffffffffffffdae}, 0x8, 0x0) read(r2, &(0x7f0000000180)=""/128, 0x351) 14:22:40 executing program 0: [ 200.883699] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:22:40 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 200.938602] CR3 = 0x00000000fffbc000 [ 200.946736] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 200.974206] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 201.018855] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 201.059238] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 201.073609] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 201.082827] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 201.101342] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 201.109500] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 201.127571] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 201.137535] GDTR: limit=0x00000000, base=0x0000000000000000 [ 201.146771] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 201.155056] IDTR: limit=0x00000000, base=0x0000000000000000 [ 201.163983] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 201.172003] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 201.178410] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 201.185894] Interruptibility = 00000008 ActivityState = 00000000 [ 201.192185] *** Host State *** [ 201.195382] RIP = 0xffffffff8117479a RSP = 0xffff88805bd4f998 [ 201.201482] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 201.207894] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 201.215744] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 201.221687] CR0=0000000080050033 CR3=00000000a1550000 CR4=00000000001426e0 [ 201.228709] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 201.235414] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 201.241516] *** Control State *** [ 201.244964] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 201.252151] EntryControls=0000d1ff ExitControls=002fefff 14:22:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:22:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:40 executing program 0: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = syz_open_dev$vbi(0x0, 0xffffffffffffffff, 0x2) fsetxattr$security_selinux(r0, &(0x7f00000001c0)='security.selinux\x00', 0x0, 0x0, 0x0) getpeername$ax25(r0, 0x0, &(0x7f00000000c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) symlink(&(0x7f0000000040)='./file0/f.le.\x00', &(0x7f0000000140)='.//ile0\x00') mkdir(&(0x7f0000000340)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1']) r2 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) renameat(r2, &(0x7f0000000240)='.//ile0\x00', r2, &(0x7f00000007c0)='./file0/f.le.\x00') 14:22:40 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000009060100"/20], 0x14}}, 0x0) [ 201.257603] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 201.264562] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 201.271305] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 201.277882] reason=80000021 qualification=0000000000000000 [ 201.284233] IDTVectoring: info=00000000 errcode=00000000 [ 201.289691] TSC Offset = 0xffffff91bd0aeebd [ 201.294073] EPT pointer = 0x000000008861d01e [ 201.327501] audit: type=1400 audit(1555683760.490:48): avc: denied { write } for pid=8573 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 201.604854] overlayfs: filesystem on './file0' not supported as upperdir 14:22:42 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:22:42 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:42 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") unshare(0x68000200) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) socket(0x0, 0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r1, 0x29, 0x41, &(0x7f0000000080)={'security\x00', 0x4, [{}, {}, {}, {}]}, 0x68) 14:22:42 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:22:42 executing program 0: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = syz_open_dev$vbi(0x0, 0xffffffffffffffff, 0x2) fsetxattr$security_selinux(r0, &(0x7f00000001c0)='security.selinux\x00', 0x0, 0x0, 0x0) getpeername$ax25(r0, 0x0, &(0x7f00000000c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) symlink(&(0x7f0000000040)='./file0/f.le.\x00', &(0x7f0000000140)='.//ile0\x00') mkdir(&(0x7f0000000340)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1']) r2 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) renameat(r2, &(0x7f0000000240)='.//ile0\x00', r2, &(0x7f00000007c0)='./file0/f.le.\x00') 14:22:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:22:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 204.004237] *** Guest State *** [ 204.013197] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 204.033909] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 204.059540] CR3 = 0x00000000fffbc000 [ 204.084207] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 204.120269] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 204.132286] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 204.142143] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 204.150557] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 204.158651] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 204.169472] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 204.177815] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 204.187242] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 204.195406] GDTR: limit=0x00000000, base=0x0000000000000000 [ 204.203609] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 204.211788] IDTR: limit=0x00000000, base=0x0000000000000000 [ 204.219914] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 204.228082] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 204.235370] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 204.243005] Interruptibility = 00000008 ActivityState = 00000000 [ 204.249368] *** Host State *** [ 204.253867] RIP = 0xffffffff8117479a RSP = 0xffff888065e27998 [ 204.259978] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 204.266605] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 204.274589] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 14:22:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 204.280648] CR0=0000000080050033 CR3=000000008c80b000 CR4=00000000001426f0 [ 204.287815] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 204.294659] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 204.300872] *** Control State *** [ 204.304468] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 204.311293] EntryControls=0000d1ff ExitControls=002fefff [ 204.316885] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 204.323996] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 14:22:43 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 204.332641] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 204.342840] reason=80000021 qualification=0000000000000000 [ 204.349923] IDTVectoring: info=00000000 errcode=00000000 [ 204.355829] TSC Offset = 0xffffff9007ee762d [ 204.360309] EPT pointer = 0x00000000a7f6f01e [ 204.440856] IPVS: ftp: loaded support on port[0] = 21 14:22:44 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:22:44 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SMI(r0, 0xaeb7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 14:22:44 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:44 executing program 0: mkdir(&(0x7f0000000180)='./file0\x00', 0x0) chdir(&(0x7f0000000100)='./file0\x00') r0 = syz_open_dev$vbi(0x0, 0xffffffffffffffff, 0x2) fsetxattr$security_selinux(r0, &(0x7f00000001c0)='security.selinux\x00', 0x0, 0x0, 0x0) getpeername$ax25(r0, 0x0, &(0x7f00000000c0)) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sched_setscheduler(r1, 0x5, &(0x7f0000000040)) mkdir(&(0x7f0000000440)='./file1\x00', 0x0) symlink(&(0x7f0000000040)='./file0/f.le.\x00', &(0x7f0000000140)='.//ile0\x00') mkdir(&(0x7f0000000340)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='upperdir=./file0,lowerdir=.:file0,workdir=./file1']) r2 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) renameat(r2, &(0x7f0000000240)='.//ile0\x00', r2, &(0x7f00000007c0)='./file0/f.le.\x00') 14:22:44 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='io\x00') setxattr$trusted_overlay_nlink(0x0, 0x0, 0x0, 0x0, 0x0) write$P9_RREADLINK(r0, 0x0, 0x11f) 14:22:44 executing program 1: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff43) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)) ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:22:44 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SMI(r0, 0xaeb7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 14:22:44 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:44 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:44 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SMI(r0, 0xaeb7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r0, 0xae80, 0x0) 14:22:44 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 205.214207] *** Guest State *** [ 205.219731] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 205.234233] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 205.243971] CR3 = 0x00000000fffbc000 [ 205.248018] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 205.261840] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 205.268028] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 205.283714] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 205.294362] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 205.306106] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 205.317420] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 205.328117] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 205.338749] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 205.349466] GDTR: limit=0x00000000, base=0x0000000000000000 [ 205.366975] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 205.376408] IDTR: limit=0x00000000, base=0x0000000000000000 [ 205.385066] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 205.393333] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 205.399917] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 205.407956] Interruptibility = 00000008 ActivityState = 00000000 [ 205.414550] *** Host State *** [ 205.417976] RIP = 0xffffffff8117479a RSP = 0xffff888065387998 [ 205.424558] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 205.431339] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 205.441576] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 205.447568] CR0=0000000080050033 CR3=000000006772b000 CR4=00000000001426f0 [ 205.454839] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 205.461607] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 205.467664] *** Control State *** [ 205.471451] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 205.478134] EntryControls=0000d1ff ExitControls=002fefff [ 205.483698] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 205.491734] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 205.498906] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 205.513500] reason=80000021 qualification=0000000000000000 [ 205.525914] IDTVectoring: info=00000000 errcode=00000000 [ 205.533578] TSC Offset = 0xffffff8f62c29056 [ 205.538120] EPT pointer = 0x0000000090a4101e 14:22:45 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:22:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:45 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:45 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) dup(r1) ioctl$TCSETS(r1, 0x40045431, &(0x7f00003b9fdc)) r2 = syz_open_pts(r1, 0x80000000006) r3 = dup3(r2, r1, 0x0) write$UHID_INPUT(r3, &(0x7f0000001640)={0x300, "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", 0xfffffffffffffec6}, 0x1006) 14:22:45 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x9}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000080), 0x4) 14:22:45 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:45 executing program 1: recvmsg$kcm(0xffffffffffffffff, 0x0, 0x20) r0 = socket$kcm(0x2b, 0x1, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="23000000210081ae00060c00f20e000002000000000000018001006fabeb264e7d06a4", 0x23}], 0x1}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000400)='syz0\x00', 0x200002, 0x0) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = socket$kcm(0x2, 0x0, 0x2) ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)={0x0, 0x0, 0x10}, 0x10) close(0xffffffffffffffff) 14:22:45 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:45 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='maps\x00') gettid() fcntl$setownex(0xffffffffffffffff, 0xf, 0x0) ioctl$TIOCSIG(0xffffffffffffffff, 0x40045436, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]}) write$P9_RVERSION(r0, 0x0, 0x0) 14:22:45 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:45 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) [ 206.654126] netlink: 7 bytes leftover after parsing attributes in process `syz-executor.1'. [ 206.831760] netlink: 7 bytes leftover after parsing attributes in process `syz-executor.1'. 14:22:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:46 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) 14:22:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:46 executing program 0: r0 = socket$inet(0x2, 0x80001, 0x0) getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x12, &(0x7f0000000140)={'filter\x00'}, &(0x7f0000000080)=0x44) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) 14:22:46 executing program 1: recvmsg$kcm(0xffffffffffffffff, 0x0, 0x20) r0 = socket$kcm(0x2b, 0x1, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)="23000000210081ae00060c00f20e000002000000000000018001006fabeb264e7d06a4", 0x23}], 0x1}, 0x0) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f0000000400)='syz0\x00', 0x200002, 0x0) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000440)='cgroup.subtree_control\x00', 0x2, 0x0) r2 = socket$kcm(0x2, 0x0, 0x2) ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)={0x0, 0x0, 0x10}, 0x10) close(0xffffffffffffffff) 14:22:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 207.168921] netlink: 7 bytes leftover after parsing attributes in process `syz-executor.1'. 14:22:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:46 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:46 executing program 0: r0 = socket$rxrpc(0x21, 0x2, 0x2) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0) fcntl$notify(r0, 0x402, 0x14) syz_open_procfs(0x0, &(0x7f0000000000)='setgroups\x00\x14\x9d\xe7\x8b\xbbz\x98\x1e\xc8>i\x8f\x0f\xa5~\x88\xf4\xe9\xbc\xb0\xc0\xfd\xf7\x16_\x89\'V\x98\x05.\x80\xde0\xf1\xb6\xaaoz0\xf7m-J\x10+N\xd4\xf5\x12\xe2\x1b8\xf8\x9d\x12*\\\xad\xc6\xd2\xcc\xb3\x88j\xd9c\x0e\xac\xb9\xfb\x8a\x84\xb8\x0eVK\xf0\x12') syz_open_dev$video(&(0x7f0000000340)='/dev/video#\x00', 0x3, 0x0) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0x80045530, &(0x7f00000001c0)) r2 = socket$inet6(0xa, 0x2000000000000001, 0x8010000000000084) bind$inet6(r2, &(0x7f00002aafe4)={0xa, 0x4e22, 0x0, @ipv4}, 0x1c) r3 = socket$inet6_sctp(0xa, 0x400005, 0x84) connect$netlink(r1, &(0x7f0000000040)=@proc={0x10, 0x0, 0x0, 0x40}, 0xc) sendto$inet6(r3, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4004700c, 0x345) r5 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r5, &(0x7f000047b000)={0xa, 0x4e20}, 0x1c) listen(r5, 0x20000003) r6 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r6, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @ipv4={[0x0, 0xe77c0000], [], @local}}, 0x1c) r7 = accept4(r5, &(0x7f0000000540)=@nl=@proc, &(0x7f0000047ffc)=0x80, 0x800) write$binfmt_elf64(r7, &(0x7f0000001540)=ANY=[@ANYBLOB="7f454c460904050907000000000000000300070007000000f8010000000000004000000000000000a303000000000000880000000500380001007f00010401000000000001000080030000000200000000000000ff7f000000000000010000000000001386ecd4ffffffffff0000000004000000aa0900000000000000000000000000000000000000000000090000000000000004000000000000000000000000050800b2b8e7c0207f8c15435c5f65b824f9482fce5a469e19cefe3db700dc0aba3b189fc1cba86b252746cf2a9f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000065de00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffffffffffff4000000000000000000000000000000000000000000000000ff7f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e4177202ebb80a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090ea000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f0ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000043ee40e966c62f82e4fcdc96ed2d4f95616dc23050816251768870c4636f0fcdff6ffd8c3ceb70a69cb9f89a571a082ee88906646933aa7141d2527e536bf171b66a21206d2b413aa235b9d9ac4d4cd4489895ba945ef0ec4fa739ec46991a1cf4a433fab8d212c2a9f6cb8329fa4a5a0501640101114bb0675e44fcf6c1b99e503410cc4412932daf477d4ee629eae0ae0258f291979586f632ec335f48caada21fae1e97bc808b88a3b3858167e9cf21c575ea195fbc9b072bb9e808f7d137ec002b901bbe88241ec358b37a9e1ce1a1ff8a3df8f04c4fdea5ebf762a8ca7b84e2442df5dc8b333440a2e651250b87474852804317172cf25cd73cc18a47b0b47fc59c0258f222a5230a875d38c6b2401b10a2f9449e87155bec06bd8c7b72db2d7e440f6e4b4cf8511e1c0a83e549b0d2cb6d36e6c7eeed408c5832f464f9aacbad3c112b33ebeb3477c941aee9f3d911563c5ceb0b9325c8d3c63ecedc5e4c059a8eee4a9f11687789212d613fd15559017b85c6cd2f901cc8308ec6b2714e2c35445069c9f2bb64f15ec369c8d02b3c8080abecff11ac62c7e1294dabb1a07614af762e0de24bddb3f60c48ef50554590727ee8be9bf206cf3cdff6a7bd8e5cf4a27d58fac46bc044d87295643c9b755c3d4675814565a849cdd3964408024e9b2151947c756f166615fb875993c129a6d164947bad5e370ecc4b8efe5305bcd04b698a0e1f49bc94c8b9a5788ea725dc8d8419c5df404802cc9e094540f5c4c9977d584fe2f4ff28fbf3cfc3bd238f93ac089e1af931a36a52426cebbcfa063bd3636ab5f134042dab64abd9de4f4c6726eea204fcab79c9bb4a23c0855b80e76d3a0ea95f19ee478572aadc9595005b04c27955111068496aa818563f94cb7e42b0a7525871ed5d1c3396d3a44aa2568c7c0b5007f8ac5a33dc35f2c8140357af6d3e8300ed983114965fa243c5c609e177bf517dabe3e630fb31da2a9258e1a8e6b67298c293379413338f5f717cf442842496c629b3178d827136a4709ef2ad73aa2bf87f7254c52f"], 0xa9c) setsockopt$inet6_opts(r7, 0x29, 0x37, &(0x7f00000004c0)=ANY=[@ANYBLOB="d695c2b0a447819d1dbde14647f1bfbbe6ad6d05e814af6010d68ddd6088140c95e53756e5ed681cbb45404e340247460f0c78bce9bb73414a2f9b9d4bbe281bfd54e387f1625780df599cd9431764a44a8e1e", @ANYRES16=r2, @ANYRES32=r7], 0x3) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r1, 0x800448d2, &(0x7f0000000a40)={0x1, &(0x7f0000000380)=[{}]}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000840)='/dev/qat_adf_ctl\x00', 0x44000, 0x0) 14:22:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:46 executing program 1: perf_event_open(&(0x7f00000001c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @remote, 0x3}, 0x1c) openat$selinux_access(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$binfmt_script(r0, &(0x7f0000002ec0)={'!! ', './file0'}, 0xfdef) request_key(0x0, &(0x7f0000000180)={'syz', 0x2}, &(0x7f0000000600)='W\xd9=\x0e,c\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00v\xbaX\xaa\xd3s<\x00\x00\x00', 0x0) add_key(0x0, &(0x7f0000000340)={'syz'}, 0x0, 0x0, 0x0) writev(0xffffffffffffffff, 0x0, 0x0) [ 207.383473] audit: type=1400 audit(1555683766.550:49): avc: denied { bind } for pid=8747 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 14:22:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 207.426331] dccp_close: ABORT with 2716 bytes unread 14:22:49 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) 14:22:49 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:49 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:49 executing program 0: r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0xa}, 0x1c) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000040)="11dc86055e0bceec7be070") write(r0, &(0x7f0000000700)="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", 0x63d) 14:22:49 executing program 1: r0 = syz_open_dev$sndseq(&(0x7f0000000280)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x49dc) read(r0, &(0x7f00000002c0)=""/79, 0x4f) 14:22:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:49 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:49 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r0, 0xc0605345, &(0x7f0000000240)) 14:22:49 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x2, 0x4000000000000) setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x14e24}, 0x1c) recvmmsg(r0, &(0x7f0000000200), 0x38c, 0x0, 0x0) sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={[], [], @loopback}}, 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 14:22:49 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:49 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:52 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) 14:22:52 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:52 executing program 1: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00') sendfile(r0, r1, &(0x7f0000000040)=0x100000, 0x8001) 14:22:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:52 executing program 0: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key$user(&(0x7f0000000340)='user\x00', &(0x7f0000000380)={'syz'}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$update(0x2, r0, &(0x7f00000004c0)="5d491c59c721a0c5461d9c383097d96a332e9171382cd93ceef0d9b91fee89848be2ede6bca1bfd491392417ff8a7a4c791a653a289c636102806fcc44f4aa3c2b121e2da2b31718c0561e6dfcbf805beea135a52ad830330e4bf8b57910537d9899d16a34198e4a749ed700562ea863f5112195a3025fb565bb3b266e48cc6575bc4fb6960971a1c417562b885484bc09ce82a4033ffb16048d676c8e30ee3e284a8f206cb5f284086fb5d65e01bb7f3e4bdcd7c94f75b13a401080b81cc2569113a3307a066375f29ffab2ce7953a3e61f22580d0c594aaf73a47181be83e9a2469778101771ea352fe110343bbe", 0xef) 14:22:52 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:52 executing program 1: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) timer_create(0x0, &(0x7f0000066000), 0x0) flock(0xffffffffffffffff, 0x5) gettid() fstat(0xffffffffffffffff, &(0x7f0000000600)) mkdir(&(0x7f0000000140)='./file0\x00', 0x0) mount(&(0x7f00000001c0)=ANY=[], &(0x7f00000000c0)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, 0x0) chdir(&(0x7f0000000180)='./file0\x00') r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f00006ff000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0) setsockopt$packet_fanout(r2, 0x107, 0x12, 0x0, 0x0) write$UHID_INPUT(r2, &(0x7f0000001440)={0x8, "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", 0x1000}, 0xfffffc41) syz_open_procfs(0x0, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@remote}}, {{@in=@multicast2}, 0x0, @in=@loopback}}, 0xe8) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, 0x0) fadvise64(r2, 0x0, 0x0, 0x4) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4) prctl$PR_GET_TID_ADDRESS(0x28, &(0x7f00000000c0)) dup2(r0, 0xffffffffffffffff) 14:22:52 executing program 0: clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() wait4(0x0, 0x0, 0x80000000, 0x0) ptrace$setopts(0x4206, r0, 0x0, 0x0) tkill(r0, 0x1d) ptrace$cont(0x18, r0, 0x0, 0x0) open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x20000000, 0xf9}) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080)) ptrace$cont(0x9, r0, 0x0, 0x0) 14:22:52 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:55 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() tkill(r1, 0x13) 14:22:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SMI(r1, 0xaeb7) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r1, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r1, 0xae80, 0x0) 14:22:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:55 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:55 executing program 0: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]}) sendto$inet(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x4000000, 0x0, 0x0) 14:22:55 executing program 1: r0 = socket$kcm(0xa, 0x122000000003, 0x11) setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f0000000280), 0x578) sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f0000000200)=@nl=@unspec={0x0, 0x0, 0x0, 0x80fe}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000040)="d90d0000768606681d012f629c75adfa4208d5febf524a024aface6a6ac7d846ed2fa163e15ffb50", 0x28}], 0x1}, 0x0) 14:22:55 executing program 1: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000240)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0xb) 14:22:55 executing program 2: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:55 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000080)="0adc1f123c123f319bd070") r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000025c0)=0x204, 0x4) bind$inet(r1, &(0x7f0000000140)={0x2, 0x200000000004e23}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4) recvmsg(r1, &(0x7f0000000240)={&(0x7f0000000040)=@nfc, 0xf012, &(0x7f0000000180)=[{&(0x7f0000003ac0)=""/4096, 0xdc00}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) write$binfmt_elf64(r1, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 216.468501] *** Guest State *** [ 216.475857] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 [ 216.506332] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 216.520161] CR3 = 0x0000000000000000 [ 216.524084] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 216.530737] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 216.536849] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 216.545741] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.555131] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.563603] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.563621] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.579764] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.588234] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.596781] GDTR: limit=0x00000000, base=0x0000000000000000 [ 216.605656] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.614673] IDTR: limit=0x00000000, base=0x0000000000000000 [ 216.622835] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 216.631056] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 216.638577] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 216.652829] Interruptibility = 00000000 ActivityState = 00000000 [ 216.659108] *** Host State *** [ 216.662473] RIP = 0xffffffff8117479a RSP = 0xffff88806435f998 [ 216.668601] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 216.675131] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 216.683039] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 216.688959] CR0=0000000080050033 CR3=000000008fdcf000 CR4=00000000001426f0 [ 216.696061] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 216.702802] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 216.708865] *** Control State *** [ 216.712384] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 216.719151] EntryControls=0000d3ff ExitControls=002fefff [ 216.724673] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 216.731656] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 216.738836] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 216.746108] reason=80000021 qualification=0000000000000000 [ 216.752504] IDTVectoring: info=00000000 errcode=00000000 [ 216.757958] TSC Offset = 0xffffff895cd099e9 [ 216.762339] EPT pointer = 0x00000000939c501e 14:22:58 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() tkill(r1, 0x13) 14:22:58 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000140)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="04630440"], 0x0, 0x0, 0x0}) r2 = dup2(r1, r0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x8, 0x0, &(0x7f0000000900)=[@increfs={0x40046307}], 0x0, 0x0, 0x0}) 14:22:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:22:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:22:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:22:58 executing program 0: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) 14:22:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 219.324965] audit: type=1400 audit(1555683778.480:50): avc: denied { set_context_mgr } for pid=8898 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=binder permissive=1 14:22:58 executing program 1: r0 = syz_open_dev$binder(&(0x7f0000000140)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) r1 = syz_open_dev$binder(0x0, 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x4, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="04630440"], 0x0, 0x0, 0x0}) r2 = dup2(r1, r0) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000680)={0x8, 0x0, &(0x7f0000000900)=[@increfs={0x40046307}], 0x0, 0x0, 0x0}) [ 219.367476] *** Guest State *** 14:22:58 executing program 0: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) 14:22:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 219.394040] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 14:22:58 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 219.436402] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 219.476427] CR3 = 0x0000000000000000 14:22:58 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x80001, 0x0) getsockopt$ARPT_SO_GET_INFO(r0, 0x0, 0x60, &(0x7f0000000140)={'filter\x00'}, &(0x7f0000000080)=0x44) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)) openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0) [ 219.503515] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 219.510672] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 219.534467] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 219.551742] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.560520] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.568586] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.587480] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.600135] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.608378] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.627632] GDTR: limit=0x00000000, base=0x0000000000000000 [ 219.656533] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.664754] IDTR: limit=0x00000000, base=0x0000000000000000 [ 219.673146] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 219.682097] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 219.688605] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 219.696333] Interruptibility = 00000000 ActivityState = 00000000 [ 219.702694] *** Host State *** [ 219.705921] RIP = 0xffffffff8117479a RSP = 0xffff888060057998 [ 219.711971] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 219.718386] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 219.726271] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 219.732246] CR0=0000000080050033 CR3=00000000a5096000 CR4=00000000001426e0 [ 219.739295] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 219.747526] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 219.753668] *** Control State *** [ 219.757143] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 219.763854] EntryControls=0000d3ff ExitControls=002fefff [ 219.769341] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 219.776324] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 219.783324] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 219.789900] reason=80000021 qualification=0000000000000000 [ 219.796281] IDTVectoring: info=00000000 errcode=00000000 [ 219.801805] TSC Offset = 0xffffff87ce879230 [ 219.806137] EPT pointer = 0x00000000a918501e 14:23:01 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() tkill(r1, 0x13) 14:23:01 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:01 executing program 0: mkdir(&(0x7f0000000680)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='tmpfs\x00', 0x0, 0x0) r0 = open(&(0x7f00000002c0)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = memfd_create(&(0x7f0000000300)='}}-\x00', 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0) write$binfmt_misc(r1, &(0x7f0000000480)=ANY=[@ANYBLOB="e51fec4cbed210bd3dafcd692f26352733ec4b373569a6b7420f931abec80fc256675ea07e535adcc7afbd175c120b30b0d9dbb0baba828a429203dd9ef00c7b460f155cbafbe2a66a9caa163dcb475a9c5eae85a851bdaf2b611d877a22591610cb17d61099ead1f1e7bb0bf0010346054878d012aa89c02a484c663be71802"], 0x80) symlink(&(0x7f0000001000)='./file0\x00', &(0x7f0000000080)='./file0\x00') creat(&(0x7f00000000c0)='./file0/file0\x00', 0x0) 14:23:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:23:01 executing program 1: 14:23:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(0xffffffffffffffff, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:01 executing program 1: 14:23:01 executing program 1: 14:23:01 executing program 2: openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r0, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 222.371046] audit: type=1400 audit(1555683781.530:51): avc: denied { map } for pid=8939 comm="syz-executor.0" path=2F6D656D66643A7D7D2D202864656C6574656429 dev="tmpfs" ino=36963 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:tmpfs_t:s0 tclass=file permissive=1 [ 222.401103] *** Guest State *** [ 222.404569] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 14:23:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:23:01 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000200)='/dev/input/event#\x00', 0x0, 0x5) write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0xffffffe8) clone(0x802102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$TIOCSCTTY(r0, 0x540e, 0x0) 14:23:01 executing program 0: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000802, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='ip6_vti0\x00', 0x10) sendto$inet(r0, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0x0) shutdown(r0, 0x1) [ 222.516261] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 222.575223] CR3 = 0x0000000000000000 [ 222.603393] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 222.631015] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 222.637238] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 222.645074] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.653426] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.662385] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.670625] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.678794] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.687030] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.695988] GDTR: limit=0x00000000, base=0x0000000000000000 [ 222.704230] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.712716] IDTR: limit=0x00000000, base=0x0000000000000000 [ 222.720952] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 222.729097] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 222.736459] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 222.744137] Interruptibility = 00000000 ActivityState = 00000000 [ 222.750570] *** Host State *** [ 222.753932] RIP = 0xffffffff8117479a RSP = 0xffff88805ba77998 [ 222.760160] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 222.766745] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 222.774771] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 222.780855] CR0=0000000080050033 CR3=0000000091ab2000 CR4=00000000001426f0 [ 222.788040] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 222.794911] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 222.801187] *** Control State *** [ 222.804813] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 222.811673] EntryControls=0000d3ff ExitControls=002fefff [ 222.817329] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 222.825165] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 222.832053] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 222.838804] reason=80000021 qualification=0000000000000000 [ 222.845307] IDTVectoring: info=00000000 errcode=00000000 [ 222.850942] TSC Offset = 0xffffff86316636a5 [ 222.855420] EPT pointer = 0x000000008c76b01e 14:23:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:23:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:04 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet_udplite(0x2, 0x2, 0x88) close(r1) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f00000001c0)={0x2, 0x2000003, @broadcast}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x3, @loopback}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='/\x02roup.stap\x00', 0x2761, 0x0) r3 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0) write$cgroup_int(r3, &(0x7f00000000c0), 0x4557434d) sendfile(r1, r3, 0x0, 0x20000000006) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") 14:23:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:04 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:23:04 executing program 1: 14:23:04 executing program 1: [ 225.434139] *** Guest State *** 14:23:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:04 executing program 1: 14:23:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0) [ 225.460306] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 225.547798] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:23:04 executing program 1: 14:23:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0) [ 225.656428] CR3 = 0x00000000fffbc000 [ 225.675416] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 225.721779] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 225.763589] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 225.812830] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 225.829080] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 225.843831] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 225.852059] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 225.868817] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 225.877158] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 225.890655] GDTR: limit=0x00000000, base=0x0000000000000000 [ 225.898755] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 225.911955] IDTR: limit=0x00000000, base=0x0000000000000000 [ 225.922745] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 225.933338] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 225.939931] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 225.952889] Interruptibility = 00000008 ActivityState = 00000000 [ 225.959201] *** Host State *** [ 225.964382] RIP = 0xffffffff8117479a RSP = 0xffff8880600bf998 [ 225.973607] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 225.981995] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 225.989873] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 225.999651] CR0=0000000080050033 CR3=00000000a9186000 CR4=00000000001426e0 [ 226.008302] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 226.016078] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 226.022287] *** Control State *** [ 226.025784] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 226.032608] EntryControls=0000d1ff ExitControls=002fefff [ 226.038076] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 226.045226] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 226.055472] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 226.062243] reason=80000021 qualification=0000000000000000 [ 226.069416] IDTVectoring: info=00000000 errcode=00000000 [ 226.075882] TSC Offset = 0xffffff848f749fb7 [ 226.080406] EPT pointer = 0x000000008c1b201e 14:23:07 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:23:07 executing program 1: 14:23:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0) 14:23:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:07 executing program 0: 14:23:07 executing program 1: 14:23:07 executing program 0: 14:23:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 228.504681] *** Guest State *** 14:23:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:23:07 executing program 1: [ 228.531773] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:07 executing program 0: [ 228.609254] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 228.684317] CR3 = 0x00000000fffbc000 [ 228.705987] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 228.735747] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 228.745133] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 228.764552] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 228.777340] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 228.785798] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 228.794149] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 228.802192] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 228.810251] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 228.818230] GDTR: limit=0x00000000, base=0x0000000000000000 [ 228.826297] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 228.834429] IDTR: limit=0x00000000, base=0x0000000000000000 [ 228.842508] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 228.850580] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 228.856993] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 228.864493] Interruptibility = 00000008 ActivityState = 00000000 [ 228.870804] *** Host State *** [ 228.874004] RIP = 0xffffffff8117479a RSP = 0xffff88805e697998 [ 228.879968] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 228.886426] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 228.894293] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 228.900273] CR0=0000000080050033 CR3=00000000a9156000 CR4=00000000001426f0 [ 228.907304] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 228.914059] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 228.920155] *** Control State *** [ 228.923597] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 228.930356] EntryControls=0000d1ff ExitControls=002fefff [ 228.935828] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 228.942816] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 228.949498] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 228.956622] reason=80000021 qualification=0000000000000000 [ 228.963036] IDTVectoring: info=00000000 errcode=00000000 [ 228.968522] TSC Offset = 0xffffff82ec280abb [ 228.972948] EPT pointer = 0x00000000a82b401e 14:23:10 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:23:10 executing program 1: 14:23:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:10 executing program 0: 14:23:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:23:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:10 executing program 0: 14:23:10 executing program 1: [ 231.516092] *** Guest State *** 14:23:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 231.548836] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:10 executing program 0: 14:23:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 231.603782] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:23:10 executing program 1: [ 231.653534] CR3 = 0x00000000fffbc000 [ 231.691280] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 231.740837] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 231.772972] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 231.801264] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 231.820000] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 231.828168] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 231.836349] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 231.844417] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 231.852918] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 231.860983] GDTR: limit=0x00000000, base=0x0000000000000000 [ 231.868962] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 231.877026] IDTR: limit=0x00000000, base=0x0000000000000000 [ 231.885064] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 231.893247] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 231.899666] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 231.907234] Interruptibility = 00000008 ActivityState = 00000000 [ 231.913606] *** Host State *** [ 231.916796] RIP = 0xffffffff8117479a RSP = 0xffff88805e39f998 [ 231.922815] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 231.929226] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 231.937098] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 231.943019] CR0=0000000080050033 CR3=00000000a8349000 CR4=00000000001426e0 [ 231.950097] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 231.956778] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 231.962900] *** Control State *** [ 231.966375] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 231.973089] EntryControls=0000d1ff ExitControls=002fefff [ 231.978549] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 231.985603] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 231.992345] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 231.999031] reason=80000021 qualification=0000000000000000 [ 232.005386] IDTVectoring: info=00000000 errcode=00000000 [ 232.010963] TSC Offset = 0xffffff814ddc35cf [ 232.015288] EPT pointer = 0x000000009f08c01e 14:23:13 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:13 executing program 0: 14:23:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500}) 14:23:13 executing program 1: 14:23:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:13 executing program 1: ioctl$KVM_GET_PIT2(0xffffffffffffffff, 0x8070ae9f, 0x0) creat(0x0, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$dupfd(r0, 0x406, r0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)}, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='/group.sta\x9f\xd4t\x00+\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0Wm\x1d\x0e\xbf\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1f', 0x2761, 0x0) clone(0x20002100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$rds(0x15, 0x5, 0x0) bind$rds(r1, &(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x70) 14:23:13 executing program 0: syz_emit_ethernet(0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60d8652b001406"], 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x89a0, &(0x7f0000000100)) [ 234.609812] *** Guest State *** 14:23:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500}) [ 234.630949] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:13 executing program 1: msgget(0xffffffffffffffff, 0x0) io_setup(0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0x0, 0x0, 0x0) [ 234.705208] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:23:13 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) close(r0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/vcs\x00', 0x0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$int_in(r0, 0x5452, &(0x7f0000000400)=0x8) close(r1) [ 234.811768] CR3 = 0x00000000fffbc000 [ 234.838872] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 234.876979] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 234.888906] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 234.946299] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 234.979860] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 235.031152] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 235.051265] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 235.084221] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 235.114361] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 235.124564] GDTR: limit=0x00000000, base=0x0000000000000000 [ 235.133380] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 235.141834] IDTR: limit=0x00000000, base=0x0000000000000000 [ 235.150602] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 235.158849] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 235.165616] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 235.173505] Interruptibility = 00000008 ActivityState = 00000000 [ 235.179990] *** Host State *** [ 235.183594] RIP = 0xffffffff8117479a RSP = 0xffff88805ceff998 [ 235.189841] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 235.196760] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 235.204977] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 235.211246] CR0=0000000080050033 CR3=000000008c193000 CR4=00000000001426e0 [ 235.218613] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 235.225724] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 235.232181] *** Control State *** [ 235.235901] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 235.242980] EntryControls=0000d1ff ExitControls=002fefff [ 235.248741] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 235.256660] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 235.263857] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 235.270842] reason=80000021 qualification=0000000000000000 [ 235.277485] IDTVectoring: info=00000000 errcode=00000000 [ 235.283408] TSC Offset = 0xffffff7fa4fdec0c [ 235.288069] EPT pointer = 0x000000008dac901e 14:23:16 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500}) 14:23:16 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") clone(0x2002002102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)) r1 = open(&(0x7f0000000040)='./file0\x00', 0x20880, 0x2) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000080)={0x1, 0x1, [@local]}) msgsnd(0x0, &(0x7f0000000000)=ANY=[], 0x0, 0x0) msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000700)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}) 14:23:16 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) accept4(0xffffffffffffffff, 0x0, 0x0, 0x0) bind$tipc(0xffffffffffffffff, 0x0, 0x0) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x7a05, 0x1700) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x7}) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfffffcbe) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000008c0)='memory.events\x00', 0xb00000000000000, 0x0) 14:23:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 237.655197] *** Guest State *** [ 237.666995] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 237.679336] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:23:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28}) [ 237.708109] CR3 = 0x00000000fffbc000 [ 237.723961] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 237.739298] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 237.771444] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 237.779919] audit: type=1804 audit(1555683796.940:52): pid=9138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir956011954/syzkaller.pnw8ws/108/memory.events" dev="sda1" ino=16769 res=1 [ 237.789653] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 14:23:17 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:17 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") clone(0x2002002102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000258f88)) r1 = open(&(0x7f0000000040)='./file0\x00', 0x20880, 0x2) ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000080)={0x1, 0x1, [@local]}) msgsnd(0x0, &(0x7f0000000000)=ANY=[], 0x0, 0x0) msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000700)={{}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}) 14:23:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28}) [ 237.828190] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 237.897266] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:23:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28}) [ 237.944862] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 237.969649] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 238.007528] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 238.046431] GDTR: limit=0x00000000, base=0x0000000000000000 [ 238.069763] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 238.086601] IDTR: limit=0x00000000, base=0x0000000000000000 [ 238.118271] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 238.134356] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 238.141745] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 238.149700] Interruptibility = 00000008 ActivityState = 00000000 [ 238.156521] *** Host State *** [ 238.159937] RIP = 0xffffffff8117479a RSP = 0xffff88805ceff998 [ 238.166738] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 238.173530] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 238.181888] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 238.188012] CR0=0000000080050033 CR3=0000000097c03000 CR4=00000000001426f0 [ 238.195305] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 238.202245] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 238.208473] *** Control State *** [ 238.212133] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 238.218906] EntryControls=0000d1ff ExitControls=002fefff [ 238.224539] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 238.231623] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 238.238376] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 238.245271] reason=80000021 qualification=0000000000000000 [ 238.251731] IDTVectoring: info=00000000 errcode=00000000 [ 238.257280] TSC Offset = 0xffffff7e04a0f170 [ 238.261757] EPT pointer = 0x000000009be6101e [ 238.450652] audit: type=1804 audit(1555683797.620:53): pid=9167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir956011954/syzkaller.pnw8ws/108/memory.events" dev="sda1" ino=16769 res=1 14:23:19 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:19 executing program 1: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='gre0\x00', 0x10) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000d00)=@abs={0x0, 0x0, 0x10000e0}, 0x6e) 14:23:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:23:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000001a40)={"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"}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000240)={"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"}) 14:23:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x0, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:19 executing program 0: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='security.capability\x00', 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x8c', 0x0, 0x0, 0x0) [ 240.628941] raw_sendmsg: syz-executor.1 forgot to set AF_INET. Fix it! 14:23:19 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bd070") r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) write$P9_RSTATFS(r1, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x2c, 0x35, 0x835, 0x0, 0x0, {0x3801, 0x1000000}, [@nested={0x18, 0x0, [@typed={0x14, 0x1, @ipv6=@loopback={0xf2ffff7f00000000}}]}]}, 0x2c}}, 0x0) 14:23:19 executing program 1: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x2, 0x0) write$binfmt_misc(r0, &(0x7f0000000240)=ANY=[], 0xffffffc0) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) r1 = gettid() tkill(r1, 0x1000000000013) [ 240.716996] *** Guest State *** 14:23:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 240.748514] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:19 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0) r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) write(r0, &(0x7f0000000400)="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", 0x200) sendfile(r0, r1, 0x0, 0x10000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x10, 0xffffffffffffffff, 0x0) 14:23:20 executing program 0: add_key$user(&(0x7f0000000000)='user\x00', 0x0, 0x0, 0x0, 0x0) keyctl$update(0x2, 0x0, 0x0, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/null\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0) arch_prctl$ARCH_GET_GS(0x1004, 0x0) getsockopt$netlink(r0, 0x10e, 0x0, 0x0, 0x0) [ 240.806220] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 240.831001] CR3 = 0x00000000fffbc000 [ 240.834879] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 240.841904] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 240.848006] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 240.855388] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 240.888299] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:23:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 240.919362] audit: type=1800 audit(1555683800.080:54): pid=9203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.5" name="file0" dev="sda1" ino=16948 res=0 [ 240.963411] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 240.995642] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 241.012997] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 241.023129] audit: type=1804 audit(1555683800.110:55): pid=9203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.5" name="/root/syzkaller-testdir162166121/syzkaller.iJYCiF/104/file0" dev="sda1" ino=16948 res=1 [ 241.058931] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 241.076771] GDTR: limit=0x00000000, base=0x0000000000000000 [ 241.107806] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 241.155866] IDTR: limit=0x00000000, base=0x0000000000000000 [ 241.167743] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 241.178999] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 241.199410] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 241.221294] Interruptibility = 00000008 ActivityState = 00000000 [ 241.227751] *** Host State *** [ 241.231729] RIP = 0xffffffff8117479a RSP = 0xffff88805b6df998 [ 241.237891] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 241.245102] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 241.253515] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 241.259519] CR0=0000000080050033 CR3=00000000926ed000 CR4=00000000001426f0 [ 241.266689] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 241.273533] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 241.279598] *** Control State *** [ 241.283203] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 241.289915] EntryControls=0000d1ff ExitControls=002fefff [ 241.295498] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 241.302553] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 241.309257] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 241.315968] reason=80000021 qualification=0000000000000000 [ 241.322395] IDTVectoring: info=00000000 errcode=00000000 [ 241.327896] TSC Offset = 0xffffff7c6265666e [ 241.332329] EPT pointer = 0x00000000a704401e [ 241.693696] audit: type=1804 audit(1555683800.860:56): pid=9207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.5" name="/root/syzkaller-testdir162166121/syzkaller.iJYCiF/104/file0" dev="sda1" ino=16948 res=1 14:23:22 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000a40)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde317fad4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28a774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a80047fe17dee6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) close(r1) close(r2) ioctl$TIOCGLCKTRMIOS(0xffffffffffffffff, 0x5456, 0x0) 14:23:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, 0x0) 14:23:22 executing program 1: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) close(r0) syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x79, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000c85000)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000080)) 14:23:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:22 executing program 5: syslog(0x3, &(0x7f0000000180)=""/147, 0x65) 14:23:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, 0x0) 14:23:22 executing program 1: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = inotify_init() flock(r0, 0x0) [ 243.741714] *** Guest State *** [ 243.760654] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 243.777828] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:23:23 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x200, 0x2) ioctl$ASHMEM_SET_NAME(r0, 0x41007701, &(0x7f0000000400)='em1^.ppp1\x00') syslog(0x3, &(0x7f00000000c0)=""/147, 0x37a8ec531be3c409) dup2(0xffffffffffffffff, 0xffffffffffffffff) openat$audio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/audio\x00', 0x50180, 0x0) openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm-control\x00', 0xa002, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000340)='/dev/loop#\x00', 0xace, 0x0) ioctl$HDIO_GETGEO(r1, 0x301, &(0x7f0000000380)) openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x410000, 0x0) [ 243.803872] CR3 = 0x00000000fffbc000 [ 243.819547] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 243.837246] RFLAGS=0x00000002 DR7 = 0x0000000000000400 14:23:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4008ae89, &(0x7f0000000340)={0x7b, 0x600000000000000, [0x26e, 0x3], [0xc2]}) 14:23:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, 0x0) [ 243.893000] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 243.927381] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 243.942925] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 243.980168] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:23:23 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x0, 0x0) ioctl$RTC_IRQP_READ(r1, 0x8008700b, &(0x7f00000010c0)) [ 244.015791] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 244.044335] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 244.083367] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 244.107576] GDTR: limit=0x00000000, base=0x0000000000000000 [ 244.134912] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 244.148941] IDTR: limit=0x00000000, base=0x0000000000000000 [ 244.174535] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 244.184013] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 244.191030] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 244.198640] Interruptibility = 00000008 ActivityState = 00000000 [ 244.205440] *** Host State *** [ 244.208750] RIP = 0xffffffff8117479a RSP = 0xffff88808a94f998 [ 244.214957] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 244.221442] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 244.229280] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 244.235243] CR0=0000000080050033 CR3=000000009f753000 CR4=00000000001426f0 [ 244.242321] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 244.248988] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 244.255202] *** Control State *** [ 244.258660] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 244.265378] EntryControls=0000d1ff ExitControls=002fefff [ 244.270887] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 244.277813] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 244.284544] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 244.291238] reason=80000021 qualification=0000000000000000 [ 244.297542] IDTVectoring: info=00000000 errcode=00000000 [ 244.303635] TSC Offset = 0xffffff7ac2fffd65 [ 244.307960] EPT pointer = 0x00000000a7f8c01e 14:23:25 executing program 0: r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'vat\x00\x00\x00\x00\x00\x00\x00\xa8\x03\x00', 0x43732e5398416f1a}) r1 = socket$nl_route(0x10, 0x3, 0x0) pread64(r0, 0x0, 0x9, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) 14:23:25 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:25 executing program 5: prctl$PR_SET_SECCOMP(0x16, 0x0, 0x0) shmget(0xffffffffffffffff, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x0, 0x0) shmctl$IPC_STAT(0x0, 0x2, 0x0) connect$netlink(r0, 0x0, 0x0) 14:23:25 executing program 1: syz_emit_ethernet(0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd60d8652b001406"], 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) 14:23:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x0, 0x8}) 14:23:25 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:25 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000180)=0x580, 0x4) sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0xa, 0x20000000004e20, 0x0, @ipv4}, 0x1c) connect$inet6(r0, &(0x7f00000005c0)={0xa, 0x4e1f, 0x0, @ipv4={[], [], @remote}}, 0x1c) setsockopt$inet6_int(r1, 0x29, 0x31, &(0x7f00000002c0)=0x4000008, 0x4) recvmsg(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/36, 0x3bfde9d00c37b4f0}, 0x2000) sendmmsg(r0, &(0x7f00000000c0), 0x40000000000025b, 0x0) [ 246.737991] *** Guest State *** [ 246.755846] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 246.765066] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 246.774266] CR3 = 0x00000000fffbc000 14:23:25 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x0, 0x8}) [ 246.789166] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 246.808863] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 246.818237] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 246.833939] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 14:23:26 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={[{@fat=@errors_continue='errors=continue'}]}) [ 246.842362] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 246.852862] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 14:23:26 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20}, 0x1b) listen(r1, 0x8) syz_emit_ethernet(0x74, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) [ 246.885857] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 246.898336] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 246.907113] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 246.915664] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 246.943723] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 246.963802] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 246.975516] GDTR: limit=0x00000000, base=0x0000000000000000 14:23:26 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f01000000450001070000001419001a001500020007000a00550e69330f4de5020080080000", 0x39}], 0x1) [ 246.992334] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 246.998781] FAT-fs (loop1): bogus number of reserved sectors [ 247.002369] syz-executor.5 (9292) used greatest stack depth: 23280 bytes left [ 247.006684] FAT-fs (loop1): Can't find a valid FAT filesystem 14:23:26 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x0, 0x8}) [ 247.045110] IDTR: limit=0x00000000, base=0x0000000000000000 [ 247.053884] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 247.062465] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 247.069070] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 247.077418] Interruptibility = 00000008 ActivityState = 00000000 [ 247.084113] *** Host State *** [ 247.087644] RIP = 0xffffffff8117479a RSP = 0xffff88805ac67998 [ 247.093884] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 247.093967] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.5'. [ 247.100685] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 247.117370] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 247.134586] CR0=0000000080050033 CR3=00000000a8510000 CR4=00000000001426f0 [ 247.138066] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.5'. [ 247.155043] FAT-fs (loop1): bogus number of reserved sectors [ 247.176002] FAT-fs (loop1): Can't find a valid FAT filesystem [ 247.186772] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 247.205442] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 247.211915] *** Control State *** [ 247.215558] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 247.226098] EntryControls=0000d1ff ExitControls=002fefff [ 247.231964] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 247.239010] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 247.260235] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 247.267669] reason=80000021 qualification=0000000000000000 [ 247.275250] IDTVectoring: info=00000000 errcode=00000000 [ 247.280945] TSC Offset = 0xffffff7925a01743 [ 247.285352] EPT pointer = 0x00000000a810801e [ 247.497168] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 247.570170] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. 14:23:26 executing program 0: syslog(0x3, &(0x7f0000000240)=""/147, 0x93) 14:23:28 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:28 executing program 5: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/222, 0xde}, 0x0) mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x10003, 0x80011, r0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='comm\x00') writev(r1, &(0x7f0000000080), 0xfa) 14:23:28 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8}) 14:23:28 executing program 1: r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='sit0\x00', 0x85) sendto$unix(r0, 0x0, 0x0, 0x0, &(0x7f0000000d00)=@abs={0x0, 0x0, 0x10000e0}, 0x6e) 14:23:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, 0x0) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:28 executing program 0: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000001200)=""/148, 0x94}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip_vs\x00') preadv(r0, &(0x7f0000000540)=[{&(0x7f0000000500)=""/6}], 0x15c, 0x0) 14:23:28 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000ffffff9e000000000000000044000500fe8000000000000000000000000000bb000000003200"/196], 0x1}}, 0x0) [ 249.772384] *** Guest State *** [ 249.783130] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 249.800279] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 249.809607] CR3 = 0x00000000fffbc000 14:23:29 executing program 1: r0 = open(&(0x7f0000000040)='./file0\x00', 0x143042, 0x0) write$P9_RREMOVE(r0, 0x0, 0x0) r1 = gettid() ptrace$peekuser(0x3, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) ioctl$int_in(0xffffffffffffffff, 0x0, 0x0) tkill(r1, 0x1000000000016) 14:23:29 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x803, 0x3) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000580)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r2, 0x0, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x78, 0x4) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) creat(0x0, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x2, 0x0, "a77760f5a7645bc43c241d69912dda0c63c2a66726f8cfafd6c8fe2c98de7ba44947a79015f0fe57917cb62a93987a938fdedfce7bbba4fec2d8a09c41fb233245f2604b9e07b8ab79ec15ef2818a179"}, 0xd8) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @dev}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000380)='TIPC\x00') sendmsg$TIPC_CMD_DISABLE_BEARER(0xffffffffffffffff, 0x0, 0x8000) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='lp\x00', 0x3) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4) pipe(0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00') prctl$PR_GET_SECCOMP(0x15) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) dup3(r1, r0, 0x0) recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, 0x0, 0x4f}, 0x100) fsetxattr$trusted_overlay_upper(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 249.821769] RSP = 0x0000000000000000 RIP = 0x0000000000008000 14:23:29 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8}) [ 249.856132] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 249.878649] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 14:23:29 executing program 0: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x40, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0xa00) readv(r0, &(0x7f0000000240)=[{&(0x7f00000013c0)=""/135, 0x87}], 0x1) [ 249.913259] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 249.926689] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 249.935166] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 249.943488] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 249.951682] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:23:29 executing program 1: r0 = socket$pppoe(0x18, 0x1, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) connect$pppoe(r0, &(0x7f00000004c0)={0x18, 0x0, {0x2, @link_local, 'ip6gre0\x00'}}, 0x1e) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(0xffffffffffffffff, 0x40bc5311, 0x0) dup3(r1, r0, 0x0) [ 249.968200] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 249.986972] GDTR: limit=0x00000000, base=0x0000000000000000 [ 250.007382] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 250.029318] IDTR: limit=0x00000000, base=0x0000000000000000 [ 250.049044] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 250.060621] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 250.067205] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 250.098144] Interruptibility = 00000008 ActivityState = 00000000 [ 250.126335] *** Host State *** [ 250.137805] RIP = 0xffffffff8117479a RSP = 0xffff888065b6f998 [ 250.155129] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 250.163417] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 250.174842] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 250.194372] CR0=0000000080050033 CR3=0000000093f82000 CR4=00000000001426f0 [ 250.203311] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 250.213700] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 250.219863] *** Control State *** [ 250.224474] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 250.231420] EntryControls=0000d1ff ExitControls=002fefff [ 250.236950] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 250.243999] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 250.251928] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 250.258717] reason=80000021 qualification=0000000000000000 [ 250.266161] IDTVectoring: info=00000000 errcode=00000000 [ 250.271931] TSC Offset = 0xffffff7785ff5096 [ 250.276359] EPT pointer = 0x00000000a881501e 14:23:31 executing program 1: getgroups(0x0, 0x0) geteuid() perf_event_open(&(0x7f000000a000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FUSE_DEV_IOC_CLONE(0xffffffffffffffff, 0x8004e500, &(0x7f0000000040)) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @dev}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fe, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}, 0x10) sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000340)=""/209, 0xd1}, {0x0}, {&(0x7f0000001540)=""/131, 0x83}, {&(0x7f0000000240)=""/126, 0x7e}, {&(0x7f0000000100)=""/24, 0x18}], 0x5}, 0x1}], 0x1, 0x20, &(0x7f0000001680)) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f00000016c0)=""/129) sendto$inet(r0, &(0x7f0000000000), 0xfffffdef, 0xc0, 0x0, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000140)='TIPCv2\x00') writev(r0, &(0x7f00000000c0), 0x0) io_setup(0x44, &(0x7f00000004c0)) 14:23:31 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8}) 14:23:31 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) 14:23:31 executing program 0: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='security.capability\x00', 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='trusted.overlay.upper\x00', &(0x7f00000001c0)={0x0, 0xfb, 0x15, 0x0, 0x0, "281df1e4e988b922f9c96376c07308ad"}, 0x15, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', 0x0, 0x0, 0x0) 14:23:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:31 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x803, 0x3) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000580)='IPVS\x00') sendmsg$IPVS_CMD_ZERO(r2, 0x0, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000005c0)=0x78, 0x4) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, 0x0) creat(0x0, 0x0) ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(0xffffffffffffffff, 0xc00c642e, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffffff, 0xc0206434, 0x0) ioctl$DRM_IOCTL_SG_ALLOC(0xffffffffffffffff, 0xc0106438, 0x0) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000280)={@in={{0x2, 0x0, @loopback}}, 0x0, 0x2, 0x0, "a77760f5a7645bc43c241d69912dda0c63c2a66726f8cfafd6c8fe2c98de7ba44947a79015f0fe57917cb62a93987a938fdedfce7bbba4fec2d8a09c41fb233245f2604b9e07b8ab79ec15ef2818a179"}, 0xd8) bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e23, @dev}, 0x10) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000380)='TIPC\x00') sendmsg$TIPC_CMD_DISABLE_BEARER(0xffffffffffffffff, 0x0, 0x8000) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='lp\x00', 0x3) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000100), 0x4) pipe(0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000700)='IPVS\x00') prctl$PR_GET_SECCOMP(0x15) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, 0x0, 0x0) dup3(r1, r0, 0x0) recvmsg(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000003ac0)=""/4096, 0x1000}], 0x1, 0x0, 0x4f}, 0x100) fsetxattr$trusted_overlay_upper(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) write$binfmt_elf64(r1, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) [ 252.846761] *** Guest State *** 14:23:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000001"]) 14:23:32 executing program 2: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x0) open(&(0x7f000000fffa)='./bus\x00', 0x0, 0x0) syz_mount_image$hfsplus(&(0x7f0000000100)='hfsplus\x00', &(0x7f0000000140)='./bus\x00', 0x484, 0x0, 0x0, 0x0, 0x0) 14:23:32 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) [ 252.873862] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 252.985593] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 253.045020] CR3 = 0x00000000fffbc000 14:23:32 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000dc9ff0)={0x2, 0x4e20}, 0x10) shutdown(r0, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, 0x0) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x3f, 0x0, 0x47acc5a9aea0fc8a) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_sys\x00', 0x0, 0x0) r2 = gettid() write$cgroup_pid(r1, &(0x7f0000000200)=r2, 0x12) setsockopt$EBT_SO_SET_COUNTERS(0xffffffffffffffff, 0x0, 0x81, 0x0, 0x274) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000240)) syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) syz_genetlink_get_family_id$ipvs(0x0) sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f00000005c0)={{0x2, 0x4e21, @remote}, {0x6}, 0x68, {0x2, 0x4e20, @multicast1}, 'ifb0\x00'}) getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f00000002c0), &(0x7f0000000300)=0xb) r3 = socket$packet(0x11, 0x2, 0x300) ioctl$SIOCGSTAMP(r0, 0x8906, &(0x7f0000000400)) setsockopt$packet_tx_ring(r3, 0x107, 0xd, 0x0, 0x0) getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, 0x0, 0x0) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) getsockopt$ARPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000080)={0x2, 0x4e20}, 0x10) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0) sendto$inet(r0, &(0x7f0000000180), 0xbe0558d841c80c85, 0x4007ffd, 0x0, 0x3df) recvfrom(r0, &(0x7f0000000280)=""/26, 0x1a, 0x10101, 0x0, 0x0) 14:23:32 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) [ 253.068971] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 253.069345] attempt to access beyond end of device [ 253.104381] loop2: rw=2048, want=3, limit=2 [ 253.127553] hfsplus: unable to find HFS+ superblock 14:23:32 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff8000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$null(0xffffffffffffff9c, &(0x7f0000000280)='/dev/null\x00', 0x0, 0x0) geteuid() preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x94}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/fib_triestat\x00') preadv(r0, &(0x7f0000000480), 0x2000000000000113, 0x0) prctl$PR_SET_SPECULATION_CTRL(0x35, 0x0) clone(0x7ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) exit_group(0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000040)) [ 253.167565] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 253.181694] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 253.193863] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 14:23:32 executing program 3: r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:32 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup\x00\x00\x00\x00\x00\xdb\x88yt\xa9\xd4\xb8\x04\x9e f\x06\xa8\b\xfc\xfe=\xd3\x12\x91\xf7\x86\xce\xe9*.\xd9\xcc\x0e\xeb\x0fn\x1b!p\x05W\xd7\xd3!\xc6\x16\xf2\xa6\x9f\x97^]X\ah1\x03\xcfHQo\xd9`c`1\x93\xe1\xcc1\t\xac\x8e\xeb4\x89\xd6\xa5\xd8n\xeao\xc6j\xdcl\x927\x8dI', 0x200002, 0x0) fchdir(r1) r2 = fcntl$getown(r0, 0x9) ptrace$setopts(0xffffffffffffffff, r2, 0x2, 0x6) r3 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000400)) pipe2$9p(&(0x7f00000000c0), 0x84000) perf_event_open(&(0x7f0000000580)={0x2, 0x70, 0x5c64, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rt_sigpending(&(0x7f0000000440), 0x8) getdents64(r3, 0x0, 0x352) socketpair(0x1ba6f68c77319cc1, 0x3, 0x0, &(0x7f0000000000)) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x5c63, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x9, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = creat(&(0x7f00000003c0)='./bus\x00', 0x0) write$P9_RSETATTR(r4, &(0x7f0000000080)={0x7}, 0xff8f) [ 253.231211] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 253.297678] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:23:32 executing program 3: r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) [ 253.349856] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 14:23:32 executing program 3: r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) [ 253.403480] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 253.456168] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 253.485500] GDTR: limit=0x00000000, base=0x0000000000000000 [ 253.493877] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 253.502764] IDTR: limit=0x00000000, base=0x0000000000000000 [ 253.513041] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 253.522035] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 253.528600] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 253.536687] Interruptibility = 00000008 ActivityState = 00000000 [ 253.553029] *** Host State *** [ 253.576352] RIP = 0xffffffff8117479a RSP = 0xffff88805ac67998 [ 253.609814] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 253.637022] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 253.684970] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 253.693478] CR0=0000000080050033 CR3=000000008ed8a000 CR4=00000000001426f0 [ 253.702959] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 253.714024] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 253.722620] *** Control State *** [ 253.726153] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 253.733059] EntryControls=0000d1ff ExitControls=002fefff [ 253.738913] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 253.745988] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 253.753061] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 253.759654] reason=80000021 qualification=0000000000000000 [ 253.766127] IDTVectoring: info=00000000 errcode=00000000 [ 253.771990] TSC Offset = 0xffffff75e2eab874 [ 253.776397] EPT pointer = 0x00000000a879001e 14:23:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:32 executing program 1: read(0xffffffffffffffff, 0x0, 0x0) openat$cgroup(0xffffffffffffff9c, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0) openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) r0 = gettid() fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000)) getsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) tkill(r0, 0x1000000000016) 14:23:32 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:32 executing program 2: add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) ioctl$RNDZAPENTCNT(0xffffffffffffffff, 0x5204, &(0x7f0000000000)=0xd04) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xce7c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffbfffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_execute_func(&(0x7f0000000400)="c4a191de8200000000660fe653d0c4a341497da8e4f0420fbb3336f30f5ff00fae34fbc42295bd0bc441ec5f435566440f2e5db5660f381ed0") r0 = accept4(0xffffffffffffffff, 0x0, &(0x7f00000000c0)=0xfffffff5, 0x80000) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000cab000)) mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_capability(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='security.capability\x00', &(0x7f0000000280)=@v3, 0x18, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x801, 0x0) ioctl$PPPIOCGNPMODE(r1, 0xc008744c, &(0x7f00000001c0)={0x0, 0x3}) getxattr(&(0x7f0000000240)='./file0\x00', &(0x7f0000000340)=@known='security.capability\x00\xc9\xbd0\x12\x98>\x02\x15Y`\x19j*\x84X_\x19\xc1\xc8&\x17)\x82\xa8\xde\x1c\xccL\xdci\x87\xff\xc9q\\\xef\"\xce\xe4\xc6s\xd48\x8d^V\x04\xa0\xb88\xaf\xb3[\xd3R\xe4\xc9\xeed\x9aw\x12\b0\x9c\xa46\xbf\x91\x9f\xd9ck\xfa%_\xf4\xb3\x1f@\xf8\x8e\xcc\x9c-\x81!q\xc4\x12bO\f\x14/\xc5Oe\xf4\x929\xf2v\x86\xc1}H\x9e\x92]\xa1\x9b\xf3\x1e0\xecu\xcd\x92#yWf\x1c\xe8\xa1V\x84\x18\xe6\xd3\xd4(\x17O\x89\xa1\x1c\xc8!\xfb\xf6A\"\xa3okA\x1c', 0x0, 0x0) getegid() accept4$unix(r0, 0x0, &(0x7f0000000080), 0x0) 14:23:32 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x40000020, r0, 0x0) openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0) read(r1, &(0x7f0000000000)=""/64, 0x40) 14:23:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000000)={0x1, 0x0, @pic={0x0, 0x0, 0x7}}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8}) 14:23:33 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) [ 253.847183] encrypted_key: insufficient parameters specified 14:23:33 executing program 1: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x400000101000, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff43) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="3034ecfa19b4490b") ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:23:33 executing program 0: read(0xffffffffffffffff, 0x0, 0x0) openat$cgroup(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r0 = gettid() fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000)) getsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) tkill(r0, 0x1000000000016) [ 253.945385] encrypted_key: insufficient parameters specified [ 253.955354] *** Guest State *** [ 253.989504] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 14:23:33 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x4b5a, &(0x7f00000bfff0)={&(0x7f0000006440)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in=@multicast1}}}, 0xb8}}, 0x0) 14:23:33 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) [ 254.031410] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 254.065024] CR3 = 0x0000000000000000 [ 254.079667] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 14:23:33 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) [ 254.106295] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 254.125051] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.2'. [ 254.150647] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 254.161878] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.174565] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.205323] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.215050] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.223754] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.232579] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.241007] GDTR: limit=0x00000000, base=0x0000000000000000 [ 254.248999] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.257781] IDTR: limit=0x00000000, base=0x0000000000000000 [ 254.265827] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.274185] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 254.280695] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 254.288145] Interruptibility = 00000000 ActivityState = 00000000 [ 254.294709] *** Host State *** [ 254.297922] RIP = 0xffffffff8117479a RSP = 0xffff888097f0f998 [ 254.303970] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 254.310551] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 254.318356] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 254.324322] CR0=0000000080050033 CR3=000000008feb6000 CR4=00000000001426e0 [ 254.331472] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 254.338145] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 254.344371] *** Control State *** [ 254.347831] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 14:23:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:33 executing program 0: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioprio_get$pid(0x3, 0x0) 14:23:33 executing program 2: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f00000000c0)={0x10}) [ 254.354585] EntryControls=0000d3ff ExitControls=002fefff [ 254.360106] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 254.367035] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 254.373775] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 254.380423] reason=80000021 qualification=0000000000000000 [ 254.386782] IDTVectoring: info=00000000 errcode=00000000 [ 254.392318] TSC Offset = 0xffffff754967827b [ 254.396652] EPT pointer = 0x000000008a38201e 14:23:33 executing program 2: perf_event_open(&(0x7f0000000340)={0x2, 0x70, 0xee67, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000100)='/dev/input/event#\x00', 0x2, 0x0) ioctl$EVIOCSCLOCKID(r0, 0x80284504, &(0x7f0000ffcffc)=0x7ffb) [ 254.459332] EXT4-fs warning (device sda1): verify_group_input:123: Last group not full [ 254.468913] *** Guest State *** [ 254.479657] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 254.489211] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 254.507969] CR3 = 0x00000000fffbc000 [ 254.520237] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 254.526239] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 254.532425] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 254.539177] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 254.547361] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 254.556168] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 254.564525] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 254.572614] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 254.581005] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 254.588985] GDTR: limit=0x00000000, base=0x0000000000000000 [ 254.597746] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.605804] IDTR: limit=0x00000000, base=0x0000000000000000 [ 254.613844] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 254.621914] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 254.628520] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 254.636548] Interruptibility = 00000008 ActivityState = 00000000 [ 254.643587] *** Host State *** [ 254.646802] RIP = 0xffffffff8117479a RSP = 0xffff888063fa7998 [ 254.653003] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 254.659438] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 254.667326] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 254.680773] CR0=0000000080050033 CR3=000000008feb6000 CR4=00000000001426f0 [ 254.687998] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 254.695116] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 254.701332] *** Control State *** 14:23:33 executing program 5: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) fanotify_mark(r1, 0x105, 0x40000020, r0, 0x0) openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0) read(r1, &(0x7f0000000000)=""/64, 0x40) 14:23:33 executing program 0: bind$alg(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x7a05, 0x1700) pwrite64(r2, &(0x7f0000000200)="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", 0x200, 0x3200) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfffffcbe) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000008c0)='memory.events\x00', 0xb00000000000000, 0x0) [ 254.704827] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 254.711617] EntryControls=0000d1ff ExitControls=002fefff [ 254.717074] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 254.721290] IPVS: ftp: loaded support on port[0] = 21 [ 254.724685] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 254.742001] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 254.748763] reason=80000021 qualification=0000000000000000 [ 254.755312] IDTVectoring: info=00000000 errcode=00000000 14:23:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000480)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000080), 0x1c) r1 = dup2(r0, r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f0000000440), 0x129f0817) syz_execute_func(&(0x7f0000000040)="410f01f964ff0941c3c4e2c99758423e46d8731266420fe2e33e0f1110c442019dcc6f") clone(0x2102001ff9, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) getsockopt$inet_pktinfo(r1, 0x0, 0x8, 0x0, &(0x7f00000003c0)) sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0) [ 254.775231] TSC Offset = 0xffffff7503286601 [ 254.785219] EPT pointer = 0x000000009574a01e 14:23:34 executing program 1: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x400000101000, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff43) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(r0, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="3034ecfa19b4490b") ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:23:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:34 executing program 2: r0 = timerfd_create(0x0, 0x0) timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0) read(r0, &(0x7f0000000000)=""/101, 0x65) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) bind$inet6(0xffffffffffffffff, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) creat(&(0x7f0000000280)='./file0\x00', 0x6) socket$unix(0x1, 0x1, 0x0) pipe(&(0x7f0000000180)) write(0xffffffffffffffff, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000001c0)) pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1b9}, 0x0, 0x0) [ 255.026715] audit: type=1804 audit(1555683814.190:57): pid=9491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir956011954/syzkaller.pnw8ws/125/memory.events" dev="sda1" ino=17032 res=1 [ 255.094712] *** Guest State *** [ 255.108431] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 255.132546] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 255.145122] CR3 = 0x00000000fffbc000 [ 255.149252] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 255.160516] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 255.166729] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 255.173715] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 255.181880] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.190799] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.198856] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.207135] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.215419] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.223542] GDTR: limit=0x00000000, base=0x0000000000000000 [ 255.231760] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 255.231771] IDTR: limit=0x00000000, base=0x0000000000000000 [ 255.231787] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 255.231794] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 255.231802] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 255.231808] Interruptibility = 00000008 ActivityState = 00000000 [ 255.231812] *** Host State *** [ 255.231820] RIP = 0xffffffff8117479a RSP = 0xffff888064daf998 [ 255.231835] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 255.231843] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 255.231851] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 255.270887] CR0=0000000080050033 CR3=000000008ed8a000 CR4=00000000001426f0 [ 255.291595] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 255.307101] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 255.332893] *** Control State *** [ 255.336568] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 14:23:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 255.343566] EntryControls=0000d1ff ExitControls=002fefff [ 255.349073] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 255.356368] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 255.363184] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 255.369769] reason=80000021 qualification=0000000000000000 [ 255.369775] IDTVectoring: info=00000000 errcode=00000000 [ 255.369780] TSC Offset = 0xffffff74ac72f633 [ 255.369788] EPT pointer = 0x00000000a198a01e [ 255.479344] *** Guest State *** [ 255.485895] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 255.496777] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 255.509713] CR3 = 0x00000000fffbc000 [ 255.517547] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 255.526792] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 255.534423] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 255.544341] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 255.554765] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.568417] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.578242] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.589674] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.597884] protocol 88fb is buggy, dev hsr_slave_0 [ 255.597954] protocol 88fb is buggy, dev hsr_slave_1 [ 255.602366] audit: type=1804 audit(1555683814.760:58): pid=9482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.0" name="/root/syzkaller-testdir956011954/syzkaller.pnw8ws/125/memory.events" dev="sda1" ino=17032 res=1 [ 255.610764] audit: type=1804 audit(1555683814.770:59): pid=9508 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.0" name="/root/syzkaller-testdir956011954/syzkaller.pnw8ws/125/memory.events" dev="sda1" ino=17032 res=1 [ 255.664439] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 255.672675] GDTR: limit=0x00000000, base=0x0000000000000000 [ 255.680158] protocol 88fb is buggy, dev hsr_slave_0 [ 255.685920] protocol 88fb is buggy, dev hsr_slave_1 [ 255.685939] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 255.703319] IDTR: limit=0x00000000, base=0x0000000000000000 [ 255.715741] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 255.724701] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 255.731286] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 255.738819] Interruptibility = 00000008 ActivityState = 00000000 [ 255.747541] *** Host State *** [ 255.750918] RIP = 0xffffffff8117479a RSP = 0xffff88806217f998 [ 255.757675] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 255.764220] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 255.772065] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 255.778042] CR0=0000000080050033 CR3=000000008ed8a000 CR4=00000000001426e0 [ 255.785183] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 255.792150] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 255.798213] *** Control State *** [ 255.798221] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 255.798226] EntryControls=0000d1ff ExitControls=002fefff [ 255.798243] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 255.798250] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 255.798257] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 255.798263] reason=80000021 qualification=0000000000000000 [ 255.798268] IDTVectoring: info=00000000 errcode=00000000 [ 255.798274] TSC Offset = 0xffffff7477237229 [ 255.798281] EPT pointer = 0x00000000a5b9b01e [ 255.834706] protocol 88fb is buggy, dev hsr_slave_0 [ 255.860981] protocol 88fb is buggy, dev hsr_slave_1 14:23:36 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:36 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$ARPT_SO_GET_REVISION_TARGET(r0, 0x0, 0x63, 0x0, &(0x7f00000002c0)=0x1e) 14:23:36 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) socket$inet_udplite(0x2, 0x2, 0x88) socket$packet(0x11, 0x0, 0x300) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) 14:23:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c12") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:36 executing program 1: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f00000002c0)={0x0, 0x2}, 0x8) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) 14:23:36 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f000001dfc8)={&(0x7f00000000c0)={0x10, 0x34000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c000000100029080000000000000000030000001800010014cc93e82d000000ff0200000000f10001000000"], 0x1}}, 0x0) 14:23:36 executing program 2: 14:23:36 executing program 5: 14:23:36 executing program 2: [ 257.276687] *** Guest State *** [ 257.295232] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:36 executing program 5: [ 257.328163] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 257.377022] CR3 = 0x00000000fffbc000 14:23:36 executing program 2: 14:23:36 executing program 5: socket$inet_udplite(0x2, 0x2, 0x88) syz_emit_ethernet(0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="3487c90090780000"], 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100)) [ 257.398185] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 257.425325] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 257.451350] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 257.482582] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 257.516804] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 257.533762] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 257.562099] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 257.573529] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 257.582295] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 257.590542] GDTR: limit=0x00000000, base=0x0000000000000000 [ 257.598822] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 257.607040] IDTR: limit=0x00000000, base=0x0000000000000000 [ 257.615365] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 257.623408] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 257.630681] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 257.638134] Interruptibility = 00000008 ActivityState = 00000000 [ 257.644513] *** Host State *** [ 257.647722] RIP = 0xffffffff8117479a RSP = 0xffff88806217f998 [ 257.653777] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 257.660320] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 257.668132] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 257.674173] CR0=0000000080050033 CR3=0000000089b36000 CR4=00000000001426f0 [ 257.681242] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 257.687908] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 257.694016] *** Control State *** [ 257.697481] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 257.704856] EntryControls=0000d1ff ExitControls=002fefff [ 257.710353] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 257.717279] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 257.723991] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 257.730751] reason=80000021 qualification=0000000000000000 [ 257.737084] IDTVectoring: info=00000000 errcode=00000000 [ 257.742586] TSC Offset = 0xffffff7381db72dc [ 257.746913] EPT pointer = 0x00000000a687901e 14:23:39 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:39 executing program 1: 14:23:39 executing program 2: 14:23:39 executing program 5: 14:23:39 executing program 0: 14:23:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:39 executing program 1: 14:23:39 executing program 2: [ 260.228139] *** Guest State *** [ 260.237202] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:39 executing program 2: 14:23:39 executing program 1: [ 260.271170] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 14:23:39 executing program 5: [ 260.312248] CR3 = 0x00000000fffbc000 14:23:39 executing program 0: [ 260.333523] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 260.379531] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 260.406608] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 260.421678] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 260.446958] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 260.456442] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 260.467675] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 260.476141] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 260.484686] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 260.492833] GDTR: limit=0x00000000, base=0x0000000000000000 [ 260.501047] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 260.509028] IDTR: limit=0x00000000, base=0x0000000000000000 [ 260.517085] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 260.525126] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 260.531605] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 260.539058] Interruptibility = 00000008 ActivityState = 00000000 [ 260.545352] *** Host State *** [ 260.548551] RIP = 0xffffffff8117479a RSP = 0xffff8880643af998 [ 260.554593] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 260.561055] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 260.568936] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 260.574867] CR0=0000000080050033 CR3=0000000098164000 CR4=00000000001426f0 [ 260.581914] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 260.588571] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 260.594683] *** Control State *** [ 260.598141] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 260.604854] EntryControls=0000d1ff ExitControls=002fefff [ 260.611109] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 260.618038] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 260.624746] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 260.631352] reason=80000021 qualification=0000000000000000 [ 260.647310] IDTVectoring: info=00000000 errcode=00000000 [ 260.652791] TSC Offset = 0xffffff71ec40ed2e [ 260.657099] EPT pointer = 0x000000009ae2b01e 14:23:42 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:42 executing program 2: 14:23:42 executing program 1: 14:23:42 executing program 5: 14:23:42 executing program 0: 14:23:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:42 executing program 5: 14:23:42 executing program 0: 14:23:42 executing program 1: 14:23:42 executing program 2: 14:23:42 executing program 1: 14:23:42 executing program 5: [ 263.440638] *** Guest State *** [ 263.456025] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 263.470760] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 263.484801] CR3 = 0x00000000fffbc000 [ 263.488854] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 263.501658] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 263.513422] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 263.530565] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 263.541055] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 263.549285] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 263.559905] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 263.575526] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 263.589965] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 263.598255] GDTR: limit=0x00000000, base=0x0000000000000000 [ 263.606701] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 263.614966] IDTR: limit=0x00000000, base=0x0000000000000000 [ 263.623231] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 263.631405] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 263.637915] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 263.645452] Interruptibility = 00000008 ActivityState = 00000000 [ 263.651771] *** Host State *** [ 263.654964] RIP = 0xffffffff8117479a RSP = 0xffff88809692f998 [ 263.660996] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 263.667406] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 263.675810] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 263.681785] CR0=0000000080050033 CR3=00000000821cf000 CR4=00000000001426f0 [ 263.688812] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 263.695557] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 263.701673] *** Control State *** [ 263.705122] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 263.711834] EntryControls=0000d1ff ExitControls=002fefff [ 263.717294] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 263.724251] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 263.730962] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 263.737542] reason=80000021 qualification=0000000000000000 [ 263.743897] IDTVectoring: info=00000000 errcode=00000000 [ 263.749371] TSC Offset = 0xffffff703514e587 [ 263.753733] EPT pointer = 0x00000000a807401e 14:23:45 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:45 executing program 0: 14:23:45 executing program 1: 14:23:45 executing program 2: 14:23:45 executing program 5: 14:23:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319b") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:45 executing program 5: 14:23:45 executing program 0: 14:23:45 executing program 1: 14:23:45 executing program 2: 14:23:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:45 executing program 1: 14:23:48 executing program 5: 14:23:48 executing program 0: 14:23:48 executing program 2: 14:23:48 executing program 1: 14:23:48 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:48 executing program 5: 14:23:48 executing program 1: 14:23:48 executing program 2: 14:23:48 executing program 0: 14:23:48 executing program 5: 14:23:48 executing program 1: 14:23:48 executing program 0: 14:23:48 executing program 2: 14:23:48 executing program 5: 14:23:48 executing program 1: [ 269.456584] *** Guest State *** [ 269.468815] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 [ 269.512808] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 269.541996] CR3 = 0x00000000fffbc000 [ 269.545932] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 269.552316] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 269.558348] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 269.565651] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 269.574378] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 269.582678] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 269.590731] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 269.598798] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 269.606877] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 269.614942] GDTR: limit=0x00000000, base=0x0000000000000000 [ 269.622982] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 269.631108] IDTR: limit=0x00000000, base=0x0000000000000000 [ 269.639196] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 269.647249] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 269.653704] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 269.661212] Interruptibility = 00000008 ActivityState = 00000000 [ 269.667431] *** Host State *** [ 269.670707] RIP = 0xffffffff8117479a RSP = 0xffff88805cd8f998 [ 269.676669] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 269.683131] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000034000 [ 269.690946] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 269.696824] CR0=0000000080050033 CR3=000000008ae04000 CR4=00000000001426e0 [ 269.703938] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 269.710629] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 269.716839] *** Control State *** [ 269.720393] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 269.727113] EntryControls=0000d1ff ExitControls=002fefff [ 269.732621] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 269.739533] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 269.746244] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 269.752865] reason=80000021 qualification=0000000000000000 [ 269.760175] IDTVectoring: info=00000000 errcode=00000000 [ 269.765706] TSC Offset = 0xffffff6cfbe6e319 [ 269.770075] EPT pointer = 0x00000000895d101e 14:23:51 executing program 0: 14:23:51 executing program 2: 14:23:51 executing program 5: 14:23:51 executing program 1: 14:23:51 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd0") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:51 executing program 5: 14:23:51 executing program 1: 14:23:51 executing program 0: 14:23:51 executing program 2: 14:23:51 executing program 1: [ 272.467224] *** Guest State *** 14:23:51 executing program 2: 14:23:51 executing program 5: 14:23:51 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'e \x00\b\x00', 0x2}, 0x18) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8916, &(0x7f0000000000)) 14:23:51 executing program 1: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000400)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, 0x0, 0x21d) [ 272.492722] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:23:51 executing program 5: syz_emit_ethernet(0x2a, &(0x7f0000000000)={@dev={[], 0xc}, @local, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @multicast1}, @icmp=@address_reply={0x8}}}}}, 0x0) [ 272.533312] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 272.562833] CR3 = 0x00000000fffbc000 [ 272.568588] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 272.581708] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 272.588014] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 272.601399] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 272.610460] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 272.625089] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 272.633894] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 272.642405] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 272.650704] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 272.658901] GDTR: limit=0x00000000, base=0x0000000000000000 [ 272.666979] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 272.675063] IDTR: limit=0x00000000, base=0x0000000000000000 [ 272.683214] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 272.691276] EFER = 0x0000000000006000 PAT = 0x0007040600070406 [ 272.697675] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 272.705314] Interruptibility = 00000008 ActivityState = 00000000 [ 272.711601] *** Host State *** [ 272.714781] RIP = 0xffffffff8117479a RSP = 0xffff888094c9f998 [ 272.720808] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 272.727207] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000034000 [ 272.735149] GDTBase=fffffe0000032000 IDTBase=fffffe0000000000 [ 272.747705] CR0=0000000080050033 CR3=00000000a0d5b000 CR4=00000000001426f0 [ 272.754781] Sysenter RSP=fffffe0000033200 CS:RIP=0010:ffffffff86201910 [ 272.761484] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 272.767525] *** Control State *** [ 272.771006] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 272.777663] EntryControls=0000d1ff ExitControls=002fefff [ 272.783238] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 272.790207] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 272.796867] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 272.803520] reason=80000021 qualification=0000000000000000 [ 272.809829] IDTVectoring: info=00000000 errcode=00000000 [ 272.815323] TSC Offset = 0xffffff6b5f0a181b [ 272.819676] EPT pointer = 0x00000000a4dbb01e 14:23:54 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:54 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = memfd_create(&(0x7f0000000040)='\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) ftruncate(r1, 0x40000) connect$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @loopback}, 0x10) sendfile(r0, r1, 0x0, 0xffe4) getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0) r2 = syz_open_dev$vcsa(0x0, 0x7, 0x60000) setsockopt$inet_sctp_SCTP_MAXSEG(r2, 0x84, 0xd, &(0x7f0000000080), 0x4) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, 0x0, 0x0) 14:23:54 executing program 5: r0 = syz_open_dev$evdev(&(0x7f00000000c0)='/dev/input/event#\x00', 0x20, 0x101002) write$evdev(r0, &(0x7f0000000000)=[{{0x77359400}, 0x1, 0x1c, 0x2}], 0x16c8) read$FUSE(r0, &(0x7f0000000100), 0x1000) 14:23:54 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x40000000044831, 0xffffffffffffffff, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x15) clone(0x8000, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) 14:23:54 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'e \x00\b\x00', 0x2}, 0x18) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8916, &(0x7f0000000000)) 14:23:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:54 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'e \x00\b\x00', 0x2}, 0x18) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8916, &(0x7f0000000000)) 14:23:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000002c0)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000100)={0x0, 0x100000}) ioctl$KVM_GET_REG_LIST(0xffffffffffffffff, 0xc008aeb0, &(0x7f0000000040)=ANY=[@ANYBLOB="1714fd918efd"]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000028000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 275.467751] audit: type=1400 audit(1555683834.630:60): avc: denied { map } for pid=9698 comm="syz-executor.1" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=42959 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:hugetlbfs_t:s0 tclass=file permissive=1 14:23:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:54 executing program 2: perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@ipv6_newrule={0x34, 0x20, 0x801, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'lo\x00'}]}, 0x34}}, 0x0) getpid() 14:23:54 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000000)={0x0, 'e \x00\b\x00', 0x2}, 0x18) r0 = socket(0xa, 0x1, 0x0) ioctl(r0, 0x8916, &(0x7f0000000000)) 14:23:54 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:57 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:23:57 executing program 5: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = accept4$inet6(0xffffffffffffff9c, 0x0, 0x0, 0x0) fsetxattr$security_evm(r0, 0x0, 0x0, 0x0, 0x0) 14:23:57 executing program 0: r0 = socket(0xa, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000180)=@nat={'nat\x00', 0x19, 0x3, 0x16b0, [0x20000f00, 0x0, 0x0, 0x20000f30, 0x20001c98], 0x0, 0x0, &(0x7f0000000f00)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff020000001d0000000800000088647665746831000000000000000000000079616d3000000000000000000000000073797a6b616c6c657231000000000000626f6e645f736c6176655f3100000000d2a28d9f8011ffff0000ffff000000000000ffffffff00000000e8020000e8020000200300006d61726b5f6d000000000000000000000000000000000000000000000000000018000000000000000600000000000000030000000000000002030000000000006270660000000000000000000000000000000000000000000000000000000000100200000000000003000000ee1a0006020000000000ff010100000006000509ff03000001010403dc6300000100010801010000306e000900800000010007ff00010000050005ff00010000b00b01010400000000000506080000000700000100000000070009200300000008001f090900000000800199010000000900071f0500000038000806040000006d02810465000000090006ff7fffffff0000200900000000040000020500000002000807ffff00007543018001fcffff020007ff000000d401010001090000000400020204000000060003011b0a0000940603044d00000000000705080000000100046200000000050001050000000004000801010000000600ff040900000009000004030000000100faff030000004000038e00000000010008f4ff7f00000000080520000000ffff0807ff010000060004da06000000f9ff08001f000000090000200900000001008b04a359000005003f013f0000007c000403d70b000061080004010000000800001f040000000500ffe40000000001000000000000000100037e010000000700070265000000d00f010005000000010009ef02000000ff7f0820070000000001050801000000030003052e7d00000000001f0500000000000201060000000101ff1352de0000fbff6d0328f0ffff07000000000000000600bfff01000000200005070200000008000040060000000600095900000000000000000900000000000000736e61740000000000000000000000000000000000000000000000000000000010000000000000000180c20000030000ffffffff00000000050000003a000000886c76657468315f746f5f68737200000000766574683100000000000000000000006c6f000000000000000000000000000064756d6d7930000000000000000000000180c2000003ffff00000000ffffffffffffffffffffff00000060090000e0090000180a0000616d6f6e6700000000000000000000000000000000000000000000000000000098080000000000000700000000020000000000000500000007000000f303000003000000060000008100000000f8ffff810000000010000001000000010000000600000009000000050000000010000006000000ffff00000600000009000000030000001f000000000000000000000000000000080000000600000003000000ffff000001000000080000000900000008000000080000008285000000020000000400000000000003000000010000001d00000009000000060000000800000001000000e90000000100010005000000000000000600000001000000000000000400000018030000020000000900000005000000f8ffffff090000000300000007000000d708000002000000000000000400000006000000f50000001f00000003000000f1e3000007000000000200001f000000070000003f000000060000000800000006000000010000000500000002000000010000004600000001000000c700000001010000400000000100008001000000060000000200000006000000010000001f00000000200000020000000000000002000000050000000700000035f7ffff060000000700000004000000050000008f0600001f000000010000002b0d0000fe5600000600000006000000ee00000006000000040000000700000004000000ff7f000008000000010000000700000007000000ff7f0000dc010000050000007fa4000000020000520000007f000000000000008000000001000000ff00000000800000ff07000003000000040000000000000002000000060000000080000002000000030000000400000005000000335100003e00000000000000050000004300000001000000ff070000000600000400000008000000080000001900000005000000ffff00000000000000000000000200000200000008000000ffff000001000000000000801f000000060000000300000002000000ae0000003f0000002402000006000000ff010000ffffff7f31000000090000000180000003000000010000001f000000090000008000000006000000ffffffff7f00000000f0ffff0300000000000000000000002d00000000000000827a3d6b0200000009000000070000003f0000007f000000020000000ef2ffff00000040ffffff7f0100000005000000a4a400003c6aa9497f0000000800000000000000ffffffff03000000010000000000000005000000ff00000009000000830d000001040000010000003d07000007000000d90600000100000000000080070000003f00000005000000fcffffff0700000005000000040000000600000006000000ff01000000000000040000000700000000000000e300000005000000010000000500000006000000f5010000ed090000090000000700000001040000900000000600000020000000090000003f000000070000000300000001800000050000000300000005000000ac1414160000000000000000e000000101010000010000007f00000161d20000010000000000000560000000010000007f000001ff0f0000040000000500000003000000800000000200000065ffffff00000100ff010000e80000000600000002000000010000008eba0000010000800100000002000000ff030000fcffffff8e000000e50e000033f7ffff03000000010001000500000000000000ffff0000200000000500000005000000ff0300000002000005000000ffffffff00000000050000000100010001000000ffff0000cd000000ff000000000100000500000000000000050000000800000003000000080000008100000000000000ffffffff01000000090000000800000009000000000000008e290000000001000800000000000000010400002000000002000000000000009fba0000510100000700000006000000ff03000009000000f9ffffff010000003f000000769300000500000000000000b46e00000200000000800000070000000700000002000000060000000100000002000000060000000300000001000000ff070000030000000000000005000000ffffffff040000000100000002000000ff07000002000000ffff000001010000040000000500000002000000050000000000000002000000070000000100000000000000080000000900000000010000fdffffff0500000002000000f9ffffff07000000060000000900000002000000050000001f0000000000008000040000d7000000060000000000000000000000018000000104000080000000ff7f00002c030000070000000000000008000000f9ffffff89000000010000002000000000040000fcffffff0500000009000000050000009000000008000000f0010000e992000008000000010000000400000000000000000000000004000002000000ed000000000000007f000000000000002000000001000080030000000300000002000000ff010000030000000000000001040000030000000000000004000000060000008b000000480000000700000000040000cac0000007000000000100000700000000010000000800000000000004000000205fffff0700000000800200040000000000000009000000ff0f0000000000004000000000000000420900008000000005000000feffffff000001000900000000000000800000000e80d42f000000000f09000001000000010400000100000005000000020000000100000003000000010000000300000001040000000000807f000000070000000004000009000000daa90000ff030000f9ffffff0100000003000000080000000000000009000000628f000000010000d82400000002000008000000000000001f00000003000000000000000300000007000000f7ffffffc50000000600000026080000ffff0000000000000000006c0300000006000000480000000000000079000000ff00000004000000030000001f04000004000000050000000000000004000000ffffffff0300000007000000000000010700000000000000e000000101000000020000007f0000018100000000000000e0000001000000007374617465000000000000000000000000000000000000000000000000000000080000000000000003000000000000004552524f5200000000000000000000000000000000000000000000000000000020000000000000005c9be8beeb5049945107f72917b18b15981ce897a4ca73cfe11b771a82880000646e6174000000000000000000000000000000000000000000000000000000001000000000000000aaaaaaaaaabb0000ffffffff000000006172707265706c7900000000000000000000000000000000000000000000000010000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000002000000ffffffff01000000030000000000000000002c6f7365000b0000000054f1395808007665746830000000000000000000000073797a6b616c6c65723000000000000069666230000000000000000000000000aaaaaaaaaa000000000000000000000000000000000000000000b8080000b8080000e8080000616d6f6e670000000000000000000000000000000000000000000000000000002008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004e465155455545000000000000000000000000000000000000000000000000000800"/5808]}, 0x1728) 14:23:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:57 executing program 1: getpgrp(0x0) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000380)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x10, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x1fe, 0x0) write$binfmt_aout(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="00000000000000d4164dab827d472fdb53082d5701bebf830c90f6603be2eb1d069f4645e1e1c8461640985acd29b5c1e249ca"], 0x33) perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe) 14:23:57 executing program 0: syslog(0x4, &(0x7f0000000180)=""/147, 0x93) 14:23:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 278.598434] audit: type=1400 audit(1555683837.760:61): avc: denied { syslog } for pid=9755 comm="syz-executor.0" capability=34 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1 14:23:57 executing program 2: r0 = socket$inet(0x2, 0x3, 0x1c) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0ad401003c123f319bd070") syslog(0x3, &(0x7f00000000c0)=""/147, 0x37a8ec531be3c409) 14:23:57 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = memfd_create(&(0x7f0000000140)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\x94a\xac', 0x3) write$binfmt_misc(r1, &(0x7f0000000540)=ANY=[@ANYRES32], 0xfffffda2) fcntl$addseals(r1, 0x409, 0x8) ioctl(r0, 0x1000008912, &(0x7f00000000c0)="0adc1f123c123f319bd070") 14:23:57 executing program 0: syslog(0x3, &(0x7f0000000180)=""/147, 0x93) 14:23:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:23:57 executing program 2: r0 = socket$inet(0x2, 0x3, 0x19) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x23, &(0x7f0000000000)={{{@in=@multicast2, @in=@multicast1}}, {{@in6}, 0x0, @in6=@loopback}}, 0xe8) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000002c0)=ANY=[@ANYBLOB="e0000003ac1414aa000000000300000000000000ffffffff00000000bbc326427175184811505ac724dcf7cd127a1a012af485c981deb5ae10bfe805b6387f8a2d954a7dd02a9dd465552b5dfcc506515a53bf9db2e7ec6cebe2311cd9b3585bf59b8aaad4cd24faef5d39f0289f180ce93bb7b1e4520542b67db986eccd3b8727fb978a5b5110d7ad5f485231cb8e6d"], 0x1) [ 279.141871] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 17) [ 279.157460] FAT-fs (loop1): Filesystem has been set read-only [ 279.171932] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF 14:24:00 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:00 executing program 0: r0 = socket$inet6(0xa, 0x5, 0x0) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f00000000c0)={0x0, @in={{0x2, 0x0, @empty}}}, 0x0) 14:24:00 executing program 2: 14:24:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:00 executing program 5: 14:24:00 executing program 1: getpgrp(0x0) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000380)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x10, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x1fe, 0x0) write$binfmt_aout(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="00000000000000d4164dab827d472fdb53082d5701bebf830c90f6603be2eb1d069f4645e1e1c8461640985acd29b5c1e249ca"], 0x33) perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe) 14:24:00 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) write$tun(r0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000002d80)={{{@in6=@dev, @in6=@loopback}}, {{@in6=@ipv4={[], [], @local}}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f0000002e80)=0xe8) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) lstat(&(0x7f0000000200)='./bus\x00', &(0x7f0000003280)) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$VIDIOC_QUERYSTD(0xffffffffffffffff, 0x8008563f, &(0x7f0000000080)) creat(&(0x7f0000000040)='./bus\x00', 0x12) semop(0x0, &(0x7f000002efe2)=[{}], 0x1) semop(0x0, &(0x7f000001a000)=[{}, {}], 0x2) ioctl$UI_SET_LEDBIT(r0, 0x40045569, 0x8) close(r1) 14:24:00 executing program 2: mkdir(&(0x7f0000fd5ff8)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f0000000400)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id'}, 0x2c, {'group_id'}}) read$FUSE(r0, &(0x7f0000001000), 0x1000) write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, 0x1}, 0x50) open(&(0x7f0000000000)='./file0/file0\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f00000030c0), 0x1000) write$FUSE_ENTRY(r0, &(0x7f0000002000)={0x90, 0x0, 0x2}, 0x90) 14:24:00 executing program 0: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff43) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="3034ecfa19b4490be0766e702b8d36f05839aa7ecf07323a34") ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:24:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:00 executing program 5: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/syz0\x00', 0x200002, 0x0) openat$cgroup_subtree(r0, 0x0, 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='memory.current\x00', 0x0, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(0xffffffffffffffff, 0xc008240a, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1024}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup\x00', 0x200002, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0) gettid() openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) sendmsg(r1, 0x0, 0x40) r3 = socket$kcm(0x11, 0x3, 0x0) openat$cgroup_ro(r2, &(0x7f0000000300)='cpu.stat\x00', 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb01001800000000000000180000dbc32386a6f4ad71006f3096d2a595ba1cec39362aeb0ce4735d85c710b950b57abf7a94570f8300005811d409833861f45bed4bdafeeec8a97453af1ff7ed306602e8edc5273bae45f0ad25c4dd482bd8935e995ffa497e1dd581aded13ff625b84047b616e00fb694ea356a5f11488043878608fc80fad30e6bbf164d4285bfed1a9727fdc97b6f99bf7aa4d7dc747114d04ed6a168efefba3526e7d9b89a5e738baf0dfda5f0e717fa7b1735b"], 0x0, 0xbd, 0x0, 0x1}, 0x20) sendmsg(r3, &(0x7f0000000440)={&(0x7f0000000000)=@nfc={0x103, 0x14}, 0x80, 0x0}, 0x0) r4 = openat$cgroup_int(r2, &(0x7f0000000040)='memory.max\x00', 0x2, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) socket$kcm(0xa, 0x0, 0x0) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89a2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) gettid() ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0}, 0x10) r5 = socket$kcm(0x11, 0x0, 0x0) sendmsg(r5, &(0x7f0000000440)={&(0x7f0000000080)=@nfc={0x103, 0x14}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000040)="9cffffffffff", 0x6}], 0x1}, 0x0) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) write$cgroup_int(r4, 0x0, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) 14:24:01 executing program 2: [ 282.095232] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 17) [ 282.103474] FAT-fs (loop1): Filesystem has been set read-only [ 282.111736] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 17) [ 282.420893] IPVS: ftp: loaded support on port[0] = 21 14:24:03 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:03 executing program 2: 14:24:03 executing program 5: 14:24:03 executing program 1: 14:24:03 executing program 0: r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffff43) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(0xffffffffffffffff, 0x4010ae74, &(0x7f00000000c0)={0x3ff}) getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(0xffffffffffffffff, 0x2289, &(0x7f00000001c0)) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sysfs$2(0x2, 0x0, 0x0) ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000080)="3034ecfa19b4490be0766e702b8d36f05839aa7ecf07323a34") ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0) sched_setattr(0x0, &(0x7f0000000000)={0x30, 0x6, 0x0, 0x0, 0x0, 0x9917, 0xffff}, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000140)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r1, 0x0, 0x80) unshare(0x40000000) 14:24:03 executing program 5: 14:24:03 executing program 2: 14:24:03 executing program 1: 14:24:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x0, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:03 executing program 5: 14:24:03 executing program 1: [ 285.291627] IPVS: ftp: loaded support on port[0] = 21 14:24:04 executing program 3: openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) 14:24:04 executing program 2: 14:24:04 executing program 1: 14:24:04 executing program 5: 14:24:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:04 executing program 0: 14:24:04 executing program 1: 14:24:04 executing program 2: 14:24:04 executing program 5: 14:24:04 executing program 0: 14:24:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:05 executing program 1: 14:24:05 executing program 2: 14:24:05 executing program 3: openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) 14:24:05 executing program 5: 14:24:05 executing program 0: 14:24:05 executing program 2: 14:24:05 executing program 2: 14:24:05 executing program 0: 14:24:05 executing program 3: openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) 14:24:05 executing program 5: perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0x41, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sndseq(&(0x7f00000000c0)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000000180)={{0x80}, 'port0\x00', 0xfffffffffffffffe}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000000040)={{0x0, 0x1}, {0x80}}) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) 14:24:05 executing program 1: 14:24:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x0, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:05 executing program 1: 14:24:05 executing program 0: 14:24:05 executing program 2: 14:24:05 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:05 executing program 5: 14:24:05 executing program 1: 14:24:05 executing program 0: 14:24:05 executing program 2: 14:24:05 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:05 executing program 5: 14:24:05 executing program 1: 14:24:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:05 executing program 0: 14:24:05 executing program 2: 14:24:05 executing program 5: 14:24:05 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, 0x0, 0x0) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:05 executing program 2: 14:24:05 executing program 1: 14:24:05 executing program 0: [ 286.592029] *** Guest State *** 14:24:05 executing program 5: 14:24:05 executing program 0: 14:24:05 executing program 1: [ 286.615053] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 14:24:05 executing program 2: [ 286.696160] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 286.737919] CR3 = 0x0000000000000000 [ 286.778982] PDPTR0 = 0x0000000000000000 PDPTR1 = 0x0000000000000000 [ 286.786787] PDPTR2 = 0x0000000000000000 PDPTR3 = 0x0000000000000000 [ 286.797340] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 286.815940] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 286.832911] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 286.844293] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.856462] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.868945] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.884040] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.893794] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.904981] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.914916] GDTR: limit=0x00000000, base=0x0000000000000000 [ 286.926093] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.935722] IDTR: limit=0x00000000, base=0x0000000000000000 [ 286.946896] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 286.957328] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 286.966946] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 286.976047] Interruptibility = 00000000 ActivityState = 00000000 [ 286.985418] *** Host State *** [ 286.988626] RIP = 0xffffffff8117479a RSP = 0xffff888064d97998 [ 286.996369] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 287.006015] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 287.016125] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 287.025257] CR0=0000000080050033 CR3=0000000082125000 CR4=00000000001426f0 [ 287.034191] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 287.044056] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 287.051744] *** Control State *** [ 287.055212] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 287.065034] EntryControls=0000d1ff ExitControls=002fefff [ 287.072152] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 287.079088] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 14:24:06 executing program 1: 14:24:06 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, 0x0, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:06 executing program 2: 14:24:06 executing program 5: [ 287.088923] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 287.097152] reason=80000021 qualification=0000000000000000 [ 287.106779] IDTVectoring: info=00000000 errcode=00000000 [ 287.114102] TSC Offset = 0xffffff63cf94a648 [ 287.118436] EPT pointer = 0x00000000931fb01e 14:24:06 executing program 0: 14:24:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:06 executing program 1: 14:24:06 executing program 2: 14:24:06 executing program 5: 14:24:06 executing program 0: [ 287.306804] *** Guest State *** 14:24:06 executing program 5: 14:24:06 executing program 1: [ 287.332073] CR0: actual=0x0000000000050032, shadow=0x0000000000050012, gh_mask=fffffffffffffff7 14:24:06 executing program 2: [ 287.379250] CR4: actual=0x0000000000002050, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 [ 287.447052] CR3 = 0x00000000fffbc000 [ 287.464252] RSP = 0x0000000000000000 RIP = 0x0000000000008000 [ 287.473097] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 287.488970] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 287.509343] CS: sel=0x3000, attr=0x08093, limit=0xffffffff, base=0x0000000000030000 [ 287.529130] DS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 287.538211] SS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 287.552123] ES: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 287.563447] FS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 287.573386] GS: sel=0x0000, attr=0x08093, limit=0xffffffff, base=0x0000000000000000 [ 287.584813] GDTR: limit=0x00000000, base=0x0000000000000000 [ 287.596264] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 287.607682] IDTR: limit=0x00000000, base=0x0000000000000000 [ 287.617595] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 287.628951] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 287.637264] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 287.648062] Interruptibility = 00000008 ActivityState = 00000000 [ 287.656429] *** Host State *** [ 287.659745] RIP = 0xffffffff8117479a RSP = 0xffff888053487998 [ 287.673088] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 287.679757] FSBase=00007fca4e92a700 GSBase=ffff8880aee00000 TRBase=fffffe0000003000 [ 287.692997] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 287.699035] CR0=0000000080050033 CR3=00000000a51b7000 CR4=00000000001426f0 [ 287.708021] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 287.718076] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 287.726059] *** Control State *** [ 287.729623] PinBased=0000003f CPUBased=b699edfa SecondaryExec=000000c2 [ 287.739846] EntryControls=0000d1ff ExitControls=002fefff [ 287.747176] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 287.757821] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 287.766348] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 287.776786] reason=80000021 qualification=0000000000000000 [ 287.784933] IDTVectoring: info=00000000 errcode=00000000 [ 287.793955] TSC Offset = 0xffffff636c10f2cb [ 287.798404] EPT pointer = 0x00000000a0a5f01e 14:24:09 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, 0x0, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:09 executing program 0: 14:24:09 executing program 1: 14:24:09 executing program 5: 14:24:09 executing program 2: 14:24:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:09 executing program 1: 14:24:09 executing program 5: 14:24:09 executing program 2: 14:24:09 executing program 0: 14:24:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:24:09 executing program 2: 14:24:12 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, 0x0, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:12 executing program 1: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='security.capability\x00', 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', 0x0, 0x0, 0x0) 14:24:12 executing program 0: prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x50000}]}) r0 = openat$urandom(0xffffffffffffff9c, 0x0, 0x0, 0x0) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, 0x0) 14:24:12 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000000081, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x14) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e23}, 0x1c) listen(r0, 0x8) r1 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f0000000000)=[@in={0x2, 0x4e23, @local}], 0x10) 14:24:12 executing program 2: openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(0xffffffffffffffff, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r0 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r0, 0x13) 14:24:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:24:12 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:24:12 executing program 1: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) 14:24:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 14:24:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:12 executing program 0 (fault-call:7 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 293.725715] FAULT_INJECTION: forcing a failure. [ 293.725715] name failslab, interval 1, probability 0, space 0, times 1 [ 293.731609] *** Guest State *** [ 293.737254] CPU: 0 PID: 10060 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 293.747344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 293.756713] Call Trace: [ 293.759392] dump_stack+0x138/0x19c [ 293.763068] should_fail.cold+0x10f/0x159 [ 293.767256] should_failslab+0xdb/0x130 [ 293.771245] kmem_cache_alloc+0x2d9/0x780 [ 293.775430] mmu_topup_memory_caches+0x86/0x320 [ 293.780728] kvm_mmu_load+0x21/0xd50 [ 293.784469] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 293.789256] vcpu_enter_guest+0x2ea0/0x5270 [ 293.793620] ? save_trace+0x290/0x290 [ 293.797434] ? lock_downgrade+0x6e0/0x6e0 [ 293.801597] ? find_held_lock+0x100/0x130 [ 293.801778] CR0: actual=0x000000008005003f, shadow=0x000000008005001f, gh_mask=fffffffffffffff7 [ 293.805759] ? emulator_read_emulated+0x50/0x50 [ 293.805772] ? lock_acquire+0x16f/0x430 [ 293.805785] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 293.805803] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 293.805814] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 293.805833] kvm_vcpu_ioctl+0x401/0xd10 [ 293.842118] ? kvm_vcpu_block+0xbc0/0xbc0 [ 293.846275] ? trace_hardirqs_on+0x10/0x10 [ 293.850548] ? __f_unlock_pos+0x19/0x20 [ 293.854548] ? save_trace+0x290/0x290 [ 293.858369] ? __f_unlock_pos+0x19/0x20 [ 293.862349] ? __fget+0x210/0x370 [ 293.865812] ? find_held_lock+0x35/0x130 [ 293.869878] ? __fget+0x210/0x370 [ 293.873345] ? kvm_vcpu_block+0xbc0/0xbc0 [ 293.877571] do_vfs_ioctl+0x7b9/0x1070 [ 293.881493] ? selinux_file_mprotect+0x5d0/0x5d0 [ 293.886259] ? lock_downgrade+0x6e0/0x6e0 [ 293.890419] ? ioctl_preallocate+0x1c0/0x1c0 [ 293.894840] ? __fget+0x237/0x370 [ 293.898314] ? security_file_ioctl+0x8f/0xc0 [ 293.902732] SyS_ioctl+0x8f/0xc0 [ 293.906101] ? do_vfs_ioctl+0x1070/0x1070 [ 293.910284] do_syscall_64+0x1eb/0x630 [ 293.914182] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 293.919143] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 293.924437] RIP: 0033:0x458c29 [ 293.927642] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 293.935385] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 293.942662] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 293.949939] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 293.957213] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 293.964499] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 [ 293.989270] CR4: actual=0x0000000000002068, shadow=0x0000000000000028, gh_mask=ffffffffffffe871 [ 294.021003] CR3 = 0x0000000000000000 [ 294.036066] RSP = 0x0000000000000000 RIP = 0x000000000000fff0 [ 294.043157] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 294.049366] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 294.056786] CS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.065874] DS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.086328] SS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.096162] ES: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.112076] FS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.124321] GS: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.133952] GDTR: limit=0x00000000, base=0x0000000000000000 [ 294.147813] LDTR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.156515] IDTR: limit=0x00000000, base=0x0000000000000000 [ 294.164810] TR: sel=0x0000, attr=0x10000, limit=0x00000000, base=0x0000000000000000 [ 294.173061] EFER = 0x0000000000006500 PAT = 0x0007040600070406 [ 294.179570] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 294.187230] Interruptibility = 00000000 ActivityState = 00000000 [ 294.193878] *** Host State *** [ 294.197109] RIP = 0xffffffff8117479a RSP = 0xffff888051ac7998 [ 294.203168] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 294.209581] FSBase=00007fca4e92a700 GSBase=ffff8880aef00000 TRBase=fffffe0000003000 [ 294.217444] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 294.223378] CR0=0000000080050033 CR3=000000008a923000 CR4=00000000001426e0 [ 294.230518] Sysenter RSP=fffffe0000002200 CS:RIP=0010:ffffffff86201910 [ 294.237197] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 294.243928] *** Control State *** [ 294.247394] PinBased=0000003f CPUBased=b6986dfa SecondaryExec=000000c2 [ 294.254222] EntryControls=0000d3ff ExitControls=002fefff [ 294.259689] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 294.266667] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 294.273366] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 294.279934] reason=80000021 qualification=0000000000000000 [ 294.286280] IDTVectoring: info=00000000 errcode=00000000 [ 294.291758] TSC Offset = 0xffffff6000f07755 [ 294.296066] EPT pointer = 0x00000000a883701e 14:24:15 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:15 executing program 0 (fault-call:7 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:15 executing program 5 (fault-call:5 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:15 executing program 4 (fault-call:5 fault-nth:0): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 296.349318] FAULT_INJECTION: forcing a failure. [ 296.349318] name failslab, interval 1, probability 0, space 0, times 0 [ 296.372095] FAULT_INJECTION: forcing a failure. [ 296.372095] name failslab, interval 1, probability 0, space 0, times 0 [ 296.389841] CPU: 0 PID: 10070 Comm: syz-executor.4 Not tainted 4.14.112 #2 [ 296.396881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.406249] Call Trace: [ 296.408860] dump_stack+0x138/0x19c [ 296.412520] should_fail.cold+0x10f/0x159 [ 296.416697] should_failslab+0xdb/0x130 [ 296.420689] __kmalloc_track_caller+0x2ef/0x790 [ 296.425381] ? kvm_arch_vcpu_load+0x428/0x760 [ 296.429890] ? kvm_vcpu_ioctl+0x1ff/0xd10 [ 296.434066] memdup_user+0x26/0xa0 [ 296.437615] kvm_vcpu_ioctl+0x1ff/0xd10 [ 296.441599] ? kvm_vcpu_block+0xbc0/0xbc0 [ 296.441663] ? trace_hardirqs_on+0x10/0x10 [ 296.441675] ? __f_unlock_pos+0x19/0x20 [ 296.441686] ? save_trace+0x290/0x290 [ 296.441698] ? __f_unlock_pos+0x19/0x20 [ 296.461816] ? __fget+0x210/0x370 [ 296.465284] ? find_held_lock+0x35/0x130 [ 296.469361] ? __fget+0x210/0x370 [ 296.472829] ? kvm_vcpu_block+0xbc0/0xbc0 [ 296.476989] do_vfs_ioctl+0x7b9/0x1070 [ 296.480892] ? selinux_file_mprotect+0x5d0/0x5d0 [ 296.485665] ? lock_downgrade+0x6e0/0x6e0 [ 296.489830] ? ioctl_preallocate+0x1c0/0x1c0 [ 296.494254] ? __fget+0x237/0x370 14:24:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f00000000c0)="660fe4d7f30f013166b98009000066b84b00000066ba000000000f3066b9800000c00f326635004000000f30f40f01c9f01872000f38f063073ed1d50fc728", 0x3f}], 0x1, 0x21, &(0x7f0000000440), 0x0) getdents64(r1, &(0x7f0000000340)=""/203, 0xcb) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r3 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x1, 0x400000) ioctl$BLKPG(r3, 0x1269, &(0x7f0000000080)={0xc8, 0x2c, 0x1000, &(0x7f0000001280)="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"}) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) ioctl$SG_GET_REQUEST_TABLE(r4, 0x2286, &(0x7f00000001c0)) [ 296.497725] ? security_file_ioctl+0x8f/0xc0 [ 296.502153] SyS_ioctl+0x8f/0xc0 [ 296.505525] ? do_vfs_ioctl+0x1070/0x1070 [ 296.509684] do_syscall_64+0x1eb/0x630 [ 296.513587] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.518467] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 296.518487] RIP: 0033:0x458c29 [ 296.518493] RSP: 002b:00007fca4e929c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.518505] RAX: ffffffffffffffda RBX: 00007fca4e929c90 RCX: 0000000000458c29 [ 296.518512] RDX: 00000000200003c0 RSI: 000000004138ae84 RDI: 0000000000000005 14:24:15 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:24:15 executing program 1: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) [ 296.518521] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 296.541869] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fca4e92a6d4 [ 296.541882] R13: 00000000004c1de7 R14: 00000000004d4640 R15: 0000000000000007 [ 296.560160] CPU: 1 PID: 10071 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 296.578182] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 296.587551] Call Trace: [ 296.590166] dump_stack+0x138/0x19c [ 296.593816] should_fail.cold+0x10f/0x159 [ 296.597989] should_failslab+0xdb/0x130 [ 296.601981] kmem_cache_alloc+0x2d9/0x780 [ 296.606152] mmu_topup_memory_caches+0x86/0x320 [ 296.610841] kvm_mmu_load+0x21/0xd50 [ 296.614567] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 296.619944] vcpu_enter_guest+0x2ea0/0x5270 [ 296.624286] ? save_trace+0x290/0x290 [ 296.628092] ? lock_downgrade+0x6e0/0x6e0 [ 296.628107] ? find_held_lock+0x100/0x130 [ 296.628121] ? emulator_read_emulated+0x50/0x50 [ 296.628132] ? lock_acquire+0x16f/0x430 [ 296.628144] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 296.628163] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 296.655925] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 296.655949] kvm_vcpu_ioctl+0x401/0xd10 [ 296.655963] ? kvm_vcpu_block+0xbc0/0xbc0 [ 296.655975] ? trace_hardirqs_on+0x10/0x10 [ 296.655989] ? __f_unlock_pos+0x19/0x20 [ 296.677393] ? save_trace+0x290/0x290 [ 296.681205] ? __f_unlock_pos+0x19/0x20 [ 296.685191] ? __fget+0x210/0x370 [ 296.688653] ? find_held_lock+0x35/0x130 [ 296.692725] ? __fget+0x210/0x370 [ 296.696195] ? kvm_vcpu_block+0xbc0/0xbc0 [ 296.700351] do_vfs_ioctl+0x7b9/0x1070 [ 296.704253] ? selinux_file_mprotect+0x5d0/0x5d0 [ 296.709018] ? lock_downgrade+0x6e0/0x6e0 [ 296.713178] ? ioctl_preallocate+0x1c0/0x1c0 [ 296.717604] ? __fget+0x237/0x370 [ 296.721084] ? security_file_ioctl+0x8f/0xc0 [ 296.725516] SyS_ioctl+0x8f/0xc0 [ 296.728887] ? do_vfs_ioctl+0x1070/0x1070 [ 296.733042] do_syscall_64+0x1eb/0x630 [ 296.733053] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 296.733082] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 296.733093] RIP: 0033:0x458c29 14:24:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 296.741814] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 296.741827] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 296.741832] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 296.741839] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 296.741845] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 296.741852] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='cpuacct.usage_percpu\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000240)={0x80002002}) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x32, 0xffffffffffffffff, 0x0) r3 = socket$inet6_sctp(0xa, 0x40000004, 0x84) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$SIOCAX25GETUID(r0, 0x89e0, &(0x7f00000001c0)={0x3, @default, r4}) setsockopt$inet_sctp6_SCTP_NODELAY(r3, 0x84, 0x78, &(0x7f0000000080), 0x4) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x9, 0x202) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x547ffaa4, 0x1fb}) 14:24:16 executing program 4 (fault-call:5 fault-nth:1): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = msgget(0x0, 0x81) msgctl$MSG_INFO(r1, 0xc, &(0x7f0000000200)=""/252) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl(r0, 0x7, &(0x7f00000000c0)="54e02b03ddd7e5ddd5c07d32ea17db1c2203946ecb6f9171904f6d3ae227c7af79f9bc66edc35722e579c1edf3699db2aafea4f1d1c20fcbdae3cc4ccb50914ee4d98d0a61328b34ad06daf2b30264b630a2bac9f7156483bbaf0f3109e994a0ef3733802e81fdafc8bfde183e46bcb6d8ea840a48f6b17b74559f0eda5fc08f2cefb4c392d1507236d7a74c7b23bcd270faffbb8e19c040426c1bb5572d102e8cc4101af1491b88") creat(&(0x7f0000000040)='./file0\x00', 0x10) ioctl$SIOCX25SCAUSEDIAG(r3, 0x89ec, &(0x7f00000001c0)={0x1000000006, 0x3ff}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{0x0, 0x2}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:16 executing program 0 (fault-call:7 fault-nth:2): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 297.074340] FAULT_INJECTION: forcing a failure. [ 297.074340] name failslab, interval 1, probability 0, space 0, times 0 [ 297.087197] CPU: 0 PID: 10100 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 297.094236] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 297.103597] Call Trace: [ 297.106206] dump_stack+0x138/0x19c [ 297.109855] should_fail.cold+0x10f/0x159 [ 297.114060] should_failslab+0xdb/0x130 [ 297.118062] kmem_cache_alloc+0x2d9/0x780 [ 297.122236] mmu_topup_memory_caches+0x86/0x320 [ 297.126924] kvm_mmu_load+0x21/0xd50 [ 297.130656] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 297.135434] vcpu_enter_guest+0x2ea0/0x5270 [ 297.139786] ? save_trace+0x290/0x290 [ 297.143583] ? lock_downgrade+0x6e0/0x6e0 [ 297.147723] ? find_held_lock+0x100/0x130 [ 297.151869] ? emulator_read_emulated+0x50/0x50 [ 297.156542] ? lock_acquire+0x16f/0x430 [ 297.160512] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 297.165517] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 297.170345] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 297.175351] kvm_vcpu_ioctl+0x401/0xd10 [ 297.179314] ? kvm_vcpu_block+0xbc0/0xbc0 [ 297.183485] ? trace_hardirqs_on+0x10/0x10 [ 297.187721] ? __f_unlock_pos+0x19/0x20 [ 297.191685] ? save_trace+0x290/0x290 [ 297.195475] ? __f_unlock_pos+0x19/0x20 [ 297.199448] ? __fget+0x210/0x370 [ 297.202889] ? find_held_lock+0x35/0x130 [ 297.206939] ? __fget+0x210/0x370 [ 297.210381] ? kvm_vcpu_block+0xbc0/0xbc0 [ 297.214516] do_vfs_ioctl+0x7b9/0x1070 [ 297.218393] ? selinux_file_mprotect+0x5d0/0x5d0 [ 297.223141] ? lock_downgrade+0x6e0/0x6e0 [ 297.227285] ? ioctl_preallocate+0x1c0/0x1c0 [ 297.231682] ? __fget+0x237/0x370 [ 297.235148] ? security_file_ioctl+0x8f/0xc0 [ 297.239546] SyS_ioctl+0x8f/0xc0 [ 297.242902] ? do_vfs_ioctl+0x1070/0x1070 [ 297.247054] do_syscall_64+0x1eb/0x630 [ 297.250938] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 297.255788] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 297.260973] RIP: 0033:0x458c29 [ 297.264173] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 297.271872] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 297.279128] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 297.286382] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 297.293634] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 297.300893] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:18 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") setsockopt$CAIFSO_LINK_SELECT(r3, 0x116, 0x7f, &(0x7f0000000040)=0x2, 0x4) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:18 executing program 0 (fault-call:7 fault-nth:3): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 299.362151] FAULT_INJECTION: forcing a failure. [ 299.362151] name failslab, interval 1, probability 0, space 0, times 0 [ 299.378831] CPU: 1 PID: 10108 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 299.385871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.385877] Call Trace: [ 299.385901] dump_stack+0x138/0x19c [ 299.385922] should_fail.cold+0x10f/0x159 [ 299.401537] should_failslab+0xdb/0x130 [ 299.401553] kmem_cache_alloc+0x2d9/0x780 [ 299.401574] mmu_topup_memory_caches+0x86/0x320 [ 299.401589] kvm_mmu_load+0x21/0xd50 [ 299.401600] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 299.401619] vcpu_enter_guest+0x2ea0/0x5270 [ 299.418541] ? save_trace+0x290/0x290 [ 299.418553] ? lock_downgrade+0x6e0/0x6e0 [ 299.418575] ? find_held_lock+0x100/0x130 [ 299.443539] ? emulator_read_emulated+0x50/0x50 [ 299.443552] ? lock_acquire+0x16f/0x430 [ 299.443566] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 299.452223] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 299.452235] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 299.452253] kvm_vcpu_ioctl+0x401/0xd10 [ 299.452266] ? kvm_vcpu_block+0xbc0/0xbc0 [ 299.452279] ? trace_hardirqs_on+0x10/0x10 [ 299.452290] ? __f_unlock_pos+0x19/0x20 [ 299.452302] ? save_trace+0x290/0x290 [ 299.452311] ? __f_unlock_pos+0x19/0x20 [ 299.452323] ? __fget+0x210/0x370 [ 299.452334] ? find_held_lock+0x35/0x130 [ 299.452344] ? __fget+0x210/0x370 [ 299.452356] ? kvm_vcpu_block+0xbc0/0xbc0 [ 299.467523] do_vfs_ioctl+0x7b9/0x1070 [ 299.467539] ? selinux_file_mprotect+0x5d0/0x5d0 [ 299.467553] ? lock_downgrade+0x6e0/0x6e0 [ 299.487672] ? ioctl_preallocate+0x1c0/0x1c0 [ 299.487688] ? __fget+0x237/0x370 [ 299.487706] ? security_file_ioctl+0x8f/0xc0 [ 299.499185] SyS_ioctl+0x8f/0xc0 [ 299.499197] ? do_vfs_ioctl+0x1070/0x1070 [ 299.499211] do_syscall_64+0x1eb/0x630 [ 299.499224] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.506825] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 299.506834] RIP: 0033:0x458c29 14:24:18 executing program 1: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) [ 299.506840] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 299.539384] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 299.553283] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 299.553290] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 299.553296] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 299.553303] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:18 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$EBT_SO_SET_COUNTERS(r3, 0x0, 0x81, &(0x7f0000000140)={'broute\x00', 0x0, 0x0, 0x0, [], 0x7, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}], 0x0, [{}, {}, {}, {}, {}, {}, {}]}, 0xe8) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:18 executing program 0 (fault-call:7 fault-nth:4): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) kexec_load(0x542, 0x8, &(0x7f0000000480)=[{&(0x7f0000000000)="438321afc741ec6246f4cee07e76623bd070b0952faf6f6a5578abfd5d6d", 0x1e, 0xecac, 0x68b}, {&(0x7f00000001c0)="be4be1dfb897651ed8ae3b89f15ac629c228bc18d31b9fb9c324977f9abfcb91e2b7a0239b06f1327a47929ac0fcc5c60d256377205efe5822b589c7f142ccc56f7a6ce1a92b530eb5074a42449148ca0f433937fde0639bc3531f6d991f7e8ecc869e1d59c6ef9a7b903571ff4efef10a89613409463b8df9d7b0204cb44f36c37e2682d5cc5aaddae4954ba8a6fd2a2dd279f7cc9552ba1133cda0bdf177bd9bfc5879dbcbbb4f9013e026824ad4cfc8ffd31847564fab8bbd0338cdb6e761765850f0f08fa710d8b860dc331a4c24be9f0b1b1275f85db6878516f9259b449610442f93761538d9ce83d4c7", 0xed, 0xac, 0x9}, {&(0x7f0000001280)="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", 0x1000, 0x1000, 0xfffffffffffffff9}, {&(0x7f0000000040)="afce0d40cfc52827a66e84827a5f21b1b2d77953bd0fea", 0x17, 0x3, 0x6}, {&(0x7f00000002c0)="02e26a2dde1a0bde570bdcb2a93bd037b6c08dd73322829e485db449530f2d9ffecb6e92aa6e4800d5e08e07781598eb8e39d64277854a3b695a6bf1e053b24581c302c70b5eb470c5fb44b2ec792a39f6bd8a82d440042edce112f03e3bdb2248e7839f82576584c1546b85ba3986665ca498b05292a12fa6a8e113e619cf5f195bdf1ae009519d1058605669930a0fb1711bbfe995fc4f55e3891385abf1e5831fb733862b8de00cf0f6c0788bfa816cb1045af449cb51e672a96b449d2040226d0b3652f33c81", 0xc8, 0x20, 0x3}, {&(0x7f0000000080)="1dbea30bd056e10a0bb47c2346ab6d8f3c9fc17dec1d150e79f2d0394c1d3d90d4ce97f80b7cb26dd3d326a5b65b8bcdbef299985da81e54b47274cd05e63295e1eadd20d2011ca58618f845ec985f95b8cbe9c8ea33c401", 0x58, 0x9, 0x6}, {&(0x7f0000000140)="454e9fe44f1df148ef623950a51a6863feda7c7897", 0x15, 0x5c, 0x1}, {&(0x7f00000003c0)="561670d84bd47ff3a196afab307162c0203afa2f807a36e7a1da2538723094f93e33a96a1d4b7c443acf4b1b4c8180289e085d192c3b0004f81cc98b40bf9c4dec7823c92c15fa2200c8dcfea4ec977b53e68dde7ddc5688e73ac21f5b1dbad106f6b8b498f91413ba1084275af1ac9a5bb937a6a06d49b1533454e6df5fa4187f9266ae5e82fc7f9c39ed427a", 0x8d, 0x0, 0x4}], 0x170001) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 299.794865] FAULT_INJECTION: forcing a failure. [ 299.794865] name failslab, interval 1, probability 0, space 0, times 0 [ 299.839742] CPU: 0 PID: 10129 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 299.846798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 299.856155] Call Trace: [ 299.856178] dump_stack+0x138/0x19c [ 299.856200] should_fail.cold+0x10f/0x159 [ 299.856218] should_failslab+0xdb/0x130 [ 299.856236] kmem_cache_alloc+0x2d9/0x780 [ 299.856262] mmu_topup_memory_caches+0x86/0x320 [ 299.870696] kvm_mmu_load+0x21/0xd50 [ 299.870710] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 299.870728] vcpu_enter_guest+0x2ea0/0x5270 [ 299.870741] ? save_trace+0x290/0x290 [ 299.870750] ? lock_downgrade+0x6e0/0x6e0 [ 299.870763] ? find_held_lock+0x100/0x130 [ 299.888815] ? emulator_read_emulated+0x50/0x50 [ 299.888829] ? lock_acquire+0x16f/0x430 [ 299.888842] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 299.888860] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 299.888874] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 299.928753] kvm_vcpu_ioctl+0x401/0xd10 [ 299.932735] ? kvm_vcpu_block+0xbc0/0xbc0 [ 299.932750] ? trace_hardirqs_on+0x10/0x10 [ 299.932762] ? __f_unlock_pos+0x19/0x20 [ 299.932776] ? save_trace+0x290/0x290 [ 299.932788] ? __f_unlock_pos+0x19/0x20 [ 299.952927] ? __fget+0x210/0x370 [ 299.956399] ? find_held_lock+0x35/0x130 [ 299.960463] ? __fget+0x210/0x370 [ 299.960490] ? kvm_vcpu_block+0xbc0/0xbc0 [ 299.960504] do_vfs_ioctl+0x7b9/0x1070 [ 299.960518] ? selinux_file_mprotect+0x5d0/0x5d0 [ 299.960527] ? lock_downgrade+0x6e0/0x6e0 [ 299.960538] ? ioctl_preallocate+0x1c0/0x1c0 [ 299.960549] ? __fget+0x237/0x370 14:24:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r3 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$PIO_FONTRESET(r3, 0x4b6d, 0x0) 14:24:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, {}, {}, {0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 299.960574] ? security_file_ioctl+0x8f/0xc0 [ 299.968198] SyS_ioctl+0x8f/0xc0 [ 299.968209] ? do_vfs_ioctl+0x1070/0x1070 [ 299.968224] do_syscall_64+0x1eb/0x630 [ 299.968236] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 299.968255] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 300.004666] RIP: 0033:0x458c29 [ 300.014688] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 300.014700] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 14:24:19 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 300.014705] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 300.014710] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 300.014716] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 300.014721] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:21 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x0, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:21 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:21 executing program 0 (fault-call:7 fault-nth:5): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 302.445922] FAULT_INJECTION: forcing a failure. [ 302.445922] name failslab, interval 1, probability 0, space 0, times 0 [ 302.465907] CPU: 1 PID: 10161 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 302.472972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.472978] Call Trace: [ 302.473001] dump_stack+0x138/0x19c [ 302.473022] should_fail.cold+0x10f/0x159 [ 302.492805] should_failslab+0xdb/0x130 [ 302.496804] kmem_cache_alloc+0x2d9/0x780 [ 302.501004] mmu_topup_memory_caches+0x86/0x320 [ 302.505697] kvm_mmu_load+0x21/0xd50 [ 302.505710] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 302.505727] vcpu_enter_guest+0x2ea0/0x5270 [ 302.514217] ? save_trace+0x290/0x290 [ 302.514228] ? lock_downgrade+0x6e0/0x6e0 [ 302.514239] ? find_held_lock+0x100/0x130 [ 302.514253] ? emulator_read_emulated+0x50/0x50 [ 302.514262] ? lock_acquire+0x16f/0x430 [ 302.514274] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 302.514292] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 302.514301] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 302.514319] kvm_vcpu_ioctl+0x401/0xd10 [ 302.514331] ? kvm_vcpu_block+0xbc0/0xbc0 [ 302.562237] ? trace_hardirqs_on+0x10/0x10 [ 302.566463] ? __f_unlock_pos+0x19/0x20 [ 302.570441] ? save_trace+0x290/0x290 [ 302.574230] ? __f_unlock_pos+0x19/0x20 [ 302.578192] ? __fget+0x210/0x370 [ 302.581634] ? find_held_lock+0x35/0x130 [ 302.585681] ? __fget+0x210/0x370 [ 302.589134] ? kvm_vcpu_block+0xbc0/0xbc0 [ 302.593289] do_vfs_ioctl+0x7b9/0x1070 [ 302.597189] ? selinux_file_mprotect+0x5d0/0x5d0 [ 302.601935] ? lock_downgrade+0x6e0/0x6e0 [ 302.606077] ? ioctl_preallocate+0x1c0/0x1c0 [ 302.610475] ? __fget+0x237/0x370 [ 302.613929] ? security_file_ioctl+0x8f/0xc0 [ 302.618400] SyS_ioctl+0x8f/0xc0 [ 302.621758] ? do_vfs_ioctl+0x1070/0x1070 [ 302.625903] do_syscall_64+0x1eb/0x630 [ 302.629792] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 302.634630] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 302.639807] RIP: 0033:0x458c29 14:24:21 executing program 1: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x40, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@local, 0xc06, 0x2, 0x0, 0x1, 0x7ff, 0x69}, 0x20) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffff9c, 0x84, 0x1b, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000005c0)={r1, 0x1000, "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"}, &(0x7f0000000100)=0x1008) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000180)=0x6) r3 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r0, 0x84, 0x79, &(0x7f00000001c0)={r2, 0x8000, 0x8}, 0x8) sendmsg$nl_route(r3, &(0x7f0000000580)={0x0, 0x800000000000000, &(0x7f0000000540)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0xc09, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, @ipip={{0xc, 0x1, 'ipip\x00'}, {0xc, 0x2, [@tunl_policy=[@IFLA_IPTUN_ENCAP_TYPE={0x8, 0x11}]]}}}]}, 0x3c}}, 0x0) 14:24:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x201, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$NBD_SET_BLKSIZE(0xffffffffffffffff, 0xab01, 0xfada) 14:24:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket$inet(0x2, 0x806, 0x2800000000) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r4 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/net/pfkey\x00', 0x800, 0x0) fremovexattr(r3, &(0x7f0000000140)=@known='trusted.overlay.redirect\x00') ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffa000/0x6000)=nil, 0x6000}, 0x1}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000500)={0x3, 0x0, 0x2080, {0x111000, 0x4, 0x1}, [], "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", "7f2a5e6297313b29a876f372147a6182d8c4851da8120dc99ef78f85d3fd32a45e2c1ea9931632889eff7759e49d843e624ff90f4dc38ec28eebbd94058a0fdecc7b0baa8b07fa6aadeb26ca98b2caeddc695e56e1106ec91fdeb3cafc60f5c38818b3e2f647d62186fe149cad319928ea03b2d619c5bb9c1e822010d47f13238b978a050a5c99e1d16315b478d15771d5347dbcacaafed535e8a8d5e471e3770eda5d9ac27529cde38a94637c0f629f7d8ec4d58a8fad361f81cda48b58822d40827ec185a609deaab2e9d3fc212524c08e0094e52b94d39e867646692a2b4ffe904a2c3670ea8a8253fde3c043a2678448742dc1021549c828243b2c592413dff7be95d7c4cd75c315fdd04102b997a130cd0b2aa86ca4c966d500f2a5632f9116481929d969a0945e2bfd85507603a80ac38e27cf1c595cccadd4fb23016c3548beed2493ed295fa86aac07c8c081d6f554898fa19b6d0eecd22a0498d06af59bbe48fa3ae0cd7070ded52f6306138999021e661d6fece02a84c694cd8d0c0283a28fdc9796ab3a7d1f1c769ac62bb7b18e1701eb1bafaf26ef66c0d14784dd1f932f16203f1f7be9c243aa2578a6a1c1929c7a9d3b73bf2f60c4ae79e76f3770c13f55a616fcac0268a54a5bedf3aefe68592c769ea2cca639445507e613f3d15ddd881a42abf6154a5761ca65b91077dcc26154c7277012262c0a6dcd644f709bd933ecfeebbf4764124570fa3b80d224adfc04bb9ba0309986d2a2d8a10391c15bc797a8f80588d19e5b580a103c7e17c94182555995d7f925c1487f2bb7e98c89cf0c266fe9b10568f5250a5c05c46170666708a87ec9847580463a3fab3558ecbbcaca43e4025fe7a5651ba82f7bb9665a07037ec400f5b2d361076540a842963599a60eec57846963190cf05cfb93f0526a592497f71124a7867993a7c35b1a1efb55c89bd5f188188abf24ee3c76753f84ea5ffe2eb3bfa4a0e800bf55a388e350bfc272d3cb0ef547a1d272ea47db041042357ecc123c255d7e788b390372b6c6576f05e15bb116ac78bc47718d0a8786f077949eea2ec9444273946e119e378a21abb10475a23b6c0d4af213452669e0221e6c8decef6bc79e3bbefe93aa5306e3654e8a0396a8f7c6992f0325a6875c6b477e7cce3bc987a808a086aa4d392b0dd8ad93bbba6963b003732b174d8ce555ef970eec32c21a39ea53c459393434ddcbbd7b9ac57839dedc7079408295276f94aab903518c0995acbf7894e340c3a898ddf0fd7a024965b06f0336696551f203da9a2c808d648642381ae9b7843f94b8cd01a319ed68074f89fc4deabbba6864b46d00f520e9f5b5c0ac8570b020515bcfdc04e223aab47199c2740aa5533d9fedf79a60dc8354a356147924729bbc7cb29de989d7ec8935291a50055ed2760696f5481b835e3156dbdba0a32bc7a66b6057e2945341ebe435260a8c3c73fee1da12c9231c23db45bbb4529acc7fdcce20d532374b58bb4d392658c021f2a8af0c87ce589d8e0bb96a8ce1adc1c908615cc8d430062e41b8807c480ca201537eead3bfc62736c7ff730f054a398ad11536fc2131a3bd55b9bc7871563eefcf7dfb57016c6850dae16d31d4081a3d20751c7c585eaa9619d12ad641d666951d3d70d716bec381751c99fb8d06768cc0dcb4e00322a698c18c069a8a4f1f8ce712825177245f27a8b384e1e908b586fe4c661454a65b3b9125307a13df77b49f165bc58ed7442b0ff419db58a9a34c612af77160fd7ae874b19fe905cc8fcbbf5373c3c2900f507f30f885346f00b49a11dc877d60a542831f935151e0281526a49a131686353b41ab39d9aeeedcfb3571b4a620be6bbdf54d2f038f57ab0eb55a9b32125794c9d146863d990e877861ae906839e504154b532af8966934b1419c0046f79d7548a2d526911b8097c3ac04836076fb323481b913b9356e2a5ca83da223ec8df942f913b85023c55d21551d08ffeda9632ee90ae492d85c6485849ff1ebb721e5529fb958d5237b02746ecbd12b917f217384e847b1491aebcc7b58eba112c53cdf82155060d4bf84fc58a58e1c17f05e3d04182cc4647e30241aa8066965e1aff1e7509dc55e54a31f4c7d06583f9120a9db7ff85045bdfa964f3cc423f2ee62002baccb88a1890b23848c5517dcb0f8179f082d466ff02969194f7fdd7d9e4a9af743cc18c101017a70f6809ef63a30e9adda6dade35442199a22684f07fd42c0614b62a92702f2688a67f884bce9431dfffb61d742f8e0fd7ff7a3d884bc43366c262fcb9cc230da1da1f4e2da4ade602cd7fb311d57f496a587174c84921e0e793d6e665402ee062bc913d45a37e6b48f333a101044b705d162a5d6578a386fe75497c6409a266de7e167c51bbd4f260a1f35a1e2c57c55f2599f91f1b9b6e973f8f84cfb83a4bce1b2540cd3b68391993e8dc1b613af547a54fc90887f40391f724a01cd7ebc509937245ec80f78c8c21227de9bc4e9c15dbc551c16031395c5757b8656bb4abb73041cc7469986248d314756d8c016f33606decd3c3cd8a1ca24e9164e247727b68063d483d9d9dbc028bee0f839b6a190cbbb0f763b6540dec7b6c55687a1a4449194c94c81e6b67101356876b7ceb2bbfe2bbb15cc3ac24ef880964643ad7b0f5c7f21392affc655ff7880abc4d7577eb8b50b691086200b66b1aa20fa522a075a2d380af050135ba940fdbe0010a361c6fc262bee00b7fb1670d41f97bd19b461cbdebb5ca083c2124c2e2f744c670ae7275f639106f2fb31b151217989295a75b9158c24ee38a386b12ebb26df4dfa83d5419accf87ca5518eb187133505728253e939ecae2a430405225d320441ef8a22dc7fad6217811ae84b599e39588c2fe8e69c3876987e0d26c4a04288c5145ea62f8d82780839dd921b165dbd6f98c423f6bd9a7adcb9f7e94e947f4992d0bceac9b532cac12c5ded1c349b59021e9724fba196e540c0d618fb82511ef0e008b587b8af8211623d89d6f281da523e1116086b0ee3d9cb7b3ef08770adc6cb8e39fcbf83c4f70a22173a82ad3e484dff57ac4599fa33fa781494ff6214ed4d70a934354db1b25fbe536800b0689b0b594bb80f6f0cffb35dedb3cc00953c10573a4f9bff920caaf1dde8f05f4e6a09feca02a942f133caf762cea8160f2fb072c13ea8aa32677511ed0630a92c0b170e572f78808188afdf619ff53e1906671759ab73725b967edaca45bd849feb2257503e9acfd46c36b7bcca10d6f42bb12bc0daa05222ea90775a224844fe6977696b79e510141246c79f492fc5b138c39454ac75fed3994e03f9b6cc50d0e2c9f51bb2d92dfb8dd4543b89e11e5db7be73b43bfeb42cabb63b5c6fb7cd0d91f5fdd0fc203ed40f43aa946297087511591dde524543afaefeb5918c15ff9763462e63bdd5995f841fc8021074384ecf14090fcde7aadad8fbb03e6b1ba006587fe13af6b61b0322b39526c920ce62249a371460854a325bf733f333f77a7ca499907974799ac5e80c227289adc7b7cd22be0a33123062fd9a7ba282c8fb401789deaacc2ff8be8e11b60fab06404d8dd11334831e78377c9e20b38136b357cd6832f6150814f51ea8ca08f9b909eba9d349b6b4cfa1c1d09de808dd449a004fa06b414dfe8e8bc57142a515482892f9ec4caa0546de8cb963d579265c64ca23bb177e8e982328169e532557e8d191c06debd19a603b457ca8bc9f95271a76eae7a75a5073754dabb8dc00fcb13f9221f09b2c5d7f99460dedd5c6aabf55770ed57c139cecc01f68a6e703260c5e91682030f819f0a05a8ce20ce436abcd3a6d673805b064cdeb9aae13acc1bc3991e7613469f2a6382d66603c6c184bfa20a135b03f806e6823fdd736247ba3a4404733d38c38f73e91cf0a245df437ec1004cc7a6b4fcd0c645d76ae10a2e5dde98d873213e019e0ab1d4c651f0f5c6edc59e71dcc44f32b78ead98cd48082cbf06825a28291149a219f0f86b3f8590873f4a89e4b60f6c1d48cc700b6b1f454c9b0c162aae9f730f600d75e48d5bf7433a907447c2285c8663c99c5746e65766a323b15c3f200f4b9a7f16899e3db88bdb317be2a6c6a34a87c346487af6c1c452815a781fba3965fdd2212fe4841b0a8098a5c15126e93ab8dd58c1ef570708e3ba22a28889ac05a6e6b9f9ed077dc415b5d3ce2d147eb2d2fe01d95c6540985f9e11b7303659078a1d60b82648ecacb86e431308a307a487010f59e0321c00b7abf140385c31e1722b269c2397a3b088676969062d257c3b0980d34d12d85bb240edb4853faa8e45f0db4192b42ec35686fc229cafb1d035eb3732f3fdebf937690fc7d518e2586701ecdc0cbfafe7089f89f16fb2bda832dc2821060c010d596b3b2d15e9158be6e086a837fad346b538f6b2fd9e2b5bf07b6e7094f160d0205bd3bc89a9bbd45055d4d46ab22bd44d265312acb06f6126272fa6153ecc63190fdce72f90d2c0445643d42cc4a6c6be69457f47f892e5cd020c8284670d4a9955635625cf0fb4d0e634eb37b593b94495321b8c1acc3d6f8c291f687a1089caf472ed7420d8c67d5eb7fb3bde0cbf36ca03b6ce778b23c307ed60734a420ebbb22118fb02377873546d6a05e5999cfe1f7d2b1ef45e386be0ab68fcf980ba329b76eaf80032ce3a5bd7d43e09f68f2235c138cac20e5429373ba75d665d4d3969dd8b4cf022983639b1f8c7a39fe60c926d07cecb9b2225da6424863703b45a35c85d80e39bdaa8d522077474cd015a2111e029f6af5b5351d180c685c96c1f385a34b48b98dd30b6dd6f765bef266ea22897fbbc613a81e9131cec87612256a75e7c33f66279622e825f2bb5b60bbda2e482f68bae2b8cc461bef3620141d2c493e41ecb07f2f332e699ee8bba37db0d9d258e7245637e7d4d7bd18f2c46ed05e1613b9b6666ac8605c74d20f5ebcb46d719a4177b5089c3a732f1fd925f3091421370f7dd8905e437d1e49e44d2a76183723fd43cf055dc165cb10cee7d5710b205b4cb09f52f25da88606abd96600659a40f66b315bc3c3524398e92562d43ed017f23d9887189ef61f04a1305bb8c8cd62e5494b9994593a23ad3b45791fdd2955400ad1d4d5c7697cc29f78c2bc3aede8aa66fc6e429a86f1a4cd08f5237e5971fc474f55c3ea37444f5492fe30b6af6d4766bcec867f9c15d5245169f6e7a0da0de04c83c7ec51fcc9c7e79b1e098ce2ef19e95559a4f985b3cb31f66f8d00a6c0c17951c036c99a9c6a8c67ac98781823a26f87e61b38b8b4f5bea83beba16df3a5695c95341b83dfd53697d30189e21ab0c8c8dcc2c2af619841efb983e06aa86d7bfb6dda7c40798c440c886009a1c03edaa8b0276cc48e1d8de280ac7a9413f891dd68ac75e0254c63312893c4e1070f86971484542f280f4888ae2f3cdd4d83d306474377102364dd910310aab890a479c905efa62ac4248cec7dc9577e865dd180e06bf9987c470a2770f28f199a23918fde8b563814ce43a2792aea6decd649a22bbfde67910dc02b52370a0591e289e2c87e600ea92328289b086a7e7070ea2087a50b164fd4851a90c7648c94bf02aa290934b56c040c8af8a4e19b1cacc376a7791b40d284e1d3088d8f9f11b676ae6ed84332f7322b7fed50e3c1d1b1767bf4bc139e77a75ca9cbc46b5c33074e88edc602e4f9f1fba10cbac5c8484146eab002b57d0bc1541b1e02b348248a25474188c9b3608da97155c6a1f5523f6d0ed71ac5"}) 14:24:21 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 302.642980] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 302.650681] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 302.657956] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 302.665226] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 302.665233] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 302.665238] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:21 executing program 1: clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000080)='\x00\x00\x06\x00\x00\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="7f454c46000000005374f83d6480ccb903000600008498e23f0000"], 0x1b) sched_setattr(0x0, &(0x7f00000002c0)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x0, 0x0) r2 = syz_open_dev$media(&(0x7f0000000040)='/dev/media#\x00', 0x80000000, 0x610100) ioctl$sock_inet_SIOCGARP(r2, 0x8954, &(0x7f0000000180)={{0x2, 0x4e24, @broadcast}, {0x306}, 0x20, {0x2, 0x4e23, @loopback}, 'gre0\x00'}) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000240)={'\x00', 0x400000600}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller0\x00', 0x10000007ffd}) 14:24:21 executing program 0 (fault-call:7 fault-nth:6): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000000)='TIPC\x00') ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0xc0100, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 14:24:22 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x63) [ 302.911526] FAULT_INJECTION: forcing a failure. [ 302.911526] name failslab, interval 1, probability 0, space 0, times 0 [ 302.967915] CPU: 0 PID: 10182 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 302.974987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 302.984352] Call Trace: [ 302.986970] dump_stack+0x138/0x19c [ 302.990626] should_fail.cold+0x10f/0x159 [ 302.994795] should_failslab+0xdb/0x130 [ 302.994817] kmem_cache_alloc+0x2d9/0x780 [ 303.002949] mmu_topup_memory_caches+0x86/0x320 [ 303.002965] kvm_mmu_load+0x21/0xd50 [ 303.002976] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 303.002993] vcpu_enter_guest+0x2ea0/0x5270 [ 303.003009] ? save_trace+0x290/0x290 [ 303.016138] ? lock_downgrade+0x6e0/0x6e0 [ 303.024246] ? find_held_lock+0x100/0x130 [ 303.032535] ? emulator_read_emulated+0x50/0x50 [ 303.037229] ? lock_acquire+0x16f/0x430 [ 303.041211] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 303.046232] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 303.051069] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 303.056090] kvm_vcpu_ioctl+0x401/0xd10 [ 303.060069] ? kvm_vcpu_block+0xbc0/0xbc0 [ 303.064221] ? trace_hardirqs_on+0x10/0x10 [ 303.068452] ? __f_unlock_pos+0x19/0x20 [ 303.072433] ? save_trace+0x290/0x290 [ 303.076236] ? __f_unlock_pos+0x19/0x20 [ 303.080212] ? __fget+0x210/0x370 [ 303.083667] ? find_held_lock+0x35/0x130 [ 303.087741] ? __fget+0x210/0x370 [ 303.091200] ? kvm_vcpu_block+0xbc0/0xbc0 [ 303.095346] do_vfs_ioctl+0x7b9/0x1070 [ 303.099236] ? selinux_file_mprotect+0x5d0/0x5d0 [ 303.103989] ? lock_downgrade+0x6e0/0x6e0 [ 303.108139] ? ioctl_preallocate+0x1c0/0x1c0 [ 303.112552] ? __fget+0x237/0x370 [ 303.116018] ? security_file_ioctl+0x8f/0xc0 [ 303.120437] SyS_ioctl+0x8f/0xc0 [ 303.123800] ? do_vfs_ioctl+0x1070/0x1070 [ 303.127949] do_syscall_64+0x1eb/0x630 [ 303.131835] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 303.136680] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 303.141865] RIP: 0033:0x458c29 [ 303.145050] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 303.152757] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 303.160022] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 303.167288] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 303.174554] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 303.181825] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:24 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x2d1, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='r$\t\x00\x00\x00urrenti', 0x0, 0x0) ioctl$SCSI_IOCTL_GET_IDLUN(r4, 0x5382, &(0x7f00000000c0)) 14:24:24 executing program 1: unshare(0x400) r0 = socket$inet6(0xa, 0x80803, 0x5d) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x1, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={r1, 0x46bb28ba0883c4ae, 0x1, 0x6, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7}, 0x20) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x9}, 0x1c) write$binfmt_elf32(r0, 0x0, 0x0) 14:24:24 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x63) 14:24:24 executing program 0 (fault-call:7 fault-nth:7): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000005c0)={"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"}) membarrier(0x20, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:24 executing program 1: alarm(0x7) socket(0x15, 0x80005, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x40000000089f3, &(0x7f0000000000)={'eql\x00\x00\x00\x01\x005\x00', @ifru_flags}) 14:24:24 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x63) [ 305.491576] FAULT_INJECTION: forcing a failure. [ 305.491576] name failslab, interval 1, probability 0, space 0, times 0 [ 305.563473] CPU: 0 PID: 10206 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 305.570551] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 305.570557] Call Trace: [ 305.570587] dump_stack+0x138/0x19c [ 305.570613] should_fail.cold+0x10f/0x159 [ 305.570633] should_failslab+0xdb/0x130 [ 305.570651] kmem_cache_alloc+0x2d9/0x780 [ 305.570675] mmu_topup_memory_caches+0x86/0x320 [ 305.570691] kvm_mmu_load+0x21/0xd50 [ 305.570703] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 305.570720] vcpu_enter_guest+0x2ea0/0x5270 [ 305.570735] ? save_trace+0x290/0x290 [ 305.590438] ? lock_downgrade+0x6e0/0x6e0 [ 305.590454] ? find_held_lock+0x100/0x130 [ 305.590468] ? emulator_read_emulated+0x50/0x50 [ 305.590478] ? lock_acquire+0x16f/0x430 [ 305.590501] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 305.590518] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 305.590527] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 305.590544] kvm_vcpu_ioctl+0x401/0xd10 [ 305.590558] ? kvm_vcpu_block+0xbc0/0xbc0 [ 305.590576] ? trace_hardirqs_on+0x10/0x10 [ 305.590589] ? __f_unlock_pos+0x19/0x20 [ 305.607113] ? save_trace+0x290/0x290 [ 305.624107] ? __f_unlock_pos+0x19/0x20 [ 305.655704] ? __fget+0x210/0x370 [ 305.655719] ? find_held_lock+0x35/0x130 [ 305.655730] ? __fget+0x210/0x370 [ 305.664121] ? kvm_vcpu_block+0xbc0/0xbc0 [ 305.664133] do_vfs_ioctl+0x7b9/0x1070 [ 305.664146] ? selinux_file_mprotect+0x5d0/0x5d0 [ 305.664157] ? lock_downgrade+0x6e0/0x6e0 [ 305.664169] ? ioctl_preallocate+0x1c0/0x1c0 [ 305.664180] ? __fget+0x237/0x370 [ 305.664198] ? security_file_ioctl+0x8f/0xc0 [ 305.664211] SyS_ioctl+0x8f/0xc0 [ 305.664220] ? do_vfs_ioctl+0x1070/0x1070 [ 305.664232] do_syscall_64+0x1eb/0x630 [ 305.664241] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 305.664258] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 305.664267] RIP: 0033:0x458c29 [ 305.664276] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 305.749722] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 305.756981] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 14:24:24 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = socket$kcm(0x29, 0x805, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x63) 14:24:24 executing program 1: perf_event_open(&(0x7f0000000300)={0x2, 0x70, 0x858, 0x20003, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = add_key(&(0x7f00000000c0)='user\x00', &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000000)='rxrpc\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)='cpuset\'*$#\x00', r0) r1 = fcntl$dupfd(0xffffffffffffff9c, 0x0, 0xffffffffffffffff) signalfd4(r1, &(0x7f0000000140)={0x6}, 0x8, 0x0) creat(&(0x7f00000000c0)='./bus\x00', 0x0) r2 = socket$inet6(0xa, 0x400000000001, 0x0) write$P9_RLCREATE(0xffffffffffffffff, 0x0, 0x0) r3 = dup(r2) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, r2) bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10) r4 = open(&(0x7f0000000440)='./bus\x00', 0x141042, 0x0) ftruncate(r4, 0x2007fff) sendfile(r3, r4, 0x0, 0x8000fffffffe) creat(&(0x7f0000000280)='./bus\x00', 0x0) 14:24:24 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup(r1) ioctl$VIDIOC_G_FBUF(r3, 0x8030560a, &(0x7f0000000080)={0xa, 0x4c, &(0x7f0000000000)="289a21f7393fe123731ff4071a2084347f57553d4b4619fd4c99d7e3c7e6866a3955ee2d6b608e841b116302dc0b4fc398b5351dc605bdfe827e96b00750d43a8b460fbea32bccbdfa55905864b140a9840d3158fb2f9e2854c99411f770b23d228215741b537f3952", {0x2, 0x5, 0x367b7f5b, 0x4, 0x3ff, 0x4, 0x1, 0x400}}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/dlm_plock\x00', 0x0, 0x0) ioctl$EVIOCSFF(r3, 0x40304580, &(0x7f00000000c0)={0x56, 0x8, 0x9, {0x0, 0x1a}, {0x3, 0x7fff}, @ramp={0x1, 0x0, {0x80000001, 0x80, 0x72}}}) getsockopt$nfc_llcp(r3, 0x118, 0x0, &(0x7f0000000100)=""/30, 0x1e) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 305.764242] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 305.771522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 305.779313] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:27 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = socket$kcm(0x29, 0x805, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x63) 14:24:27 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:27 executing program 0 (fault-call:7 fault-nth:8): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) fcntl$getownex(r1, 0x10, &(0x7f0000000000)={0x0, 0x0}) ptrace$setregs(0xf, r2, 0x6, &(0x7f0000000040)="36f55fb94d883b88f4f6018724caf3686931ae24c399f197f92dacbd245b3064e31655dfa1fe82306bb485da110ee953ca7043618c47eb85f3754cf507e704b167d2dca3346f4e39faf8d6caca8c8dca41ba31c1fa653264e85b6983ad494dafb4859142d952c36dfeae2807f75d60b1baf0064b4f80e7079b31c4bde3cd0a5d4cc5d6b1018a6606a626afe5e23ee783d8b8bcf84a486cb01d0e36") r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f00000001c0)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) fgetxattr(r3, &(0x7f0000000040)=@random={'os2.', 'vmnet0lo\\\x00'}, &(0x7f00000000c0)=""/62, 0x3e) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:27 executing program 1: preadv(0xffffffffffffffff, &(0x7f0000001380)=[{&(0x7f0000000180)=""/148, 0x13d}], 0x1, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/snmp\x00') preadv(r0, &(0x7f0000000480), 0x2000000000000113, 0x0) lseek(r0, 0x0, 0x0) 14:24:27 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = socket$kcm(0x29, 0x805, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x63) [ 308.545503] FAULT_INJECTION: forcing a failure. [ 308.545503] name failslab, interval 1, probability 0, space 0, times 0 14:24:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x20000, 0x0) ioctl$DRM_IOCTL_IRQ_BUSID(r2, 0xc0106403, &(0x7f0000000040)={0x81, 0x1, 0x8, 0x3}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:27 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$DRM_IOCTL_AGP_ALLOC(0xffffffffffffff9c, 0xc0206434, &(0x7f0000000000)={0x4, 0x0, 0x1, 0x9}) ioctl$DRM_IOCTL_AGP_ALLOC(r1, 0xc0206434, &(0x7f0000000040)={0x0, r3, 0x0, 0x2}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008911, &(0x7f00000006c0)="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") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) r5 = syz_open_dev$usbmon(&(0x7f00000000c0)='/dev/usbmon#\x00', 0x9b, 0x0) ioctl$TIOCCBRK(r5, 0x5428) [ 308.657158] CPU: 0 PID: 10259 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 308.664230] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 308.674033] Call Trace: [ 308.676639] dump_stack+0x138/0x19c [ 308.680463] should_fail.cold+0x10f/0x159 [ 308.680494] should_failslab+0xdb/0x130 [ 308.680515] kmem_cache_alloc+0x2d9/0x780 [ 308.680546] mmu_topup_memory_caches+0x86/0x320 [ 308.680580] kvm_mmu_load+0x21/0xd50 [ 308.680599] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 308.692952] vcpu_enter_guest+0x2ea0/0x5270 [ 308.692968] ? save_trace+0x290/0x290 [ 308.692978] ? lock_downgrade+0x6e0/0x6e0 [ 308.692996] ? find_held_lock+0x100/0x130 [ 308.722506] ? emulator_read_emulated+0x50/0x50 [ 308.727183] ? lock_acquire+0x16f/0x430 [ 308.731159] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 308.736179] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 308.741023] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 308.746046] kvm_vcpu_ioctl+0x401/0xd10 [ 308.750028] ? kvm_vcpu_block+0xbc0/0xbc0 [ 308.754182] ? trace_hardirqs_on+0x10/0x10 [ 308.758419] ? __f_unlock_pos+0x19/0x20 [ 308.762399] ? save_trace+0x290/0x290 [ 308.766198] ? __f_unlock_pos+0x19/0x20 [ 308.770170] ? __fget+0x210/0x370 [ 308.773629] ? find_held_lock+0x35/0x130 [ 308.777692] ? __fget+0x210/0x370 [ 308.781145] ? kvm_vcpu_block+0xbc0/0xbc0 [ 308.785292] do_vfs_ioctl+0x7b9/0x1070 [ 308.789177] ? selinux_file_mprotect+0x5d0/0x5d0 [ 308.793939] ? lock_downgrade+0x6e0/0x6e0 [ 308.798086] ? ioctl_preallocate+0x1c0/0x1c0 [ 308.802507] ? __fget+0x237/0x370 [ 308.805965] ? security_file_ioctl+0x8f/0xc0 [ 308.810371] SyS_ioctl+0x8f/0xc0 [ 308.813734] ? do_vfs_ioctl+0x1070/0x1070 [ 308.817885] do_syscall_64+0x1eb/0x630 [ 308.821775] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 308.826621] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 308.831806] RIP: 0033:0x458c29 [ 308.834988] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 308.842695] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 308.849959] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 14:24:28 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, r0, 0x0, 0x63) [ 308.857220] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 308.864495] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 308.871790] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:28 executing program 1: perf_event_open(&(0x7f0000000140)={0x2, 0x70, 0x3e7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) ioctl$sock_ifreq(r0, 0x40000000089f3, &(0x7f0000000000)={'eql\x00\x00\x00\x01\x005\x00', @ifru_flags}) 14:24:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000040)=0xfff) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r2, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:28 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000200), &(0x7f0000000240)=0x8) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r2 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x80000000, 0x20000) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffff9c, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x9}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000140)={r3, @in6={{0xa, 0x4e21, 0x8, @ipv4={[], [], @empty}, 0x8}}, 0xffffffff, 0x1}, 0x90) ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000003c0)={{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x502}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000000000}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x1000006500}) 14:24:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1, 0x81) getsockopt$EBT_SO_GET_INIT_ENTRIES(r3, 0x0, 0x83, &(0x7f0000000080)={'filter\x00', 0x0, 0x4, 0xb6, [], 0x3, &(0x7f0000000040)=[{}, {}, {}], &(0x7f00000001c0)=""/182}, &(0x7f0000000140)=0x78) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:30 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, r0, 0x0, 0x63) 14:24:30 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, 0x0) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x13) 14:24:30 executing program 1: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000240)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts-serpent-avx\x00'}, 0x58) r1 = socket$inet_udplite(0x2, 0x2, 0x88) bind$tipc(0xffffffffffffffff, 0x0, 0x0) ioctl(r1, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events\x00', 0x7a05, 0x1700) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x7a05, 0x1700) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x7}) pwrite64(r3, &(0x7f0000000200)="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", 0x200, 0x3200) write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0xfffffcbe) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000008c0)='memory.events\x00', 0xb00000000000000, 0x0) 14:24:30 executing program 0 (fault-call:7 fault-nth:9): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x400001, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:30 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, r0, 0x0, 0x63) 14:24:30 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup2(r1, r0) ioctl$VHOST_VSOCK_SET_GUEST_CID(r3, 0x4008af60, &(0x7f0000000140)={@hyper}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f00000006c0)="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") getsockopt$IP6T_SO_GET_INFO(r3, 0x29, 0x40, &(0x7f0000000240)={'security\x00'}, &(0x7f0000000040)=0x54) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) write$FUSE_NOTIFY_STORE(r3, &(0x7f0000000180)={0x2c, 0x4, 0x0, {0x2, 0x3, 0x4, 0x0, [0x0, 0x0, 0x0, 0x0]}}, 0x2c) [ 311.606211] FAULT_INJECTION: forcing a failure. [ 311.606211] name failslab, interval 1, probability 0, space 0, times 0 [ 311.632243] CPU: 0 PID: 10306 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 311.639302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 311.639308] Call Trace: [ 311.639331] dump_stack+0x138/0x19c [ 311.639352] should_fail.cold+0x10f/0x159 [ 311.659077] should_failslab+0xdb/0x130 [ 311.663082] kmem_cache_alloc+0x2d9/0x780 [ 311.667255] mmu_topup_memory_caches+0x86/0x320 [ 311.673480] kvm_mmu_load+0x21/0xd50 [ 311.677223] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 311.682004] vcpu_enter_guest+0x2ea0/0x5270 [ 311.686343] ? save_trace+0x290/0x290 [ 311.686354] ? lock_downgrade+0x6e0/0x6e0 [ 311.686368] ? find_held_lock+0x100/0x130 [ 311.686383] ? emulator_read_emulated+0x50/0x50 14:24:30 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 311.686392] ? lock_acquire+0x16f/0x430 [ 311.686406] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 311.712508] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 311.717369] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 311.722415] kvm_vcpu_ioctl+0x401/0xd10 [ 311.726415] ? kvm_vcpu_block+0xbc0/0xbc0 [ 311.730582] ? trace_hardirqs_on+0x10/0x10 [ 311.730594] ? __f_unlock_pos+0x19/0x20 [ 311.730606] ? save_trace+0x290/0x290 [ 311.730614] ? __f_unlock_pos+0x19/0x20 [ 311.730626] ? __fget+0x210/0x370 [ 311.730638] ? find_held_lock+0x35/0x130 14:24:30 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0x6, 0xa0500) connect$netrom(r2, &(0x7f00000001c0)={{0x3, @bcast, 0x3}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]}, 0x48) r3 = syz_open_dev$mouse(&(0x7f0000000080)='/dev/input/mouse#\x00', 0x75dc, 0x100) setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000240)={0xff, @rand_addr=0x3, 0x4e21, 0x2, 'wlc\x00', 0x2, 0x5, 0x7a}, 0x2c) ioctl$TCSETSW(r3, 0x5403, &(0x7f00000000c0)={0xffffffffffffffc1, 0x3, 0xa26, 0x10001, 0x8, 0xc27, 0x7, 0x1, 0x1, 0x6, 0x7f, 0x8000}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$FS_IOC_FSGETXATTR(r2, 0x801c581f, &(0x7f0000000280)={0x9, 0x66510e4b, 0x4, 0x2, 0xffff}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r5 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0x2, 0x0) ioctl$VIDIOC_G_OUTPUT(r5, 0x8004562e, &(0x7f0000000040)) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 311.730647] ? __fget+0x210/0x370 [ 311.730660] ? kvm_vcpu_block+0xbc0/0xbc0 [ 311.730672] do_vfs_ioctl+0x7b9/0x1070 [ 311.730685] ? selinux_file_mprotect+0x5d0/0x5d0 [ 311.730698] ? lock_downgrade+0x6e0/0x6e0 [ 311.742709] ? ioctl_preallocate+0x1c0/0x1c0 [ 311.742722] ? __fget+0x237/0x370 [ 311.742741] ? security_file_ioctl+0x8f/0xc0 [ 311.742755] SyS_ioctl+0x8f/0xc0 [ 311.742765] ? do_vfs_ioctl+0x1070/0x1070 [ 311.742781] do_syscall_64+0x1eb/0x630 [ 311.742791] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 311.742810] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 311.742818] RIP: 0033:0x458c29 [ 311.742824] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 311.742838] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 311.750264] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 311.750271] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 311.750277] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 14:24:31 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 311.750283] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 [ 311.767028] audit: type=1804 audit(1555683870.930:62): pid=10313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir218823853/syzkaller.oPW6QD/175/memory.events" dev="sda1" ino=17283 res=1 14:24:31 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000040)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:31 executing program 0 (fault-call:7 fault-nth:10): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:31 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000000)=0x6) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) perf_event_open(&(0x7f0000000580)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x307, {0x0, 0x0, 0x0, 0x0, 0x6}}, 0xe) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer2\x00', 0x181000, 0x0) ioctl$BINDER_GET_NODE_DEBUG_INFO(r2, 0xc018620b, &(0x7f00000001c0)={0x0}) r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480)='/dev/autofs\x00', 0x400000, 0x0) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r4, 0x84, 0x10, &(0x7f00000004c0)=@assoc_value={0x0, 0x9}, &(0x7f0000000500)=0x8) getsockopt$inet_sctp_SCTP_MAXSEG(r6, 0x84, 0xd, &(0x7f0000000540)=@assoc_id=r7, &(0x7f0000000600)=0x4) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000440)={0xa0, 0x0, &(0x7f0000000280)=[@free_buffer={0x40086303, r5}, @clear_death={0x400c630f, 0x1, 0x1}, @dead_binder_done={0x40086310, 0x4}, @dead_binder_done={0x40086310, 0x2}, @transaction_sg={0x40486311, {{0x4, 0x0, 0x2, 0x0, 0x10, 0x0, 0x0, 0x18, 0x8, &(0x7f0000000200)=[@fd={0x66642a85, 0x0, r0, 0x0, 0x4}], &(0x7f0000000240)=[0x28]}, 0xfffffffffffffff7}}, @clear_death={0x400c630f, 0x4, 0x4}, @request_death={0x400c630e, 0x0, 0x4}], 0xf8, 0x0, &(0x7f0000000340)="ee454261f2edb9c66a192eb012d66fe87ff4e7af801e6d745327146a6fd7de37d2adeb8fd7e20b4e10c5946b4a317e9f2aad7106bc61a16ce4f02df9ddaee12c46eb00caa5b6c2f8793e2a414028d8dbc919c7c2f2dba2f8f450a595c251b9a02abd00a83d0aa9954612e55d9ac7705e27c20c600f6cc56ce44b9e319b9d39b3195d4ebb8d9008f8cccaf0433bd22c05de7eaf74d8ba82dccf34a6dc6914764a4dbb8d12988757f3ea6b4b493e8f8abbf18cd6ee385c9857493f163b7ba3bd6b3d42d956d3ade3f87968cb77d3d3895d19502679d44a92fc62e0e89fb078675f944a23c251865a8712c257d86284b1864789900734684815"}) r8 = creat(&(0x7f0000000040)='./file0\x00', 0x40) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffff9c, 0xc018620b, &(0x7f0000000080)={0x0}) ioctl$BINDER_GET_NODE_DEBUG_INFO(r8, 0xc018620b, &(0x7f00000000c0)={r9}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 312.113048] FAULT_INJECTION: forcing a failure. [ 312.113048] name failslab, interval 1, probability 0, space 0, times 0 [ 312.146036] CPU: 0 PID: 10338 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 312.153295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 312.162656] Call Trace: [ 312.165254] dump_stack+0x138/0x19c [ 312.168898] should_fail.cold+0x10f/0x159 [ 312.173070] should_failslab+0xdb/0x130 [ 312.177062] kmem_cache_alloc+0x2d9/0x780 [ 312.181230] mmu_topup_memory_caches+0x86/0x320 [ 312.186695] kvm_mmu_load+0x21/0xd50 [ 312.190419] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 312.195192] vcpu_enter_guest+0x2ea0/0x5270 [ 312.199534] ? save_trace+0x290/0x290 [ 312.203348] ? lock_downgrade+0x6e0/0x6e0 [ 312.207936] ? find_held_lock+0x100/0x130 [ 312.212095] ? emulator_read_emulated+0x50/0x50 [ 312.216774] ? lock_acquire+0x16f/0x430 [ 312.220754] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 312.225785] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 312.230632] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 312.235664] kvm_vcpu_ioctl+0x401/0xd10 [ 312.239645] ? kvm_vcpu_block+0xbc0/0xbc0 [ 312.243802] ? trace_hardirqs_on+0x10/0x10 [ 312.248045] ? __f_unlock_pos+0x19/0x20 [ 312.252032] ? save_trace+0x290/0x290 [ 312.255837] ? __f_unlock_pos+0x19/0x20 [ 312.259821] ? __fget+0x210/0x370 [ 312.263286] ? find_held_lock+0x35/0x130 [ 312.267357] ? __fget+0x210/0x370 [ 312.270823] ? kvm_vcpu_block+0xbc0/0xbc0 [ 312.274982] do_vfs_ioctl+0x7b9/0x1070 [ 312.278879] ? selinux_file_mprotect+0x5d0/0x5d0 [ 312.283641] ? lock_downgrade+0x6e0/0x6e0 [ 312.287796] ? ioctl_preallocate+0x1c0/0x1c0 [ 312.292210] ? __fget+0x237/0x370 [ 312.292229] ? security_file_ioctl+0x8f/0xc0 [ 312.292241] SyS_ioctl+0x8f/0xc0 [ 312.292251] ? do_vfs_ioctl+0x1070/0x1070 [ 312.292265] do_syscall_64+0x1eb/0x630 [ 312.292274] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 312.292296] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 312.300166] RIP: 0033:0x458c29 [ 312.300172] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 312.300183] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 312.300189] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 312.300195] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 312.300201] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 312.300206] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 [ 312.555244] audit: type=1804 audit(1555683871.720:63): pid=10313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.1" name="/root/syzkaller-testdir218823853/syzkaller.oPW6QD/175/memory.events" dev="sda1" ino=17283 res=1 [ 312.590471] audit: type=1804 audit(1555683871.760:64): pid=10304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.1" name="/root/syzkaller-testdir218823853/syzkaller.oPW6QD/175/memory.events" dev="sda1" ino=17283 res=1 [ 312.765450] audit: type=1804 audit(1555683871.930:65): pid=10304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.1" name="/root/syzkaller-testdir218823853/syzkaller.oPW6QD/175/memory.events" dev="sda1" ino=17283 res=1 14:24:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f00000000c0)=0x6000) ioctl(r2, 0x1000008912, &(0x7f0000000000)="8500"/11) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x200, 0x0) 14:24:33 executing program 2: openat$ion(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ion\x00', 0x0, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:33 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x181000, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040)={0x5}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:33 executing program 0 (fault-call:7 fault-nth:11): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:33 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, 0x0, 0x0) tkill(r1, 0x13) 14:24:33 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000100)={0x3f, 0x1, 0x8, 0x0, 0x9, 0x9, 0xb3cf, 0x7f, 0x8, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x100000000, 0x5, 0x8001, 0x200, 0x7ff}) [ 314.577993] QAT: Invalid ioctl 14:24:33 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 314.655697] QAT: Invalid ioctl [ 314.707344] FAULT_INJECTION: forcing a failure. [ 314.707344] name failslab, interval 1, probability 0, space 0, times 0 [ 314.738874] CPU: 1 PID: 10368 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 314.745954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 314.745961] Call Trace: [ 314.745984] dump_stack+0x138/0x19c [ 314.746005] should_fail.cold+0x10f/0x159 [ 314.746025] should_failslab+0xdb/0x130 [ 314.746042] kmem_cache_alloc+0x2d9/0x780 [ 314.746067] mmu_topup_memory_caches+0x86/0x320 [ 314.746094] kvm_mmu_load+0x21/0xd50 [ 314.746108] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 314.746122] ? vcpu_enter_guest+0x20f0/0x5270 [ 314.746141] vcpu_enter_guest+0x2ea0/0x5270 [ 314.746164] ? emulator_read_emulated+0x50/0x50 [ 314.746179] ? lock_acquire+0x16f/0x430 14:24:33 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = getpgid(0xffffffffffffffff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffff9c, 0x0, 0x9, &(0x7f0000000240)='/dev/kvm\x00', 0xffffffffffffffff}, 0x30) kcmp(r1, r2, 0x3, r0, r0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r3, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000400)='/dev/null\x00', 0x802, 0x0) getsockopt$netrom_NETROM_T2(r5, 0x103, 0x2, &(0x7f0000000440)=0x62, &(0x7f0000000480)=0x4) r6 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0x1c, &(0x7f00000004c0)="511ead313c0303e8a7674031a1dd14a4b9ba1ec8b12c6c89047d5ed821529c1c6d1100681e944f160fe9d7ccea526c87e5cf7e3a19d35b89e6651c6c17a101aa80a5245418bef344a86468df221b", 0x4e) syz_kvm_setup_cpu$x86(r6, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000001c0)="66b9800000c00f326635000100000f30640f01ef670fc79ff4ffffff660f78c7010075f4bad004ed0f20e06635000001000f22e0652e26660f3825090f013066b9800000c00f326635001000000f30", 0x4f}], 0x1, 0x4b, &(0x7f0000000240), 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r6, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000ffe000/0x1000)=nil, 0x1000}, &(0x7f00000000c0)=0x10) timerfd_gettime(r6, &(0x7f0000000040)) r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_PORTS(r6, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40080400}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r7, 0x639, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000004) [ 314.746195] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 314.746217] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 314.746230] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 314.746250] kvm_vcpu_ioctl+0x401/0xd10 [ 314.746266] ? kvm_vcpu_block+0xbc0/0xbc0 [ 314.746279] ? trace_hardirqs_on+0x10/0x10 [ 314.746291] ? __f_unlock_pos+0x19/0x20 [ 314.746305] ? save_trace+0x290/0x290 [ 314.746315] ? __f_unlock_pos+0x19/0x20 [ 314.746328] ? __fget+0x210/0x370 [ 314.746341] ? find_held_lock+0x35/0x130 14:24:34 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 314.746353] ? __fget+0x210/0x370 [ 314.746368] ? kvm_vcpu_block+0xbc0/0xbc0 [ 314.746379] do_vfs_ioctl+0x7b9/0x1070 [ 314.746393] ? selinux_file_mprotect+0x5d0/0x5d0 [ 314.746404] ? lock_downgrade+0x6e0/0x6e0 [ 314.746418] ? ioctl_preallocate+0x1c0/0x1c0 [ 314.746433] ? __fget+0x237/0x370 [ 314.746455] ? security_file_ioctl+0x8f/0xc0 [ 314.746471] SyS_ioctl+0x8f/0xc0 [ 314.746484] ? do_vfs_ioctl+0x1070/0x1070 [ 314.746513] do_syscall_64+0x1eb/0x630 14:24:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r3 = syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x400, 0x0) ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000000040)=""/88) [ 314.746525] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 314.746547] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 314.746557] RIP: 0033:0x458c29 [ 314.746563] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 314.746577] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 314.746585] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 314.746592] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 314.746600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 14:24:34 executing program 2: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 314.746607] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffa) setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, {}, {0xfffffffffffffffd}, {0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x40}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:34 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) fallocate(r1, 0x2, 0x7, 0xb9f9) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:34 executing program 2: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:34 executing program 0 (fault-call:7 fault-nth:12): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 315.321499] FAULT_INJECTION: forcing a failure. [ 315.321499] name failslab, interval 1, probability 0, space 0, times 0 [ 315.358113] CPU: 0 PID: 10396 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 315.365161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 315.374525] Call Trace: [ 315.374548] dump_stack+0x138/0x19c [ 315.374578] should_fail.cold+0x10f/0x159 [ 315.374600] should_failslab+0xdb/0x130 [ 315.384975] kmem_cache_alloc+0x2d9/0x780 [ 315.385000] mmu_topup_memory_caches+0x86/0x320 [ 315.393130] kvm_mmu_load+0x21/0xd50 [ 315.393143] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 315.393160] vcpu_enter_guest+0x2ea0/0x5270 [ 315.393174] ? save_trace+0x290/0x290 [ 315.401553] ? lock_downgrade+0x6e0/0x6e0 [ 315.401568] ? find_held_lock+0x100/0x130 [ 315.401590] ? emulator_read_emulated+0x50/0x50 [ 315.428369] ? lock_acquire+0x16f/0x430 [ 315.432392] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 315.437398] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 315.442239] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 315.447279] kvm_vcpu_ioctl+0x401/0xd10 [ 315.451268] ? kvm_vcpu_block+0xbc0/0xbc0 [ 315.455430] ? trace_hardirqs_on+0x10/0x10 [ 315.459679] ? __f_unlock_pos+0x19/0x20 [ 315.463715] ? save_trace+0x290/0x290 [ 315.467507] ? __f_unlock_pos+0x19/0x20 [ 315.471472] ? __fget+0x210/0x370 [ 315.474910] ? find_held_lock+0x35/0x130 [ 315.478951] ? __fget+0x210/0x370 [ 315.482388] ? kvm_vcpu_block+0xbc0/0xbc0 [ 315.486522] do_vfs_ioctl+0x7b9/0x1070 [ 315.490395] ? selinux_file_mprotect+0x5d0/0x5d0 [ 315.495162] ? lock_downgrade+0x6e0/0x6e0 [ 315.499301] ? ioctl_preallocate+0x1c0/0x1c0 [ 315.503731] ? __fget+0x237/0x370 [ 315.507184] ? security_file_ioctl+0x8f/0xc0 [ 315.511585] SyS_ioctl+0x8f/0xc0 [ 315.514939] ? do_vfs_ioctl+0x1070/0x1070 [ 315.519077] do_syscall_64+0x1eb/0x630 [ 315.522951] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 315.527798] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 315.532972] RIP: 0033:0x458c29 [ 315.536144] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 315.543837] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 [ 315.551089] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 315.558344] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 315.565600] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 315.572857] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:36 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000100)={0x3f, 0x1, 0x8, 0x0, 0x9, 0x9, 0xb3cf, 0x7f, 0x8, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x100000000, 0x5, 0x8001, 0x200, 0x7ff}) 14:24:36 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$EXT4_IOC_MIGRATE(r3, 0x6609) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:36 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, 0x0, 0x0) tkill(r1, 0x13) 14:24:36 executing program 0 (fault-call:7 fault-nth:13): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:36 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 317.775043] FAULT_INJECTION: forcing a failure. [ 317.775043] name failslab, interval 1, probability 0, space 0, times 0 [ 317.803027] CPU: 1 PID: 10420 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 317.810441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 317.819804] Call Trace: [ 317.819828] dump_stack+0x138/0x19c [ 317.819851] should_fail.cold+0x10f/0x159 [ 317.819871] should_failslab+0xdb/0x130 [ 317.826093] kmem_cache_alloc+0x2d9/0x780 [ 317.826106] ? vcpu_enter_guest+0x2657/0x5270 [ 317.826126] mmu_topup_memory_caches+0x86/0x320 [ 317.826145] kvm_mmu_load+0x21/0xd50 [ 317.834263] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 317.834274] ? vcpu_enter_guest+0x20f0/0x5270 [ 317.834291] vcpu_enter_guest+0x2ea0/0x5270 [ 317.834312] ? emulator_read_emulated+0x50/0x50 [ 317.834326] ? lock_acquire+0x16f/0x430 [ 317.834337] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 317.834355] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 317.843022] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 317.843044] kvm_vcpu_ioctl+0x401/0xd10 [ 317.843058] ? kvm_vcpu_block+0xbc0/0xbc0 [ 317.843077] ? trace_hardirqs_on+0x10/0x10 [ 317.843089] ? __f_unlock_pos+0x19/0x20 [ 317.843101] ? save_trace+0x290/0x290 [ 317.856242] ? __f_unlock_pos+0x19/0x20 [ 317.856255] ? __fget+0x210/0x370 [ 317.856268] ? find_held_lock+0x35/0x130 [ 317.856279] ? __fget+0x210/0x370 14:24:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x0, 0x0) ioctl$sock_inet_udp_SIOCOUTQ(r2, 0x5411, &(0x7f0000000040)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) r4 = openat$proc_capi20(0xffffffffffffff9c, &(0x7f0000000080)='/proc/capi/capi20\x00', 0x100, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r4, 0xc008ae67, &(0x7f0000000100)={0x1}) [ 317.856295] ? kvm_vcpu_block+0xbc0/0xbc0 [ 317.856313] do_vfs_ioctl+0x7b9/0x1070 [ 317.869785] ? selinux_file_mprotect+0x5d0/0x5d0 [ 317.869799] ? lock_downgrade+0x6e0/0x6e0 [ 317.869813] ? ioctl_preallocate+0x1c0/0x1c0 [ 317.869827] ? __fget+0x237/0x370 [ 317.869844] ? security_file_ioctl+0x8f/0xc0 [ 317.869858] SyS_ioctl+0x8f/0xc0 [ 317.869874] ? do_vfs_ioctl+0x1070/0x1070 [ 317.878859] do_syscall_64+0x1eb/0x630 [ 317.878871] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 317.878892] entry_SYSCALL_64_after_hwframe+0x42/0xb7 14:24:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 317.878901] RIP: 0033:0x458c29 [ 317.878907] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 317.878919] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 317.878925] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 317.878934] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 317.892745] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 317.892753] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0xfffffffffffffffc) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) rename(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)='./file0\x00') process_vm_readv(r3, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/25, 0x19}, {&(0x7f00000001c0)=""/144, 0x90}, {&(0x7f0000000280)=""/142, 0x8e}, {&(0x7f0000000340)=""/95, 0x5f}], 0x4, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/20, 0x14}], 0x1, 0x0) 14:24:37 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000100)={0x3f, 0x1, 0x8, 0x0, 0x9, 0x9, 0xb3cf, 0x7f, 0x8, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x100000000, 0x5, 0x8001, 0x200, 0x7ff}) 14:24:37 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x52, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:37 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0xfdffffffffffffff, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x31, r0, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000000)={0x0, 0x0, @ioapic}) openat$tun(0xffffffffffffff9c, &(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) modify_ldt$read(0x0, &(0x7f00000001c0)=""/76, 0x4c) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000240)='/dev/null\x00', 0x400, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000280)={0x101, {{0x2, 0x4e24, @multicast1}}}, 0x88) 14:24:39 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, 0x0, 0x0) tkill(r1, 0x13) 14:24:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) fstat(r0, &(0x7f00000000c0)) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:39 executing program 0 (fault-call:7 fault-nth:14): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:39 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video35\x00', 0x2, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x2c0) r3 = syz_open_dev$adsp(&(0x7f0000000040)='/dev/adsp#\x00', 0x9, 0x0) ioctl$EVIOCGMTSLOTS(r3, 0x8040450a, &(0x7f00000005c0)=""/245) 14:24:39 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:39 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) r2 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000100)={0x3f, 0x1, 0x8, 0x0, 0x9, 0x9, 0xb3cf, 0x7f, 0x8, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, 0x100000000, 0x5, 0x8001, 0x200, 0x7ff}) [ 320.724821] FAULT_INJECTION: forcing a failure. [ 320.724821] name failslab, interval 1, probability 0, space 0, times 0 14:24:39 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 320.822065] CPU: 0 PID: 10467 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 320.829140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 320.838520] Call Trace: [ 320.841131] dump_stack+0x138/0x19c [ 320.844784] should_fail.cold+0x10f/0x159 [ 320.848956] should_failslab+0xdb/0x130 [ 320.852952] kmem_cache_alloc+0x2d9/0x780 [ 320.857153] mmu_topup_memory_caches+0x86/0x320 [ 320.861940] kvm_mmu_load+0x21/0xd50 [ 320.861954] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 320.861972] vcpu_enter_guest+0x2ea0/0x5270 [ 320.861984] ? save_trace+0x290/0x290 [ 320.861994] ? lock_downgrade+0x6e0/0x6e0 [ 320.862007] ? find_held_lock+0x100/0x130 [ 320.862019] ? emulator_read_emulated+0x50/0x50 [ 320.862028] ? lock_acquire+0x16f/0x430 [ 320.862039] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 320.862057] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 320.862068] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 320.862087] kvm_vcpu_ioctl+0x401/0xd10 [ 320.862100] ? kvm_vcpu_block+0xbc0/0xbc0 14:24:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 320.862117] ? trace_hardirqs_on+0x10/0x10 [ 320.870599] ? __f_unlock_pos+0x19/0x20 [ 320.870614] ? save_trace+0x290/0x290 [ 320.870624] ? __f_unlock_pos+0x19/0x20 [ 320.870634] ? __fget+0x210/0x370 [ 320.870644] ? find_held_lock+0x35/0x130 [ 320.870653] ? __fget+0x210/0x370 [ 320.870667] ? kvm_vcpu_block+0xbc0/0xbc0 [ 320.870678] do_vfs_ioctl+0x7b9/0x1070 [ 320.870691] ? selinux_file_mprotect+0x5d0/0x5d0 [ 320.870700] ? lock_downgrade+0x6e0/0x6e0 [ 320.870711] ? ioctl_preallocate+0x1c0/0x1c0 [ 320.870723] ? __fget+0x237/0x370 [ 320.870741] ? security_file_ioctl+0x8f/0xc0 [ 320.870754] SyS_ioctl+0x8f/0xc0 [ 320.870763] ? do_vfs_ioctl+0x1070/0x1070 [ 320.870778] do_syscall_64+0x1eb/0x630 [ 320.870788] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 320.870808] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 320.870817] RIP: 0033:0x458c29 [ 320.870823] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 320.870835] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 14:24:40 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 320.870849] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 320.887257] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 320.887265] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 320.887271] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:40 executing program 0 (fault-call:7 fault-nth:15): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:40 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:40 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@ipv4={[], [], @remote}, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@loopback}}, &(0x7f0000000040)=0xe8) fsetxattr$security_capability(r2, &(0x7f0000000000)='security.capability\x00', &(0x7f0000000080)=@v3={0x3000000, [{0x246f, 0x6}, {0x8, 0x8}], r3}, 0x18, 0x3) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b81542520e6178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4508002db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774beecac7f1450f679178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0402659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 321.329591] FAULT_INJECTION: forcing a failure. [ 321.329591] name failslab, interval 1, probability 0, space 0, times 0 [ 321.373053] CPU: 1 PID: 10503 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 321.380111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.380117] Call Trace: [ 321.380141] dump_stack+0x138/0x19c [ 321.380163] should_fail.cold+0x10f/0x159 [ 321.380183] should_failslab+0xdb/0x130 [ 321.380199] kmem_cache_alloc+0x2d9/0x780 [ 321.380225] mmu_topup_memory_caches+0x86/0x320 [ 321.380244] kvm_mmu_load+0x21/0xd50 [ 321.380258] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 321.380278] vcpu_enter_guest+0x2ea0/0x5270 [ 321.380292] ? save_trace+0x290/0x290 [ 321.380304] ? lock_downgrade+0x6e0/0x6e0 [ 321.380320] ? find_held_lock+0x100/0x130 [ 321.380334] ? emulator_read_emulated+0x50/0x50 [ 321.380344] ? lock_acquire+0x16f/0x430 [ 321.380356] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 321.380376] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 321.380387] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 321.380406] kvm_vcpu_ioctl+0x401/0xd10 [ 321.380420] ? kvm_vcpu_block+0xbc0/0xbc0 [ 321.380431] ? trace_hardirqs_on+0x10/0x10 [ 321.380444] ? __f_unlock_pos+0x19/0x20 [ 321.380457] ? save_trace+0x290/0x290 [ 321.380468] ? __f_unlock_pos+0x19/0x20 [ 321.380479] ? __fget+0x210/0x370 [ 321.380492] ? find_held_lock+0x35/0x130 [ 321.380505] ? __fget+0x210/0x370 [ 321.380520] ? kvm_vcpu_block+0xbc0/0xbc0 [ 321.380533] do_vfs_ioctl+0x7b9/0x1070 [ 321.380549] ? selinux_file_mprotect+0x5d0/0x5d0 [ 321.380562] ? lock_downgrade+0x6e0/0x6e0 [ 321.380577] ? ioctl_preallocate+0x1c0/0x1c0 [ 321.380593] ? __fget+0x237/0x370 [ 321.380613] ? security_file_ioctl+0x8f/0xc0 [ 321.380628] SyS_ioctl+0x8f/0xc0 [ 321.380639] ? do_vfs_ioctl+0x1070/0x1070 [ 321.380658] do_syscall_64+0x1eb/0x630 [ 321.396235] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 321.396259] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 321.396271] RIP: 0033:0x458c29 [ 321.404380] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 321.404392] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 321.404398] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 321.404404] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 321.404411] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 321.404417] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:42 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:24:42 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:42 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/checkreqprot\x00', 0x400, 0x0) r3 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x3, 0x2) write$FUSE_DIRENT(r3, &(0x7f0000000040)={0x10}, 0x10) getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000280)={0x0, 0x2, 0x6, [0x44d, 0x9dc, 0x7fffffff, 0x8, 0x2, 0x9]}, &(0x7f00000002c0)=0x14) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r2, 0x84, 0x19, &(0x7f0000000300)={r4, 0xfa}, 0x8) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000080)=0x1) 14:24:42 executing program 4: r0 = accept4$packet(0xffffffffffffff9c, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14, 0x80800) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000100), &(0x7f0000000140)=0x30) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:42 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/commit_pending_bools\x00', 0x1, 0x0) 14:24:42 executing program 0 (fault-call:7 fault-nth:16): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:43 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 323.875280] FAULT_INJECTION: forcing a failure. [ 323.875280] name failslab, interval 1, probability 0, space 0, times 0 [ 323.948716] CPU: 0 PID: 10527 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 323.955783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.955789] Call Trace: [ 323.955812] dump_stack+0x138/0x19c [ 323.955833] should_fail.cold+0x10f/0x159 [ 323.967787] should_failslab+0xdb/0x130 [ 323.967809] kmem_cache_alloc+0x2d9/0x780 [ 323.979585] mmu_topup_memory_caches+0x86/0x320 [ 323.979602] kvm_mmu_load+0x21/0xd50 [ 323.988404] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 323.988424] vcpu_enter_guest+0x2ea0/0x5270 [ 323.997757] ? save_trace+0x290/0x290 [ 323.997767] ? lock_downgrade+0x6e0/0x6e0 [ 323.997782] ? find_held_lock+0x100/0x130 [ 323.997796] ? emulator_read_emulated+0x50/0x50 [ 323.997811] ? lock_acquire+0x16f/0x430 [ 324.010072] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 324.010091] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 324.010101] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 324.010121] kvm_vcpu_ioctl+0x401/0xd10 [ 324.010134] ? kvm_vcpu_block+0xbc0/0xbc0 14:24:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 324.010151] ? trace_hardirqs_on+0x10/0x10 [ 324.022928] ? __f_unlock_pos+0x19/0x20 [ 324.022944] ? save_trace+0x290/0x290 [ 324.022954] ? __f_unlock_pos+0x19/0x20 [ 324.022969] ? __fget+0x210/0x370 [ 324.033281] ? find_held_lock+0x35/0x130 [ 324.033294] ? __fget+0x210/0x370 [ 324.033308] ? kvm_vcpu_block+0xbc0/0xbc0 [ 324.033320] do_vfs_ioctl+0x7b9/0x1070 [ 324.033335] ? selinux_file_mprotect+0x5d0/0x5d0 [ 324.033344] ? lock_downgrade+0x6e0/0x6e0 [ 324.033355] ? ioctl_preallocate+0x1c0/0x1c0 [ 324.033367] ? __fget+0x237/0x370 [ 324.033386] ? security_file_ioctl+0x8f/0xc0 [ 324.033400] SyS_ioctl+0x8f/0xc0 [ 324.033412] ? do_vfs_ioctl+0x1070/0x1070 [ 324.046821] do_syscall_64+0x1eb/0x630 [ 324.046839] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 324.055048] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 324.055058] RIP: 0033:0x458c29 [ 324.055064] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 324.062853] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 14:24:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0xb) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 324.062860] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 324.062866] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 324.062871] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 324.062876] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:43 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:45 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:45 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:24:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ubi_ctrl\x00', 0x400000, 0x0) getsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000040), &(0x7f0000000080)=0x8) 14:24:45 executing program 0 (fault-call:7 fault-nth:17): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:45 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:24:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = dup2(r2, r0) renameat2(r3, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000100)='./file0\x00', 0x3) r4 = socket$inet_udplite(0x2, 0x2, 0x88) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"}) [ 326.937198] FAULT_INJECTION: forcing a failure. [ 326.937198] name failslab, interval 1, probability 0, space 0, times 0 [ 327.016967] CPU: 0 PID: 10567 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 327.024029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 327.033388] Call Trace: [ 327.033412] dump_stack+0x138/0x19c [ 327.033436] should_fail.cold+0x10f/0x159 [ 327.033455] should_failslab+0xdb/0x130 [ 327.033470] kmem_cache_alloc+0x2d9/0x780 [ 327.033491] mmu_topup_memory_caches+0x86/0x320 [ 327.051978] kvm_mmu_load+0x21/0xd50 [ 327.051993] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 327.052009] vcpu_enter_guest+0x2ea0/0x5270 [ 327.052021] ? save_trace+0x290/0x290 [ 327.052030] ? lock_downgrade+0x6e0/0x6e0 [ 327.052044] ? find_held_lock+0x100/0x130 [ 327.052056] ? emulator_read_emulated+0x50/0x50 [ 327.052065] ? lock_acquire+0x16f/0x430 [ 327.052076] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 327.052093] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 327.052103] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 327.052123] kvm_vcpu_ioctl+0x401/0xd10 [ 327.052137] ? kvm_vcpu_block+0xbc0/0xbc0 14:24:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, r0, 0x0, 0x63) [ 327.052147] ? trace_hardirqs_on+0x10/0x10 [ 327.052159] ? __f_unlock_pos+0x19/0x20 [ 327.052172] ? save_trace+0x290/0x290 [ 327.052189] ? __f_unlock_pos+0x19/0x20 [ 327.073444] ? __fget+0x210/0x370 [ 327.073465] ? find_held_lock+0x35/0x130 [ 327.081784] ? __fget+0x210/0x370 [ 327.081801] ? kvm_vcpu_block+0xbc0/0xbc0 [ 327.081813] do_vfs_ioctl+0x7b9/0x1070 [ 327.081826] ? selinux_file_mprotect+0x5d0/0x5d0 [ 327.081837] ? lock_downgrade+0x6e0/0x6e0 [ 327.081848] ? ioctl_preallocate+0x1c0/0x1c0 [ 327.081861] ? __fget+0x237/0x370 [ 327.081877] ? security_file_ioctl+0x8f/0xc0 [ 327.081889] SyS_ioctl+0x8f/0xc0 [ 327.081898] ? do_vfs_ioctl+0x1070/0x1070 [ 327.081912] do_syscall_64+0x1eb/0x630 [ 327.081922] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.081943] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 327.081953] RIP: 0033:0x458c29 [ 327.081959] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 327.081971] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 14:24:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, r0, 0x0, 0x63) [ 327.081977] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 327.081983] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 327.081989] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 327.081994] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:46 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, r0, 0x0, 0x63) 14:24:46 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/kvm\x00', 0x8000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f00000004c0)='/selinux/enforce\x00', 0x8000, 0x0) ioctl$VIDIOC_S_EDID(r2, 0xc0285629, &(0x7f0000000540)={0x0, 0x7, 0x3ff, [], &(0x7f0000000500)=0xfff}) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x800, 0x0) write$P9_RWSTAT(r3, &(0x7f0000000040)={0x7, 0x7f, 0x2}, 0x7) r4 = getpgrp(0xffffffffffffffff) ioprio_set$pid(0x2, r4, 0x5) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) symlinkat(&(0x7f0000000180)='./file0\x00', r2, &(0x7f0000000580)='./file0\x00') recvmmsg(r3, &(0x7f00000003c0)=[{{&(0x7f0000000080)=@hci={0x1f, 0x0}, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/123, 0x7b}, {&(0x7f0000000240)=""/129, 0x81}, {&(0x7f0000000140)=""/48, 0x30}], 0x3, &(0x7f0000000340)=""/120, 0x78}, 0x7fffffff}], 0x1, 0x40000021, &(0x7f0000000400)={0x0, 0x1c9c380}) ioctl$HCIINQUIRY(r5, 0x800448f0, &(0x7f0000000440)={r6, 0x4, 0x3, 0x0, 0x6, 0xe76, 0x2}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000480)={0x100000, 0x2000, 0x327676df, 0x75, 0x8}) ioctl$DRM_IOCTL_DROP_MASTER(r3, 0x641f) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:48 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(0x0, 0x13) 14:24:48 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) sendto$netrom(r1, &(0x7f0000000000)="b9768f58e7af48c07e5de08e440dc1c4052d6d6148ce122bb8d01a6c63c32bf99f1d3dbaab769deee0e59e2c33ce8afa96b57f4f771d697e4cbcd9bf9f5ba05ab805eefc56ba58614da270a810a92a1dacc8ae7c117f3973ddec97966c0a0169f131134e0a5e95e4403fe6c3a433b899677fa1eeadb547674178a07dc6977c81f6cd852388d2979027afdaa7ea6a94f766ee1e66b5fc7cbc7d682770", 0x9c, 0x40, &(0x7f00000001c0)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x3}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @default, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @bcast]}, 0x48) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) ioctl$KVM_GET_API_VERSION(r0, 0xae00, 0x0) 14:24:48 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, 0x0, 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:48 executing program 0 (fault-call:7 fault-nth:18): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:48 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:24:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = syz_open_dev$usb(&(0x7f00000000c0)='/dev/bus/usb/00#/00#\x00', 0x581d, 0x400001) ioctl$VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000100)={0xfffffffffffffff7, 0xf, 0x2, "17366bd1ad025e3cc5b750a7417f44845b0ad6d90787ee441c9d3274c091d550", 0x32314d56}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x3, 0x2000) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x400, 0xe3, 0xfffffffffffffff8, 0x401}, {0x3, 0xffffffffffff1f9e, 0x8, 0xcbb5}]}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r3 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x3, 0x80040) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)}, &(0x7f00000001c0)=0x10) arch_prctl$ARCH_GET_CPUID(0x1011) setsockopt$inet_sctp_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000200)={r4, 0x2, 0xc0, "b7c390aba69457f6e44a4aa3e01787f57fbffa7bf62496fa2029abe496d84d77b11a128fae5189c4d6099baa41b4df842e51279b9d948bfb68d2abd4167b8b62c3391685eb2230afe132c26978298742b88e7f21e5f741ce7b2832ce940efb5e2e3f71c6cfcd65625ee9aeddbbb125dce35ace7d48f4986f0584ffe0d32c4e9b35fff5999d21b1d172d110340675d689af96b48a2a42aae9af03fcbd9b08054f59b4e25f7794f23da3e553180bab389bf2c1c7a89dbb4ffde8c71e4da0e481a9"}, 0xc8) 14:24:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, 0x0, 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 329.961063] FAULT_INJECTION: forcing a failure. [ 329.961063] name failslab, interval 1, probability 0, space 0, times 0 [ 330.050592] CPU: 1 PID: 10610 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 330.057659] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.067023] Call Trace: [ 330.067046] dump_stack+0x138/0x19c [ 330.067068] should_fail.cold+0x10f/0x159 [ 330.067100] should_failslab+0xdb/0x130 [ 330.077462] kmem_cache_alloc+0x2d9/0x780 [ 330.077485] mmu_topup_memory_caches+0x86/0x320 [ 330.077514] kvm_mmu_load+0x21/0xd50 [ 330.077528] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 330.098850] ? vcpu_enter_guest+0x20f0/0x5270 [ 330.103367] vcpu_enter_guest+0x2ea0/0x5270 [ 330.107710] ? emulator_read_emulated+0x50/0x50 [ 330.112396] ? lock_acquire+0x16f/0x430 [ 330.116383] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 330.116403] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 330.116415] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 330.116435] kvm_vcpu_ioctl+0x401/0xd10 [ 330.116448] ? kvm_vcpu_block+0xbc0/0xbc0 [ 330.126307] ? trace_hardirqs_on+0x10/0x10 [ 330.126320] ? __f_unlock_pos+0x19/0x20 14:24:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x20040, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, 0x0, 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 330.126334] ? save_trace+0x290/0x290 [ 330.126344] ? __f_unlock_pos+0x19/0x20 [ 330.126355] ? __fget+0x210/0x370 [ 330.126367] ? find_held_lock+0x35/0x130 [ 330.147697] ? __fget+0x210/0x370 [ 330.147724] ? kvm_vcpu_block+0xbc0/0xbc0 [ 330.147737] do_vfs_ioctl+0x7b9/0x1070 [ 330.147751] ? selinux_file_mprotect+0x5d0/0x5d0 [ 330.147763] ? lock_downgrade+0x6e0/0x6e0 [ 330.147782] ? ioctl_preallocate+0x1c0/0x1c0 [ 330.155553] ? __fget+0x237/0x370 [ 330.155577] ? security_file_ioctl+0x8f/0xc0 [ 330.155597] SyS_ioctl+0x8f/0xc0 [ 330.155607] ? do_vfs_ioctl+0x1070/0x1070 [ 330.155622] do_syscall_64+0x1eb/0x630 [ 330.155632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 330.155653] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 330.155662] RIP: 0033:0x458c29 [ 330.155672] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 [ 330.166639] ORIG_RAX: 0000000000000010 [ 330.166647] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 330.166653] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 14:24:49 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x0, 0x0) sendfile(r2, r1, 0x0, 0x63) [ 330.166659] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 330.166666] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 330.166672] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_TSS_ADDR(r1, 0xae47, 0xd000) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffff9c, 0x29, 0x23, &(0x7f00000001c0)={{{@in6=@initdev, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000040)=0xe8) getresgid(&(0x7f0000000080), &(0x7f0000000300), &(0x7f0000000140)=0x0) fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000002c0)={{}, {0x1, 0x4}, [{0x2, 0x7, r3}], {0x4, 0x7}, [{0x8, 0x0, r4}], {0x10, 0x6}, {0x20, 0x3}}, 0x34, 0x2) r5 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000400)='/proc/self/net/pfkey\x00', 0x0, 0x0) setsockopt$ALG_SET_AEAD_AUTHSIZE(r5, 0x117, 0x5, 0x0, 0x1000) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) mremap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil) r6 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000340)={0x0, 0x6}, &(0x7f0000000380)=0xc) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r6, 0x84, 0x75, &(0x7f00000003c0)={r7, 0xfff}, 0x8) 14:24:52 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x0) 14:24:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x0, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) r3 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x0, 0x0) ioctl$IMADDTIMER(r3, 0x80044940, &(0x7f0000000040)=0x36) 14:24:52 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) keyctl$get_security(0x11, r1, &(0x7f00000001c0)=""/228, 0xe4) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:24:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0xc) syz_open_procfs(r4, &(0x7f0000000100)='clear_refs\x00') ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000500)={"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"}) 14:24:52 executing program 0 (fault-call:7 fault-nth:19): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x0, 0x0) sendfile(r2, r1, 0x0, 0x63) 14:24:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socket$isdn_base(0x22, 0x3, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 333.002722] FAULT_INJECTION: forcing a failure. [ 333.002722] name failslab, interval 1, probability 0, space 0, times 0 [ 333.042971] CPU: 0 PID: 10656 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 333.050029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 333.050036] Call Trace: [ 333.050060] dump_stack+0x138/0x19c [ 333.050086] should_fail.cold+0x10f/0x159 [ 333.050106] should_failslab+0xdb/0x130 [ 333.050123] kmem_cache_alloc+0x2d9/0x780 [ 333.050149] mmu_topup_memory_caches+0x86/0x320 [ 333.050168] kvm_mmu_load+0x21/0xd50 [ 333.050180] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 333.050201] vcpu_enter_guest+0x2ea0/0x5270 [ 333.066663] ? save_trace+0x290/0x290 [ 333.066675] ? lock_downgrade+0x6e0/0x6e0 [ 333.066690] ? find_held_lock+0x100/0x130 [ 333.066705] ? emulator_read_emulated+0x50/0x50 [ 333.066715] ? lock_acquire+0x16f/0x430 [ 333.066726] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 333.066743] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 333.079433] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 333.079455] kvm_vcpu_ioctl+0x401/0xd10 [ 333.079470] ? kvm_vcpu_block+0xbc0/0xbc0 14:24:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) socket$kcm(0x29, 0x805, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x63) [ 333.079484] ? trace_hardirqs_on+0x10/0x10 [ 333.079509] ? __f_unlock_pos+0x19/0x20 [ 333.087898] ? save_trace+0x290/0x290 [ 333.087910] ? __f_unlock_pos+0x19/0x20 [ 333.087922] ? __fget+0x210/0x370 [ 333.087934] ? find_held_lock+0x35/0x130 [ 333.087945] ? __fget+0x210/0x370 [ 333.087959] ? kvm_vcpu_block+0xbc0/0xbc0 [ 333.087974] do_vfs_ioctl+0x7b9/0x1070 [ 333.100838] ? selinux_file_mprotect+0x5d0/0x5d0 [ 333.100852] ? lock_downgrade+0x6e0/0x6e0 [ 333.100866] ? ioctl_preallocate+0x1c0/0x1c0 [ 333.100878] ? __fget+0x237/0x370 [ 333.100895] ? security_file_ioctl+0x8f/0xc0 [ 333.100907] SyS_ioctl+0x8f/0xc0 [ 333.100917] ? do_vfs_ioctl+0x1070/0x1070 [ 333.100931] do_syscall_64+0x1eb/0x630 [ 333.117845] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 333.117868] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 333.117877] RIP: 0033:0x458c29 [ 333.117883] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 333.117895] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 14:24:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) socket$kcm(0x29, 0x805, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x63) 14:24:52 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) socket$kcm(0x29, 0x805, 0x0) sendfile(0xffffffffffffffff, r1, 0x0, 0x63) [ 333.117911] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 333.136737] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 333.136744] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 333.136750] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:55 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x0) 14:24:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x63) 14:24:55 executing program 5: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff9000/0x4000)=nil) shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000300)=""/122) r1 = socket(0x1b, 0x4, 0x37c) r2 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000200)='/dev/video35\x00', 0x2, 0x0) ioctl$VIDIOC_S_FREQUENCY(r2, 0x402c5639, &(0x7f0000000240)={0x4, 0x4, 0x4}) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000000)={0x0, @in={{0x2, 0x4e21, @rand_addr=0x4}}, 0x234f, 0x40}, &(0x7f00000000c0)=0x90) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r1, 0x84, 0x73, &(0x7f0000000140)={r3, 0x6ebd, 0x0, 0x0, 0x9}, &(0x7f00000001c0)=0x18) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) socket$inet6_dccp(0xa, 0x6, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000e80)={"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"}) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r1, 0x84, 0x20, &(0x7f0000000280), &(0x7f00000002c0)=0x1d2) ioctl$KVM_IRQ_LINE_STATUS(r5, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:55 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:24:55 executing program 0 (fault-call:7 fault-nth:20): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x68, &(0x7f00000000c0)=[@in={0x2, 0x4e21, @multicast2}, @in6={0xa, 0x4e21, 0x7fff, @loopback, 0x3ff}, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e24, @remote}, @in6={0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x49b6708b}]}, &(0x7f0000000140)=0x10) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000180)={r4, 0xfffffffffffffffd}, 0x8) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x63) 14:24:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) pipe2(&(0x7f0000000440)={0xffffffffffffffff}, 0x4800) ioctl$EVIOCSABS20(r2, 0x401845e0, &(0x7f0000000480)={0x1e5cb8c2, 0x800, 0x4000000000000, 0x3, 0x3, 0xe8}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) r4 = msgget(0x0, 0x2) getresuid(&(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)=0x0) fstat(r3, &(0x7f00000001c0)) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000240)={{{@in6=@mcast1, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@local}}, &(0x7f00000000c0)=0xe8) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setsockopt$inet_sctp_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f00000004c0)={0x8, 0x200, 0x3f, 0xfffffffffffffffd}, 0x8) r8 = fcntl$getown(r1, 0x9) r9 = fcntl$getown(r0, 0x9) msgctl$IPC_SET(r4, 0x1, &(0x7f00000003c0)={{0x1000, r5, r7, r6, r7, 0x410, 0x9}, 0x4, 0x0, 0x200000000008, 0x3, 0x0, 0x9, r8, r9}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 336.006351] FAULT_INJECTION: forcing a failure. [ 336.006351] name failslab, interval 1, probability 0, space 0, times 0 [ 336.059281] CPU: 0 PID: 10695 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 336.066336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 336.066343] Call Trace: [ 336.066367] dump_stack+0x138/0x19c [ 336.066390] should_fail.cold+0x10f/0x159 [ 336.066409] should_failslab+0xdb/0x130 [ 336.066434] kmem_cache_alloc+0x2d9/0x780 [ 336.090227] mmu_topup_memory_caches+0x86/0x320 [ 336.090245] kvm_mmu_load+0x21/0xd50 [ 336.090258] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 14:24:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r1 = socket$kcm(0x29, 0x805, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x63) [ 336.090275] vcpu_enter_guest+0x2ea0/0x5270 [ 336.090289] ? save_trace+0x290/0x290 [ 336.090299] ? lock_downgrade+0x6e0/0x6e0 [ 336.090312] ? find_held_lock+0x100/0x130 [ 336.090326] ? emulator_read_emulated+0x50/0x50 [ 336.090336] ? lock_acquire+0x16f/0x430 [ 336.090348] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 336.090366] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 336.090377] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 336.090395] kvm_vcpu_ioctl+0x401/0xd10 [ 336.090408] ? kvm_vcpu_block+0xbc0/0xbc0 [ 336.090421] ? trace_hardirqs_on+0x10/0x10 [ 336.099277] ? __f_unlock_pos+0x19/0x20 [ 336.099291] ? save_trace+0x290/0x290 [ 336.099301] ? __f_unlock_pos+0x19/0x20 [ 336.099313] ? __fget+0x210/0x370 [ 336.099324] ? find_held_lock+0x35/0x130 [ 336.099334] ? __fget+0x210/0x370 [ 336.099350] ? kvm_vcpu_block+0xbc0/0xbc0 [ 336.099362] do_vfs_ioctl+0x7b9/0x1070 [ 336.099380] ? selinux_file_mprotect+0x5d0/0x5d0 [ 336.107829] ? lock_downgrade+0x6e0/0x6e0 [ 336.107844] ? ioctl_preallocate+0x1c0/0x1c0 [ 336.107857] ? __fget+0x237/0x370 14:24:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x0) [ 336.107886] ? security_file_ioctl+0x8f/0xc0 [ 336.115995] SyS_ioctl+0x8f/0xc0 [ 336.116006] ? do_vfs_ioctl+0x1070/0x1070 [ 336.116022] do_syscall_64+0x1eb/0x630 [ 336.116032] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 336.116054] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 336.124328] RIP: 0033:0x458c29 [ 336.124334] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 336.124346] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 14:24:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, [0x0, 0xe, 0x8, 0x7]}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000)={0x7f}) 14:24:55 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x0) [ 336.124353] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 336.124359] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 336.124365] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 336.124383] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:58 executing program 3: r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/audio\x00', 0x80000042801, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$vnet(r0, &(0x7f0000000140)={0x1, {0x0, 0xffffff87, 0x0}}, 0xfe39) timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f00000002c0)) r1 = gettid() timer_settime(0x0, 0x0, &(0x7f00000016c0)={{}, {0x0, 0x989680}}, 0x0) tkill(r1, 0x0) 14:24:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) r3 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/hash_stats\x00', 0x0, 0x0) write$P9_RRENAMEAT(r3, &(0x7f0000000040)={0x7, 0x4b, 0x1}, 0x7) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:24:58 executing program 2: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0) r2 = socket$kcm(0x29, 0x805, 0x0) sendfile(r2, r1, 0x0, 0x0) 14:24:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) ftruncate(r0, 0x401) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = syz_open_dev$media(&(0x7f0000000340)='/dev/media#\x00', 0x7fffffff, 0x90000) ioctl$PPPIOCSMAXCID(r3, 0x40047451, &(0x7f0000000380)=0x1f) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$sock_cred(0xffffffffffffff9c, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0xc) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000100)={{{@in6=@local, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@local}, 0x0, @in6=@ipv4={[], [], @multicast1}}}, &(0x7f0000000200)=0xe8) ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000300)={0x6, 0x103, 0x7, {0x1f, 0x3, 0x8, 0x1f}}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0xc) setsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f00000002c0)={r5, r6, r7}, 0xc) r8 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r8, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:24:58 executing program 0 (fault-call:7 fault-nth:21): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:58 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) [ 338.990869] FAULT_INJECTION: forcing a failure. [ 338.990869] name failslab, interval 1, probability 0, space 0, times 0 14:24:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000240)=0x1) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_retries\x00', 0x2, 0x0) getsockopt$bt_BT_POWER(r3, 0x112, 0x9, &(0x7f00000000c0)=0x4, &(0x7f0000000100)=0x1) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r5 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000200)='/proc/capi/capi20ncci\x00', 0x0, 0x0) io_setup(0x1, &(0x7f0000000280)=0x0) io_cancel(r6, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x3, 0x200, r1, &(0x7f00000002c0)="9645eaaf6d2d74d6ef6bb1a02f982d6dfab263a694e730", 0x17, 0x3f, 0x0, 0x2, r3}, &(0x7f0000000340)) ioctl$KVM_SET_CLOCK(r5, 0x4030ae7b, &(0x7f0000000380)={0x10001, 0x3}) ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$sock_bt_hidp_HIDPGETCONNINFO(r3, 0x800448d3, &(0x7f0000000140)={{0xfffffffffffffffd, 0x7, 0x40, 0x313c000000000000, 0x1f, 0x6}, 0x7ff, 0xfffffffffffffffa, 0x9, 0x266, 0x2, "9774f8bf73736a9e5ec241f1479fdc32178e59781c8399fc7bf4a599f8d9ef43289267d56d042ed1daf7ea941acfbbb29e5950611e6a6256c6bc1384246fded0bbacc195e5945d22230a76c7d09c1e0f777919dc1d7bb3b61c96db908997c11bde93e6d6bcb8b193b688b377b5071decdb343da58917c2bcecd6d4f50cdf8eda"}) [ 339.035345] CPU: 1 PID: 10729 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 339.042418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.042424] Call Trace: [ 339.042446] dump_stack+0x138/0x19c [ 339.042467] should_fail.cold+0x10f/0x159 [ 339.042486] should_failslab+0xdb/0x130 [ 339.042517] kmem_cache_alloc+0x2d9/0x780 [ 339.042542] mmu_topup_memory_caches+0x86/0x320 [ 339.042562] kvm_mmu_load+0x21/0xd50 [ 339.042575] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 14:24:58 executing program 2: clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = gettid() rt_sigtimedwait(&(0x7f0000000100), 0x0, 0x0, 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x0) wait4(0x0, 0x0, 0x0, 0x0) ptrace(0x4208, r0) tkill(r0, 0x12) [ 339.042598] vcpu_enter_guest+0x2ea0/0x5270 [ 339.042615] ? save_trace+0x290/0x290 [ 339.042627] ? lock_downgrade+0x6e0/0x6e0 [ 339.042644] ? find_held_lock+0x100/0x130 [ 339.042660] ? emulator_read_emulated+0x50/0x50 [ 339.042672] ? lock_acquire+0x16f/0x430 [ 339.042686] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 339.042706] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 339.042717] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 339.042738] kvm_vcpu_ioctl+0x401/0xd10 [ 339.042754] ? kvm_vcpu_block+0xbc0/0xbc0 [ 339.042765] ? trace_hardirqs_on+0x10/0x10 [ 339.042777] ? __f_unlock_pos+0x19/0x20 [ 339.042792] ? save_trace+0x290/0x290 [ 339.042804] ? __f_unlock_pos+0x19/0x20 [ 339.042818] ? __fget+0x210/0x370 [ 339.042830] ? find_held_lock+0x35/0x130 [ 339.042841] ? __fget+0x210/0x370 [ 339.042855] ? kvm_vcpu_block+0xbc0/0xbc0 [ 339.042866] do_vfs_ioctl+0x7b9/0x1070 [ 339.042881] ? selinux_file_mprotect+0x5d0/0x5d0 [ 339.042892] ? lock_downgrade+0x6e0/0x6e0 [ 339.042904] ? ioctl_preallocate+0x1c0/0x1c0 [ 339.042918] ? __fget+0x237/0x370 [ 339.042937] ? security_file_ioctl+0x8f/0xc0 [ 339.042952] SyS_ioctl+0x8f/0xc0 [ 339.042964] ? do_vfs_ioctl+0x1070/0x1070 [ 339.042979] do_syscall_64+0x1eb/0x630 [ 339.042991] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.043012] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 339.043022] RIP: 0033:0x458c29 [ 339.043029] RSP: 002b:00007f952f8f5c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.043043] RAX: ffffffffffffffda RBX: 00007f952f8f5c90 RCX: 0000000000458c29 14:24:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 339.043051] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 339.043058] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 339.043065] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8f66d4 [ 339.043073] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:24:58 executing program 0 (fault-call:7 fault-nth:22): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:24:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) syz_open_dev$adsp(&(0x7f0000000000)='/dev/adsp#\x00', 0x6, 0x100) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x101000, 0x0) syz_mount_image$bfs(&(0x7f0000000140)='bfs\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x3, &(0x7f0000000340)=[{&(0x7f0000001280)="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", 0x1000, 0x7}, {&(0x7f00000001c0)="b6a7a97f17919ef3accb8452ff84f11e6f4692ec02b31dfdd8f38d9191906ee6f54b9de41d80265fef7f0f5038d2ad309628552257ea8fc1dd07492760fa8497a5eee967fc2bb793f875651b34ed4f92d7c6cb940db81ad5fec2c28152cdd815d72af2b3e5d66c6f3c2536fb3a5ffd830aa2a3c80e", 0x75, 0x1}, {&(0x7f0000000240)="7875feb7c2c451e40833caa6678a71fe1b85a66cb93435afb8e2a5dcdb555d42b95151a5fbd412895efd8a8abde6f25e046d3e25586dd5236af746d4034aa332dfe46161a39c34a1316d43f1321cf9671714b286ae7acf4b898a38e7bebbe8b69f2d301ea014602b0c6e7b4fa07f6922d22b4e62c21f975d855634e20def36cde5384cd67852828328b0f2cdd7393056b8bf44cdada65055b3eb964c7173e273d60b188efd3bf66e43ba2aeb3e1ca616c566dde6ef484435642211e5c24ecc83d11925109e623addc5e6753eaa53feaa836c34e6e1ef7fc5ed6849312d626f4f", 0xe0, 0x8}], 0x2, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$sock_bt_cmtp_CMTPCONNADD(r3, 0x400443c8, &(0x7f0000000080)={r1, 0xfb}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 339.452042] FAULT_INJECTION: forcing a failure. [ 339.452042] name failslab, interval 1, probability 0, space 0, times 0 [ 339.510300] CPU: 0 PID: 10754 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 339.517449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.526833] Call Trace: [ 339.529452] dump_stack+0x138/0x19c [ 339.533110] should_fail.cold+0x10f/0x159 [ 339.537294] should_failslab+0xdb/0x130 [ 339.537312] kmem_cache_alloc+0x2d9/0x780 [ 339.537335] mmu_topup_memory_caches+0x86/0x320 [ 339.537353] kvm_mmu_load+0x21/0xd50 [ 339.537365] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 339.537381] ? vcpu_enter_guest+0x20f0/0x5270 [ 339.551484] vcpu_enter_guest+0x2ea0/0x5270 [ 339.551518] ? emulator_read_emulated+0x50/0x50 [ 339.551531] ? lock_acquire+0x16f/0x430 [ 339.551543] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 339.551561] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 339.551572] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 339.551597] kvm_vcpu_ioctl+0x401/0xd10 [ 339.551608] ? kvm_vcpu_block+0xbc0/0xbc0 [ 339.551618] ? trace_hardirqs_on+0x10/0x10 [ 339.551629] ? __f_unlock_pos+0x19/0x20 [ 339.551640] ? save_trace+0x290/0x290 [ 339.551648] ? __f_unlock_pos+0x19/0x20 [ 339.551659] ? __fget+0x210/0x370 [ 339.551670] ? find_held_lock+0x35/0x130 [ 339.551679] ? __fget+0x210/0x370 [ 339.551692] ? kvm_vcpu_block+0xbc0/0xbc0 [ 339.569085] do_vfs_ioctl+0x7b9/0x1070 [ 339.569102] ? selinux_file_mprotect+0x5d0/0x5d0 [ 339.569115] ? lock_downgrade+0x6e0/0x6e0 [ 339.569128] ? ioctl_preallocate+0x1c0/0x1c0 [ 339.569143] ? __fget+0x237/0x370 [ 339.569163] ? security_file_ioctl+0x8f/0xc0 [ 339.569177] SyS_ioctl+0x8f/0xc0 [ 339.569187] ? do_vfs_ioctl+0x1070/0x1070 [ 339.569209] do_syscall_64+0x1eb/0x630 [ 339.597846] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.597868] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 339.597877] RIP: 0033:0x458c29 [ 339.597882] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 339.597895] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 14:24:58 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) [ 339.597901] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 339.597907] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 339.597914] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 339.597920] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 [ 339.644184] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=a9a7b600) [ 339.816710] BFS-fs: bfs_fill_super(): No BFS filesystem on loop5 (magic=a9a7b600) 14:25:01 executing program 4: pipe(&(0x7f0000000040)={0xffffffffffffffff}) setsockopt$inet_udp_int(r0, 0x11, 0x6f, &(0x7f00000000c0)=0x80, 0x4) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r4, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:25:01 executing program 0 (fault-call:7 fault-nth:23): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:25:01 executing program 5: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0xc953782df40a3613, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x6, 0x7fff, 0x7}) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:01 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:25:01 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") r1 = creat(&(0x7f00000000c0)='./bus\x00', 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000100)='./bus\x00', &(0x7f0000000180)='trusted.overlay.opaque\x00', 0x0, 0x0, 0x0) setxattr$security_capability(&(0x7f0000000000)='./bus\x00', &(0x7f0000000040)='security.capability\x00', &(0x7f0000000140)=@v2, 0x14, 0x0) write$eventfd(r1, &(0x7f0000000300), 0x8) 14:25:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140)='/dev/null\x00', 0x81, 0x0) setsockopt$RDS_GET_MR_FOR_DEST(r3, 0x114, 0x7, &(0x7f0000000280)={@pppoe={0x18, 0x0, {0x4, @local, 'dummy0\x00'}}, {&(0x7f0000000180)=""/175, 0xaf}, &(0x7f0000000240)}, 0xa0) r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x800, 0x0) ioctl$CAPI_GET_FLAGS(r4, 0x80044323, &(0x7f00000000c0)) r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r5, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) setsockopt$SO_RDS_TRANSPORT(r4, 0x114, 0x8, &(0x7f0000000100)=0x3, 0x4) [ 342.067482] FAULT_INJECTION: forcing a failure. [ 342.067482] name failslab, interval 1, probability 0, space 0, times 0 [ 342.096925] CPU: 0 PID: 10789 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 342.104415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.104421] Call Trace: [ 342.104445] dump_stack+0x138/0x19c [ 342.104468] should_fail.cold+0x10f/0x159 [ 342.104491] should_failslab+0xdb/0x130 [ 342.104507] kmem_cache_alloc+0x2d9/0x780 [ 342.104531] mmu_topup_memory_caches+0x86/0x320 [ 342.104553] kvm_mmu_load+0x21/0xd50 [ 342.116700] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 342.126579] ? vcpu_enter_guest+0x20f0/0x5270 [ 342.126604] vcpu_enter_guest+0x2ea0/0x5270 [ 342.126626] ? emulator_read_emulated+0x50/0x50 [ 342.126639] ? lock_acquire+0x16f/0x430 14:25:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x1, 0x1008}) [ 342.126651] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 342.126669] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 342.126679] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 342.126698] kvm_vcpu_ioctl+0x401/0xd10 [ 342.134846] ? kvm_vcpu_block+0xbc0/0xbc0 [ 342.134859] ? trace_hardirqs_on+0x10/0x10 [ 342.134870] ? __f_unlock_pos+0x19/0x20 [ 342.134883] ? save_trace+0x290/0x290 [ 342.134893] ? __f_unlock_pos+0x19/0x20 [ 342.134905] ? __fget+0x210/0x370 [ 342.134916] ? find_held_lock+0x35/0x130 [ 342.134926] ? __fget+0x210/0x370 [ 342.134940] ? kvm_vcpu_block+0xbc0/0xbc0 [ 342.134952] do_vfs_ioctl+0x7b9/0x1070 [ 342.134965] ? selinux_file_mprotect+0x5d0/0x5d0 [ 342.134975] ? lock_downgrade+0x6e0/0x6e0 [ 342.134987] ? ioctl_preallocate+0x1c0/0x1c0 [ 342.143394] ? __fget+0x237/0x370 [ 342.143415] ? security_file_ioctl+0x8f/0xc0 [ 342.143430] SyS_ioctl+0x8f/0xc0 [ 342.143441] ? do_vfs_ioctl+0x1070/0x1070 [ 342.143455] do_syscall_64+0x1eb/0x630 [ 342.143465] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.143485] entry_SYSCALL_64_after_hwframe+0x42/0xb7 14:25:01 executing program 2: r0 = socket$inet6(0xa, 0x40000000000001, 0x0) bind$inet6(r0, &(0x7f000044f000)={0xa, 0x4e20, 0x0, @ipv4}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x2b0, &(0x7f0000007000)={@local, @empty=[0x0, 0x4888], [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}, @multicast1}, @tcp={{0x0, 0x4e20, 0x42424242, 0x42424242, 0x0, 0x0, 0x5, 0x10}}}}}}, 0x0) [ 342.143510] RIP: 0033:0x458c29 [ 342.152753] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 342.152766] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 342.152772] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 342.152778] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 342.152785] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 342.152792] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:25:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:01 executing program 2: r0 = open(&(0x7f0000000040)='./file0\x00', 0x143042, 0x0) write$P9_RREMOVE(0xffffffffffffffff, 0x0, 0xfffffffffffffe5b) r1 = gettid() timer_create(0x0, &(0x7f0000044000)={0x0, 0x12}, &(0x7f0000044000)) write$P9_RMKDIR(0xffffffffffffffff, 0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x1c9c380}, {0x0, 0x9}}, 0x0) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0) ioctl$KDGETLED(0xffffffffffffffff, 0x4b31, 0x0) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f00000000c0)={0x7, 0x5, 0x6, 0x0, 0x0, [{r0, 0x0, 0x2330000000000000}, {r0, 0x0, 0x4}, {r0, 0x0, 0x3ff}, {0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, {r0, 0x0, 0x100000001}, {r0, 0x0, 0x101}]}) write$nbd(r0, 0x0, 0xfffffffffffffe0a) ptrace$peek(0x3, r1, &(0x7f0000000000)) tkill(r1, 0x1000000000016) 14:25:01 executing program 2: mknod$loop(&(0x7f0000000100)='./file0\x00', 0x0, 0xffffffffffffffff) lsetxattr$security_capability(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='security.capability\x00', 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='trusted.overlay.upper\x00', &(0x7f00000001c0)={0x0, 0xfb, 0x9, 0x0, 0x0, "281df1e4e988b922f9c96376c07308ad"}, 0x15, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='trusted.overlay.upper\x00', 0x0, 0x0, 0x0) 14:25:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x1f) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000000)={0x8010009, 0x8}) 14:25:01 executing program 2: r0 = socket(0x1, 0x1, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) fsetxattr$security_evm(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, 0x0, 0x131) 14:25:01 executing program 0 (fault-call:7 fault-nth:24): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:25:01 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001a00)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000300)={'nr0\x01\x00', 0x1132}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$kcm(0x29, 0x300000000000005, 0x0) ioctl$sock_inet_tcp_SIOCATMARK(0xffffffffffffffff, 0x8905, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000500)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xec\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\r\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf5?\x8bk9fx\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4l\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93m\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83\xf2\xf3\xcf7\x8aCZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x982\xeck+8Dk;\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xda7\xfe\xcc\x14\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.68\xa4\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xe0u\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xfe>\r&') 14:25:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cgroup.stat\x00', 0x0, 0x0) ioctl$SG_GET_REQUEST_TABLE(r3, 0x2286, &(0x7f00000001c0)) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:02 executing program 3: mkdir(&(0x7f0000000bc0)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0)='proc\x00', 0x0, 0x0) r0 = open$dir(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x0) 14:25:02 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:25:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/kvm\x00', 0x0, 0x0) openat$apparmor_task_exec(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/exec\x00', 0x2, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = semget$private(0x0, 0x0, 0x10) r4 = syz_open_dev$mice(&(0x7f00000000c0)='/dev/input/mice\x00', 0x0, 0x40000) accept$inet(r4, &(0x7f0000000100)={0x2, 0x0, @multicast1}, &(0x7f0000000140)=0x10) semctl$GETNCNT(r3, 0x1, 0xe, &(0x7f0000000040)=""/14) r5 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r5, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) 14:25:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffec7) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={0x0, r0}, 0x14) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:25:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 343.003492] FAULT_INJECTION: forcing a failure. [ 343.003492] name failslab, interval 1, probability 0, space 0, times 0 [ 343.063353] CPU: 0 PID: 10845 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 343.070531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.079909] Call Trace: [ 343.079938] dump_stack+0x138/0x19c [ 343.079959] should_fail.cold+0x10f/0x159 [ 343.079981] should_failslab+0xdb/0x130 [ 343.079998] kmem_cache_alloc+0x2d9/0x780 [ 343.080020] mmu_topup_memory_caches+0x86/0x320 [ 343.080036] kvm_mmu_load+0x21/0xd50 [ 343.080050] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 343.080069] vcpu_enter_guest+0x2ea0/0x5270 [ 343.086316] ? save_trace+0x290/0x290 [ 343.086327] ? lock_downgrade+0x6e0/0x6e0 [ 343.086339] ? find_held_lock+0x100/0x130 [ 343.086354] ? emulator_read_emulated+0x50/0x50 [ 343.086363] ? lock_acquire+0x16f/0x430 [ 343.086375] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 343.086394] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 343.086404] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 343.086424] kvm_vcpu_ioctl+0x401/0xd10 [ 343.086438] ? kvm_vcpu_block+0xbc0/0xbc0 [ 343.160310] ? trace_hardirqs_on+0x10/0x10 [ 343.164568] ? __f_unlock_pos+0x19/0x20 [ 343.168572] ? save_trace+0x290/0x290 [ 343.172566] ? __f_unlock_pos+0x19/0x20 [ 343.176569] ? __fget+0x210/0x370 [ 343.180031] ? find_held_lock+0x35/0x130 [ 343.184098] ? __fget+0x210/0x370 [ 343.187558] ? kvm_vcpu_block+0xbc0/0xbc0 [ 343.191725] do_vfs_ioctl+0x7b9/0x1070 [ 343.195626] ? selinux_file_mprotect+0x5d0/0x5d0 [ 343.200382] ? lock_downgrade+0x6e0/0x6e0 [ 343.204540] ? ioctl_preallocate+0x1c0/0x1c0 [ 343.208961] ? __fget+0x237/0x370 [ 343.212420] ? security_file_ioctl+0x8f/0xc0 [ 343.216828] SyS_ioctl+0x8f/0xc0 [ 343.220227] ? do_vfs_ioctl+0x1070/0x1070 [ 343.224382] do_syscall_64+0x1eb/0x630 [ 343.228355] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.233214] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 343.238404] RIP: 0033:0x458c29 [ 343.241592] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 343.249309] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 343.256771] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 343.264045] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 343.271314] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 343.278686] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 [ 343.302981] device nr0 entered promiscuous mode 14:25:02 executing program 3: ioctl(0xffffffffffffffff, 0x0, 0x0) clone(0x2002002102001ff8, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) msgsnd(0x0, &(0x7f0000000000)=ANY=[], 0x0, 0x0) 14:25:02 executing program 0 (fault-call:7 fault-nth:25): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:25:02 executing program 3: recvmmsg(0xffffffffffffffff, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f0000000680)=""/190, 0xbe}], 0x1, 0x0, 0x25d}}], 0xf4, 0x0, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) getpgrp(0xffffffffffffffff) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000300), 0x4) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/tcp6\x00') perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x400000000001, 0x0) prctl$PR_GET_TID_ADDRESS(0x28, 0x0) setsockopt$IP_VS_SO_SET_EDITDEST(r1, 0x0, 0x489, &(0x7f0000000280)={{0x67, @multicast1, 0x0, 0x2, 'lc\x00', 0x20, 0x8, 0x13}, {@multicast1}}, 0x44) umount2(0x0, 0x0) prctl$PR_SET_TIMERSLACK(0x1d, 0x0) bind$inet6(r2, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x2, @loopback}, 0x1c) dup2(0xffffffffffffffff, 0xffffffffffffffff) dup2(0xffffffffffffffff, 0xffffffffffffffff) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0) getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a1, 0x0) setsockopt$inet6_MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xca, 0x0, 0x0) sendto$inet6(r2, 0x0, 0x0, 0x20000008, &(0x7f00008d4fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x1) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f00000001c0)=0x4, 0x4) timerfd_gettime(r3, &(0x7f0000000040)) ftruncate(r3, 0x80003) ioctl$sock_inet_SIOCSIFPFLAGS(r1, 0x8934, &(0x7f0000000200)={'veth1\x00', 0x81}) setsockopt$IP_VS_SO_SET_TIMEOUT(r2, 0x0, 0x48a, &(0x7f0000000180)={0x7, 0x0, 0x9}, 0xc) sendfile(r2, r3, &(0x7f00000000c0), 0x8000fffffffe) preadv(r1, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/169, 0x2aa}], 0x1, 0x0) [ 343.512643] FAULT_INJECTION: forcing a failure. [ 343.512643] name failslab, interval 1, probability 0, space 0, times 0 [ 343.533178] CPU: 0 PID: 10870 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 343.540229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.540235] Call Trace: [ 343.540258] dump_stack+0x138/0x19c [ 343.540280] should_fail.cold+0x10f/0x159 [ 343.540300] should_failslab+0xdb/0x130 [ 343.540317] kmem_cache_alloc+0x2d9/0x780 [ 343.540340] mmu_topup_memory_caches+0x86/0x320 [ 343.540360] kvm_mmu_load+0x21/0xd50 [ 343.540375] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 343.540398] vcpu_enter_guest+0x2ea0/0x5270 [ 343.540413] ? save_trace+0x290/0x290 [ 343.540426] ? lock_downgrade+0x6e0/0x6e0 [ 343.540441] ? find_held_lock+0x100/0x130 [ 343.540465] ? emulator_read_emulated+0x50/0x50 [ 343.560327] ? lock_acquire+0x16f/0x430 14:25:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x30a00, 0x0) ioctl$SIOCAX25DELFWD(r3, 0x89eb, &(0x7f0000000040)={@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:02 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") syz_mount_image$hfs(&(0x7f00000001c0)='hfs\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={[{@dir_umask={'dir_umask', 0x3d, 0x8cffffff}}]}) [ 343.560341] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 343.560359] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 343.560370] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 343.560388] kvm_vcpu_ioctl+0x401/0xd10 [ 343.560400] ? kvm_vcpu_block+0xbc0/0xbc0 [ 343.560411] ? trace_hardirqs_on+0x10/0x10 [ 343.560422] ? __f_unlock_pos+0x19/0x20 [ 343.560435] ? save_trace+0x290/0x290 [ 343.573362] ? __f_unlock_pos+0x19/0x20 [ 343.573375] ? __fget+0x210/0x370 [ 343.573388] ? find_held_lock+0x35/0x130 [ 343.573399] ? __fget+0x210/0x370 [ 343.573416] ? kvm_vcpu_block+0xbc0/0xbc0 [ 343.573427] do_vfs_ioctl+0x7b9/0x1070 [ 343.573448] ? selinux_file_mprotect+0x5d0/0x5d0 [ 343.581942] ? lock_downgrade+0x6e0/0x6e0 [ 343.581957] ? ioctl_preallocate+0x1c0/0x1c0 [ 343.581971] ? __fget+0x237/0x370 [ 343.581991] ? security_file_ioctl+0x8f/0xc0 [ 343.582002] SyS_ioctl+0x8f/0xc0 [ 343.582012] ? do_vfs_ioctl+0x1070/0x1070 [ 343.582025] do_syscall_64+0x1eb/0x630 [ 343.582035] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.582055] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 343.582073] RIP: 0033:0x458c29 [ 343.590222] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 343.590235] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 343.590241] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 343.590246] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 343.590251] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 343.590256] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 [ 343.749067] hfs: dir_umask requires a value [ 343.769957] hfs: unable to parse mount options [ 343.856869] hfs: dir_umask requires a value [ 343.871030] hfs: unable to parse mount options 14:25:03 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="0adc1f123c123f319bc070") r1 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20}, 0x1b) syz_emit_ethernet(0x74, &(0x7f0000000100)={@local, @link_local, [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd]}, @local, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) 14:25:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_open_dev$vcsa(&(0x7f0000000280)='/dev/vcsa#\x00', 0xfffffffffffff649, 0x2) setsockopt$inet_udp_encap(r2, 0x11, 0x64, &(0x7f00000002c0)=0x5, 0x4) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) r4 = openat$selinux_avc_cache_threshold(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/avc/cache_threshold\x00', 0x2, 0x0) r5 = mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000002, 0x110, 0xffffffffffffffff, 0x0) r6 = mmap$binder(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1, 0x10, 0xffffffffffffff9c, 0x0) ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000240)={0x58, 0x0, &(0x7f00000001c0)=[@request_death={0x400c630e, 0x1, 0x1}, @exit_looper, @reply={0x40406301, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x50, 0x8, &(0x7f0000000040)=[@fda={0x66646185, 0xa, 0x3, 0x2e}, @flat={0x77682a85, 0x1, r5, 0x3}, @flat={0x0, 0x10a, r6, 0x4}], &(0x7f00000000c0)=[0x68]}}], 0x3c, 0x0, &(0x7f0000000140)="65be17478e92dfe12282edd8cd69e0248b7aecccf3bbde86f5629fb41744ea71f93074eaf5df81e8bae7d321e10310c93002a76569d108936eb79162"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:03 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:25:03 executing program 0 (fault-call:7 fault-nth:26): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:25:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ASSIGN_SET_INTX_MASK(r1, 0x4040aea4, &(0x7f0000000040)={0x7fa, 0x4, 0xc3, 0x1, 0x13}) dup2(r0, r0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snapshot\x00', 0x8200, 0x0) write$P9_RLOPEN(r4, &(0x7f0000000100)={0x18, 0xd, 0x1, {{0x9, 0x3, 0x2}, 0x48}}, 0x18) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x4e20, @loopback}, {0x2, 0x4e20, @multicast1}, {0x2, 0x97e, @multicast2}, 0x40, 0x0, 0x0, 0x0, 0x7, &(0x7f00000000c0)='eql\x00', 0x101, 0x7439, 0x4}) 14:25:03 executing program 3: r0 = socket$inet(0x2, 0x1, 0x0) r1 = dup(r0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @broadcast}, 0x10) connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000000)=0x100, 0xfecf) sendto$inet(r1, &(0x7f0000000200)="96", 0x1, 0x3fff, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000266ffc), 0x4) sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000007a00)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB], 0x1}}, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)={0x9}, 0x14}}, 0x811) 14:25:03 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000180)=0x1ff, 0x4) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f00000008c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00000000c0), 0x2ba) recvmsg(r0, &(0x7f00000005c0)={&(0x7f0000000040)=@nfc, 0x80, &(0x7f0000000740)=[{&(0x7f0000003ac0)=""/4096, 0xd400}], 0x1, &(0x7f0000000200)=""/20, 0x14}, 0x100) write$binfmt_elf64(r0, &(0x7f0000002300)=ANY=[@ANYRES64], 0x1000001bd) shutdown(r0, 0x1) [ 344.157612] FAULT_INJECTION: forcing a failure. [ 344.157612] name failslab, interval 1, probability 0, space 0, times 0 [ 344.175457] CPU: 1 PID: 10914 Comm: syz-executor.0 Not tainted 4.14.112 #2 [ 344.182526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.192206] Call Trace: [ 344.192235] dump_stack+0x138/0x19c [ 344.192272] should_fail.cold+0x10f/0x159 [ 344.192293] should_failslab+0xdb/0x130 [ 344.192309] kmem_cache_alloc+0x2d9/0x780 [ 344.192334] mmu_topup_memory_caches+0x86/0x320 [ 344.192360] kvm_mmu_load+0x21/0xd50 [ 344.192382] ? kvm_lapic_enable_pv_eoi+0xc0/0xc0 [ 344.192404] vcpu_enter_guest+0x2ea0/0x5270 [ 344.192421] ? save_trace+0x290/0x290 [ 344.192439] ? lock_downgrade+0x6e0/0x6e0 [ 344.202835] ? find_held_lock+0x100/0x130 [ 344.202852] ? emulator_read_emulated+0x50/0x50 [ 344.202870] ? lock_acquire+0x16f/0x430 [ 344.202881] ? kvm_arch_vcpu_ioctl_run+0x151/0x1010 [ 344.202897] kvm_arch_vcpu_ioctl_run+0x31a/0x1010 14:25:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0x2000, 0x0) recvfrom$x25(r3, &(0x7f0000001280)=""/4096, 0x1000, 0x40012042, &(0x7f00000001c0)={0x9, @remote={[], 0x2}}, 0x12) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96f3a40c8a4d4412a763b00040000000000003c5ca206c047eeee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87705c0c1dbc75d7ea4df10010174a3ac8694525952f44500a1f0db509c32cace842c28f37f06e4ea907000000c379f9cc58bf69fc384e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d4bf6b21224b553bf79a1f5c5dc07fad6317e799f586304a30b97077f1c131045cbc11c4562d22db88d0edc55aee171cc04d96d9ec2db08478f3485dbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38d63cd717a6ff8df8d46099b1f58e0689d6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4cafb4c0a4f72445ef10dcd204000000000000008d5b00000000364673dc6bca35ea5a2ff23c4bb5c5e8976dcac779ff00000000c3b7c12b4e085afe28a774b99d389061385442178100000053c419ce31054182fd098af7b7f1b1152c691611dc97558d4b755cb783978d9859b0537b05b62304000000931749036ad349ef0c8694c4b790d59be3c3fe7aeb8af40200000046ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b254770000007bba1ca0a845ad95dd62ac2b0cc0ab26f08336ea1a33b79c095b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a30a28ef529a80047fe17dee6f6347bdc78b1ca9d7401e9c5762ab367c0de2659cc38d2f33ddd86e0597d33369fada119b5132145fa4525c488c7fffd6ceda6e9a02ebd9fced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0608a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3ef7b1dbb04989c3f9f387b3c985c39b1d31201d3809bac8c657e39f4f692613e2838163be8312ff67c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c888c9ff36056cc4ac250021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975cc1381b1cec6ddaa76e186719d809160100"}) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x15, &(0x7f0000000080)='\'posix_acl_access*!$\x00'}, 0x30) tgkill(r4, r5, 0x39) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) [ 344.202914] ? kvm_arch_vcpu_ioctl_run+0x31a/0x1010 [ 344.202934] kvm_vcpu_ioctl+0x401/0xd10 [ 344.202946] ? kvm_vcpu_block+0xbc0/0xbc0 [ 344.202959] ? trace_hardirqs_on+0x10/0x10 [ 344.211175] ? __f_unlock_pos+0x19/0x20 [ 344.211196] ? save_trace+0x290/0x290 [ 344.211206] ? __f_unlock_pos+0x19/0x20 [ 344.211222] ? __fget+0x210/0x370 [ 344.211234] ? find_held_lock+0x35/0x130 [ 344.211245] ? __fget+0x210/0x370 [ 344.211262] ? kvm_vcpu_block+0xbc0/0xbc0 [ 344.211279] do_vfs_ioctl+0x7b9/0x1070 [ 344.211293] ? selinux_file_mprotect+0x5d0/0x5d0 [ 344.211303] ? lock_downgrade+0x6e0/0x6e0 [ 344.211314] ? ioctl_preallocate+0x1c0/0x1c0 [ 344.211326] ? __fget+0x237/0x370 [ 344.211345] ? security_file_ioctl+0x8f/0xc0 [ 344.211357] SyS_ioctl+0x8f/0xc0 [ 344.211367] ? do_vfs_ioctl+0x1070/0x1070 [ 344.211381] do_syscall_64+0x1eb/0x630 [ 344.211395] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 344.229427] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 344.229441] RIP: 0033:0x458c29 [ 344.229448] RSP: 002b:00007f952f8d3c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 344.229466] RAX: ffffffffffffffda RBX: 00007f952f8d3c90 RCX: 0000000000458c29 [ 344.229472] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 344.229482] RBP: 000000000073bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 344.229488] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f952f8d46d4 [ 344.260195] R13: 00000000004c1baf R14: 00000000004d43d0 R15: 0000000000000007 14:25:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x2, 0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x4, 0x80) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000140)={"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"}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000e80)={"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"}) gettid() ioctl$KVM_IRQ_LINE_STATUS(r2, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:03 executing program 3: r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) bind$rose(r0, &(0x7f0000000000)=@short={0xb, @dev, @null}, 0x1c) 14:25:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x3, 0x40) ioctl$sock_bt_hidp_HIDPGETCONNLIST(r2, 0x800448d2, &(0x7f0000000040)={0x5, &(0x7f00000001c0)=[{}, {}, {}, {}, {}]}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000500)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) lremovexattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=@random={'os2.', '/dev/usbmon#\x00'}) 14:25:03 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x10000004e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @local}, 0x10) 14:25:03 executing program 2: r0 = socket$kcm(0x11, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0) openat$cgroup(0xffffffffffffffff, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0) openat$cgroup(0xffffffffffffff9c, 0x0, 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r1, 0x0, 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0x14, &(0x7f0000000000), 0x4) sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@caif=@rfm={0x25, 0x5, "8de06f55c742ae7c2bb7ed7767c245f6"}, 0x80, 0x0}, 0x0) 14:25:03 executing program 1: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffc) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x601, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, @bond={{0xc, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0) 14:25:03 executing program 0 (fault-call:7 fault-nth:27): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14:25:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x22000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) [ 344.875926] ================================================================== [ 344.883641] BUG: KASAN: use-after-free in erspan_build_header+0x392/0x3b0 [ 344.883664] Read of size 2 at addr ffff88808cec904b by task syz-executor.2/10945 [ 344.883667] [ 344.883680] CPU: 1 PID: 10945 Comm: syz-executor.2 Not tainted 4.14.112 #2 [ 344.883687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.883691] Call Trace: [ 344.883711] dump_stack+0x138/0x19c [ 344.883728] ? erspan_build_header+0x392/0x3b0 [ 344.883753] print_address_description.cold+0x7c/0x1dc [ 344.883771] ? erspan_build_header+0x392/0x3b0 [ 344.883782] kasan_report.cold+0xaf/0x2b5 [ 344.883798] __asan_report_load_n_noabort+0xf/0x20 [ 344.883816] erspan_build_header+0x392/0x3b0 [ 344.883844] ? iptunnel_handle_offloads+0x2f3/0x500 [ 344.883862] erspan_xmit+0x3ec/0x11c0 [ 344.883878] ? __gre_xmit+0x890/0x890 [ 344.883897] ? lock_acquire+0x1ea/0x430 [ 344.919395] packet_direct_xmit+0x438/0x640 [ 344.927595] packet_sendmsg+0x31e1/0x5990 [ 344.927614] ? retint_kernel+0x2d/0x2d [ 344.927642] ? packet_notifier+0x770/0x770 [ 344.938211] ? copy_msghdr_from_user+0x292/0x3f0 [ 344.938232] ? security_socket_sendmsg+0x8f/0xc0 [ 344.951743] ? packet_notifier+0x770/0x770 [ 344.951759] sock_sendmsg+0xd0/0x110 [ 344.951778] ___sys_sendmsg+0x70c/0x850 [ 344.951791] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 344.951803] ? __fget+0x210/0x370 [ 344.951825] ? find_held_lock+0x35/0x130 [ 345.019833] ? __fget+0x210/0x370 [ 345.023314] ? lock_downgrade+0x6e0/0x6e0 [ 345.027487] ? __fget+0x237/0x370 [ 345.030962] ? __fdget+0x1b/0x20 [ 345.034477] ? sockfd_lookup_light+0xb4/0x160 [ 345.039008] __sys_sendmsg+0xb9/0x140 [ 345.042864] ? SyS_shutdown+0x180/0x180 [ 345.046974] ? put_timespec64+0xb4/0x100 [ 345.051120] ? SyS_clock_gettime+0xfd/0x190 [ 345.055475] SyS_sendmsg+0x2d/0x50 [ 345.059046] ? __sys_sendmsg+0x140/0x140 [ 345.063120] do_syscall_64+0x1eb/0x630 [ 345.067107] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 345.071981] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 345.079648] RIP: 0033:0x458c29 [ 345.083026] RSP: 002b:00007fb3cf974c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 345.090948] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 345.098327] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 345.105611] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 345.113000] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb3cf9756d4 [ 345.120379] R13: 00000000004c64a3 R14: 00000000004dadd8 R15: 00000000ffffffff [ 345.127863] [ 345.129494] Allocated by task 10560: [ 345.133240] save_stack_trace+0x16/0x20 [ 345.137249] save_stack+0x45/0xd0 [ 345.140709] kasan_kmalloc+0xce/0xf0 [ 345.144432] kmem_cache_alloc_trace+0x152/0x790 [ 345.149311] snd_pcm_attach_substream+0x376/0xaa0 [ 345.154265] snd_pcm_open_substream+0x71/0x290 [ 345.158873] snd_pcm_oss_open.part.0+0x611/0x1120 [ 345.163763] snd_pcm_oss_open+0x37/0x50 [ 345.167749] soundcore_open+0x3f6/0x5a0 [ 345.171741] chrdev_open+0x209/0x590 [ 345.175653] do_dentry_open+0x73e/0xeb0 [ 345.179717] vfs_open+0x105/0x230 [ 345.183260] path_openat+0x8bd/0x3f70 [ 345.187074] do_filp_open+0x18e/0x250 [ 345.190885] do_sys_open+0x2c5/0x430 [ 345.194605] SyS_openat+0x30/0x40 [ 345.198077] do_syscall_64+0x1eb/0x630 [ 345.201981] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 345.207350] [ 345.209000] Freed by task 10555: [ 345.212650] save_stack_trace+0x16/0x20 [ 345.216622] save_stack+0x45/0xd0 [ 345.220248] kasan_slab_free+0x75/0xc0 [ 345.224143] kfree+0xcc/0x270 [ 345.227260] snd_pcm_detach_substream+0x1e9/0x380 [ 345.232204] snd_pcm_release_substream.part.0+0x21f/0x310 [ 345.237792] snd_pcm_release_substream+0x57/0x70 [ 345.242560] snd_pcm_oss_release_file.part.0+0x3d/0xa0 [ 345.247840] snd_pcm_oss_release+0x10b/0x280 [ 345.252265] __fput+0x277/0x7a0 [ 345.255560] ____fput+0x16/0x20 [ 345.258844] task_work_run+0x119/0x190 [ 345.262744] exit_to_usermode_loop+0x1da/0x220 [ 345.267334] do_syscall_64+0x4a9/0x630 [ 345.271228] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 345.276413] [ 345.278046] The buggy address belongs to the object at ffff88808cec8e40 [ 345.278046] which belongs to the cache kmalloc-2048 of size 2048 [ 345.290879] The buggy address is located 523 bytes inside of [ 345.290879] 2048-byte region [ffff88808cec8e40, ffff88808cec9640) [ 345.303381] The buggy address belongs to the page: [ 345.308318] page:ffffea000233b200 count:1 mapcount:0 mapping:ffff88808cec85c0 index:0x0 compound_mapcount: 0 [ 345.318386] flags: 0x1fffc0000008100(slab|head) [ 345.323080] raw: 01fffc0000008100 ffff88808cec85c0 0000000000000000 0000000100000003 [ 345.330985] raw: ffffea0002a38c20 ffffea00023068a0 ffff8880aa800c40 0000000000000000 [ 345.338870] page dumped because: kasan: bad access detected [ 345.344587] [ 345.346219] Memory state around the buggy address: [ 345.351162] ffff88808cec8f00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 345.358529] ffff88808cec8f80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 345.365913] >ffff88808cec9000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 345.373366] ^ [ 345.379079] ffff88808cec9080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 345.386642] ffff88808cec9100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 345.394002] ================================================================== [ 345.401372] Disabling lock debugging due to kernel taint [ 345.406957] Kernel panic - not syncing: panic_on_warn set ... [ 345.406957] [ 345.408075] kobject: 'loop5' (ffff8880a4ad0a60): kobject_uevent_env [ 345.414335] CPU: 1 PID: 10945 Comm: syz-executor.2 Tainted: G B 4.14.112 #2 14:25:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000000)={0x3}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000e80)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000100)={0x8, 0x8}) 14:25:04 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r0, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") unshare(0x2000400) r1 = socket$inet_smc(0x2b, 0x1, 0x0) getsockopt$inet_tcp_int(r1, 0x6, 0x24, 0x0, &(0x7f0000000200)) [ 345.414340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.414344] Call Trace: [ 345.414362] dump_stack+0x138/0x19c [ 345.414376] ? erspan_build_header+0x392/0x3b0 [ 345.433301] kobject: 'kvm' (ffff8880a6e12bd0): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 345.438503] panic+0x1f2/0x438 [ 345.438513] ? add_taint.cold+0x16/0x16 [ 345.438531] kasan_end_report+0x47/0x4f [ 345.438544] kasan_report.cold+0x136/0x2b5 14:25:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SMI(r2, 0xaeb7) r3 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl(r3, 0x1000008912, &(0x7f0000000000)="0adc1f123c123f319bd070") ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000003c0)={{}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, 0x8005001f, 0x0, 0x0, 0x28, 0x0, 0x6500}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 345.441326] kobject: 'loop5' (ffff8880a4ad0a60): fill_kobj_path: path = '/devices/virtual/block/loop5' [ 345.444845] __asan_report_load_n_noabort+0xf/0x20 [ 345.444857] erspan_build_header+0x392/0x3b0 [ 345.444876] ? iptunnel_handle_offloads+0x2f3/0x500 [ 345.476243] kobject: 'loop3' (ffff8880a4a220e0): kobject_uevent_env [ 345.483414] erspan_xmit+0x3ec/0x11c0 [ 345.483437] ? __gre_xmit+0x890/0x890 [ 345.483449] ? lock_acquire+0x1ea/0x430 [ 345.483462] packet_direct_xmit+0x438/0x640 [ 345.483472] packet_sendmsg+0x31e1/0x5990 [ 345.483484] ? retint_kernel+0x2d/0x2d [ 345.483502] ? packet_notifier+0x770/0x770 [ 345.483517] ? copy_msghdr_from_user+0x292/0x3f0 [ 345.483532] ? security_socket_sendmsg+0x8f/0xc0 [ 345.514212] kobject: 'loop3' (ffff8880a4a220e0): fill_kobj_path: path = '/devices/virtual/block/loop3' [ 345.515983] ? packet_notifier+0x770/0x770 [ 345.515996] sock_sendmsg+0xd0/0x110 [ 345.516007] ___sys_sendmsg+0x70c/0x850 [ 345.516026] ? copy_msghdr_from_user+0x3f0/0x3f0 [ 345.521307] kobject: 'kvm' (ffff8880a6e12bd0): kobject_uevent_env [ 345.524493] ? __fget+0x210/0x370 [ 345.524513] ? find_held_lock+0x35/0x130 [ 345.524523] ? __fget+0x210/0x370 [ 345.524536] ? lock_downgrade+0x6e0/0x6e0 [ 345.524550] ? __fget+0x237/0x370 [ 345.532869] kobject: 'kvm' (ffff8880a6e12bd0): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 345.537425] ? __fdget+0x1b/0x20 [ 345.537438] ? sockfd_lookup_light+0xb4/0x160 [ 345.537449] __sys_sendmsg+0xb9/0x140 [ 345.537462] ? SyS_shutdown+0x180/0x180 [ 345.547804] kobject: 'loop0' (ffff8880a4924ea0): kobject_uevent_env [ 345.551667] ? put_timespec64+0xb4/0x100 [ 345.551682] ? SyS_clock_gettime+0xfd/0x190 [ 345.551696] SyS_sendmsg+0x2d/0x50 [ 345.551704] ? __sys_sendmsg+0x140/0x140 [ 345.551715] do_syscall_64+0x1eb/0x630 [ 345.551723] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 345.551738] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 345.551746] RIP: 0033:0x458c29 [ 345.551751] RSP: 002b:00007fb3cf974c78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 345.551760] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000458c29 [ 345.551770] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 345.561277] kobject: 'kvm' (ffff8880a6e12bd0): kobject_uevent_env [ 345.563676] RBP: 000000000073bf00 R08: 0000000000000000 R09: 0000000000000000 [ 345.563682] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb3cf9756d4 [ 345.563688] R13: 00000000004c64a3 R14: 00000000004dadd8 R15: 00000000ffffffff [ 345.564704] Kernel Offset: disabled [ 345.721768] Rebooting in 86400 seconds..