00}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYBLOB="9c0000002500000229bd7002fbdbcb2500000000c38b2ffddad774f8b9210c6e3de0124a1b65fe9ad98181575afad048cf905c19f6d11d65c7faac10f9dfb2522ebea18b2226c2bce9141260e760a1a3f1f368daa2954b3aa0b406e4288f21334f1944be3d5f8d06285db976603be2bf56529e751b5a6be2c7a375092ebf5a044eb619", @ANYRES32=0x0, @ANYBLOB="020002000100000009000c0008000e0000000000340008801c0001001a3f0000fffbffff0000000001010000008000000800000014000200000004000100700005008100090019070e000100626c61636b686f6c6500000008000d000900000008000d00ff0700000800010061746d000a000100706669666f0000000800020002000000"], 0x9c}, 0x1, 0x0, 0x0, 0x80}, 0x4015) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder1\x00', 0x0, 0x0) (async) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) sendfile(r1, r3, &(0x7f0000000580)=0x3, 0x9) (async) write$binfmt_elf32(r2, &(0x7f0000000080)=ANY=[@ANYRES64=r0], 0xd8) 05:18:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async, rerun: 32) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) pipe(&(0x7f0000000040)={0xffffffffffffffff}) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f00000001c0)={0x2000, 0x100000}) (async, rerun: 64) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 64) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000000)={0x0, 0x0, 0x7, 0x200}) 05:18:49 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000001c0)) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1006.327332] x_tables: ip_tables: ah match: only valid for protocol 51 05:18:49 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) (async) memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) bind$inet(r0, &(0x7f00000005c0)={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x30400000}, 0xc, &(0x7f0000000100)={&(0x7f00000007c0)=ANY=[@ANYBLOB="9c0000002500000229bd7002fbdbcb2500000000c38b2ffddad774f8b9210c6e3de0124a1b65fe9ad98181575afad048cf905c19f6d11d65c7faac10f9dfb2522ebea18b2226c2bce9141260e760a1a3f1f368daa2954b3aa0b406e4288f21334f1944be3d5f8d06285db976603be2bf56529e751b5a6be2c7a375092ebf5a044eb619", @ANYRES32=0x0, @ANYBLOB="020002000100000009000c0008000e0000000000340008801c0001001a3f0000fffbffff0000000001010000008000000800000014000200000004000100700005008100090019070e000100626c61636b686f6c6500000008000d000900000008000d00ff0700000800010061746d000a000100706669666f0000000800020002000000"], 0x9c}, 0x1, 0x0, 0x0, 0x80}, 0x4015) (async) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder1\x00', 0x0, 0x0) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) sendfile(r1, r3, &(0x7f0000000580)=0x3, 0x9) write$binfmt_elf32(r2, &(0x7f0000000080)=ANY=[@ANYRES64=r0], 0xd8) 05:18:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000000)) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000240)) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)={0x5000, 0x12000}) 05:18:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00000000f53b11358cf5cb35c25baabd00"]) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f01cbc4e3296c1ec90f01c40f7841e10fc72fea7de5ffff35010f32b9800000c00f3235004000000f306508cb670fc75f00", 0x32}], 0x1, 0x0, &(0x7f0000000100)=[@cr4={0x1, 0x26024}], 0x1) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r2, r3, 0x80000) (async) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="00000000f53b11358cf5cb35c25baabd00"]) (async) syz_kvm_setup_cpu$x86(r4, r5, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f01cbc4e3296c1ec90f01c40f7841e10fc72fea7de5ffff35010f32b9800000c00f3235004000000f306508cb670fc75f00", 0x32}], 0x1, 0x0, &(0x7f0000000100)=[@cr4={0x1, 0x26024}], 0x1) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:49 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1}) 05:18:50 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:50 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="d7efb8666947f0d6311b46fd398911a569694268db83c907d6a34a195005bf4e10e9f06f67a2ab00884719b781fe2cf356ec529c76966202efb38c7afba432cc8ce6935a5fe498aa1122c1b0"], 0xd8) 05:18:50 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r3, r4, 0x80000) (async) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1}) (async) 05:18:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000001c0)) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) (async) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_NMI(r2, 0xae9a) (async) socket$vsock_stream(0x28, 0x1, 0x0) (async) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) (async) ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000001c0)) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) (async) 05:18:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r2, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r3 = dup3(r1, r2, 0x80000) pwritev2(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x2, 0x11000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000001c0)) 05:18:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f0000000100)=0x4) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1fb, 0x0, 0x4000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)={0xf000, 0x112000}) 05:18:50 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) (async) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="d7efb8666947f0d6311b46fd398911a569694268db83c907d6a34a195005bf4e10e9f06f67a2ab00884719b781fe2cf356ec529c76966202efb38c7afba432cc8ce6935a5fe498aa1122c1b0"], 0xd8) 05:18:50 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f0000000100)=0x4) (async) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1fb, 0x0, 0x4000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)={0xf000, 0x112000}) 05:18:50 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_DEVICE(r5, 0xc00caee0, &(0x7f0000000000)={0x4, 0xffffffffffffffff, 0x1}) 05:18:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r2, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) r3 = dup3(r1, r2, 0x80000) pwritev2(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x2, 0x11000}) (async, rerun: 64) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000001c0)) (rerun: 64) 05:18:50 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) (async) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="d7efb8666947f0d6311b46fd398911a569694268db83c907d6a34a195005bf4e10e9f06f67a2ab00884719b781fe2cf356ec529c76966202efb38c7afba432cc8ce6935a5fe498aa1122c1b0"], 0xd8) 05:18:50 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) (async, rerun: 32) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) (async) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_GET_SREGS(r0, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) r3 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f00000001c0)) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:18:51 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) r1 = memfd_create(&(0x7f0000000100)='.\x00', 0x4) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000140)={0x0, 0x5}) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x05\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc3j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x6) write$binfmt_elf32(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="d8053e84b531aa2cf23440527971c7c7eae8762389bfaf18c0c5c00e21acfcd86ac3184713dcd05c7a1f715804f83c427e47140dde367dcca1056e40e99b1ca4bb042eea485d943c7c2e0d994ef84e2d71959f120318f66603cf08070a56b112856f1704269c5d37e6592a29815cba3ccfbb4fa7d288fda616a56adf1e0dc659ec179b887c92ca328da607746ef2908300225109000000000000006cffd097529fc78002b77bc102d663194604729c9e72f59a09a5558cfa54b6facd448725ff32a659e7c526cafa80e63891c85ec8bdab7e7494c8956514e4897a5f3e0eb61d927c5a54f59f5d78a8e60327daa604e56f7a909a00"/255], 0xd8) 05:18:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async, rerun: 32) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x200, 0x0) (rerun: 32) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r2, 0x4008ae48, &(0x7f0000000100)=0x4) (async) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x1fb, 0x0, 0x4000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)={0xf000, 0x112000}) 05:18:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r2, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r3 = dup3(r1, r2, 0x80000) pwritev2(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x2, 0x11000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r2, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r1, r2, 0x80000) (async) pwritev2(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x2, 0x11000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:51 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="61fb3abc43abc7d2a91791d2b7", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0fc6fc92cb9265046b2f0972034bd71e4b1d6aef9ec80d15fce391dba5ff3cfe855b8fd980e9b0862c00"]) read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB='\x00'/14]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r4}}, './file0\x00'}) 05:18:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:51 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) (async) r1 = memfd_create(&(0x7f0000000100)='.\x00', 0x4) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000140)={0x0, 0x5}) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x05\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc3j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x6) write$binfmt_elf32(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="d8053e84b531aa2cf23440527971c7c7eae8762389bfaf18c0c5c00e21acfcd86ac3184713dcd05c7a1f715804f83c427e47140dde367dcca1056e40e99b1ca4bb042eea485d943c7c2e0d994ef84e2d71959f120318f66603cf08070a56b112856f1704269c5d37e6592a29815cba3ccfbb4fa7d288fda616a56adf1e0dc659ec179b887c92ca328da607746ef2908300225109000000000000006cffd097529fc78002b77bc102d663194604729c9e72f59a09a5558cfa54b6facd448725ff32a659e7c526cafa80e63891c85ec8bdab7e7494c8956514e4897a5f3e0eb61d927c5a54f59f5d78a8e60327daa604e56f7a909a00"/255], 0xd8) 05:18:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:51 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000240)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x1c000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:51 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) (async) r1 = memfd_create(&(0x7f0000000100)='.\x00', 0x4) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000140)={0x0, 0x5}) (async) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x05\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc3j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x6) write$binfmt_elf32(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="d8053e84b531aa2cf23440527971c7c7eae8762389bfaf18c0c5c00e21acfcd86ac3184713dcd05c7a1f715804f83c427e47140dde367dcca1056e40e99b1ca4bb042eea485d943c7c2e0d994ef84e2d71959f120318f66603cf08070a56b112856f1704269c5d37e6592a29815cba3ccfbb4fa7d288fda616a56adf1e0dc659ec179b887c92ca328da607746ef2908300225109000000000000006cffd097529fc78002b77bc102d663194604729c9e72f59a09a5558cfa54b6facd448725ff32a659e7c526cafa80e63891c85ec8bdab7e7494c8956514e4897a5f3e0eb61d927c5a54f59f5d78a8e60327daa604e56f7a909a00"/255], 0xd8) 05:18:51 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:51 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r2, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r3 = dup3(r1, r2, 0x80000) pwritev2(r3, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x2, 0x11000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r4, 0x4010ae68, &(0x7f00000001c0)) 05:18:51 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x4, 0x104000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) pipe2$watch_queue(&(0x7f0000000100), 0x80) r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x3, 0x4000) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x2}) 05:18:51 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) (async) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) (async) perf_event_open(&(0x7f000001d000)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="61fb3abc43abc7d2a91791d2b7", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0fc6fc92cb9265046b2f0972034bd71e4b1d6aef9ec80d15fce391dba5ff3cfe855b8fd980e9b0862c00"]) read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) (async) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB='\x00'/14]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r4}}, './file0\x00'}) 05:18:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x4, 0x104000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async, rerun: 32) pipe2$watch_queue(&(0x7f0000000100), 0x80) (async, rerun: 32) r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x3, 0x4000) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x2}) 05:18:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000240)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x1c000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000240)) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r2, r3, 0x80000) (async) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x1c000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x50, &(0x7f0000000140)=[@cstype3={0x5, 0xa}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = open(&(0x7f0000000000)='./file0\x00', 0x200040, 0x0) syz_kvm_setup_cpu$x86(r1, r3, &(0x7f000000c000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="26270f015d10660f3809cd0f01c56766c7442400008000006766c744240200605a3d6766c744240600000000670f011c24eadaa83c00baf80c66b8de79658166efbafc0cec660fc7b180eb0f00020f01d1", 0x51}], 0x1, 0x47, &(0x7f0000000240), 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90302060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = dup3(r5, r4, 0x80000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000001c000/0x18000)=nil, &(0x7f00000002c0)=[@text64={0x40, &(0x7f0000000240)="66baf80cb8fe33568aef66bafc0cb076eec4c1795108660f388087815e5c0b660f74e5450f7814f1420fc79cf30b0000003e64471abedce000000f019c8dfb000000ded7c4413d5f3d00700000", 0x4d}], 0x1, 0x20, &(0x7f00000003c0)=[@efer={0x2, 0x2401}, @cr4={0x1, 0x410000}], 0x2) pwritev2(r6, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_RUN(r6, 0xae80, 0x0) 05:18:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x4, 0x104000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) pipe2$watch_queue(&(0x7f0000000100), 0x80) r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x3, 0x4000) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CAP_X2APIC_API(r3, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x2}) 05:18:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async, rerun: 32) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async, rerun: 32) ioctl$KVM_NMI(r2, 0xae9a) (async) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async, rerun: 32) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) (async, rerun: 32) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="61fb3abc43abc7d2a91791d2b7", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="0fc6fc92cb9265046b2f0972034bd71e4b1d6aef9ec80d15fce391dba5ff3cfe855b8fd980e9b0862c00"]) (async) read$FUSE(0xffffffffffffffff, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) (async, rerun: 32) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) (rerun: 32) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB='\x00'/14]) (async) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r4}}, './file0\x00'}) 05:18:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) (async) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) (async) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000240)) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x1c000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100f5d70018000000", @ANYRES32=r1, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) r4 = memfd_create(&(0x7f0000000240)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xf3\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\b\x00M\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16\tH\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xc8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8f\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe\xea\xda\x80T\xa39\xb6e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n;\xdd\x7fO*\xe8W\xb7,\x13\x8b\x1b\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x1b\xcb\x9f\xff\x8d\xffz\xb3\x05\x7f\xbb&\x1f\x85\x95%\x0e\x7ft\xe3%\xeeq\xf7\x01N\xf5\xd7\xa2~\xe8\x02`\xdf\xee\xf3\x159\x92\x1dv[\xf46\xe7\x8d\xa4\xf5\xb2\xd0=\xa7~\xd5\xfb4\x02\xe0>/Y\x10u^\xd8\xe3\xd1\f\xa8\x02\xb9\x03\x8d\xa9\x9b\xaen\xf2\xfe\'mx$\x99$=\x13\'~\xe7\x0f\xc2\x1a\x018\xde\x197\xf6\xf6\xb9\xbe9\x1c\\\xa0\xb7\\\"|\xcc\x83j\xf5^\x9a\xdaQ\xb4\x99', 0x6) write$binfmt_elf32(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000480)={0x2, &(0x7f0000000100), 0x1, 0xffffffffffffffff, 0x1}) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) write$binfmt_elf32(r3, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES8=r0, @ANYRES64=r0, @ANYRESOCT=r4, @ANYBLOB="e336bf0ec71c82910747f1b045773dcb26e21c463378d0b57dc395238bc6326f2e415d90aa2d7ea1c259725f8c4b79e17cbc670053eeb845cd8b21c0dd6f0e80b4f0d4b37f537640d91c6e054ca401b17fe4a1bceae52baa0f390228dd198fbb1082385c8be53c43122761e85323ba5804c208dc573c2e2459be56108588359f0b507b389aaad8f76f37cd0879c009f778412bf09a17821eeb0ed4e651fe9dec662b888554978d144f90e66b6a7d10b50f3870ddb1", @ANYBLOB="6023a051f423b532bf5d90a4720740ca150ed0974c40cdecb619a16bbf8488f3e95f68d27ffa77fbe80cb3c15fd00b3f56885988c84778df13d387a172", @ANYRES64=r1, @ANYRES8=r1], 0xfffffdfb) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = syz_open_dev$ttys(0xc, 0x2, 0x1) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) poll(&(0x7f0000000040)=[{r2, 0x8}, {r3, 0x2009}, {r6, 0x30}, {r0, 0x88}, {r7, 0x222}, {r1, 0x84}, {r1, 0x4000}], 0x7, 0x0) 05:18:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) (async) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:18:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000240)={0x1, 0x0, @ioapic={0x4, 0x101, 0x8b, 0xa83e, 0x0, [{0x0, 0x8, 0x9, '\x00', 0x80}, {0x1, 0x0, 0x8d, '\x00', 0xad}, {0x7, 0x8, 0x4, '\x00', 0x4}, {0x1, 0x1, 0x3f}, {0x2, 0x0, 0x1, '\x00', 0x1}, {0x1, 0x0, 0x9, '\x00', 0x4}, {0x20, 0x2, 0x1, '\x00', 0x7f}, {0x26, 0x0, 0x9, '\x00', 0x79}, {0x7f, 0x7, 0x3, '\x00', 0x5}, {0x1, 0x8, 0x3f, '\x00', 0x6}, {0x40, 0x3f, 0x7, '\x00', 0x20}, {0x5, 0x7f, 0x6, '\x00', 0x81}, {0x80, 0x1, 0x3a, '\x00', 0xb3}, {0x3, 0x44, 0x8, '\x00', 0x80}, {0xb2, 0x6, 0x0, '\x00', 0x2}, {0x79, 0x3f, 0x9, '\x00', 0x3}, {0x80, 0x9, 0xfd, '\x00', 0x6}, {0x2, 0x1, 0x7f, '\x00', 0x1}, {0x6, 0x1, 0x3, '\x00', 0x5}, {0x8, 0x9, 0x4, '\x00', 0x6}, {0x8, 0x20, 0xbf, '\x00', 0x8}, {0x8, 0x40, 0x3, '\x00', 0x9}, {0x6, 0x9, 0x39, '\x00', 0x7}, {0x8, 0x5, 0x81, '\x00', 0x80}]}}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f000000f000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x9, 0x0, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 05:18:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000240)={0x1, 0x0, @ioapic={0x4, 0x101, 0x8b, 0xa83e, 0x0, [{0x0, 0x8, 0x9, '\x00', 0x80}, {0x1, 0x0, 0x8d, '\x00', 0xad}, {0x7, 0x8, 0x4, '\x00', 0x4}, {0x1, 0x1, 0x3f}, {0x2, 0x0, 0x1, '\x00', 0x1}, {0x1, 0x0, 0x9, '\x00', 0x4}, {0x20, 0x2, 0x1, '\x00', 0x7f}, {0x26, 0x0, 0x9, '\x00', 0x79}, {0x7f, 0x7, 0x3, '\x00', 0x5}, {0x1, 0x8, 0x3f, '\x00', 0x6}, {0x40, 0x3f, 0x7, '\x00', 0x20}, {0x5, 0x7f, 0x6, '\x00', 0x81}, {0x80, 0x1, 0x3a, '\x00', 0xb3}, {0x3, 0x44, 0x8, '\x00', 0x80}, {0xb2, 0x6, 0x0, '\x00', 0x2}, {0x79, 0x3f, 0x9, '\x00', 0x3}, {0x80, 0x9, 0xfd, '\x00', 0x6}, {0x2, 0x1, 0x7f, '\x00', 0x1}, {0x6, 0x1, 0x3, '\x00', 0x5}, {0x8, 0x9, 0x4, '\x00', 0x6}, {0x8, 0x20, 0xbf, '\x00', 0x8}, {0x8, 0x40, 0x3, '\x00', 0x9}, {0x6, 0x9, 0x39, '\x00', 0x7}, {0x8, 0x5, 0x81, '\x00', 0x80}]}}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:52 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f000000f000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x9, 0x0, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) 05:18:52 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 05:18:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100f5d70018000000", @ANYRES32=r1, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) r4 = memfd_create(&(0x7f0000000240)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xf3\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\b\x00M\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16\tH\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xc8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8f\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe\xea\xda\x80T\xa39\xb6e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n;\xdd\x7fO*\xe8W\xb7,\x13\x8b\x1b\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x1b\xcb\x9f\xff\x8d\xffz\xb3\x05\x7f\xbb&\x1f\x85\x95%\x0e\x7ft\xe3%\xeeq\xf7\x01N\xf5\xd7\xa2~\xe8\x02`\xdf\xee\xf3\x159\x92\x1dv[\xf46\xe7\x8d\xa4\xf5\xb2\xd0=\xa7~\xd5\xfb4\x02\xe0>/Y\x10u^\xd8\xe3\xd1\f\xa8\x02\xb9\x03\x8d\xa9\x9b\xaen\xf2\xfe\'mx$\x99$=\x13\'~\xe7\x0f\xc2\x1a\x018\xde\x197\xf6\xf6\xb9\xbe9\x1c\\\xa0\xb7\\\"|\xcc\x83j\xf5^\x9a\xdaQ\xb4\x99', 0x6) write$binfmt_elf32(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000480)={0x2, &(0x7f0000000100), 0x1, 0xffffffffffffffff, 0x1}) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) write$binfmt_elf32(r3, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES8=r0, @ANYRES64=r0, @ANYRESOCT=r4, @ANYBLOB="e336bf0ec71c82910747f1b045773dcb26e21c463378d0b57dc395238bc6326f2e415d90aa2d7ea1c259725f8c4b79e17cbc670053eeb845cd8b21c0dd6f0e80b4f0d4b37f537640d91c6e054ca401b17fe4a1bceae52baa0f390228dd198fbb1082385c8be53c43122761e85323ba5804c208dc573c2e2459be56108588359f0b507b389aaad8f76f37cd0879c009f778412bf09a17821eeb0ed4e651fe9dec662b888554978d144f90e66b6a7d10b50f3870ddb1", @ANYBLOB="6023a051f423b532bf5d90a4720740ca150ed0974c40cdecb619a16bbf8488f3e95f68d27ffa77fbe80cb3c15fd00b3f56885988c84778df13d387a172", @ANYRES64=r1, @ANYRES8=r1], 0xfffffdfb) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = syz_open_dev$ttys(0xc, 0x2, 0x1) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) poll(&(0x7f0000000040)=[{r2, 0x8}, {r3, 0x2009}, {r6, 0x30}, {r0, 0x88}, {r7, 0x222}, {r1, 0x84}, {r1, 0x4000}], 0x7, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100f5d70018000000", @ANYRES32=r1, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file0\x00']) (async) memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) memfd_create(&(0x7f0000000240)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xf3\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\b\x00M\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16\tH\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xc8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8f\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe\xea\xda\x80T\xa39\xb6e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n;\xdd\x7fO*\xe8W\xb7,\x13\x8b\x1b\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x1b\xcb\x9f\xff\x8d\xffz\xb3\x05\x7f\xbb&\x1f\x85\x95%\x0e\x7ft\xe3%\xeeq\xf7\x01N\xf5\xd7\xa2~\xe8\x02`\xdf\xee\xf3\x159\x92\x1dv[\xf46\xe7\x8d\xa4\xf5\xb2\xd0=\xa7~\xd5\xfb4\x02\xe0>/Y\x10u^\xd8\xe3\xd1\f\xa8\x02\xb9\x03\x8d\xa9\x9b\xaen\xf2\xfe\'mx$\x99$=\x13\'~\xe7\x0f\xc2\x1a\x018\xde\x197\xf6\xf6\xb9\xbe9\x1c\\\xa0\xb7\\\"|\xcc\x83j\xf5^\x9a\xdaQ\xb4\x99', 0x6) (async) write$binfmt_elf32(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000480)={0x2, &(0x7f0000000100), 0x1, 0xffffffffffffffff, 0x1}) (async) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) write$binfmt_elf32(r3, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES8=r0, @ANYRES64=r0, @ANYRESOCT=r4, @ANYBLOB="e336bf0ec71c82910747f1b045773dcb26e21c463378d0b57dc395238bc6326f2e415d90aa2d7ea1c259725f8c4b79e17cbc670053eeb845cd8b21c0dd6f0e80b4f0d4b37f537640d91c6e054ca401b17fe4a1bceae52baa0f390228dd198fbb1082385c8be53c43122761e85323ba5804c208dc573c2e2459be56108588359f0b507b389aaad8f76f37cd0879c009f778412bf09a17821eeb0ed4e651fe9dec662b888554978d144f90e66b6a7d10b50f3870ddb1", @ANYBLOB="6023a051f423b532bf5d90a4720740ca150ed0974c40cdecb619a16bbf8488f3e95f68d27ffa77fbe80cb3c15fd00b3f56885988c84778df13d387a172", @ANYRES64=r1, @ANYRES8=r1], 0xfffffdfb) (async) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) syz_open_dev$ttys(0xc, 0x2, 0x1) (async) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) poll(&(0x7f0000000040)=[{r2, 0x8}, {r3, 0x2009}, {r6, 0x30}, {r0, 0x88}, {r7, 0x222}, {r1, 0x84}, {r1, 0x4000}], 0x7, 0x0) (async) 05:18:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000240)={0x1, 0x0, @ioapic={0x4, 0x101, 0x8b, 0xa83e, 0x0, [{0x0, 0x8, 0x9, '\x00', 0x80}, {0x1, 0x0, 0x8d, '\x00', 0xad}, {0x7, 0x8, 0x4, '\x00', 0x4}, {0x1, 0x1, 0x3f}, {0x2, 0x0, 0x1, '\x00', 0x1}, {0x1, 0x0, 0x9, '\x00', 0x4}, {0x20, 0x2, 0x1, '\x00', 0x7f}, {0x26, 0x0, 0x9, '\x00', 0x79}, {0x7f, 0x7, 0x3, '\x00', 0x5}, {0x1, 0x8, 0x3f, '\x00', 0x6}, {0x40, 0x3f, 0x7, '\x00', 0x20}, {0x5, 0x7f, 0x6, '\x00', 0x81}, {0x80, 0x1, 0x3a, '\x00', 0xb3}, {0x3, 0x44, 0x8, '\x00', 0x80}, {0xb2, 0x6, 0x0, '\x00', 0x2}, {0x79, 0x3f, 0x9, '\x00', 0x3}, {0x80, 0x9, 0xfd, '\x00', 0x6}, {0x2, 0x1, 0x7f, '\x00', 0x1}, {0x6, 0x1, 0x3, '\x00', 0x5}, {0x8, 0x9, 0x4, '\x00', 0x6}, {0x8, 0x20, 0xbf, '\x00', 0x8}, {0x8, 0x40, 0x3, '\x00', 0x9}, {0x6, 0x9, 0x39, '\x00', 0x7}, {0x8, 0x5, 0x81, '\x00', 0x80}]}}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000240)={0x1, 0x0, @ioapic={0x4, 0x101, 0x8b, 0xa83e, 0x0, [{0x0, 0x8, 0x9, '\x00', 0x80}, {0x1, 0x0, 0x8d, '\x00', 0xad}, {0x7, 0x8, 0x4, '\x00', 0x4}, {0x1, 0x1, 0x3f}, {0x2, 0x0, 0x1, '\x00', 0x1}, {0x1, 0x0, 0x9, '\x00', 0x4}, {0x20, 0x2, 0x1, '\x00', 0x7f}, {0x26, 0x0, 0x9, '\x00', 0x79}, {0x7f, 0x7, 0x3, '\x00', 0x5}, {0x1, 0x8, 0x3f, '\x00', 0x6}, {0x40, 0x3f, 0x7, '\x00', 0x20}, {0x5, 0x7f, 0x6, '\x00', 0x81}, {0x80, 0x1, 0x3a, '\x00', 0xb3}, {0x3, 0x44, 0x8, '\x00', 0x80}, {0xb2, 0x6, 0x0, '\x00', 0x2}, {0x79, 0x3f, 0x9, '\x00', 0x3}, {0x80, 0x9, 0xfd, '\x00', 0x6}, {0x2, 0x1, 0x7f, '\x00', 0x1}, {0x6, 0x1, 0x3, '\x00', 0x5}, {0x8, 0x9, 0x4, '\x00', 0x6}, {0x8, 0x20, 0xbf, '\x00', 0x8}, {0x8, 0x40, 0x3, '\x00', 0x9}, {0x6, 0x9, 0x39, '\x00', 0x7}, {0x8, 0x5, 0x81, '\x00', 0x80}]}}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_NMI(r2, 0xae9a) (async) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:18:53 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f000000f000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x9, 0x0, 0x0) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x40) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async) ioctl$KVM_RUN(r1, 0xae80, 0x0) 05:18:53 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 05:18:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x1) 05:18:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x102000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:53 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="b4de2d96f146b23b4db328edcdccd4fde715e853ef68ceb73a52a9b484dd53860d21e059ea0c087a7fff21f0c7d731db7b236e79aadcc7f714a237f17a749727f91eac153eed1101bc33e7e74e4a428bee6af59f6a4cd1b483f10d9e90a94af911c90aaf44abc0885120aa38f658ab0a8878030de6bb19ba82df63cc85955a43c463fa3931f346b68e87d7a03382ad3d2f4503ba9c6eac0e6d30fd6a83c54225c38023bdbd8d69882c56c8a01525"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000001c0)={0x0, 0x0, @pic={0x7f, 0x0, 0x96, 0xa7, 0x0, 0x0, 0x2, 0x4, 0x2, 0x34, 0xc7, 0xb2, 0x1, 0xfc, 0x2, 0xa5}}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x6000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x1, &(0x7f000000e000/0x2000)=nil, 0x0) 05:18:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) (async, rerun: 32) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (rerun: 32) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_NMI(r2, 0xae9a) (async) socket$vsock_stream(0x28, 0x1, 0x0) (async, rerun: 64) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async, rerun: 64) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:18:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240), 0x80a02, 0x0) 05:18:53 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 05:18:53 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100f5d70018000000", @ANYRES32=r1, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) r4 = memfd_create(&(0x7f0000000240)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xf3\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\b\x00M\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16\tH\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xc8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8f\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe\xea\xda\x80T\xa39\xb6e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n;\xdd\x7fO*\xe8W\xb7,\x13\x8b\x1b\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x1b\xcb\x9f\xff\x8d\xffz\xb3\x05\x7f\xbb&\x1f\x85\x95%\x0e\x7ft\xe3%\xeeq\xf7\x01N\xf5\xd7\xa2~\xe8\x02`\xdf\xee\xf3\x159\x92\x1dv[\xf46\xe7\x8d\xa4\xf5\xb2\xd0=\xa7~\xd5\xfb4\x02\xe0>/Y\x10u^\xd8\xe3\xd1\f\xa8\x02\xb9\x03\x8d\xa9\x9b\xaen\xf2\xfe\'mx$\x99$=\x13\'~\xe7\x0f\xc2\x1a\x018\xde\x197\xf6\xf6\xb9\xbe9\x1c\\\xa0\xb7\\\"|\xcc\x83j\xf5^\x9a\xdaQ\xb4\x99', 0x6) write$binfmt_elf32(r4, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f0000000480)={0x2, &(0x7f0000000100), 0x1, 0xffffffffffffffff, 0x1}) (async) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) write$binfmt_elf32(r3, &(0x7f00000007c0)=ANY=[@ANYRES32=r4, @ANYRES8=r0, @ANYRES64=r0, @ANYRESOCT=r4, @ANYBLOB="e336bf0ec71c82910747f1b045773dcb26e21c463378d0b57dc395238bc6326f2e415d90aa2d7ea1c259725f8c4b79e17cbc670053eeb845cd8b21c0dd6f0e80b4f0d4b37f537640d91c6e054ca401b17fe4a1bceae52baa0f390228dd198fbb1082385c8be53c43122761e85323ba5804c208dc573c2e2459be56108588359f0b507b389aaad8f76f37cd0879c009f778412bf09a17821eeb0ed4e651fe9dec662b888554978d144f90e66b6a7d10b50f3870ddb1", @ANYBLOB="6023a051f423b532bf5d90a4720740ca150ed0974c40cdecb619a16bbf8488f3e95f68d27ffa77fbe80cb3c15fd00b3f56885988c84778df13d387a172", @ANYRES64=r1, @ANYRES8=r1], 0xfffffdfb) (async) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = syz_open_dev$ttys(0xc, 0x2, 0x1) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) poll(&(0x7f0000000040)=[{r2, 0x8}, {r3, 0x2009}, {r6, 0x30}, {r0, 0x88}, {r7, 0x222}, {r1, 0x84}, {r1, 0x4000}], 0x7, 0x0) 05:18:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x102000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:53 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="b4de2d96f146b23b4db328edcdccd4fde715e853ef68ceb73a52a9b484dd53860d21e059ea0c087a7fff21f0c7d731db7b236e79aadcc7f714a237f17a749727f91eac153eed1101bc33e7e74e4a428bee6af59f6a4cd1b483f10d9e90a94af911c90aaf44abc0885120aa38f658ab0a8878030de6bb19ba82df63cc85955a43c463fa3931f346b68e87d7a03382ad3d2f4503ba9c6eac0e6d30fd6a83c54225c38023bdbd8d69882c56c8a01525"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000001c0)={0x0, 0x0, @pic={0x7f, 0x0, 0x96, 0xa7, 0x0, 0x0, 0x2, 0x4, 0x2, 0x34, 0xc7, 0xb2, 0x1, 0xfc, 0x2, 0xa5}}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x6000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x1, &(0x7f000000e000/0x2000)=nil, 0x0) 05:18:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000280)="f20f1b01b880078ed866b8000000800f23c80f21f86635080090000f23f8360f01cabaa100ec0f01f7ba6100b80b00efba4000b03eee656526663e0f999fef8e0f32", 0x42}], 0x1, 0x1, 0x0, 0x0) 05:18:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:18:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x102000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:53 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async, rerun: 32) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB="b4de2d96f146b23b4db328edcdccd4fde715e853ef68ceb73a52a9b484dd53860d21e059ea0c087a7fff21f0c7d731db7b236e79aadcc7f714a237f17a749727f91eac153eed1101bc33e7e74e4a428bee6af59f6a4cd1b483f10d9e90a94af911c90aaf44abc0885120aa38f658ab0a8878030de6bb19ba82df63cc85955a43c463fa3931f346b68e87d7a03382ad3d2f4503ba9c6eac0e6d30fd6a83c54225c38023bdbd8d69882c56c8a01525"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async, rerun: 32) ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000001c0)={0x0, 0x0, @pic={0x7f, 0x0, 0x96, 0xa7, 0x0, 0x0, 0x2, 0x4, 0x2, 0x34, 0xc7, 0xb2, 0x1, 0xfc, 0x2, 0xa5}}) (async) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x6000, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (rerun: 32) get_mempolicy(&(0x7f0000000000), &(0x7f0000000040), 0x1, &(0x7f000000e000/0x2000)=nil, 0x0) 05:18:53 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(0x0, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:53 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:53 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = syz_open_dev$audion(&(0x7f0000000000), 0x2, 0x2800) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="d27e4cf00057ae3665f30f09670f01c53e650f3265260f01d1ba4200b000eebaf80c66b894d5bf8666efbafc0cecf0819a86d0070066b9c708000066b84f3d93db66ba000000000f30", 0x49}], 0x1, 0x40, &(0x7f0000000140), 0x0) 05:18:53 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 05:18:53 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) (async) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(0xffffffffffffffff, r3, 0x80000) (async) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_NMI(r2, 0xae9a) (async) socket$vsock_stream(0x28, 0x1, 0x0) (async) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) (async) 05:18:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_GET_DEST(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, r3, 0x301, 0x0, 0x0, {0x4}}, 0x14}}, 0x0) r5 = accept4(r4, &(0x7f0000000140)=@can, &(0x7f0000000040)=0x80, 0x400) r6 = socket$unix(0x1, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r8 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r8, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r8, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r7, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r7, @ANYBLOB="9b42072eab"], 0x20000600}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000480)={'gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x40, 0x7, 0xb6d, 0x40, {{0x53, 0x4, 0x3, 0x3, 0x14c, 0x65, 0x0, 0x3f, 0x4, 0x0, @multicast1, @private=0xa010101, {[@end, @timestamp_prespec={0x44, 0x4c, 0xda, 0x3, 0x7, [{@remote, 0x7}, {@loopback, 0x7}, {@loopback, 0x1}, {@dev={0xac, 0x14, 0x14, 0x10}, 0x5}, {@empty, 0x3cdb}, {@broadcast, 0x36}, {@remote, 0x9}, {@rand_addr=0x64010101}, {@private=0xa010102, 0x6}]}, @timestamp_prespec={0x44, 0x44, 0x80, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xd9a}, {@loopback, 0xd835}, {@empty, 0x3ff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8}, {@local, 0xffffffff}, {@multicast1, 0x6}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x3}, {@remote, 0x8}]}, @timestamp={0x44, 0x18, 0x32, 0x0, 0x8, [0x8, 0x7e07, 0x2, 0x20, 0x3]}, @cipso={0x86, 0x3c, 0x1, [{0x7, 0x3, "ab"}, {0x6, 0x3, "96"}, {0x5, 0xe, "a637e2a02f85e15e7cee1e88"}, {0x7, 0x8, ')xq9\v\a'}, {0x2, 0x12, "55a5cc1d316c8987bcea7ca4d5becffc"}, {0x2, 0x8, "b9bff8fd0478"}]}, @timestamp_addr={0x44, 0x44, 0x26, 0x1, 0x2, [{@broadcast, 0x65}, {@multicast2, 0x999}, {@dev={0xac, 0x14, 0x14, 0x2f}, 0x8000}, {@broadcast, 0x5}, {@private=0xa010101, 0x7}, {@empty, 0x4}, {@remote, 0x8a}, {@multicast1, 0x8d}]}, @generic={0x40, 0xf, "de21e41ae26b1b085c46120abf"}]}}}}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r5, &(0x7f00000006c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x168, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=@mpls_delroute={0x100, 0x19, 0x20, 0x70bd25, 0x25dfdbfe, {0x1c, 0x14, 0x10, 0x17, 0x7f, 0x1, 0xfd, 0x0, 0x100}, [@RTA_VIA={0x14, 0x12, {0x2b, "3ecb55daa603b98226ded5afa01d"}}, @RTA_NEWDST={0x84, 0x13, [{0x0, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x3f, 0x0, 0x1}, {0xe7b, 0x0, 0x1}, {0x7}, {0x2, 0x0, 0x1}, {0x1ff}, {0x1d9}, {0xfff}, {0x3}, {0x6}, {0x4}, {0x0, 0x0, 0x1}, {0x5, 0x0, 0x1}, {0xfc}, {0x2}, {0x8}, {0x3a3}, {0x4a8b, 0x0, 0x1}, {0x66}, {0x25d1}, {0x3, 0x0, 0x1}, {0x7}, {0x7ff, 0x0, 0x1}, {0x8, 0x0, 0x1}, {0xcb1}, {0xffff7}, {0x7}, {0xffff}, {0x200}, {0x7, 0x0, 0x1}]}, @RTA_OIF={0x8}, @RTA_MULTIPATH={0xc, 0x9, {0x9, 0x8, 0x2}}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x3}, @RTA_OIF={0x8}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x4}, @RTA_VIA={0x14, 0x12, {0x9, "a06d839ef4693f6bb98420a53a74"}}, @RTA_MULTIPATH={0xc, 0x9, {0xfff, 0x60, 0x97, r7}}]}, 0x100}, 0x1, 0x0, 0x0, 0x8005}, 0x8040) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) 05:18:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) r2 = syz_open_dev$audion(&(0x7f0000000000), 0x2, 0x2800) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="d27e4cf00057ae3665f30f09670f01c53e650f3265260f01d1ba4200b000eebaf80c66b894d5bf8666efbafc0cecf0819a86d0070066b9c708000066b84f3d93db66ba000000000f30", 0x49}], 0x1, 0x40, &(0x7f0000000140), 0x0) 05:18:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:54 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async, rerun: 32) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 05:18:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) (async) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(0xffffffffffffffff, r3, 0x80000) (async) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_NMI(r2, 0xae9a) (async) socket$vsock_stream(0x28, 0x1, 0x0) (async) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) (async) 05:18:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async, rerun: 32) r2 = syz_open_dev$audion(&(0x7f0000000000), 0x2, 0x2800) (rerun: 32) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="d27e4cf00057ae3665f30f09670f01c53e650f3265260f01d1ba4200b000eebaf80c66b894d5bf8666efbafc0cecf0819a86d0070066b9c708000066b84f3d93db66ba000000000f30", 0x49}], 0x1, 0x40, &(0x7f0000000140), 0x0) 05:18:54 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 64) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_GET_DEST(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, r3, 0x301, 0x0, 0x0, {0x4}}, 0x14}}, 0x0) r5 = accept4(r4, &(0x7f0000000140)=@can, &(0x7f0000000040)=0x80, 0x400) r6 = socket$unix(0x1, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r8 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r8, &(0x7f0000000000), 0x10) (async) sendmsg$can_bcm(r8, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r7, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r7, @ANYBLOB="9b42072eab"], 0x20000600}}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000480)={'gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x40, 0x7, 0xb6d, 0x40, {{0x53, 0x4, 0x3, 0x3, 0x14c, 0x65, 0x0, 0x3f, 0x4, 0x0, @multicast1, @private=0xa010101, {[@end, @timestamp_prespec={0x44, 0x4c, 0xda, 0x3, 0x7, [{@remote, 0x7}, {@loopback, 0x7}, {@loopback, 0x1}, {@dev={0xac, 0x14, 0x14, 0x10}, 0x5}, {@empty, 0x3cdb}, {@broadcast, 0x36}, {@remote, 0x9}, {@rand_addr=0x64010101}, {@private=0xa010102, 0x6}]}, @timestamp_prespec={0x44, 0x44, 0x80, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xd9a}, {@loopback, 0xd835}, {@empty, 0x3ff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8}, {@local, 0xffffffff}, {@multicast1, 0x6}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x3}, {@remote, 0x8}]}, @timestamp={0x44, 0x18, 0x32, 0x0, 0x8, [0x8, 0x7e07, 0x2, 0x20, 0x3]}, @cipso={0x86, 0x3c, 0x1, [{0x7, 0x3, "ab"}, {0x6, 0x3, "96"}, {0x5, 0xe, "a637e2a02f85e15e7cee1e88"}, {0x7, 0x8, ')xq9\v\a'}, {0x2, 0x12, "55a5cc1d316c8987bcea7ca4d5becffc"}, {0x2, 0x8, "b9bff8fd0478"}]}, @timestamp_addr={0x44, 0x44, 0x26, 0x1, 0x2, [{@broadcast, 0x65}, {@multicast2, 0x999}, {@dev={0xac, 0x14, 0x14, 0x2f}, 0x8000}, {@broadcast, 0x5}, {@private=0xa010101, 0x7}, {@empty, 0x4}, {@remote, 0x8a}, {@multicast1, 0x8d}]}, @generic={0x40, 0xf, "de21e41ae26b1b085c46120abf"}]}}}}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r5, &(0x7f00000006c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x168, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) (async) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=@mpls_delroute={0x100, 0x19, 0x20, 0x70bd25, 0x25dfdbfe, {0x1c, 0x14, 0x10, 0x17, 0x7f, 0x1, 0xfd, 0x0, 0x100}, [@RTA_VIA={0x14, 0x12, {0x2b, "3ecb55daa603b98226ded5afa01d"}}, @RTA_NEWDST={0x84, 0x13, [{0x0, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x3f, 0x0, 0x1}, {0xe7b, 0x0, 0x1}, {0x7}, {0x2, 0x0, 0x1}, {0x1ff}, {0x1d9}, {0xfff}, {0x3}, {0x6}, {0x4}, {0x0, 0x0, 0x1}, {0x5, 0x0, 0x1}, {0xfc}, {0x2}, {0x8}, {0x3a3}, {0x4a8b, 0x0, 0x1}, {0x66}, {0x25d1}, {0x3, 0x0, 0x1}, {0x7}, {0x7ff, 0x0, 0x1}, {0x8, 0x0, 0x1}, {0xcb1}, {0xffff7}, {0x7}, {0xffff}, {0x200}, {0x7, 0x0, 0x1}]}, @RTA_OIF={0x8}, @RTA_MULTIPATH={0xc, 0x9, {0x9, 0x8, 0x2}}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x3}, @RTA_OIF={0x8}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x4}, @RTA_VIA={0x14, 0x12, {0x9, "a06d839ef4693f6bb98420a53a74"}}, @RTA_MULTIPATH={0xc, 0x9, {0xfff, 0x60, 0x97, r7}}]}, 0x100}, 0x1, 0x0, 0x0, 0x8005}, 0x8040) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) 05:18:54 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_RUN(r3, 0xae80, 0x0) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_GET_SREGS(r3, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:18:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:54 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) 05:18:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r2, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) 05:18:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:54 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:54 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00000001c0)={[0x34, 0x9, 0x4, 0x200, 0x4, 0x8, 0x7, 0x0, 0x9370, 0x1, 0x7, 0x2, 0x800, 0x20, 0xd2, 0x9, 0x2, 0x665, 0x2, 0xfffffff8, 0x80000000, 0x7, 0x40, 0x1, 0x1, 0xffff95b6, 0x2d5c, 0x5, 0x373, 0x8000, 0xffffffc0, 0x9, 0x9, 0x8001, 0xffffffff, 0xffffffff, 0x5, 0x86, 0x5, 0x200, 0x0, 0x7, 0xc8, 0x5, 0x8c1, 0x0, 0x1, 0x0, 0x40, 0x4, 0x531, 0x8000, 0x22bdb4df, 0x401, 0x7f, 0x1, 0xfffffffb, 0xfffeffff, 0xfff, 0xfff, 0xffffffff, 0x7, 0x5, 0x5, 0x6, 0x6, 0x6, 0xc5, 0x1, 0x7, 0x9dc, 0x5604, 0x3, 0x4, 0x14, 0x1, 0x7fffffff, 0xb4b, 0x4b0d, 0xdaa9, 0x2, 0x9, 0x8, 0x0, 0x6, 0x4, 0x3, 0x0, 0x3f, 0x9e, 0x4, 0x4, 0x0, 0x0, 0x3, 0x6, 0x3, 0x9, 0x20, 0xfffffff7, 0x4, 0x800, 0x7fff, 0x4, 0x3, 0x2, 0x6, 0x0, 0x5, 0xff, 0x7, 0x3, 0xfd, 0x1, 0x1, 0x6, 0x2, 0x100, 0x7, 0x3, 0x401, 0x8001, 0x2, 0x80000001, 0x101, 0x464800, 0x8, 0x1ff, 0x2, 0x8, 0x3, 0xfff, 0xd32, 0x3f, 0x1, 0x0, 0xd65, 0x7, 0x401, 0x1000, 0x7fff, 0x8, 0x6, 0x1, 0x5, 0x2, 0x9, 0xa94, 0x0, 0x4, 0x314a, 0x80000000, 0x5, 0x20, 0x7f, 0x0, 0xffffffff, 0xffffffff, 0x7, 0x8, 0x61, 0x400, 0x1ff, 0x800, 0x5, 0xffffc94f, 0x4, 0x7ff, 0x7f7, 0x6af5, 0x6, 0x5, 0x1, 0x0, 0xd, 0x7ff, 0x20, 0x1ff, 0x3f, 0x57a9, 0x212, 0x7, 0x4, 0x0, 0x7f, 0xfbc, 0x7, 0x6, 0x1, 0x9, 0x10001, 0xfffffff9, 0x7fffffff, 0x44, 0x373, 0xff, 0xabc00000, 0x4, 0x20, 0x3, 0x1000, 0x2, 0x3f, 0x3, 0x400, 0x7, 0x1f, 0x8, 0x4, 0x8, 0x5, 0x6, 0x6, 0x414b, 0x9, 0x6, 0x10001, 0x2, 0x7, 0xffffff7f, 0x4, 0x34e85c98, 0xd3f, 0xffff, 0x8000, 0x4df9, 0x3, 0x1000, 0x5, 0x1, 0xfffffff9, 0xb29, 0x2, 0x4, 0x8001, 0x9, 0x1ff, 0x3, 0x5c1, 0x0, 0x0, 0x20000000, 0x1, 0xfff, 0xb6db, 0x6, 0x5, 0x2, 0x4, 0x4, 0x101, 0x101, 0x1f88, 0x1, 0x3f, 0x9000000, 0x355, 0x4, 0x10001, 0x3, 0x81, 0x9, 0x11f, 0x3, 0x3, 0xfffffffa, 0x7f, 0x2, 0x3ff, 0x0, 0x0, 0x4, 0x80000000, 0x7f, 0x3f, 0xb9b3, 0x5, 0x7f, 0x1, 0x1, 0x1, 0x9e, 0x80, 0x7f, 0x6, 0x9, 0x2, 0x3a0f, 0x80000001, 0x40, 0x3, 0x6, 0x20, 0x800, 0x5, 0xfffffff8, 0x0, 0x4, 0x1, 0x7218, 0x4, 0x4, 0x424e, 0x6, 0x2, 0x0, 0x1, 0x6, 0x8, 0x0, 0x80, 0x0, 0x2, 0x2, 0x7, 0x6, 0x9, 0x80000000, 0x2, 0x4, 0x5, 0x6, 0x3, 0x1, 0x8, 0x1, 0xf67e, 0x0, 0xb8, 0x20, 0x6, 0x9, 0x1f, 0x5, 0x9, 0x1, 0x40, 0x8, 0x8, 0x3ff, 0x1, 0x1, 0x5, 0x4, 0x5, 0x1ff00, 0x9b8, 0x28, 0x5277, 0x7ff, 0x80000000, 0x0, 0x7, 0x0, 0x100, 0xfffffffd, 0x6, 0x1, 0x1, 0x101, 0x98, 0x9, 0xfffffffe, 0x8001, 0x7fffffff, 0x79, 0x8, 0x5, 0x5, 0xfffff801, 0x6, 0x7, 0x133, 0x9, 0xf00, 0xfffffffb, 0x3ff, 0x8, 0x0, 0x7, 0x15, 0xffff, 0x7d00, 0xcd43, 0x4, 0x3f, 0x5, 0x200, 0xffff, 0x69, 0x8, 0x6e, 0x10001, 0xfff, 0xffffff2f, 0x66e, 0x7, 0x8000, 0x0, 0x101, 0x1c9b21bd, 0x6, 0xe30, 0x3, 0x2, 0x8000000, 0x400, 0x7ff, 0x2, 0xa26, 0x4, 0x10000, 0xffffffc0, 0x8, 0xdd12807, 0x5, 0x9, 0x8, 0x8, 0x5, 0x1, 0x0, 0xf88d, 0x2, 0xffffff80, 0x52ed, 0x3, 0x0, 0x101, 0x81, 0x1, 0xffffffff, 0x4, 0x401, 0x1, 0x7, 0x9, 0x1000, 0x400, 0x5, 0x6, 0x1, 0xfffffc01, 0x0, 0x6, 0x5000, 0x7fff, 0x81, 0x401, 0x7ff, 0x10001, 0x5, 0x3, 0x3, 0x20, 0x9, 0x6, 0x20000000, 0x10001, 0x7, 0x7fff, 0x0, 0xfffffff7, 0x8001, 0x4, 0x6, 0x80, 0x4, 0x997, 0x8d0, 0xfffffffe, 0x100, 0x3, 0x7, 0x81, 0xffff, 0x355be9a2, 0x8, 0xca07, 0x4, 0x3, 0x6, 0x8000, 0x0, 0x6, 0x356d, 0x6, 0x4, 0x0, 0x6, 0x3f, 0x4, 0x3, 0x2, 0xb7, 0x1, 0x3, 0x10001, 0xb7a, 0xfff, 0x8, 0x1f, 0x5, 0x3e, 0x9, 0x3, 0x7, 0x7, 0xedb, 0x14019b60, 0xce04, 0x6, 0x7, 0x1, 0x4, 0x3, 0x5, 0xfffffffa, 0xba0, 0xffff, 0xe5, 0x3, 0x6e6b71f1, 0x5, 0x4, 0xad00, 0xfff, 0x0, 0x0, 0x1, 0x7, 0x7, 0x0, 0x1b0b, 0xff, 0x4, 0x3, 0x6, 0xff, 0x7, 0x2, 0x5, 0x57, 0x8000, 0x5, 0x8, 0x10001, 0x9, 0x1, 0x4, 0x80000001, 0x3, 0x1, 0x7, 0x0, 0x6b, 0x7f, 0x7, 0x4, 0xfe000000, 0x200, 0xff, 0x8, 0x5, 0x7fff, 0x60, 0x10000, 0x1, 0xff, 0x5, 0x1000, 0x3, 0x2c, 0x9, 0x7, 0xa2f, 0x0, 0x81, 0xfffffffe, 0x0, 0x12df, 0x6, 0x1ff, 0x810000, 0x7, 0x4, 0x7b, 0x7, 0x26, 0x0, 0x80000000, 0xfffffffc, 0x3ff, 0x3, 0xff, 0x1, 0xffff, 0x4, 0x7fffffff, 0x3f, 0x80, 0x5, 0x101, 0x18f, 0x7, 0x10000, 0xa14, 0xfffffffd, 0x1, 0x9, 0xff, 0x44, 0x3, 0x81, 0x8fa, 0x7, 0x7, 0x2, 0x54ac, 0x1, 0x9, 0xa3e, 0x5, 0x1, 0xc7, 0x5, 0x7f, 0x1ff, 0xffffffff, 0x6, 0xd0, 0xc521, 0x81, 0x5, 0x8, 0x2, 0x3, 0x2, 0x80000000, 0x4, 0x0, 0x3, 0xa58, 0x4, 0x8001, 0x40, 0x8, 0x3, 0x8, 0x1f, 0x8, 0x100, 0x80000001, 0x1, 0x4, 0xe919, 0x2, 0xffffffd5, 0x3, 0x7fffffff, 0x7fffffff, 0x6, 0xff5, 0x3, 0x10000, 0x4, 0x7, 0x10001, 0x5, 0x2, 0x3, 0x8, 0x8, 0x3f, 0x200, 0x2, 0x200, 0x7, 0x8, 0x7, 0xff, 0x2, 0xbe, 0xfffffffb, 0xfff, 0x40, 0x8, 0x5, 0x6e, 0xfffffffb, 0xfffffc01, 0x7, 0xac, 0xc84, 0x8000, 0x93, 0xffffffff, 0x518, 0x4, 0x2, 0x4, 0x9, 0x39, 0x4, 0x8, 0x0, 0x27, 0x3, 0xd8, 0x6, 0xfff, 0x1, 0x400, 0x5, 0x3ee, 0x10000000, 0x200, 0x2f45, 0x1, 0x81, 0x9af5, 0x7, 0x740, 0x2, 0x401, 0x7fff, 0x20, 0x85e, 0x214, 0x800, 0x7337, 0xf47c, 0xff, 0x778, 0x4, 0x1, 0x2, 0x4, 0x1, 0x6, 0x5, 0x2, 0xffffffff, 0xffff, 0x8, 0x2, 0x100, 0x9, 0xaa03, 0x1, 0x0, 0x611baa3e, 0x7fffffff, 0x8, 0x7, 0x6, 0x8f7, 0x1, 0x6, 0x4, 0x8, 0x0, 0x8, 0x5, 0x80, 0xba, 0x3, 0x7fff, 0x2, 0x8, 0x6, 0xfffffff7, 0x5, 0x20, 0x800, 0x9, 0x5, 0x8001, 0x0, 0x4150481c, 0x6, 0x1, 0x800, 0x4, 0x10001, 0x5, 0x1, 0x31, 0x8, 0x0, 0x0, 0x9, 0xffffffff, 0x0, 0x6, 0x4, 0x10000, 0xffffff5f, 0x101, 0x5, 0x5, 0xee, 0xd8c, 0x3, 0x10001, 0x10001, 0xfffffffb, 0x100, 0x8, 0x1, 0x9, 0x8, 0x4, 0x2, 0x1f, 0x3946, 0x1, 0x7, 0x7, 0x6, 0x80000000, 0x7, 0x2, 0x2, 0xd1, 0x7fffffff, 0x5, 0x7, 0x6, 0x100, 0xfffffb65, 0xffff6593, 0x0, 0x3, 0x8, 0x6, 0x7fffffff, 0x7, 0x3ff, 0x2, 0x8, 0xe62, 0x1, 0x800, 0x2, 0x1, 0xfffffff7, 0x7, 0x2, 0x6, 0xc, 0xffffffff, 0x401, 0x401, 0x6, 0x1ff, 0x9, 0xffffffff, 0x80000000, 0x5, 0x6, 0xc0000000, 0xd06, 0x8, 0x9, 0x8, 0x7e000000, 0x0, 0x1000, 0x0, 0x9, 0xc8c, 0x1ff, 0x1, 0x9, 0x1, 0x3ff, 0xd, 0x1ff, 0x7, 0x7fffffff, 0x1000, 0xffffffff, 0x6, 0x9, 0x8, 0x1ff, 0x5, 0x7fffffff, 0x3, 0x7, 0x80000001, 0x5, 0x8d0, 0x7, 0xffff, 0xffffffff, 0xef3, 0xd6dc, 0x80000000, 0x9, 0x8c2, 0x12fbe148, 0x7ff, 0x1ff, 0x9, 0x24, 0x484f, 0x0, 0x7fff, 0xfff, 0x800, 0x2, 0x6, 0x1, 0x3, 0x3, 0x7, 0x4, 0x6b, 0x5, 0xffff, 0xffffffff, 0xc9, 0x4, 0x506, 0xc6, 0x382, 0x80000000, 0xbca9, 0x3, 0x3, 0x8, 0x5, 0x9bb, 0x680d, 0x5, 0x0, 0x0, 0x9, 0x2, 0x400, 0xff, 0x5, 0x0, 0x2, 0x7b1, 0x1000, 0xfffffffc, 0x0, 0x10000, 0x9, 0x9, 0x8, 0x6, 0xd3, 0xdc3, 0x96, 0x1, 0x1, 0x4178, 0x3, 0x1000, 0x7, 0x8, 0x3, 0x100, 0x3, 0x0, 0x8, 0x0, 0x1ff, 0x4, 0x5, 0xfbb, 0x2, 0xe34, 0xffff, 0x1f, 0xcf, 0x3, 0x1, 0x81, 0x0, 0x800000, 0x0, 0x3, 0x7f7b734b, 0x9, 0x1, 0xffffffff, 0xb60b, 0x3, 0xc11, 0x10001, 0x8, 0x7fff, 0x948, 0x4, 0x55, 0x7f, 0x6, 0x7fffffff, 0x1f, 0x0, 0x9, 0x7, 0x7f, 0x101, 0x800, 0x4a1, 0x0, 0x3f, 0xffff0001, 0x5, 0xfff, 0x6, 0x9, 0x931, 0x4, 0x101, 0x1, 0x7, 0x7f]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:54 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:54 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async, rerun: 64) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (rerun: 64) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (rerun: 32) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) (async) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) (async) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) r7 = dup3(r2, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) 05:18:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async, rerun: 32) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (rerun: 32) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_GET_DEST(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x14, r3, 0x301, 0x0, 0x0, {0x4}}, 0x14}}, 0x0) r5 = accept4(r4, &(0x7f0000000140)=@can, &(0x7f0000000040)=0x80, 0x400) r6 = socket$unix(0x1, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) r8 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r8, &(0x7f0000000000), 0x10) sendmsg$can_bcm(r8, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r7, 0x3f420f00}, 0x10, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="01000000d7fe68ca0000000000000000", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r7, @ANYBLOB="9b42072eab"], 0x20000600}}, 0x0) (async) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000480)={'gre0\x00', &(0x7f0000000300)={'sit0\x00', 0x0, 0x40, 0x7, 0xb6d, 0x40, {{0x53, 0x4, 0x3, 0x3, 0x14c, 0x65, 0x0, 0x3f, 0x4, 0x0, @multicast1, @private=0xa010101, {[@end, @timestamp_prespec={0x44, 0x4c, 0xda, 0x3, 0x7, [{@remote, 0x7}, {@loopback, 0x7}, {@loopback, 0x1}, {@dev={0xac, 0x14, 0x14, 0x10}, 0x5}, {@empty, 0x3cdb}, {@broadcast, 0x36}, {@remote, 0x9}, {@rand_addr=0x64010101}, {@private=0xa010102, 0x6}]}, @timestamp_prespec={0x44, 0x44, 0x80, 0x3, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0xd9a}, {@loopback, 0xd835}, {@empty, 0x3ff}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8}, {@local, 0xffffffff}, {@multicast1, 0x6}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x3}, {@remote, 0x8}]}, @timestamp={0x44, 0x18, 0x32, 0x0, 0x8, [0x8, 0x7e07, 0x2, 0x20, 0x3]}, @cipso={0x86, 0x3c, 0x1, [{0x7, 0x3, "ab"}, {0x6, 0x3, "96"}, {0x5, 0xe, "a637e2a02f85e15e7cee1e88"}, {0x7, 0x8, ')xq9\v\a'}, {0x2, 0x12, "55a5cc1d316c8987bcea7ca4d5becffc"}, {0x2, 0x8, "b9bff8fd0478"}]}, @timestamp_addr={0x44, 0x44, 0x26, 0x1, 0x2, [{@broadcast, 0x65}, {@multicast2, 0x999}, {@dev={0xac, 0x14, 0x14, 0x2f}, 0x8000}, {@broadcast, 0x5}, {@private=0xa010101, 0x7}, {@empty, 0x4}, {@remote, 0x8a}, {@multicast1, 0x8d}]}, @generic={0x40, 0xf, "de21e41ae26b1b085c46120abf"}]}}}}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r5, &(0x7f00000006c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x168, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'pimreg0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x40000}, 0x8000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000380)=@mpls_delroute={0x100, 0x19, 0x20, 0x70bd25, 0x25dfdbfe, {0x1c, 0x14, 0x10, 0x17, 0x7f, 0x1, 0xfd, 0x0, 0x100}, [@RTA_VIA={0x14, 0x12, {0x2b, "3ecb55daa603b98226ded5afa01d"}}, @RTA_NEWDST={0x84, 0x13, [{0x0, 0x0, 0x1}, {0x9, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x3f, 0x0, 0x1}, {0xe7b, 0x0, 0x1}, {0x7}, {0x2, 0x0, 0x1}, {0x1ff}, {0x1d9}, {0xfff}, {0x3}, {0x6}, {0x4}, {0x0, 0x0, 0x1}, {0x5, 0x0, 0x1}, {0xfc}, {0x2}, {0x8}, {0x3a3}, {0x4a8b, 0x0, 0x1}, {0x66}, {0x25d1}, {0x3, 0x0, 0x1}, {0x7}, {0x7ff, 0x0, 0x1}, {0x8, 0x0, 0x1}, {0xcb1}, {0xffff7}, {0x7}, {0xffff}, {0x200}, {0x7, 0x0, 0x1}]}, @RTA_OIF={0x8}, @RTA_MULTIPATH={0xc, 0x9, {0x9, 0x8, 0x2}}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x3}, @RTA_OIF={0x8}, @RTA_TTL_PROPAGATE={0x5, 0x1a, 0x4}, @RTA_VIA={0x14, 0x12, {0x9, "a06d839ef4693f6bb98420a53a74"}}, @RTA_MULTIPATH={0xc, 0x9, {0xfff, 0x60, 0x97, r7}}]}, 0x100}, 0x1, 0x0, 0x0, 0x8005}, 0x8040) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) 05:18:55 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async, rerun: 64) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64) ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00000001c0)={[0x34, 0x9, 0x4, 0x200, 0x4, 0x8, 0x7, 0x0, 0x9370, 0x1, 0x7, 0x2, 0x800, 0x20, 0xd2, 0x9, 0x2, 0x665, 0x2, 0xfffffff8, 0x80000000, 0x7, 0x40, 0x1, 0x1, 0xffff95b6, 0x2d5c, 0x5, 0x373, 0x8000, 0xffffffc0, 0x9, 0x9, 0x8001, 0xffffffff, 0xffffffff, 0x5, 0x86, 0x5, 0x200, 0x0, 0x7, 0xc8, 0x5, 0x8c1, 0x0, 0x1, 0x0, 0x40, 0x4, 0x531, 0x8000, 0x22bdb4df, 0x401, 0x7f, 0x1, 0xfffffffb, 0xfffeffff, 0xfff, 0xfff, 0xffffffff, 0x7, 0x5, 0x5, 0x6, 0x6, 0x6, 0xc5, 0x1, 0x7, 0x9dc, 0x5604, 0x3, 0x4, 0x14, 0x1, 0x7fffffff, 0xb4b, 0x4b0d, 0xdaa9, 0x2, 0x9, 0x8, 0x0, 0x6, 0x4, 0x3, 0x0, 0x3f, 0x9e, 0x4, 0x4, 0x0, 0x0, 0x3, 0x6, 0x3, 0x9, 0x20, 0xfffffff7, 0x4, 0x800, 0x7fff, 0x4, 0x3, 0x2, 0x6, 0x0, 0x5, 0xff, 0x7, 0x3, 0xfd, 0x1, 0x1, 0x6, 0x2, 0x100, 0x7, 0x3, 0x401, 0x8001, 0x2, 0x80000001, 0x101, 0x464800, 0x8, 0x1ff, 0x2, 0x8, 0x3, 0xfff, 0xd32, 0x3f, 0x1, 0x0, 0xd65, 0x7, 0x401, 0x1000, 0x7fff, 0x8, 0x6, 0x1, 0x5, 0x2, 0x9, 0xa94, 0x0, 0x4, 0x314a, 0x80000000, 0x5, 0x20, 0x7f, 0x0, 0xffffffff, 0xffffffff, 0x7, 0x8, 0x61, 0x400, 0x1ff, 0x800, 0x5, 0xffffc94f, 0x4, 0x7ff, 0x7f7, 0x6af5, 0x6, 0x5, 0x1, 0x0, 0xd, 0x7ff, 0x20, 0x1ff, 0x3f, 0x57a9, 0x212, 0x7, 0x4, 0x0, 0x7f, 0xfbc, 0x7, 0x6, 0x1, 0x9, 0x10001, 0xfffffff9, 0x7fffffff, 0x44, 0x373, 0xff, 0xabc00000, 0x4, 0x20, 0x3, 0x1000, 0x2, 0x3f, 0x3, 0x400, 0x7, 0x1f, 0x8, 0x4, 0x8, 0x5, 0x6, 0x6, 0x414b, 0x9, 0x6, 0x10001, 0x2, 0x7, 0xffffff7f, 0x4, 0x34e85c98, 0xd3f, 0xffff, 0x8000, 0x4df9, 0x3, 0x1000, 0x5, 0x1, 0xfffffff9, 0xb29, 0x2, 0x4, 0x8001, 0x9, 0x1ff, 0x3, 0x5c1, 0x0, 0x0, 0x20000000, 0x1, 0xfff, 0xb6db, 0x6, 0x5, 0x2, 0x4, 0x4, 0x101, 0x101, 0x1f88, 0x1, 0x3f, 0x9000000, 0x355, 0x4, 0x10001, 0x3, 0x81, 0x9, 0x11f, 0x3, 0x3, 0xfffffffa, 0x7f, 0x2, 0x3ff, 0x0, 0x0, 0x4, 0x80000000, 0x7f, 0x3f, 0xb9b3, 0x5, 0x7f, 0x1, 0x1, 0x1, 0x9e, 0x80, 0x7f, 0x6, 0x9, 0x2, 0x3a0f, 0x80000001, 0x40, 0x3, 0x6, 0x20, 0x800, 0x5, 0xfffffff8, 0x0, 0x4, 0x1, 0x7218, 0x4, 0x4, 0x424e, 0x6, 0x2, 0x0, 0x1, 0x6, 0x8, 0x0, 0x80, 0x0, 0x2, 0x2, 0x7, 0x6, 0x9, 0x80000000, 0x2, 0x4, 0x5, 0x6, 0x3, 0x1, 0x8, 0x1, 0xf67e, 0x0, 0xb8, 0x20, 0x6, 0x9, 0x1f, 0x5, 0x9, 0x1, 0x40, 0x8, 0x8, 0x3ff, 0x1, 0x1, 0x5, 0x4, 0x5, 0x1ff00, 0x9b8, 0x28, 0x5277, 0x7ff, 0x80000000, 0x0, 0x7, 0x0, 0x100, 0xfffffffd, 0x6, 0x1, 0x1, 0x101, 0x98, 0x9, 0xfffffffe, 0x8001, 0x7fffffff, 0x79, 0x8, 0x5, 0x5, 0xfffff801, 0x6, 0x7, 0x133, 0x9, 0xf00, 0xfffffffb, 0x3ff, 0x8, 0x0, 0x7, 0x15, 0xffff, 0x7d00, 0xcd43, 0x4, 0x3f, 0x5, 0x200, 0xffff, 0x69, 0x8, 0x6e, 0x10001, 0xfff, 0xffffff2f, 0x66e, 0x7, 0x8000, 0x0, 0x101, 0x1c9b21bd, 0x6, 0xe30, 0x3, 0x2, 0x8000000, 0x400, 0x7ff, 0x2, 0xa26, 0x4, 0x10000, 0xffffffc0, 0x8, 0xdd12807, 0x5, 0x9, 0x8, 0x8, 0x5, 0x1, 0x0, 0xf88d, 0x2, 0xffffff80, 0x52ed, 0x3, 0x0, 0x101, 0x81, 0x1, 0xffffffff, 0x4, 0x401, 0x1, 0x7, 0x9, 0x1000, 0x400, 0x5, 0x6, 0x1, 0xfffffc01, 0x0, 0x6, 0x5000, 0x7fff, 0x81, 0x401, 0x7ff, 0x10001, 0x5, 0x3, 0x3, 0x20, 0x9, 0x6, 0x20000000, 0x10001, 0x7, 0x7fff, 0x0, 0xfffffff7, 0x8001, 0x4, 0x6, 0x80, 0x4, 0x997, 0x8d0, 0xfffffffe, 0x100, 0x3, 0x7, 0x81, 0xffff, 0x355be9a2, 0x8, 0xca07, 0x4, 0x3, 0x6, 0x8000, 0x0, 0x6, 0x356d, 0x6, 0x4, 0x0, 0x6, 0x3f, 0x4, 0x3, 0x2, 0xb7, 0x1, 0x3, 0x10001, 0xb7a, 0xfff, 0x8, 0x1f, 0x5, 0x3e, 0x9, 0x3, 0x7, 0x7, 0xedb, 0x14019b60, 0xce04, 0x6, 0x7, 0x1, 0x4, 0x3, 0x5, 0xfffffffa, 0xba0, 0xffff, 0xe5, 0x3, 0x6e6b71f1, 0x5, 0x4, 0xad00, 0xfff, 0x0, 0x0, 0x1, 0x7, 0x7, 0x0, 0x1b0b, 0xff, 0x4, 0x3, 0x6, 0xff, 0x7, 0x2, 0x5, 0x57, 0x8000, 0x5, 0x8, 0x10001, 0x9, 0x1, 0x4, 0x80000001, 0x3, 0x1, 0x7, 0x0, 0x6b, 0x7f, 0x7, 0x4, 0xfe000000, 0x200, 0xff, 0x8, 0x5, 0x7fff, 0x60, 0x10000, 0x1, 0xff, 0x5, 0x1000, 0x3, 0x2c, 0x9, 0x7, 0xa2f, 0x0, 0x81, 0xfffffffe, 0x0, 0x12df, 0x6, 0x1ff, 0x810000, 0x7, 0x4, 0x7b, 0x7, 0x26, 0x0, 0x80000000, 0xfffffffc, 0x3ff, 0x3, 0xff, 0x1, 0xffff, 0x4, 0x7fffffff, 0x3f, 0x80, 0x5, 0x101, 0x18f, 0x7, 0x10000, 0xa14, 0xfffffffd, 0x1, 0x9, 0xff, 0x44, 0x3, 0x81, 0x8fa, 0x7, 0x7, 0x2, 0x54ac, 0x1, 0x9, 0xa3e, 0x5, 0x1, 0xc7, 0x5, 0x7f, 0x1ff, 0xffffffff, 0x6, 0xd0, 0xc521, 0x81, 0x5, 0x8, 0x2, 0x3, 0x2, 0x80000000, 0x4, 0x0, 0x3, 0xa58, 0x4, 0x8001, 0x40, 0x8, 0x3, 0x8, 0x1f, 0x8, 0x100, 0x80000001, 0x1, 0x4, 0xe919, 0x2, 0xffffffd5, 0x3, 0x7fffffff, 0x7fffffff, 0x6, 0xff5, 0x3, 0x10000, 0x4, 0x7, 0x10001, 0x5, 0x2, 0x3, 0x8, 0x8, 0x3f, 0x200, 0x2, 0x200, 0x7, 0x8, 0x7, 0xff, 0x2, 0xbe, 0xfffffffb, 0xfff, 0x40, 0x8, 0x5, 0x6e, 0xfffffffb, 0xfffffc01, 0x7, 0xac, 0xc84, 0x8000, 0x93, 0xffffffff, 0x518, 0x4, 0x2, 0x4, 0x9, 0x39, 0x4, 0x8, 0x0, 0x27, 0x3, 0xd8, 0x6, 0xfff, 0x1, 0x400, 0x5, 0x3ee, 0x10000000, 0x200, 0x2f45, 0x1, 0x81, 0x9af5, 0x7, 0x740, 0x2, 0x401, 0x7fff, 0x20, 0x85e, 0x214, 0x800, 0x7337, 0xf47c, 0xff, 0x778, 0x4, 0x1, 0x2, 0x4, 0x1, 0x6, 0x5, 0x2, 0xffffffff, 0xffff, 0x8, 0x2, 0x100, 0x9, 0xaa03, 0x1, 0x0, 0x611baa3e, 0x7fffffff, 0x8, 0x7, 0x6, 0x8f7, 0x1, 0x6, 0x4, 0x8, 0x0, 0x8, 0x5, 0x80, 0xba, 0x3, 0x7fff, 0x2, 0x8, 0x6, 0xfffffff7, 0x5, 0x20, 0x800, 0x9, 0x5, 0x8001, 0x0, 0x4150481c, 0x6, 0x1, 0x800, 0x4, 0x10001, 0x5, 0x1, 0x31, 0x8, 0x0, 0x0, 0x9, 0xffffffff, 0x0, 0x6, 0x4, 0x10000, 0xffffff5f, 0x101, 0x5, 0x5, 0xee, 0xd8c, 0x3, 0x10001, 0x10001, 0xfffffffb, 0x100, 0x8, 0x1, 0x9, 0x8, 0x4, 0x2, 0x1f, 0x3946, 0x1, 0x7, 0x7, 0x6, 0x80000000, 0x7, 0x2, 0x2, 0xd1, 0x7fffffff, 0x5, 0x7, 0x6, 0x100, 0xfffffb65, 0xffff6593, 0x0, 0x3, 0x8, 0x6, 0x7fffffff, 0x7, 0x3ff, 0x2, 0x8, 0xe62, 0x1, 0x800, 0x2, 0x1, 0xfffffff7, 0x7, 0x2, 0x6, 0xc, 0xffffffff, 0x401, 0x401, 0x6, 0x1ff, 0x9, 0xffffffff, 0x80000000, 0x5, 0x6, 0xc0000000, 0xd06, 0x8, 0x9, 0x8, 0x7e000000, 0x0, 0x1000, 0x0, 0x9, 0xc8c, 0x1ff, 0x1, 0x9, 0x1, 0x3ff, 0xd, 0x1ff, 0x7, 0x7fffffff, 0x1000, 0xffffffff, 0x6, 0x9, 0x8, 0x1ff, 0x5, 0x7fffffff, 0x3, 0x7, 0x80000001, 0x5, 0x8d0, 0x7, 0xffff, 0xffffffff, 0xef3, 0xd6dc, 0x80000000, 0x9, 0x8c2, 0x12fbe148, 0x7ff, 0x1ff, 0x9, 0x24, 0x484f, 0x0, 0x7fff, 0xfff, 0x800, 0x2, 0x6, 0x1, 0x3, 0x3, 0x7, 0x4, 0x6b, 0x5, 0xffff, 0xffffffff, 0xc9, 0x4, 0x506, 0xc6, 0x382, 0x80000000, 0xbca9, 0x3, 0x3, 0x8, 0x5, 0x9bb, 0x680d, 0x5, 0x0, 0x0, 0x9, 0x2, 0x400, 0xff, 0x5, 0x0, 0x2, 0x7b1, 0x1000, 0xfffffffc, 0x0, 0x10000, 0x9, 0x9, 0x8, 0x6, 0xd3, 0xdc3, 0x96, 0x1, 0x1, 0x4178, 0x3, 0x1000, 0x7, 0x8, 0x3, 0x100, 0x3, 0x0, 0x8, 0x0, 0x1ff, 0x4, 0x5, 0xfbb, 0x2, 0xe34, 0xffff, 0x1f, 0xcf, 0x3, 0x1, 0x81, 0x0, 0x800000, 0x0, 0x3, 0x7f7b734b, 0x9, 0x1, 0xffffffff, 0xb60b, 0x3, 0xc11, 0x10001, 0x8, 0x7fff, 0x948, 0x4, 0x55, 0x7f, 0x6, 0x7fffffff, 0x1f, 0x0, 0x9, 0x7, 0x7f, 0x101, 0x800, 0x4a1, 0x0, 0x3f, 0xffff0001, 0x5, 0xfff, 0x6, 0x9, 0x931, 0x4, 0x101, 0x1, 0x7, 0x7f]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r2, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) 05:18:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r2, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r3, r4, 0x80000) (async) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) (async) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r2, r6, 0x80000) (async) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) (async) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) (async) 05:18:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:55 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) [ 1012.674334] *** Guest State *** [ 1012.703861] CR0: actual=0x0000000000000030, shadow=0x0000000060000010, gh_mask=fffffffffffffff7 05:18:55 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r2, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) 05:18:55 executing program 0: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x3, 0x2, 0x20, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff35f5, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x0, 0x6, 0x10001, 0x2, 0x7, 0x1000, 0x100, 0x0, 0x2, 0x0, 0x4}, r0, 0x5, 0xffffffffffffffff, 0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) [ 1012.756960] CR4: actual=0x0000000000002040, shadow=0x0000000000000000, gh_mask=ffffffffffffe871 05:18:55 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140), 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) [ 1012.821819] CR3 = 0x0000000000000000 [ 1012.865970] RSP = 0x0000000000000f80 RIP = 0x0000000000000000 [ 1012.888372] RFLAGS=0x00000002 DR7 = 0x0000000000000400 [ 1012.894996] Sysenter RSP=0000000000000000 CS:RIP=0000:0000000000000000 [ 1012.901823] CS: sel=0x0000, attr=0x0009b, limit=0x0000ffff, base=0x0000000000000000 [ 1012.910246] DS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1012.922435] SS: sel=0x0000, attr=0x00081, limit=0x0000ffff, base=0x0000000000000000 [ 1012.932411] ES: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1012.940747] FS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1012.949118] GS: sel=0x0000, attr=0x00093, limit=0x0000ffff, base=0x0000000000000000 [ 1012.957390] GDTR: limit=0x000007ff, base=0x0000000000001000 [ 1012.966873] LDTR: sel=0x0008, attr=0x04082, limit=0x000007ff, base=0x0000000000001800 [ 1012.984283] IDTR: limit=0x0000ffff, base=0x0000000000000000 [ 1013.006076] TR: sel=0x0000, attr=0x0008b, limit=0x0000ffff, base=0x0000000000000000 [ 1013.024658] EFER = 0x0000000000000000 PAT = 0x0007040600070406 [ 1013.037483] DebugCtl = 0x0000000000000000 DebugExceptions = 0x0000000000000000 [ 1013.052599] Interruptibility = 00000000 ActivityState = 00000000 [ 1013.060032] *** Host State *** [ 1013.063501] RIP = 0xffffffff811a9c2f RSP = 0xffff8880591cf8c0 [ 1013.070213] CS=0010 SS=0018 DS=0000 ES=0000 FS=0000 GS=0000 TR=0040 [ 1013.076955] FSBase=00007efc4f305700 GSBase=ffff8880ba100000 TRBase=fffffe0000003000 [ 1013.085085] GDTBase=fffffe0000001000 IDTBase=fffffe0000000000 [ 1013.091520] CR0=0000000080050033 CR3=00000000913a9000 CR4=00000000003426e0 [ 1013.100616] Sysenter RSP=fffffe0000003000 CS:RIP=0010:ffffffff88201290 [ 1013.110924] EFER = 0x0000000000000d01 PAT = 0x0407050600070106 [ 1013.117461] *** Control State *** [ 1013.121014] PinBased=0000003f CPUBased=b5986dfa SecondaryExec=000000ea [ 1013.135591] EntryControls=0000d1ff ExitControls=002fefff [ 1013.153480] ExceptionBitmap=00060042 PFECmask=00000000 PFECmatch=00000000 [ 1013.170444] VMEntry: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1013.177740] VMExit: intr_info=00000000 errcode=00000000 ilen=00000000 [ 1013.189421] reason=80000021 qualification=0000000000000000 [ 1013.196127] IDTVectoring: info=00000000 errcode=00000000 [ 1013.201678] TSC Offset = 0xfffffdf793ecc264 [ 1013.206284] EPT pointer = 0x000000009f58d01e [ 1013.210786] Virtual processor ID = 0x0001 05:18:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00000001c0)={[0x34, 0x9, 0x4, 0x200, 0x4, 0x8, 0x7, 0x0, 0x9370, 0x1, 0x7, 0x2, 0x800, 0x20, 0xd2, 0x9, 0x2, 0x665, 0x2, 0xfffffff8, 0x80000000, 0x7, 0x40, 0x1, 0x1, 0xffff95b6, 0x2d5c, 0x5, 0x373, 0x8000, 0xffffffc0, 0x9, 0x9, 0x8001, 0xffffffff, 0xffffffff, 0x5, 0x86, 0x5, 0x200, 0x0, 0x7, 0xc8, 0x5, 0x8c1, 0x0, 0x1, 0x0, 0x40, 0x4, 0x531, 0x8000, 0x22bdb4df, 0x401, 0x7f, 0x1, 0xfffffffb, 0xfffeffff, 0xfff, 0xfff, 0xffffffff, 0x7, 0x5, 0x5, 0x6, 0x6, 0x6, 0xc5, 0x1, 0x7, 0x9dc, 0x5604, 0x3, 0x4, 0x14, 0x1, 0x7fffffff, 0xb4b, 0x4b0d, 0xdaa9, 0x2, 0x9, 0x8, 0x0, 0x6, 0x4, 0x3, 0x0, 0x3f, 0x9e, 0x4, 0x4, 0x0, 0x0, 0x3, 0x6, 0x3, 0x9, 0x20, 0xfffffff7, 0x4, 0x800, 0x7fff, 0x4, 0x3, 0x2, 0x6, 0x0, 0x5, 0xff, 0x7, 0x3, 0xfd, 0x1, 0x1, 0x6, 0x2, 0x100, 0x7, 0x3, 0x401, 0x8001, 0x2, 0x80000001, 0x101, 0x464800, 0x8, 0x1ff, 0x2, 0x8, 0x3, 0xfff, 0xd32, 0x3f, 0x1, 0x0, 0xd65, 0x7, 0x401, 0x1000, 0x7fff, 0x8, 0x6, 0x1, 0x5, 0x2, 0x9, 0xa94, 0x0, 0x4, 0x314a, 0x80000000, 0x5, 0x20, 0x7f, 0x0, 0xffffffff, 0xffffffff, 0x7, 0x8, 0x61, 0x400, 0x1ff, 0x800, 0x5, 0xffffc94f, 0x4, 0x7ff, 0x7f7, 0x6af5, 0x6, 0x5, 0x1, 0x0, 0xd, 0x7ff, 0x20, 0x1ff, 0x3f, 0x57a9, 0x212, 0x7, 0x4, 0x0, 0x7f, 0xfbc, 0x7, 0x6, 0x1, 0x9, 0x10001, 0xfffffff9, 0x7fffffff, 0x44, 0x373, 0xff, 0xabc00000, 0x4, 0x20, 0x3, 0x1000, 0x2, 0x3f, 0x3, 0x400, 0x7, 0x1f, 0x8, 0x4, 0x8, 0x5, 0x6, 0x6, 0x414b, 0x9, 0x6, 0x10001, 0x2, 0x7, 0xffffff7f, 0x4, 0x34e85c98, 0xd3f, 0xffff, 0x8000, 0x4df9, 0x3, 0x1000, 0x5, 0x1, 0xfffffff9, 0xb29, 0x2, 0x4, 0x8001, 0x9, 0x1ff, 0x3, 0x5c1, 0x0, 0x0, 0x20000000, 0x1, 0xfff, 0xb6db, 0x6, 0x5, 0x2, 0x4, 0x4, 0x101, 0x101, 0x1f88, 0x1, 0x3f, 0x9000000, 0x355, 0x4, 0x10001, 0x3, 0x81, 0x9, 0x11f, 0x3, 0x3, 0xfffffffa, 0x7f, 0x2, 0x3ff, 0x0, 0x0, 0x4, 0x80000000, 0x7f, 0x3f, 0xb9b3, 0x5, 0x7f, 0x1, 0x1, 0x1, 0x9e, 0x80, 0x7f, 0x6, 0x9, 0x2, 0x3a0f, 0x80000001, 0x40, 0x3, 0x6, 0x20, 0x800, 0x5, 0xfffffff8, 0x0, 0x4, 0x1, 0x7218, 0x4, 0x4, 0x424e, 0x6, 0x2, 0x0, 0x1, 0x6, 0x8, 0x0, 0x80, 0x0, 0x2, 0x2, 0x7, 0x6, 0x9, 0x80000000, 0x2, 0x4, 0x5, 0x6, 0x3, 0x1, 0x8, 0x1, 0xf67e, 0x0, 0xb8, 0x20, 0x6, 0x9, 0x1f, 0x5, 0x9, 0x1, 0x40, 0x8, 0x8, 0x3ff, 0x1, 0x1, 0x5, 0x4, 0x5, 0x1ff00, 0x9b8, 0x28, 0x5277, 0x7ff, 0x80000000, 0x0, 0x7, 0x0, 0x100, 0xfffffffd, 0x6, 0x1, 0x1, 0x101, 0x98, 0x9, 0xfffffffe, 0x8001, 0x7fffffff, 0x79, 0x8, 0x5, 0x5, 0xfffff801, 0x6, 0x7, 0x133, 0x9, 0xf00, 0xfffffffb, 0x3ff, 0x8, 0x0, 0x7, 0x15, 0xffff, 0x7d00, 0xcd43, 0x4, 0x3f, 0x5, 0x200, 0xffff, 0x69, 0x8, 0x6e, 0x10001, 0xfff, 0xffffff2f, 0x66e, 0x7, 0x8000, 0x0, 0x101, 0x1c9b21bd, 0x6, 0xe30, 0x3, 0x2, 0x8000000, 0x400, 0x7ff, 0x2, 0xa26, 0x4, 0x10000, 0xffffffc0, 0x8, 0xdd12807, 0x5, 0x9, 0x8, 0x8, 0x5, 0x1, 0x0, 0xf88d, 0x2, 0xffffff80, 0x52ed, 0x3, 0x0, 0x101, 0x81, 0x1, 0xffffffff, 0x4, 0x401, 0x1, 0x7, 0x9, 0x1000, 0x400, 0x5, 0x6, 0x1, 0xfffffc01, 0x0, 0x6, 0x5000, 0x7fff, 0x81, 0x401, 0x7ff, 0x10001, 0x5, 0x3, 0x3, 0x20, 0x9, 0x6, 0x20000000, 0x10001, 0x7, 0x7fff, 0x0, 0xfffffff7, 0x8001, 0x4, 0x6, 0x80, 0x4, 0x997, 0x8d0, 0xfffffffe, 0x100, 0x3, 0x7, 0x81, 0xffff, 0x355be9a2, 0x8, 0xca07, 0x4, 0x3, 0x6, 0x8000, 0x0, 0x6, 0x356d, 0x6, 0x4, 0x0, 0x6, 0x3f, 0x4, 0x3, 0x2, 0xb7, 0x1, 0x3, 0x10001, 0xb7a, 0xfff, 0x8, 0x1f, 0x5, 0x3e, 0x9, 0x3, 0x7, 0x7, 0xedb, 0x14019b60, 0xce04, 0x6, 0x7, 0x1, 0x4, 0x3, 0x5, 0xfffffffa, 0xba0, 0xffff, 0xe5, 0x3, 0x6e6b71f1, 0x5, 0x4, 0xad00, 0xfff, 0x0, 0x0, 0x1, 0x7, 0x7, 0x0, 0x1b0b, 0xff, 0x4, 0x3, 0x6, 0xff, 0x7, 0x2, 0x5, 0x57, 0x8000, 0x5, 0x8, 0x10001, 0x9, 0x1, 0x4, 0x80000001, 0x3, 0x1, 0x7, 0x0, 0x6b, 0x7f, 0x7, 0x4, 0xfe000000, 0x200, 0xff, 0x8, 0x5, 0x7fff, 0x60, 0x10000, 0x1, 0xff, 0x5, 0x1000, 0x3, 0x2c, 0x9, 0x7, 0xa2f, 0x0, 0x81, 0xfffffffe, 0x0, 0x12df, 0x6, 0x1ff, 0x810000, 0x7, 0x4, 0x7b, 0x7, 0x26, 0x0, 0x80000000, 0xfffffffc, 0x3ff, 0x3, 0xff, 0x1, 0xffff, 0x4, 0x7fffffff, 0x3f, 0x80, 0x5, 0x101, 0x18f, 0x7, 0x10000, 0xa14, 0xfffffffd, 0x1, 0x9, 0xff, 0x44, 0x3, 0x81, 0x8fa, 0x7, 0x7, 0x2, 0x54ac, 0x1, 0x9, 0xa3e, 0x5, 0x1, 0xc7, 0x5, 0x7f, 0x1ff, 0xffffffff, 0x6, 0xd0, 0xc521, 0x81, 0x5, 0x8, 0x2, 0x3, 0x2, 0x80000000, 0x4, 0x0, 0x3, 0xa58, 0x4, 0x8001, 0x40, 0x8, 0x3, 0x8, 0x1f, 0x8, 0x100, 0x80000001, 0x1, 0x4, 0xe919, 0x2, 0xffffffd5, 0x3, 0x7fffffff, 0x7fffffff, 0x6, 0xff5, 0x3, 0x10000, 0x4, 0x7, 0x10001, 0x5, 0x2, 0x3, 0x8, 0x8, 0x3f, 0x200, 0x2, 0x200, 0x7, 0x8, 0x7, 0xff, 0x2, 0xbe, 0xfffffffb, 0xfff, 0x40, 0x8, 0x5, 0x6e, 0xfffffffb, 0xfffffc01, 0x7, 0xac, 0xc84, 0x8000, 0x93, 0xffffffff, 0x518, 0x4, 0x2, 0x4, 0x9, 0x39, 0x4, 0x8, 0x0, 0x27, 0x3, 0xd8, 0x6, 0xfff, 0x1, 0x400, 0x5, 0x3ee, 0x10000000, 0x200, 0x2f45, 0x1, 0x81, 0x9af5, 0x7, 0x740, 0x2, 0x401, 0x7fff, 0x20, 0x85e, 0x214, 0x800, 0x7337, 0xf47c, 0xff, 0x778, 0x4, 0x1, 0x2, 0x4, 0x1, 0x6, 0x5, 0x2, 0xffffffff, 0xffff, 0x8, 0x2, 0x100, 0x9, 0xaa03, 0x1, 0x0, 0x611baa3e, 0x7fffffff, 0x8, 0x7, 0x6, 0x8f7, 0x1, 0x6, 0x4, 0x8, 0x0, 0x8, 0x5, 0x80, 0xba, 0x3, 0x7fff, 0x2, 0x8, 0x6, 0xfffffff7, 0x5, 0x20, 0x800, 0x9, 0x5, 0x8001, 0x0, 0x4150481c, 0x6, 0x1, 0x800, 0x4, 0x10001, 0x5, 0x1, 0x31, 0x8, 0x0, 0x0, 0x9, 0xffffffff, 0x0, 0x6, 0x4, 0x10000, 0xffffff5f, 0x101, 0x5, 0x5, 0xee, 0xd8c, 0x3, 0x10001, 0x10001, 0xfffffffb, 0x100, 0x8, 0x1, 0x9, 0x8, 0x4, 0x2, 0x1f, 0x3946, 0x1, 0x7, 0x7, 0x6, 0x80000000, 0x7, 0x2, 0x2, 0xd1, 0x7fffffff, 0x5, 0x7, 0x6, 0x100, 0xfffffb65, 0xffff6593, 0x0, 0x3, 0x8, 0x6, 0x7fffffff, 0x7, 0x3ff, 0x2, 0x8, 0xe62, 0x1, 0x800, 0x2, 0x1, 0xfffffff7, 0x7, 0x2, 0x6, 0xc, 0xffffffff, 0x401, 0x401, 0x6, 0x1ff, 0x9, 0xffffffff, 0x80000000, 0x5, 0x6, 0xc0000000, 0xd06, 0x8, 0x9, 0x8, 0x7e000000, 0x0, 0x1000, 0x0, 0x9, 0xc8c, 0x1ff, 0x1, 0x9, 0x1, 0x3ff, 0xd, 0x1ff, 0x7, 0x7fffffff, 0x1000, 0xffffffff, 0x6, 0x9, 0x8, 0x1ff, 0x5, 0x7fffffff, 0x3, 0x7, 0x80000001, 0x5, 0x8d0, 0x7, 0xffff, 0xffffffff, 0xef3, 0xd6dc, 0x80000000, 0x9, 0x8c2, 0x12fbe148, 0x7ff, 0x1ff, 0x9, 0x24, 0x484f, 0x0, 0x7fff, 0xfff, 0x800, 0x2, 0x6, 0x1, 0x3, 0x3, 0x7, 0x4, 0x6b, 0x5, 0xffff, 0xffffffff, 0xc9, 0x4, 0x506, 0xc6, 0x382, 0x80000000, 0xbca9, 0x3, 0x3, 0x8, 0x5, 0x9bb, 0x680d, 0x5, 0x0, 0x0, 0x9, 0x2, 0x400, 0xff, 0x5, 0x0, 0x2, 0x7b1, 0x1000, 0xfffffffc, 0x0, 0x10000, 0x9, 0x9, 0x8, 0x6, 0xd3, 0xdc3, 0x96, 0x1, 0x1, 0x4178, 0x3, 0x1000, 0x7, 0x8, 0x3, 0x100, 0x3, 0x0, 0x8, 0x0, 0x1ff, 0x4, 0x5, 0xfbb, 0x2, 0xe34, 0xffff, 0x1f, 0xcf, 0x3, 0x1, 0x81, 0x0, 0x800000, 0x0, 0x3, 0x7f7b734b, 0x9, 0x1, 0xffffffff, 0xb60b, 0x3, 0xc11, 0x10001, 0x8, 0x7fff, 0x948, 0x4, 0x55, 0x7f, 0x6, 0x7fffffff, 0x1f, 0x0, 0x9, 0x7, 0x7f, 0x101, 0x800, 0x4a1, 0x0, 0x3f, 0xffff0001, 0x5, 0xfff, 0x6, 0x9, 0x931, 0x4, 0x101, 0x1, 0x7, 0x7f]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, &(0x7f00000001c0)={[0x34, 0x9, 0x4, 0x200, 0x4, 0x8, 0x7, 0x0, 0x9370, 0x1, 0x7, 0x2, 0x800, 0x20, 0xd2, 0x9, 0x2, 0x665, 0x2, 0xfffffff8, 0x80000000, 0x7, 0x40, 0x1, 0x1, 0xffff95b6, 0x2d5c, 0x5, 0x373, 0x8000, 0xffffffc0, 0x9, 0x9, 0x8001, 0xffffffff, 0xffffffff, 0x5, 0x86, 0x5, 0x200, 0x0, 0x7, 0xc8, 0x5, 0x8c1, 0x0, 0x1, 0x0, 0x40, 0x4, 0x531, 0x8000, 0x22bdb4df, 0x401, 0x7f, 0x1, 0xfffffffb, 0xfffeffff, 0xfff, 0xfff, 0xffffffff, 0x7, 0x5, 0x5, 0x6, 0x6, 0x6, 0xc5, 0x1, 0x7, 0x9dc, 0x5604, 0x3, 0x4, 0x14, 0x1, 0x7fffffff, 0xb4b, 0x4b0d, 0xdaa9, 0x2, 0x9, 0x8, 0x0, 0x6, 0x4, 0x3, 0x0, 0x3f, 0x9e, 0x4, 0x4, 0x0, 0x0, 0x3, 0x6, 0x3, 0x9, 0x20, 0xfffffff7, 0x4, 0x800, 0x7fff, 0x4, 0x3, 0x2, 0x6, 0x0, 0x5, 0xff, 0x7, 0x3, 0xfd, 0x1, 0x1, 0x6, 0x2, 0x100, 0x7, 0x3, 0x401, 0x8001, 0x2, 0x80000001, 0x101, 0x464800, 0x8, 0x1ff, 0x2, 0x8, 0x3, 0xfff, 0xd32, 0x3f, 0x1, 0x0, 0xd65, 0x7, 0x401, 0x1000, 0x7fff, 0x8, 0x6, 0x1, 0x5, 0x2, 0x9, 0xa94, 0x0, 0x4, 0x314a, 0x80000000, 0x5, 0x20, 0x7f, 0x0, 0xffffffff, 0xffffffff, 0x7, 0x8, 0x61, 0x400, 0x1ff, 0x800, 0x5, 0xffffc94f, 0x4, 0x7ff, 0x7f7, 0x6af5, 0x6, 0x5, 0x1, 0x0, 0xd, 0x7ff, 0x20, 0x1ff, 0x3f, 0x57a9, 0x212, 0x7, 0x4, 0x0, 0x7f, 0xfbc, 0x7, 0x6, 0x1, 0x9, 0x10001, 0xfffffff9, 0x7fffffff, 0x44, 0x373, 0xff, 0xabc00000, 0x4, 0x20, 0x3, 0x1000, 0x2, 0x3f, 0x3, 0x400, 0x7, 0x1f, 0x8, 0x4, 0x8, 0x5, 0x6, 0x6, 0x414b, 0x9, 0x6, 0x10001, 0x2, 0x7, 0xffffff7f, 0x4, 0x34e85c98, 0xd3f, 0xffff, 0x8000, 0x4df9, 0x3, 0x1000, 0x5, 0x1, 0xfffffff9, 0xb29, 0x2, 0x4, 0x8001, 0x9, 0x1ff, 0x3, 0x5c1, 0x0, 0x0, 0x20000000, 0x1, 0xfff, 0xb6db, 0x6, 0x5, 0x2, 0x4, 0x4, 0x101, 0x101, 0x1f88, 0x1, 0x3f, 0x9000000, 0x355, 0x4, 0x10001, 0x3, 0x81, 0x9, 0x11f, 0x3, 0x3, 0xfffffffa, 0x7f, 0x2, 0x3ff, 0x0, 0x0, 0x4, 0x80000000, 0x7f, 0x3f, 0xb9b3, 0x5, 0x7f, 0x1, 0x1, 0x1, 0x9e, 0x80, 0x7f, 0x6, 0x9, 0x2, 0x3a0f, 0x80000001, 0x40, 0x3, 0x6, 0x20, 0x800, 0x5, 0xfffffff8, 0x0, 0x4, 0x1, 0x7218, 0x4, 0x4, 0x424e, 0x6, 0x2, 0x0, 0x1, 0x6, 0x8, 0x0, 0x80, 0x0, 0x2, 0x2, 0x7, 0x6, 0x9, 0x80000000, 0x2, 0x4, 0x5, 0x6, 0x3, 0x1, 0x8, 0x1, 0xf67e, 0x0, 0xb8, 0x20, 0x6, 0x9, 0x1f, 0x5, 0x9, 0x1, 0x40, 0x8, 0x8, 0x3ff, 0x1, 0x1, 0x5, 0x4, 0x5, 0x1ff00, 0x9b8, 0x28, 0x5277, 0x7ff, 0x80000000, 0x0, 0x7, 0x0, 0x100, 0xfffffffd, 0x6, 0x1, 0x1, 0x101, 0x98, 0x9, 0xfffffffe, 0x8001, 0x7fffffff, 0x79, 0x8, 0x5, 0x5, 0xfffff801, 0x6, 0x7, 0x133, 0x9, 0xf00, 0xfffffffb, 0x3ff, 0x8, 0x0, 0x7, 0x15, 0xffff, 0x7d00, 0xcd43, 0x4, 0x3f, 0x5, 0x200, 0xffff, 0x69, 0x8, 0x6e, 0x10001, 0xfff, 0xffffff2f, 0x66e, 0x7, 0x8000, 0x0, 0x101, 0x1c9b21bd, 0x6, 0xe30, 0x3, 0x2, 0x8000000, 0x400, 0x7ff, 0x2, 0xa26, 0x4, 0x10000, 0xffffffc0, 0x8, 0xdd12807, 0x5, 0x9, 0x8, 0x8, 0x5, 0x1, 0x0, 0xf88d, 0x2, 0xffffff80, 0x52ed, 0x3, 0x0, 0x101, 0x81, 0x1, 0xffffffff, 0x4, 0x401, 0x1, 0x7, 0x9, 0x1000, 0x400, 0x5, 0x6, 0x1, 0xfffffc01, 0x0, 0x6, 0x5000, 0x7fff, 0x81, 0x401, 0x7ff, 0x10001, 0x5, 0x3, 0x3, 0x20, 0x9, 0x6, 0x20000000, 0x10001, 0x7, 0x7fff, 0x0, 0xfffffff7, 0x8001, 0x4, 0x6, 0x80, 0x4, 0x997, 0x8d0, 0xfffffffe, 0x100, 0x3, 0x7, 0x81, 0xffff, 0x355be9a2, 0x8, 0xca07, 0x4, 0x3, 0x6, 0x8000, 0x0, 0x6, 0x356d, 0x6, 0x4, 0x0, 0x6, 0x3f, 0x4, 0x3, 0x2, 0xb7, 0x1, 0x3, 0x10001, 0xb7a, 0xfff, 0x8, 0x1f, 0x5, 0x3e, 0x9, 0x3, 0x7, 0x7, 0xedb, 0x14019b60, 0xce04, 0x6, 0x7, 0x1, 0x4, 0x3, 0x5, 0xfffffffa, 0xba0, 0xffff, 0xe5, 0x3, 0x6e6b71f1, 0x5, 0x4, 0xad00, 0xfff, 0x0, 0x0, 0x1, 0x7, 0x7, 0x0, 0x1b0b, 0xff, 0x4, 0x3, 0x6, 0xff, 0x7, 0x2, 0x5, 0x57, 0x8000, 0x5, 0x8, 0x10001, 0x9, 0x1, 0x4, 0x80000001, 0x3, 0x1, 0x7, 0x0, 0x6b, 0x7f, 0x7, 0x4, 0xfe000000, 0x200, 0xff, 0x8, 0x5, 0x7fff, 0x60, 0x10000, 0x1, 0xff, 0x5, 0x1000, 0x3, 0x2c, 0x9, 0x7, 0xa2f, 0x0, 0x81, 0xfffffffe, 0x0, 0x12df, 0x6, 0x1ff, 0x810000, 0x7, 0x4, 0x7b, 0x7, 0x26, 0x0, 0x80000000, 0xfffffffc, 0x3ff, 0x3, 0xff, 0x1, 0xffff, 0x4, 0x7fffffff, 0x3f, 0x80, 0x5, 0x101, 0x18f, 0x7, 0x10000, 0xa14, 0xfffffffd, 0x1, 0x9, 0xff, 0x44, 0x3, 0x81, 0x8fa, 0x7, 0x7, 0x2, 0x54ac, 0x1, 0x9, 0xa3e, 0x5, 0x1, 0xc7, 0x5, 0x7f, 0x1ff, 0xffffffff, 0x6, 0xd0, 0xc521, 0x81, 0x5, 0x8, 0x2, 0x3, 0x2, 0x80000000, 0x4, 0x0, 0x3, 0xa58, 0x4, 0x8001, 0x40, 0x8, 0x3, 0x8, 0x1f, 0x8, 0x100, 0x80000001, 0x1, 0x4, 0xe919, 0x2, 0xffffffd5, 0x3, 0x7fffffff, 0x7fffffff, 0x6, 0xff5, 0x3, 0x10000, 0x4, 0x7, 0x10001, 0x5, 0x2, 0x3, 0x8, 0x8, 0x3f, 0x200, 0x2, 0x200, 0x7, 0x8, 0x7, 0xff, 0x2, 0xbe, 0xfffffffb, 0xfff, 0x40, 0x8, 0x5, 0x6e, 0xfffffffb, 0xfffffc01, 0x7, 0xac, 0xc84, 0x8000, 0x93, 0xffffffff, 0x518, 0x4, 0x2, 0x4, 0x9, 0x39, 0x4, 0x8, 0x0, 0x27, 0x3, 0xd8, 0x6, 0xfff, 0x1, 0x400, 0x5, 0x3ee, 0x10000000, 0x200, 0x2f45, 0x1, 0x81, 0x9af5, 0x7, 0x740, 0x2, 0x401, 0x7fff, 0x20, 0x85e, 0x214, 0x800, 0x7337, 0xf47c, 0xff, 0x778, 0x4, 0x1, 0x2, 0x4, 0x1, 0x6, 0x5, 0x2, 0xffffffff, 0xffff, 0x8, 0x2, 0x100, 0x9, 0xaa03, 0x1, 0x0, 0x611baa3e, 0x7fffffff, 0x8, 0x7, 0x6, 0x8f7, 0x1, 0x6, 0x4, 0x8, 0x0, 0x8, 0x5, 0x80, 0xba, 0x3, 0x7fff, 0x2, 0x8, 0x6, 0xfffffff7, 0x5, 0x20, 0x800, 0x9, 0x5, 0x8001, 0x0, 0x4150481c, 0x6, 0x1, 0x800, 0x4, 0x10001, 0x5, 0x1, 0x31, 0x8, 0x0, 0x0, 0x9, 0xffffffff, 0x0, 0x6, 0x4, 0x10000, 0xffffff5f, 0x101, 0x5, 0x5, 0xee, 0xd8c, 0x3, 0x10001, 0x10001, 0xfffffffb, 0x100, 0x8, 0x1, 0x9, 0x8, 0x4, 0x2, 0x1f, 0x3946, 0x1, 0x7, 0x7, 0x6, 0x80000000, 0x7, 0x2, 0x2, 0xd1, 0x7fffffff, 0x5, 0x7, 0x6, 0x100, 0xfffffb65, 0xffff6593, 0x0, 0x3, 0x8, 0x6, 0x7fffffff, 0x7, 0x3ff, 0x2, 0x8, 0xe62, 0x1, 0x800, 0x2, 0x1, 0xfffffff7, 0x7, 0x2, 0x6, 0xc, 0xffffffff, 0x401, 0x401, 0x6, 0x1ff, 0x9, 0xffffffff, 0x80000000, 0x5, 0x6, 0xc0000000, 0xd06, 0x8, 0x9, 0x8, 0x7e000000, 0x0, 0x1000, 0x0, 0x9, 0xc8c, 0x1ff, 0x1, 0x9, 0x1, 0x3ff, 0xd, 0x1ff, 0x7, 0x7fffffff, 0x1000, 0xffffffff, 0x6, 0x9, 0x8, 0x1ff, 0x5, 0x7fffffff, 0x3, 0x7, 0x80000001, 0x5, 0x8d0, 0x7, 0xffff, 0xffffffff, 0xef3, 0xd6dc, 0x80000000, 0x9, 0x8c2, 0x12fbe148, 0x7ff, 0x1ff, 0x9, 0x24, 0x484f, 0x0, 0x7fff, 0xfff, 0x800, 0x2, 0x6, 0x1, 0x3, 0x3, 0x7, 0x4, 0x6b, 0x5, 0xffff, 0xffffffff, 0xc9, 0x4, 0x506, 0xc6, 0x382, 0x80000000, 0xbca9, 0x3, 0x3, 0x8, 0x5, 0x9bb, 0x680d, 0x5, 0x0, 0x0, 0x9, 0x2, 0x400, 0xff, 0x5, 0x0, 0x2, 0x7b1, 0x1000, 0xfffffffc, 0x0, 0x10000, 0x9, 0x9, 0x8, 0x6, 0xd3, 0xdc3, 0x96, 0x1, 0x1, 0x4178, 0x3, 0x1000, 0x7, 0x8, 0x3, 0x100, 0x3, 0x0, 0x8, 0x0, 0x1ff, 0x4, 0x5, 0xfbb, 0x2, 0xe34, 0xffff, 0x1f, 0xcf, 0x3, 0x1, 0x81, 0x0, 0x800000, 0x0, 0x3, 0x7f7b734b, 0x9, 0x1, 0xffffffff, 0xb60b, 0x3, 0xc11, 0x10001, 0x8, 0x7fff, 0x948, 0x4, 0x55, 0x7f, 0x6, 0x7fffffff, 0x1f, 0x0, 0x9, 0x7, 0x7f, 0x101, 0x800, 0x4a1, 0x0, 0x3f, 0xffff0001, 0x5, 0xfff, 0x6, 0x9, 0x931, 0x4, 0x101, 0x1, 0x7, 0x7f]}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 05:18:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:56 executing program 0: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x3, 0x2, 0x20, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff35f5, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x0, 0x6, 0x10001, 0x2, 0x7, 0x1000, 0x100, 0x0, 0x2, 0x0, 0x4}, r0, 0x5, 0xffffffffffffffff, 0x1) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) 05:18:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x2200, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x403}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe0000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="66b8339e00000f23d80f21f86635c00000d00f23f8ea00808d000fc4c00c0f20e06635040000000f22e066b80500000066b97c8200000f01c1da050f21a3660f383c5d7abaf80c66b88e7f328866efbafc0cb8a131ef0f013b", 0x59}], 0x1, 0x8, &(0x7f00000002c0)=[@cstype0={0x4, 0x7}, @cstype0={0x4, 0x8}], 0x2) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000400)={0x1, 0x0, &(0x7f00000003c0)="2a1a6302c7346037dcce9f845930dcb74afc0b126524671edb4f5f85888aeb38c063a78eac042bbfdbd0fa9f8347dd1b8abc1127", {0x3, 0xf0000000, 0x32314752, 0x0, 0x8000, 0x2, 0x1, 0x4}}) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r2, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) syz_kvm_setup_cpu$x86(r7, r8, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="bad004b008ee0fc7b8a601260f015c08260f01c4660f38801d670f78bb359f00003ef20fe6b803000f794d006766c74424004b0000006766c74424020a0000006766c744240600000000670f0114240f0dbe198e", 0x54}], 0x1, 0x1, &(0x7f0000000140)=[@dstype0={0x6, 0xc}], 0x1) 05:18:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:56 executing program 0: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x0, 0x3, 0x2, 0x20, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff35f5, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x0, 0x6, 0x10001, 0x2, 0x7, 0x1000, 0x100, 0x0, 0x2, 0x0, 0x4}, r0, 0x5, 0xffffffffffffffff, 0x1) (async) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) 05:18:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000140)="651fd983a07e0000660f38825f8bf30f20d80f8500700000c4c27d2a553566baf80cb841ec698def66bafc0cb000eeb9370900000f32c4c1fd28ca662c0b", 0x3e}], 0xe1, 0x10, &(0x7f0000000280)=[@efer={0x2, 0x9001}, @cstype0={0x4, 0xd}], 0x2) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000000)="f0011466b9800000c00f326635000400000f30f20f4dcd260f98040f06650f01c5f336260f001cf080569b006581e3544d66b9af02000066b80000000066ba000000000f30", 0x45}], 0x1, 0x5c, &(0x7f0000000100)=[@vmwrite={0x8, 0x0, 0x13, 0x0, 0x2, 0x0, 0x3, 0x0, 0x6}], 0x1) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000001c0)="66baf80c66b819000f00d8ef66bafc0cedc744240000200000c7442402c9000000c7442406000000000f011c24c4217d546a00460f32c4e2c13a26c4817fe6213e0fc75e00f3adc4217df8889a04000066bad104fb4ff40000ef", 0x5a}], 0x1, 0x0, &(0x7f0000000140)=[@vmwrite={0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) 05:18:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r5 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r5, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r4, r7, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="0f01ddec36360f01c20fc75c00660f35f20f300f0766b80e1600000f23d00f21f866350000000c0f23f80f00d5440f20c066350e000000440f22c0", 0x3b}], 0x1, 0x2d, &(0x7f00000000c0)=[@dstype3={0x7, 0x1}, @efer={0x2, 0x100}], 0x2) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r8 = accept$nfc_llcp(r4, &(0x7f0000000240), &(0x7f0000000180)=0x60) r9 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r9, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) sendfile(r8, r9, &(0x7f00000002c0)=0x3, 0xfffffffffffff7d2) 05:18:56 executing program 0: r0 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000040)=@name, &(0x7f0000000100)=0x10, 0x0) write$binfmt_elf32(r2, &(0x7f0000000240)=ANY=[@ANYRES64=r2], 0xfffffffffffffc5a) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) dup3(0xffffffffffffffff, r0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = dup2(r3, 0xffffffffffffffff) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000001c0)) 05:18:56 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000140)="651fd983a07e0000660f38825f8bf30f20d80f8500700000c4c27d2a553566baf80cb841ec698def66bafc0cb000eeb9370900000f32c4c1fd28ca662c0b", 0x3e}], 0xe1, 0x10, &(0x7f0000000280)=[@efer={0x2, 0x9001}, @cstype0={0x4, 0xd}], 0x2) (async) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000000)="f0011466b9800000c00f326635000400000f30f20f4dcd260f98040f06650f01c5f336260f001cf080569b006581e3544d66b9af02000066b80000000066ba000000000f30", 0x45}], 0x1, 0x5c, &(0x7f0000000100)=[@vmwrite={0x8, 0x0, 0x13, 0x0, 0x2, 0x0, 0x3, 0x0, 0x6}], 0x1) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:56 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000001c0)="66baf80c66b819000f00d8ef66bafc0cedc744240000200000c7442402c9000000c7442406000000000f011c24c4217d546a00460f32c4e2c13a26c4817fe6213e0fc75e00f3adc4217df8889a04000066bad104fb4ff40000ef", 0x5a}], 0x1, 0x0, &(0x7f0000000140)=[@vmwrite={0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_NMI(r2, 0xae9a) 05:18:56 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async, rerun: 64) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 64) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text32={0x20, &(0x7f0000000140)="651fd983a07e0000660f38825f8bf30f20d80f8500700000c4c27d2a553566baf80cb841ec698def66bafc0cb000eeb9370900000f32c4c1fd28ca662c0b", 0x3e}], 0xe1, 0x10, &(0x7f0000000280)=[@efer={0x2, 0x9001}, @cstype0={0x4, 0xd}], 0x2) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c000100050603000300000000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200020000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000000)="f0011466b9800000c00f326635000400000f30f20f4dcd260f98040f06650f01c5f336260f001cf080569b006581e3544d66b9af02000066b80000000066ba000000000f30", 0x45}], 0x1, 0x5c, &(0x7f0000000100)=[@vmwrite={0x8, 0x0, 0x13, 0x0, 0x2, 0x0, 0x3, 0x0, 0x6}], 0x1) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:57 executing program 0: r0 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000040)=@name, &(0x7f0000000100)=0x10, 0x0) write$binfmt_elf32(r2, &(0x7f0000000240)=ANY=[@ANYRES64=r2], 0xfffffffffffffc5a) (async) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) dup3(0xffffffffffffffff, r0, 0x0) (async) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = dup2(r3, 0xffffffffffffffff) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000001c0)) 05:18:57 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f00000001c0)="66baf80c66b819000f00d8ef66bafc0cedc744240000200000c7442402c9000000c7442406000000000f011c24c4217d546a00460f32c4e2c13a26c4817fe6213e0fc75e00f3adc4217df8889a04000066bad104fb4ff40000ef", 0x5a}], 0x1, 0x0, &(0x7f0000000140)=[@vmwrite={0x8, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) ioctl$KVM_NMI(r2, 0xae9a) 05:18:57 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r5 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r5, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r4, r7, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="0f01ddec36360f01c20fc75c00660f35f20f300f0766b80e1600000f23d00f21f866350000000c0f23f80f00d5440f20c066350e000000440f22c0", 0x3b}], 0x1, 0x2d, &(0x7f00000000c0)=[@dstype3={0x7, 0x1}, @efer={0x2, 0x100}], 0x2) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r8 = accept$nfc_llcp(r4, &(0x7f0000000240), &(0x7f0000000180)=0x60) r9 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r9, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) sendfile(r8, r9, &(0x7f00000002c0)=0x3, 0xfffffffffffff7d2) 05:18:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="f3ab666726f30fc7b47903000000f280d4000fedc70f74554a6726660fd8f165673ef30f1efc66b80500000066b9f23200000f01c16766c74424002eef8a666766c7442402003800006766c744240600000000670f011c2465c7f8fb03", 0x5d}], 0x1, 0x0, 0x0, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:57 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 0: r0 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r2 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000040)=@name, &(0x7f0000000100)=0x10, 0x0) write$binfmt_elf32(r2, &(0x7f0000000240)=ANY=[@ANYRES64=r2], 0xfffffffffffffc5a) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) dup3(0xffffffffffffffff, r0, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = dup2(r3, 0xffffffffffffffff) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r6 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000001c0)) memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) (async) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) accept4$tipc(0xffffffffffffffff, &(0x7f0000000040)=@name, &(0x7f0000000100)=0x10, 0x0) (async) write$binfmt_elf32(r2, &(0x7f0000000240)=ANY=[@ANYRES64=r2], 0xfffffffffffffc5a) (async) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) dup3(0xffffffffffffffff, r0, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) dup2(r3, 0xffffffffffffffff) (async) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) (async) ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) (async) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:57 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:57 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="f3ab666726f30fc7b47903000000f280d4000fedc70f74554a6726660fd8f165673ef30f1efc66b80500000066b9f23200000f01c16766c74424002eef8a666766c7442402003800006766c744240600000000670f011c2465c7f8fb03", 0x5d}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 32) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (rerun: 32) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async, rerun: 32) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async, rerun: 32) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r5 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r5, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r4, r7, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="0f01ddec36360f01c20fc75c00660f35f20f300f0766b80e1600000f23d00f21f866350000000c0f23f80f00d5440f20c066350e000000440f22c0", 0x3b}], 0x1, 0x2d, &(0x7f00000000c0)=[@dstype3={0x7, 0x1}, @efer={0x2, 0x100}], 0x2) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r8 = accept$nfc_llcp(r4, &(0x7f0000000240), &(0x7f0000000180)=0x60) r9 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r9, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) sendfile(r8, r9, &(0x7f00000002c0)=0x3, 0xfffffffffffff7d2) 05:18:58 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r1 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r1, r0, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x408100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="66000000001994004c7a0b0006dfbda92451830000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000000)={0x1000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r3) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r4, 0x809, 0x0, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xcc8c0}, 0x8050) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) r6 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="66010000a924c64f00000000000000000000000000000000588b42334e6c3c4e398777c02c7028766747700175b62158524d9dd0cf74bc7489fa8dae102bf7158a2614f46e23f11bb4bd8fafb6f12b40283b6403f8d9ec44202ce8cec3fb0dd59fe43ea305fec48e78faddf7aae8001ecf885ba957c156164a62d6b2371edbd6b884b5594b23bfced0332ec53122194eea03cc20e5fb0e2a9a1aab69e33bf56644cb2722d15abef8dd300e30e7028b0d57bb0b68507046101f3470cfc5058445caadb02e7f7cf0f21f47b849114aeb2579e1f55f4a676779a1f947", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r6, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f0000000280)={&(0x7f0000000100), 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r5, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0xe1}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x2400001d) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 3: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x408100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="66000000001994004c7a0b0006dfbda92451830000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000000)={0x1000}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r3) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r4, 0x809, 0x0, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xcc8c0}, 0x8050) (async) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) (async) r6 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="66010000a924c64f00000000000000000000000000000000588b42334e6c3c4e398777c02c7028766747700175b62158524d9dd0cf74bc7489fa8dae102bf7158a2614f46e23f11bb4bd8fafb6f12b40283b6403f8d9ec44202ce8cec3fb0dd59fe43ea305fec48e78faddf7aae8001ecf885ba957c156164a62d6b2371edbd6b884b5594b23bfced0332ec53122194eea03cc20e5fb0e2a9a1aab69e33bf56644cb2722d15abef8dd300e30e7028b0d57bb0b68507046101f3470cfc5058445caadb02e7f7cf0f21f47b849114aeb2579e1f55f4a676779a1f947", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r6, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f0000000280)={&(0x7f0000000100), 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r5, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0xe1}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x2400001d) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) 05:18:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="f3ab666726f30fc7b47903000000f280d4000fedc70f74554a6726660fd8f165673ef30f1efc66b80500000066b9f23200000f01c16766c74424002eef8a666766c7442402003800006766c744240600000000670f011c2465c7f8fb03", 0x5d}], 0x1, 0x0, 0x0, 0x0) (async) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_RUN(r3, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:58 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x408100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="66000000001994004c7a0b0006dfbda92451830000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000000)={0x1000}) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r3) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, r4, 0x809, 0x0, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0xcc8c0}, 0x8050) (async) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff) (async) r6 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="66010000a924c64f00000000000000000000000000000000588b42334e6c3c4e398777c02c7028766747700175b62158524d9dd0cf74bc7489fa8dae102bf7158a2614f46e23f11bb4bd8fafb6f12b40283b6403f8d9ec44202ce8cec3fb0dd59fe43ea305fec48e78faddf7aae8001ecf885ba957c156164a62d6b2371edbd6b884b5594b23bfced0332ec53122194eea03cc20e5fb0e2a9a1aab69e33bf56644cb2722d15abef8dd300e30e7028b0d57bb0b68507046101f3470cfc5058445caadb02e7f7cf0f21f47b849114aeb2579e1f55f4a676779a1f947", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r6, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60) (async) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r3, &(0x7f0000000280)={&(0x7f0000000100), 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x30, r5, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0xe1}, @NL802154_ATTR_MAX_FRAME_RETRIES={0x5, 0xf, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x2400001d) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r5 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r6, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r7 = dup3(r5, r6, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r4, r7, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="0f01ddec36360f01c20fc75c00660f35f20f300f0766b80e1600000f23d00f21f866350000000c0f23f80f00d5440f20c066350e000000440f22c0", 0x3b}], 0x1, 0x2d, &(0x7f00000000c0)=[@dstype3={0x7, 0x1}, @efer={0x2, 0x100}], 0x2) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r8 = accept$nfc_llcp(r4, &(0x7f0000000240), &(0x7f0000000180)=0x60) r9 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r9, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r9, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) sendfile(r8, r9, &(0x7f00000002c0)=0x3, 0xfffffffffffff7d2) 05:18:58 executing program 1: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x13000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601f800", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f00000001c0)="baf80c0f01d166efbafc0c66b8006800000f23d80f21f86635800000b00f23f82e660fe68017da0f01caf30f1b6ee08a7d050f01cabaf80c66b8fc14fa8b0f782dbafc0c66b8463c000066ef660f3c1d26660f2a2e0000", 0x57}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:58 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:58 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x13000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x10203, 0x2, 0x4000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) 05:18:58 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r5, 0xae03, 0x0) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = syz_open_dev$mouse(&(0x7f0000001280), 0x6, 0x400000) io_submit(0x0, 0x5, &(0x7f00000014c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x981af1761d1d266b, 0x1, r1, &(0x7f0000000240)="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", 0x1000, 0x400, 0x0, 0x1}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x6, r2, &(0x7f00000000c0)="879b5a7e04d3b4e696eb6052d161e03f47d4f948239dcfb9cbfce6fa6e32c798fa9976dcfc798e3d42df94793ba2ad013942947ba744db40135d4a270a18026cedd774a00c3a9a7900e92e0c38fdf85c1fae4fb022e58a73eef31a641077952f2151fbf96c119cec03e117baf94dad20b5dbd95ab186ac7a80fd88e58eb8a7288ab8dda8564df02a920e58c8d9ef0e4aed227c293d414d649ab372f871761b9c6554106d9e36cb12acbf27fdd14adec349b462430c6b8335aa188a68a21d55f0494daea860003f9dbd2093d1545d5e7ea2abf3238d6bf2bfb81c2377a20dc72df85a97aa99227a5485c2d2036050a02e23c6ff86df100d", 0xf7, 0x20, 0x0, 0x1}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x2, 0xfff, r0, &(0x7f0000001240)="947e23760643107be183145551ff24f1daddda8540a9", 0x16, 0xffff, 0x0, 0x2, r6}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x3, 0x70a3, 0xffffffffffffffff, &(0x7f0000001300)="67dd23791f2a1ff78eafac66694ff1a4a6fe2f28b8d9c1a0ff194ca8ccaf1c2f715ddf4271ae94c920378edb59bd84480cb04a81e0e255a929a50e16855dfa860ee02254a1da0645e6d3561180e21e8261f962e54f20a9cf2510a5a6505004f62677c7480820487f0fa7773485792ef82432d232a690a71edc7860de2755ef9d789d71d0c1048e933504998ec612cd355b3b0eb273c7d19ecd7078661d9a338e68af8a909ef01985abe85d3fa91997a286c75afad38434c511859ac6d368485efe44541c7e7c00af9a6ba9b8fbba5ef0672b4a15cf62e9e02ef9031341833a039288b2f1", 0xe4, 0xb7a, 0x0, 0x3}, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x3, 0x1000, r1, &(0x7f0000001440)="c0a38af3ca7d61779a561ba4ae35d18f40dfa5f29fa5e041c3a4601d9de1137696d0d7", 0x23, 0x7fffffffffffffff}]) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601f800", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f00000001c0)="baf80c0f01d166efbafc0c66b8006800000f23d80f21f86635800000b00f23f82e660fe68017da0f01caf30f1b6ee08a7d050f01cabaf80c66b8fc14fa8b0f782dbafc0c66b8463c000066ef660f3c1d26660f2a2e0000", 0x57}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:59 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x5000, 0x13000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async, rerun: 32) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (rerun: 32) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x10203, 0x2, 0x4000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) 05:18:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000440)) syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000240)="b8010000000f01d90f01d164f2420f2ab1793927fdc44185f1782cf00fbaa800000000f366b88d000f00d066ba400066ed36440fc7b37822000036660f3880acb200000000b9800000c00f3235000400000f30", 0x53}], 0x1, 0x46, &(0x7f0000000180), 0x0) r3 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x8008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc9, 0x0, @perf_config_ext, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000180)={0x5, 0x103, 0x4, {0x2, 0x1, 0x8, 0x419}}) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) fsetxattr$trusted_overlay_upper(r4, &(0x7f00000000c0), &(0x7f00000007c0)={0x0, 0xfb, 0xe0, 0x4, 0x8, "77a9ec81c7d00ad58ce7f1f1565eb0bd", "f2ba17735abf712c942fdf6564103ec5f8499f985178ff1744508838c4d0ba7f230699c34b15ce35dd6a97297b35ee5254e37c3e7675fa45f39a9fca115f28c2bf20789f8f73ecac1db66c6ca78acde696155e0ea621142a9687ffe21da96c1f5f62e49db37bacdbd7eadfad522c5390f6e22d0f497cfc437f7dcc8ab003f9a334aae5f8a7daf027b04034d2964fdc31cfed20eda202261cb3e3a85d9daf0542a4b2623f3f4c38f15a72443e16e6dc50945b080569fdf42ed5396379c65391de6b7b7dbc5d27b8a856a8e7"}, 0xe0, 0x3) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x10203, 0x2, 0x4000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (async) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000000)={0x10203, 0x2, 0x4000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async) 05:18:59 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 3: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601f800", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f00000001c0)="baf80c0f01d166efbafc0c66b8006800000f23d80f21f86635800000b00f23f82e660fe68017da0f01caf30f1b6ee08a7d050f01cabaf80c66b8fc14fa8b0f782dbafc0c66b8463c000066ef660f3c1d26660f2a2e0000", 0x57}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (async) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601f800", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) ioctl$KVM_GET_VCPU_MMAP_SIZE(r3, 0xae04) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f00000001c0)="baf80c0f01d166efbafc0c66b8006800000f23d80f21f86635800000b00f23f82e660fe68017da0f01caf30f1b6ee08a7d050f01cabaf80c66b8fc14fa8b0f782dbafc0c66b8463c000066ef660f3c1d26660f2a2e0000", 0x57}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 05:18:59 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CHECK_EXTENSION_VM(r5, 0xae03, 0x0) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = syz_open_dev$mouse(&(0x7f0000001280), 0x6, 0x400000) io_submit(0x0, 0x5, &(0x7f00000014c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x981af1761d1d266b, 0x1, r1, &(0x7f0000000240)="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", 0x1000, 0x400, 0x0, 0x1}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x6, r2, &(0x7f00000000c0)="879b5a7e04d3b4e696eb6052d161e03f47d4f948239dcfb9cbfce6fa6e32c798fa9976dcfc798e3d42df94793ba2ad013942947ba744db40135d4a270a18026cedd774a00c3a9a7900e92e0c38fdf85c1fae4fb022e58a73eef31a641077952f2151fbf96c119cec03e117baf94dad20b5dbd95ab186ac7a80fd88e58eb8a7288ab8dda8564df02a920e58c8d9ef0e4aed227c293d414d649ab372f871761b9c6554106d9e36cb12acbf27fdd14adec349b462430c6b8335aa188a68a21d55f0494daea860003f9dbd2093d1545d5e7ea2abf3238d6bf2bfb81c2377a20dc72df85a97aa99227a5485c2d2036050a02e23c6ff86df100d", 0xf7, 0x20, 0x0, 0x1}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x2, 0xfff, r0, &(0x7f0000001240)="947e23760643107be183145551ff24f1daddda8540a9", 0x16, 0xffff, 0x0, 0x2, r6}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x3, 0x70a3, 0xffffffffffffffff, &(0x7f0000001300)="67dd23791f2a1ff78eafac66694ff1a4a6fe2f28b8d9c1a0ff194ca8ccaf1c2f715ddf4271ae94c920378edb59bd84480cb04a81e0e255a929a50e16855dfa860ee02254a1da0645e6d3561180e21e8261f962e54f20a9cf2510a5a6505004f62677c7480820487f0fa7773485792ef82432d232a690a71edc7860de2755ef9d789d71d0c1048e933504998ec612cd355b3b0eb273c7d19ecd7078661d9a338e68af8a909ef01985abe85d3fa91997a286c75afad38434c511859ac6d368485efe44541c7e7c00af9a6ba9b8fbba5ef0672b4a15cf62e9e02ef9031341833a039288b2f1", 0xe4, 0xb7a, 0x0, 0x3}, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x3, 0x1000, r1, &(0x7f0000001440)="c0a38af3ca7d61779a561ba4ae35d18f40dfa5f29fa5e041c3a4601d9de1137696d0d7", 0x23, 0x7fffffffffffffff}]) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 1: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r1, &(0x7f0000000600)=[{&(0x7f0000000240)=""/160, 0xa0}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0xffffffff) r2 = dup3(r0, r1, 0x80000) pwritev2(r2, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="04000000000000007f0066896c653000"]) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"50fb0008a370ec6c8e860fdb349b31382f3765a62cd5e26ea94057f580aec0626c56dd7658ced73079ab584f66836ba60fecb7b11bea00b4366f9c5892da9b1db55e0b02c8c11f76c4c7310dc6eb88ce898a632a3f49a9ef75741d0536d9238d9733d8322b994880ff237c417b98b939f4fb38c47aa8f9bda3e69d299ae458a0ba978db88dd1a48321b06e5515447a2924c53ee6f26a4cb4e9fffa405536e37ca9953c13bdeb68132dbace5df8e2811960b4e4bbd14bbca21b6329ed6be59c1d056a4b3bf0a190b93aeaada3cff84666ab59d36fb291c08b65ef5676a73f2ced3310b3fde0f00382c8024431202728220c24f29626591ca3e9806af142483551133e91948f1121ec4027db1bf1b52b0ce06a83edd3c0b883fe4a1ff98b1b6c3b9e0b3d89bf4607e6b377d55611faf956b5ac650030656efcc3b2a4bc3b859321302f19cb6e3d343606bc6a82c329ac6d277e8661a7c631dba386066d9cdcfe95d1ebdf160a76a2d0a08dfc46351412465af5e8a9ce7a0930fbae07a05aa9ab141dce129a2086aee94d705511dcbc8ac020d3bfc0c2e47e3a74496d034ea6c7984b17d0c71abbf30a9ea10456db7516692e3c4df17773bbeb40552c59d94873cdddffb0bf3fb4702fccaa48fd3e568e898a059f6e932a2882554529c97541ddcc252fc025df5d88ec1e3af0d93e30f43b8ad9b4b89184ffde6f3608f17326a0742cd52c29dea6186fc8cf4d0724c14e168db6dab9b04175e3094544dd4b5ed40414030225f184aae8b63d38710bd37719a32ee3d52797e608ebc6a87c4fd9076a56f97a0363dff57721e640c341393eb71398d2a2789c6bf234e805eaafe0a6fc68288629d19332bf62b3623a08cd152dcd37920cebece54b11f8837df5f6767e9d386c4177a6aa83dc54fd6e24c54fba01d4802d84213be459e9c8e7ec77d9401e2bd68881e25b4201a55734efd6745022af421010c3aa687fbba63b2ffe03ad9c076f788bc0f3ba0ebd97a8f1938167c915c42b683972141569d4e2e297f6492118bd2d4037ae4932c49b3e0ef06a01926416b38f2c1171eb197b450f21ad9ed1c7ed71a4f9972d993d9401d3f53f01281090fe749b4833d3f2bdb8edc1df5480d9f1ca5a40fbb0ceb7e914d592c47f5de873b4b7b1100fd70db3e0b038c1ab2a572cc3c52a1aaf0b2ff7c8a378fc148e4890a05c7f82def88cd8820c778b51f5a52c62b39989ab1a0f04f69fdaed8666ec155aea8a17300a81aced567509b3380ac05153f3d398c3e74e9577ee4d2c2b02399ca6e6a26e35801039f4b8e77fea1ba0ee6ab95741a0c36b8c1199e401bea48c7d4eb3bdffc80812f310ed6c463c02c54c87b3934bf67b01dc5041455da384b13df395f0ef69165df2519da89f36dbafe4b11623c0856a7bb09f6d58171ce1d88012be722293a0c7e9e5d588b6"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000440)) syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000240)="b8010000000f01d90f01d164f2420f2ab1793927fdc44185f1782cf00fbaa800000000f366b88d000f00d066ba400066ed36440fc7b37822000036660f3880acb200000000b9800000c00f3235000400000f30", 0x53}], 0x1, 0x46, &(0x7f0000000180), 0x0) (async) r3 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x8008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc9, 0x0, @perf_config_ext, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000180)={0x5, 0x103, 0x4, {0x2, 0x1, 0x8, 0x419}}) (async) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) fsetxattr$trusted_overlay_upper(r4, &(0x7f00000000c0), &(0x7f00000007c0)={0x0, 0xfb, 0xe0, 0x4, 0x8, "77a9ec81c7d00ad58ce7f1f1565eb0bd", "f2ba17735abf712c942fdf6564103ec5f8499f985178ff1744508838c4d0ba7f230699c34b15ce35dd6a97297b35ee5254e37c3e7675fa45f39a9fca115f28c2bf20789f8f73ecac1db66c6ca78acde696155e0ea621142a9687ffe21da96c1f5f62e49db37bacdbd7eadfad522c5390f6e22d0f497cfc437f7dcc8ab003f9a334aae5f8a7daf027b04034d2964fdc31cfed20eda202261cb3e3a85d9daf0542a4b2623f3f4c38f15a72443e16e6dc50945b080569fdf42ed5396379c65391de6b7b7dbc5d27b8a856a8e7"}, 0xe0, 0x3) (async) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r1, &(0x7f0000000600)=[{&(0x7f0000000240)=""/160, 0xa0}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0xffffffff) (async) r2 = dup3(r0, r1, 0x80000) pwritev2(r2, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="04000000000000007f0066896c653000"]) (async) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:59 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async, rerun: 64) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"}) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:18:59 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async, rerun: 32) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (rerun: 32) ioctl$FS_IOC_GETFSLABEL(r2, 0x81009431, &(0x7f0000000440)) (async) syz_kvm_setup_cpu$x86(r1, r1, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, &(0x7f0000000240)="b8010000000f01d90f01d164f2420f2ab1793927fdc44185f1782cf00fbaa800000000f366b88d000f00d066ba400066ed36440fc7b37822000036660f3880acb200000000b9800000c00f3235000400000f30", 0x53}], 0x1, 0x46, &(0x7f0000000180), 0x0) (async) r3 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x8008, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc9, 0x0, @perf_config_ext, 0x4, 0xfffffffffffffffc, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async, rerun: 32) ioctl$VIDIOC_S_SELECTION(r4, 0xc040565f, &(0x7f0000000180)={0x5, 0x103, 0x4, {0x2, 0x1, 0x8, 0x419}}) (async, rerun: 32) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) fsetxattr$trusted_overlay_upper(r4, &(0x7f00000000c0), &(0x7f00000007c0)={0x0, 0xfb, 0xe0, 0x4, 0x8, "77a9ec81c7d00ad58ce7f1f1565eb0bd", "f2ba17735abf712c942fdf6564103ec5f8499f985178ff1744508838c4d0ba7f230699c34b15ce35dd6a97297b35ee5254e37c3e7675fa45f39a9fca115f28c2bf20789f8f73ecac1db66c6ca78acde696155e0ea621142a9687ffe21da96c1f5f62e49db37bacdbd7eadfad522c5390f6e22d0f497cfc437f7dcc8ab003f9a334aae5f8a7daf027b04034d2964fdc31cfed20eda202261cb3e3a85d9daf0542a4b2623f3f4c38f15a72443e16e6dc50945b080569fdf42ed5396379c65391de6b7b7dbc5d27b8a856a8e7"}, 0xe0, 0x3) ioctl$KVM_RUN(r5, 0xae80, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r1, &(0x7f0000000600)=[{&(0x7f0000000240)=""/160, 0xa0}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0xffffffff) (async) r2 = dup3(r0, r1, 0x80000) pwritev2(r2, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async, rerun: 32) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="04000000000000007f0066896c653000"]) (async, rerun: 32) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r3, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f00000001c0)) 05:18:59 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:18:59 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) syz_kvm_setup_cpu$x86(r2, r1, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) 05:19:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) 05:19:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:00 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) 05:19:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:00 executing program 4: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x690100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x7, 0x0, 0x8, 0x200}) 05:19:00 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe42, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c000100050603000300000000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200020000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)) ioctl$KVM_RUN(r0, 0xae80, 0x0) 05:19:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, 0x0, 0x40000, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x690100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x7, 0x0, 0x8, 0x200}) 05:19:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) signalfd(r1, &(0x7f0000000000)={[0x8001]}, 0x8) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000400)) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000380)={0x2, 0x0, [0x2, 0xfffffffffffffffd, 0x5, 0x9, 0x9, 0x1ff, 0x80000000, 0xfffffffffffffc00]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:00 executing program 4: socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x280000, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0xf000}) 05:19:00 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe42, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)) ioctl$KVM_RUN(r0, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe42, 0x0) (async) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (async) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)) (async) ioctl$KVM_RUN(r0, 0xae80, 0x0) (async) 05:19:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x690100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x7, 0x0, 0x8, 0x200}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x690100, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000040)={0x7, 0x0, 0x8, 0x200}) (async) 05:19:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0xe42, 0x0) (async) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)) ioctl$KVM_RUN(r0, 0xae80, 0x0) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000041c1, 0x0, 0xd0f1637530f6bece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3}, 0x20364, 0x0, 0x1d, 0x0, 0x1000000000000000}, r2, 0xfffeffffffffffff, 0xffffffffffffffff, 0x8) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x10020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000300)='/dev/loop-control\x00') ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r6, 0x40042409, 0x1) openat$cgroup_ro(r5, &(0x7f0000000180)='cgroup.stat\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) 05:19:00 executing program 4: socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x280000, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0xf000}) socket$inet_tcp(0x2, 0x1, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x280000, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0xf000}) (async) 05:19:00 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) signalfd(r1, &(0x7f0000000000)={[0x8001]}, 0x8) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000400)) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000380)={0x2, 0x0, [0x2, 0xfffffffffffffffd, 0x5, 0x9, 0x9, 0x1ff, 0x80000000, 0xfffffffffffffc00]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:00 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:00 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000041c1, 0x0, 0xd0f1637530f6bece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3}, 0x20364, 0x0, 0x1d, 0x0, 0x1000000000000000}, r2, 0xfffeffffffffffff, 0xffffffffffffffff, 0x8) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x10020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000300)='/dev/loop-control\x00') ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r6, 0x40042409, 0x1) openat$cgroup_ro(r5, &(0x7f0000000180)='cgroup.stat\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000041c1, 0x0, 0xd0f1637530f6bece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3}, 0x20364, 0x0, 0x1d, 0x0, 0x1000000000000000}, r2, 0xfffeffffffffffff, 0xffffffffffffffff, 0x8) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r3, r4, 0x80000) (async) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x10020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000300)='/dev/loop-control\x00') (async) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r6, 0x40042409, 0x1) (async) openat$cgroup_ro(r5, &(0x7f0000000180)='cgroup.stat\x00', 0x0, 0x0) (async) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) (async) 05:19:01 executing program 4: socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x280000, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0xf000}) socket$inet_tcp(0x2, 0x1, 0x0) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x280000, 0x0) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0xf000}) (async) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) 05:19:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) (async) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) signalfd(r1, &(0x7f0000000000)={[0x8001]}, 0x8) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000400)) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000380)={0x2, 0x0, [0x2, 0xfffffffffffffffd, 0x5, 0x9, 0x9, 0x1ff, 0x80000000, 0xfffffffffffffc00]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000041c1, 0x0, 0xd0f1637530f6bece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3}, 0x20364, 0x0, 0x1d, 0x0, 0x1000000000000000}, r2, 0xfffeffffffffffff, 0xffffffffffffffff, 0x8) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r6 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x10020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000300)='/dev/loop-control\x00') ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r6, 0x40042409, 0x1) openat$cgroup_ro(r5, &(0x7f0000000180)='cgroup.stat\x00', 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000041c1, 0x0, 0xd0f1637530f6bece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3}, 0x20364, 0x0, 0x1d, 0x0, 0x1000000000000000}, r2, 0xfffeffffffffffff, 0xffffffffffffffff, 0x8) (async) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) (async) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) dup3(r3, r4, 0x80000) (async) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5}, 0x10020}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000300)='/dev/loop-control\x00') (async) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r6, 0x40042409, 0x1) (async) openat$cgroup_ro(r5, &(0x7f0000000180)='cgroup.stat\x00', 0x0, 0x0) (async) ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x1) (async) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) (async, rerun: 64) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (rerun: 64) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) (async) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) 05:19:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x108800}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) signalfd(r1, &(0x7f0000000000)={[0x8001]}, 0x8) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000400)) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_GUEST_DEBUG(0xffffffffffffffff, 0x4048ae9b, &(0x7f0000000380)={0x2, 0x0, [0x2, 0xfffffffffffffffd, 0x5, 0x9, 0x9, 0x1ff, 0x80000000, 0xfffffffffffffc00]}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x108800}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000001c0)="66b80500000066b90e0000000f01d90f06f0107b52baf80c66b88632a08766efbafc0cedbaf80c66b8cc944a8c66efbafc0cec66b80500000066b9008000000f01c10f0130440f20c0663502000000440f22c0baf80c66b81ffe578866efbafc0cec2e0f78c3", 0x66}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x2, 0x2000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:01 executing program 5: clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) utimes(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)={{r0, r1/1000+10000}, {0x77359400}}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) sync_file_range(r3, 0x0, 0x400, 0x0) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240)=@FILEID_BTRFS_WITH_PARENT={0x28, 0x4e, {0x6, 0x8, 0x6ad0d320, 0xffffffffffffffff, 0x1f, 0x6}}, &(0x7f0000000280), 0x400) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, 0x0, 0x0, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x108800}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x108800}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)) (async) 05:19:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x2, 0x2000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, 0x0, 0x0, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, 0x0, 0x0, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000200)={0x0, 0x14000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:01 executing program 5: clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) utimes(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)={{r0, r1/1000+10000}, {0x77359400}}) (async) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async) sync_file_range(r3, 0x0, 0x400, 0x0) (async) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240)=@FILEID_BTRFS_WITH_PARENT={0x28, 0x4e, {0x6, 0x8, 0x6ad0d320, 0xffffffffffffffff, 0x1f, 0x6}}, &(0x7f0000000280), 0x400) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async) ioctl$KVM_RUN(r4, 0xae80, 0x0) 05:19:01 executing program 0: shmget$private(0x0, 0x2000, 0x80, &(0x7f0000ffd000/0x2000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:01 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x0, 0x2, 0x2000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:01 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, 0x0, 0x0, 0x4a, &(0x7f0000000240), 0x0) 05:19:01 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, 0x0, 0x0, 0x4a, &(0x7f0000000240), 0x0) 05:19:02 executing program 0: shmget$private(0x0, 0x2000, 0x80, &(0x7f0000ffd000/0x2000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) shmget$private(0x0, 0x2000, 0x80, &(0x7f0000ffd000/0x2000)=nil) (async) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) 05:19:02 executing program 5: clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) utimes(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)={{r0, r1/1000+10000}, {0x77359400}}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) (async, rerun: 32) sync_file_range(r3, 0x0, 0x400, 0x0) (async, rerun: 32) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240)=@FILEID_BTRFS_WITH_PARENT={0x28, 0x4e, {0x6, 0x8, 0x6ad0d320, 0xffffffffffffffff, 0x1f, 0x6}}, &(0x7f0000000280), 0x400) (async) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64) ioctl$KVM_RUN(r4, 0xae80, 0x0) (rerun: 64) 05:19:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, 0x0, 0x0, 0x4a, &(0x7f0000000240), 0x0) 05:19:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x6323, 0x0) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000001000000d7800068", @ANYRES32=r1, @ANYBLOB="050000000000000000"]) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)={0x3000, 0x11000}) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000000)={0x0, 0x6000, 0x20, 0x20, 0x4}) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000040)=0x1b6) 05:19:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x4a, &(0x7f0000000240), 0x0) 05:19:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r2, 0xf502, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x0, 0x6, 0x7, 0x9, 0x0, 0x54a6533c, 0x248, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x8, 0x0, @perf_config_ext={0x6240, 0x4}, 0xf02ea5cffb10a841, 0x80000001, 0x7, 0x7, 0x800, 0x1f00a007, 0x9, 0x0, 0x61, 0x0, 0x8}, 0x0, 0xc, r3, 0x3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:02 executing program 0: shmget$private(0x0, 0x2000, 0x80, &(0x7f0000ffd000/0x2000)=nil) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, &(0x7f0000000240), 0x0) 05:19:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x6323, 0x0) (async) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async, rerun: 32) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async, rerun: 32) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000001000000d7800068", @ANYRES32=r1, @ANYBLOB="050000000000000000"]) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)={0x3000, 0x11000}) (async, rerun: 64) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000000)={0x0, 0x6000, 0x20, 0x20, 0x4}) (rerun: 64) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000040)=0x1b6) 05:19:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, &(0x7f0000000240), 0x0) 05:19:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '@'}, {0x20, '/dev/kvm\x00'}], 0xa, "019c75f2672f8363562411d0e10a4e3ac23715bd288138dc962b630e437d3122026bc12d47078d82c1103b29e00dcebec4e5aca60cf38ecfe224660dbcfd015a17b682060d9eaa12f008cc1d8b04ed492742a0063a5957acd807815ebd1259ff89383e1bdeb7c24c873d1fe5baf7edd3e1d0f14b6b9143312eec1e6de8b7b912771eaab41cce525865f7aa6a7c9e1104ca3c12822806b5f0e12f924da4e1d09e18bfeb7bb141b7"}, 0xd2) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000000)={0x8f, 0x0, 0xc}) 05:19:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x4) dup3(r0, r0, 0x80000) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0x3, &(0x7f0000000440)={&(0x7f0000001000)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x800}, 0xc084) sendmsg$nl_route(r1, &(0x7f0000000180)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100), 0x82, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r2, &(0x7f00000003c0)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}, {&(0x7f0000000240)=""/120, 0x78}], 0x5, 0x9, 0x0) r3 = socket$phonet(0x23, 0x2, 0x1) r4 = dup3(r3, r1, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000000)={0x6000, 0x10000}) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r5, 0x6612) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r5, 0x4010ae68, &(0x7f00000001c0)) 05:19:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:02 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '@'}, {0x20, '/dev/kvm\x00'}], 0xa, "019c75f2672f8363562411d0e10a4e3ac23715bd288138dc962b630e437d3122026bc12d47078d82c1103b29e00dcebec4e5aca60cf38ecfe224660dbcfd015a17b682060d9eaa12f008cc1d8b04ed492742a0063a5957acd807815ebd1259ff89383e1bdeb7c24c873d1fe5baf7edd3e1d0f14b6b9143312eec1e6de8b7b912771eaab41cce525865f7aa6a7c9e1104ca3c12822806b5f0e12f924da4e1d09e18bfeb7bb141b7"}, 0xd2) (async) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000000)={0x8f, 0x0, 0xc}) 05:19:02 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x6323, 0x0) (async) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) (async) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) (async) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)=ANY=[@ANYBLOB="0100000001000000d7800068", @ANYRES32=r1, @ANYBLOB="050000000000000000"]) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)={0x3000, 0x11000}) (async) ioctl$KVM_SIGNAL_MSI(r2, 0x4020aea5, &(0x7f0000000000)={0x0, 0x6000, 0x20, 0x20, 0x4}) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000040)=0x1b6) 05:19:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c000100050603000300000000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200020000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f00000008c0)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20ca221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094c80000000000000000556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff5405aef7b73ae7d08cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_REGISTER_COALESCED_MMIO(r5, 0x4010ae67, &(0x7f0000000040)={0x5000, 0x1f000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f00000001c0)) 05:19:02 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r3, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$AUTOFS_IOC_CATATONIC(r3, 0x9362, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '/dev/kvm\x00'}, {0x20, '/dev/kvm\x00'}, {0x20, '@'}, {0x20, '/dev/kvm\x00'}], 0xa, "019c75f2672f8363562411d0e10a4e3ac23715bd288138dc962b630e437d3122026bc12d47078d82c1103b29e00dcebec4e5aca60cf38ecfe224660dbcfd015a17b682060d9eaa12f008cc1d8b04ed492742a0063a5957acd807815ebd1259ff89383e1bdeb7c24c873d1fe5baf7edd3e1d0f14b6b9143312eec1e6de8b7b912771eaab41cce525865f7aa6a7c9e1104ca3c12822806b5f0e12f924da4e1d09e18bfeb7bb141b7"}, 0xd2) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000000)={0x8f, 0x0, 0xc}) 05:19:02 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="fdf0984578ad34cab9c6f06c7c4b9e8ab498c8d8bb67ceef15e402595f4a03398b942a58afb171840000f31043c3ce15b913015e40205bfee065d0192df4a719db4c3af2157b"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:02 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xd8) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r4, 0x84, 0x8, &(0x7f0000000000)=0x9, 0x4) 05:19:02 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000001800)={0x1, 0x20, '\x00', 0x1, &(0x7f00000017c0)=[0x0, 0x0, 0x0, 0x0]}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001840)={{{@in6=@loopback, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@private0}}, &(0x7f0000001940)=0xe8) r7 = syz_mount_image$ubifs(&(0x7f00000000c0), &(0x7f0000000240)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4d1c, 0x5, &(0x7f0000000440)=[{&(0x7f00000002c0)="c2e351f90fbcc4dd3bf2f2a7ab795094b42ec4445f6a2d3661c9e419e767d2b8369131faec69e318283034cab8e0b943df9cc207b2ee8094d3f1f794861d86c6909483c15e1216c96c5487", 0x4b, 0x8001}, {&(0x7f0000000100), 0x0, 0xf97d}, {&(0x7f0000000340)="b42cc07b99d99fe5ce1f47145a42623e5b9434f381bc7b812d878b0fab28374324c9818e23bee408a4ffa63131e89d6040ade4ca908122e62f49a55a23887f3d398a70c4afbce5283cb8b9a1a252c0d46f3741178348e8c529e4ea5c07accb62156da5", 0x63, 0x7}, {&(0x7f00000003c0)="7ca80ef57a77e712dc6eb4e03f5d8001909e745d5233b4e185e44308e5d548328ccc4271dae80d9e11ad5ec3273a175f52b388cf7cb0d047f3e86e9ff74e79dda738254739585d7b35a6c7bbe1421b7a82840cb20dc9ff907fae499faadfabe35d3ec3cb61e19216abe31629054f352c7f8ac7430242df94ae95a5112f", 0x7d, 0x3}, {&(0x7f00000007c0)="7fdf08967d2adf9e8e122db6ad5593f86238ec6a66552ef3ca104533c82c39b4646fc9bc30c667d59935b795ff89dde832766c4ad34168b64375688d2b40f7305e657a0733dd98f48bfddcf45551b2b6dbe350533d87eeada091542377292623f8d3cd2f23f56c3ef5728fbb52ecc748712d4ead4366262558960345f639d38517f88edc226741aaa094f76ee9eb2ce8f7e53d26707c2ff60a4e4a8e0c0d5f1721a58d1b1ad1acc85b618376ba1d8b3679b7bd8337f93c8954063ef706c7fabdf228e62cb68e19c1e7692da5c4ede74da0492b852b7d08d702f6acc7c74bd2f18862bb13a50b8728e99a0af774fc3acf8f3518ed22b4d4f64383631495ef9cb0dc9d21a7b38fb62272ce655df4efb97caec4b7ff80c8ecc3ef8822ea7a8b9086eb0ae365bbfa0a5cb70f70b061ff8d03987d56308ee9fcf8069422207918b10e1dfd2e4c04172004784a27570ebf14e927f3eb988dfa6e2d774c5bef0b1ebd073d449f725d9a662426158df8fd270f11144036825be370051795585dda9901218ad46caa417859a7e2d41830cc81487fae4f3cb3a5a4f66569849c9c6d901c5ed195467ed35547c0772c3479d8b168839fa0e3c6a68b965c84418ac02f74bf2d893a8b2dba7810bfd23dcc68dcf024016abe8bfb9a5b00e0358795aa226cfcddc718303e619931e8176076ae5765bf2f43bc179d998a4e8f0ebee23c83413faca97843b6fecf12971e7e9ac36748776b2d8d6d699a9cfe551ac14842052c1400b6072132352690a8a531a49c6cff974393b50974e56944a90796bb530d9fc359647a106ddc71ff26fe56c94fa003dff51060dcc3fa9abc31343d6fd88bae2093c92f8969c26d98fd3fa50309449e16203f29af05c78c8d30356c49562436db7380ddfd6748c2b90a3bcf2a57e7b7813398f61e3feba92e9d1c4b614371c4b2a7e4295670903d9881624579f2ed2046f84122e98305c202e852cc50aca2fed461566dcf06bc13ca8bce14fcdcacf6bc305ad7e7cf93e19e6955d582c2a1af763bfaf89aae62dc06a1742cf57f954e55f3c3053ea1ba91903c3661ef82bcb77de1d5d0d7326e4552aaf191359d5a0e77b86467fb7aaf3a59679e5d76a08a61066a9413ba23f7b45ee5bf47660c30ed7ab44ae18d4cb03dfe939e51f86be83ff01fa54fc8af7f6c922d44128e2f50486f528e7c673221b06842a9626b5e3e3db4bc9231079052b1bc2fff999a63c7442acf57812f0a31ae308785618f7e94d524022b238f6a00d2e84540a51caa55b23973f1d70e8b5045bbbf9e5ef0a47099c69f31c74323560baea7e744a26f0385add99bcfc1e46aff6b10cebd358411aa27833ce094471d6be728fddfc44dd3b110e9a28df02be92c19e1202771d675ad184604c6812947ed88803e6e064e44ea2e248a37ab405259416f2511c8620fb2ad2789098312f6025207686bdac734243a1d82b8977ebd04a2d7eb7c516411193c00f2ef94b5f3c0f92ca56ac55291ae6270291f0e547ff894936d54f289782cca42cc7b1fefe6e22515f315ff50d1a86f34dbbded613acefba0ec274e11718ff419cad2336502334886c14326d2a6b6a9e149ff9ba22c5107d6f148dc9f90db45e0d779b46431c257d5b92afefc7d2b18b8b7359774d4447cf0dcfbf8294a190b9dee0144ebfd506cba1667ad91a8508ed6ff0e8a3dbd133de2e4561c2d1d241977092538835102fcaab5d1c6792328cb67adece65cd3ab9c1c944735e983af2590c69ff439eda23754b14b7e598ef7e1b03d23066cd3768aa5cb9fb27812f692124ee1a73c7debdaa3b59f03b58356aaee49728d89d5f8eba4d3b8177cc60885908a52be5391879071ebe759fe5bcd4a97d8dabf2796912a4f02272d670207ea5d69c3ce7130859908c062d488d7ce208e470b1cda81761e5c76e298bb084e894505b3ef5ba78d79ed3221c4a820e8475880c64ce39f5c9be7e337e4b133ad203ef4032393568b37c61e58540c8c0a908fc265c564a13056f527b296e73c6d4bbe087fe417e06772c0026a2b4971b96b9a1a5534659b6593151c81c6ecce5c0c2008069eddef79433d7b7fbae47248f471f8382f6a32828a810c454f5b4f482af68a3c56e72ebcf1ddc2b0f18b9cbd231667d52a457ea962d5b3a1efeff25497137880465d78811e71ea6e0fb5fec0d02de20fc6113be9fba961ea241460abd9e7cfdebaabf4bc20e9839806eb2ed6f2271d7a7da880aa69b0985dbeceab73144e5e590307141f1168bd09767151312b7594140320ca72f5bf1a89c5e33a85f5a997cb1e13ddd37d87c851aacce0426b0bfd9d31ad604a6464698486d5c25de93a48157b40a499884051a9897560961d495e0358a28bea1fa41b10e1cd38574c5d0ae254ac47c746490b2602678faba2267bf5e11fe5dc085ee7517c9cd866d3366d4ebb3799e4ec545943546da2783e5520a3a8cb2ef6503485571e4bc0b729cbeaac9c602d8a5744ac0b42cc866700e12b22b12b2caaaccdd8bbd93ba4a85b1118abc02796ea63783c6032973f802b962102be0371b56302c8079c2dda1837d9521b9317143794b17b2864473c2b1287d3b63a8d5691d9b530b9828a9a5466b9c612b36a4bb7ff1bfc17b64dc68d24527265c6d67d9fc5dd086f828968e34379563c51810ca516aa5f1e3f4939e5733e1c2554f30bc877513fe0ce70d565d3f65dbcf0c235f1bb504cc282e2a30cf4c215083c12d1cee88b687e108c7c4af4860d2c74892824f3df07ef98b99b58e5946927bcd5226524bc2ca3e20bb618f0a7d96b5189ac5fca3a80acfa9c8520bf54fcba315b9334cbd08b3df4881ac2b633594436fe5765bd6f8cd963ab565047eb30b0113e9083807ef642f27e3ad1250961103992929e6baf3803044bf5104376674d115c8d290080fa024c01f44ba1339dc0e0ad7db5f2de8183eb0e76ce8930118286c69a9fb9a0f7ca83b38f67229dc42a9d6949486e9b6521451e47be6bce8ef1583214ad8cb2bcec06a8a25da09cd3b8c23e589c11af4b1725814a381126891c4e8d6a074e789583339ff413cd421dd6d049b02cb1fbea45cbfc47c78df071db65716d9fa253ae0b912e55b85b531c190f5132e236a594def062bda7bf899b104d3efb1de40d68ccd2d33e90017d5f873a9aa9a0ecec0ed770c34d2224ee440b18b2d310c334bf0782bcf96f5b076978fad5f41c751d7915b2541f370c1536b1e6c2e9760ad87f6ea69c03a3ae51cd855c5806d6cd8ba5f9a98129dcf8a1fe432f1f6f9afd5300b4a0dcb2c947b0c42284aa407a7d59c34f70ef7a33a1c2d6458b0ea4cee97736a0cfabc69f9974ddaee3b450f1e365ac39970a1b90484ebf7655ca14f61547563f5deac6a2d083794f18ee1d7726c912ef834529cef4c19f91bc34f4bb9fdab7e845ff99821264421d3462c4feb9c9a0f9cb70cb079aa1f9576427da89e1e1b46ccf6651ad8054032546b0296cba9e6b655958bc7a0acdb8e2ef8df0f8c03e1417685946012116c5ed9259e312c8432ca8160cb9b1cf1ea2b37b466220f12ccddc484528201882ab35cd4ea38e6010f741e925c8ee317010a68bcba4dca7dd9c8aa12e9e13be1941ab3a0fe6dc5511c7182742f4e83718798a5b7fbe2b93fa2f88045f9a1a84d20c4fccdb7e39d57e00fa5125fd711d436af67d17df0c4a0896b7d78ab13066fa060d44e374613d76519a4c25fc0d8aca24efed7437d170daa89fb7d2dc4199aa5ef908e8697fa64e4b5b8b52fa091937d08baba6171df821cc5ff17891ca0191827f3f39e9e699215da2f6bbcd22b224e6c8e3ce027e9fb09424ad5bd7eea45fcb96c1ae6f49254703fa8a1725bc7c0f455c575a5eb61e778a710efcb65c16de867a21472902a80b563998b2925728ab33137afd61328a5dc75f470a1f87f4ecf472fc2c73141bdb7298d88f0db6118a5d10a73bed45e20f1c88703fde23414d891ff7beaeda813cbc8cec5fd65e9c5a298eea362ccbeabede9aec65d2f66697a0b424041fab18a1d19f4b5182bf08c9dd25029fec426d948582b74b94587986bc64cc71345429c41e480cf6c1bd469dabedcf2e597e39bde4f8364fc8ab5f584f8147f34b055c15d35220e1afd4e297ed8d19778366d3a702eb373d1b41b9de5a5535ec209577bb703c4e6bab328dd8d60d8ee407d35dd0c12d4ebd5a679690d3ca7c34c0e5e44ce92b2ec8eb203c64d52160d5a485917c8760e451baf53ff65e5e4b75d2848031670eb737caaa1eb67042af1503c8dc5ff49c383134a4bc6ac867763ffb1afb2a5692cf1311ba28ee44599ad7b554f5d04741ff293d8e0a15afa3c0d0a7a7e44d7476e12db9e8f1f93079ade8b66e19965324e63360f8756247bce7cd48f40e1666f4a6a617a214094b1bfb872411d8e57e1ae574729a41b3ffab73a52e4d5364d66fa87f39c6c8892c4730704edc32c54fbf77aa0a80d68748e6fcb60aae9001d60b3a2a3800c3d8e2ab00061edeff8c9ed7b1bbfb33a6efe7b96997b058e4d3a2531035ae388524d4d86d15f96b9e0e7348c6009c122c93e51bf103454549af6a0e524bcae531bb7fc03eb40530c08ceba0fd0a0985ca9a5edd0ac9554bd3dcd712b3de5ad32c10810a046393caa64c9158874802cb3ba036af7c98fb9de93a01eb580654e7c9a333ac3678bd9bcb8f4e04eda701b61af48405070921db9cf9cad25824e6b99e507107fe1f87c61e6fbf82729789d0c6777451c1d6ea5e7a70d0ebd7788b88a3a875c2b94800d252d575aefec62d0c8e097c48486e9b40ed4a7e56a9f32a83249fc4a6e660eb105c6fed46ae86a37b1352a82406de4bd018ee523c1f4d09a7da0016321d2981f56d6e9bc2710d219f98638d07af1fb23780d12ce929337a04fc8414e95955da1eec6a56599ea58d27bf4189a14aa16a222fbc577f3e88bee2afd881b54a4a827f022ea7a15e1bf7293d813cc7b489b9624693de0b82acdfeb1cb72877558d3028f2d5c70f4fce2014b18766b7f724f80a861789e0c4327a8fa412aec494846b596dab6750a8b36deb779c6dafe0f65ea2e7b4bb7cccd8c73d1bef15e5daab8eb2572359ae23131925affdaebd7cd0a407f7867e76ba3c42a88637ba2366c49fc7be6e0c091d0b1d47f26c0feb01b563fbfda96845c1108056fad3621620fec39110358c7d80e7813599d44385768d08cf5ed0e5cf74686f947544cb550cbc4d65666c13386f7f457e0922bdfd00661e900bd363416989af36a8e37f888fd4318a1cfeeb125d9ccebcb8fb2f888f87a22d82c2d9fed9d86b55b0eb89b911987d9ce87e7cce2a4908956af8be7e6c54f91280d83ae1cb971bba02202c3ccdd368b9eee46b90c77de085da0471920f06e515fc9428d844fe07a539865fd3ccf08f9619f95f50e06145a6238a2e9fc8dac9b408d8bab99c72989ea7f65cab64e6271e2ed355b987d65e91d879cd1faf2ff7618f2f360c8d7ee646363007b220109a4a5489df05bebc087d49bce636bc62618901c059650f72f2e6ea25184664bf512e8b4bad55ecc3c69b4a7fd86a1f42d95f8ada07e5a266a020850bdb41a4fe53273f1d535866fd38360ce9958c2cf71bc7d53758ebb1fa08e9267fe47646013870668182610897953e40242cc7f62a141ed59a5595058820f35c7ca215e97a98fe9d700988857c537fa7590f8f985d68968b3bbb9b1c34f0e395802bdca7ed4a66811c9babeeed37b41e8f27dc5c800ae98b1acd95c44281dd0aefeecae7e924d27f52edc67dd126c7e7c2", 0x1000}], 0x80, &(0x7f0000001980)=ANY=[@ANYBLOB="62756c6b5f726561642c6e6f5f63686b5f646174615f6372632c7063723d30303030303030303030303030303030303030352c736d61636b6673726f6f743d5c2ffe97c1742a2b232d232d40232c255d2c", @ANYRESDEC=0x0, @ANYBLOB=',audit,euid=', @ANYRESDEC=r6, @ANYBLOB=',dont_measure,\x00']) execveat(r7, &(0x7f0000000580)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x400) fcntl$getownex(r5, 0x10, &(0x7f0000000000)) 05:19:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000100)={0x28, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_TTL={0x5}]}]}, 0x28}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=@newtclass={0xdc, 0x28, 0xa20, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xb, 0x1}, {0xfff1, 0x1}, {0xa, 0xfff2}}, [@tclass_kind_options=@c_fq_codel={0xd}, @tclass_kind_options=@c_taprio={0xb}, @tclass_kind_options=@c_atm={{0x8}, {0x1c, 0x2, [@TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r5}]}}, @TCA_RATE={0x6, 0x5, {0xb9, 0x4}}, @TCA_RATE={0x6, 0x5, {0x7f, 0x6}}, @tclass_kind_options=@c_atm={{0x8}, {0x58, 0x2, [@TCA_ATM_EXCESS={0x8, 0x4, {0xfff3, 0xc}}, @TCA_ATM_HDR={0x2a, 0x3, "553a4f77363fbcb3dd20386e25bd9217edaa8b144065f4cda3333ef48da566ade701b8060c09"}, @TCA_ATM_HDR={0x6, 0x3, '|8'}, @TCA_ATM_FD={0x8, 0x1, r2}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r2}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0xb8}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) r7 = dup3(r3, 0xffffffffffffffff, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000540)={0x1, 0xe9bb14e0841cd589, 0x1000, 0x1000, &(0x7f0000001000)="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", 0x60, 0x0, &(0x7f00000004c0)="5d6ee18fff282939ebe63472fbdf4cebcff181add1563ec192be6431520a74c5942a94fded8894c8bf8745dbf4d670723ed1335ba50acd178ad733ad8b751a3155041c003c32df08e44f131642a2fdbde31336aa687a64c7a4288c221a9db452"}) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f00000001c0)) [ 1019.664777] xt_check_match: 7 callbacks suppressed [ 1019.664787] x_tables: ip_tables: ah match: only valid for protocol 51 05:19:02 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000100)={0x28, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_TTL={0x5}]}]}, 0x28}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=@newtclass={0xdc, 0x28, 0xa20, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xb, 0x1}, {0xfff1, 0x1}, {0xa, 0xfff2}}, [@tclass_kind_options=@c_fq_codel={0xd}, @tclass_kind_options=@c_taprio={0xb}, @tclass_kind_options=@c_atm={{0x8}, {0x1c, 0x2, [@TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r5}]}}, @TCA_RATE={0x6, 0x5, {0xb9, 0x4}}, @TCA_RATE={0x6, 0x5, {0x7f, 0x6}}, @tclass_kind_options=@c_atm={{0x8}, {0x58, 0x2, [@TCA_ATM_EXCESS={0x8, 0x4, {0xfff3, 0xc}}, @TCA_ATM_HDR={0x2a, 0x3, "553a4f77363fbcb3dd20386e25bd9217edaa8b144065f4cda3333ef48da566ade701b8060c09"}, @TCA_ATM_HDR={0x6, 0x3, '|8'}, @TCA_ATM_FD={0x8, 0x1, r2}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r2}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0xb8}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) r7 = dup3(r3, 0xffffffffffffffff, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000540)={0x1, 0xe9bb14e0841cd589, 0x1000, 0x1000, &(0x7f0000001000)="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", 0x60, 0x0, &(0x7f00000004c0)="5d6ee18fff282939ebe63472fbdf4cebcff181add1563ec192be6431520a74c5942a94fded8894c8bf8745dbf4d670723ed1335ba50acd178ad733ad8b751a3155041c003c32df08e44f131642a2fdbde31336aa687a64c7a4288c221a9db452"}) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f00000001c0)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) (async) openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (async) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'}) (async) sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000100)={0x28, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_TTL={0x5}]}]}, 0x28}}, 0x0) (async) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=@newtclass={0xdc, 0x28, 0xa20, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xb, 0x1}, {0xfff1, 0x1}, {0xa, 0xfff2}}, [@tclass_kind_options=@c_fq_codel={0xd}, @tclass_kind_options=@c_taprio={0xb}, @tclass_kind_options=@c_atm={{0x8}, {0x1c, 0x2, [@TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r5}]}}, @TCA_RATE={0x6, 0x5, {0xb9, 0x4}}, @TCA_RATE={0x6, 0x5, {0x7f, 0x6}}, @tclass_kind_options=@c_atm={{0x8}, {0x58, 0x2, [@TCA_ATM_EXCESS={0x8, 0x4, {0xfff3, 0xc}}, @TCA_ATM_HDR={0x2a, 0x3, "553a4f77363fbcb3dd20386e25bd9217edaa8b144065f4cda3333ef48da566ade701b8060c09"}, @TCA_ATM_HDR={0x6, 0x3, '|8'}, @TCA_ATM_FD={0x8, 0x1, r2}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r2}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0xb8}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) (async) dup3(r3, 0xffffffffffffffff, 0x80000) (async) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000540)={0x1, 0xe9bb14e0841cd589, 0x1000, 0x1000, &(0x7f0000001000)="0e3053a25b344a2fb22d6fd1896f8f610d5cf3336692243d2e40df673acfe61da03e00eb0b8c3d7a16e4b89c3eea0c01a3573daf36f612531a148f05aa0fdcfe6e13cd122cc7f8cc3ba3f4ad07a974e6e58adc0b48f5c20bbf37858894a71000c6f7f88c59d306be9d057cd1ff92264459a13339f16f154da8c5c2424892e95c9e3737589c803006c82babb6ffb2843288b637aeea3aab57d928e46ad0167a68d25b6334caf7f1f08755f9139d30832a407d8759c4ab1481fb82df47a6ba62350dc87e44c86494d25594904cc911dd072f128531c338d32e4c2a624464554d6009d47657e512c25a6c3d9a5f8a05bcac57f9ee9a7e10153f68a6d6dc11f2c9f657cea163568a6875a29998fe90147b0449b8188aab78c51d8974da0123267d2bc2e7ffd85d8d7e12c3cb7c8155d2e88b77c4c24e09a78d1506c73cfdf59c138c962de029d33b04f5650624241f40b32b2e01af8e5d44d0c87f83a7976f134b68fc568d3be494e879cb4bb348e0cf47f290bb8e168b987d569e86e83f0e3b20e85bbcc70e96a2bca3905e23f104819d669a18ba8b40f76ebec019a9ed73a9677c2d0c9a40c540ce9381c178703c91836f5cbc656d1511376ee77877a86db54e3d4e4ecdfdd41e43a7561506dbe136e1b76f5d3fb584851771f38d03b60a5c28cbb1bb27c696b70577618a1fefe9cb033562c1db836108535f7e0c46c2dbc2c19f9bd2ddf18da1dfc75039b24f77b43015587dd42ae72b9c60184f5920396db7d88eb03d40b408443b4b91daa74189c3fba5386ccbd6d671d1a8426e362e8f8762d1331e50c18f900e6f6b078f05923675238c7103579610fff431e7b5d14ecec15b81a30ac2a87383f6ee543106ff7458c5f08af4ce08d117b9aab3ed17c6ece73190a79aa3c912943b5623272a1b3cc440986cfe05a9f6d7b71f64cd00e07f0c7a672ae65238c4aa62b5c6b096e78f4c070a17e336874b8ecb064a0d184c9249665448bf401cd0d474634a763a93faa7df8188bf6ce96beb6c18584e6ecb927feea7b5db36b48be09c9e4303688e8eb181e9691200420fdfa046f5f0066433d591c5f6a57b53f9dab47720e4f25fed021d222ca19ca123db492f80580adaea3dddd7c19d8e7bfdf2f5a99c23311774e6eb14e2017988369065add53ffc8feacdcf1c9051dd9930de0e42a1f83ceb3cde5cc0ce9c61d6cff8b546471882cf888e44c5f0c78ebf0cb2988c2f77c94d52187a740c4e8387c5fdf8d0f07757832a3740c5c8e7824c1b94e2352c09bfff5264abf4dfb14130de195b785318c33da7d3f121c13f39099e5bdddc44840db30bad0d29f6882b2301432d0a4c36c4e2508ca39446fc771e0017da7f4e2adc5f3f2204f46bd357be726e5b5ca359b15b7b5663a6901e62298dfc4a90095ccf0b322d97a932f5d3a4724cf9468cb7accf0bbcbd1b2a2e52cfd591a018b7318189d39091f7330cb6b2c2e1532b208d9a409d3b50eb1f00c0df4879f14f0b628eeb92599a1c8c4522a6edf07ff95fa6805ae226a213da79b97e00981b849dbe0affc44d8faaa0f15a31f8aeea55057dbbfd8bd7b139b15b3e419d1f316795bfcdb2e5e10b19efd7f32b202402f2ad69e48126e1c9b7b5c056c8c3108ed27831011a7fd06fac909fbdf31ec4d7506c5b9846622498c945a040d13f4e85620759aafab3cb5f632419d54908928cc59216d2dc75672fb034b8309ea7f832823b5235393b167c2e8914044935b9c28d6c66f1c94671b3ac8e0e9d6a52adc47e83ce74ed1fbceed0a595c75800441caf5d0a3d4e17ac94c290842e974ed501c0f7239f3c1c12c7d5fe60b69e5da197eb25cf7e13d239e4dab67328868636459ea15b2095e87cbdd9ab8cea2ccbb592499e792d216b810050f8c2faae868a8fc3fcc8350e0b630f0b25dabbc85da0df1075a4233dd5561285501b45530cac260a3af8dda9ffa8f9ddda4efd611ce74eb2c09f9ab8efc3b8cdb67d52f11d16ce9e16de80596811f5abb82e498d5929be631174c1ece84eedfffe6e39eed12d077949a846d525bee46666a7770fcaf594cd7b8a293388f890502bb3d9e1fba11fbb3c5c6325f4efdc3bffb740f69b9fc822f992d560707cdc44150b6120de17efef962c65432ef266935dd03e7b84ad251896470c1cc111ddb00fde9f66b3de2060336bbe49fb25d58a4abba830db7cdf4ef6bb05f0c8c0a70dd1767eb7b53720e615022fbd36d72e4fad0e329bf4e193e8f753b69ceb4c234df80db5772815459ca66e855f4e022a3346cc676dfb7fd01b7ba99840cbc87f393a77aa915afeb99641f62df6cd664d459107cd073460d84697d5397be4509319de9b2d46db0d3759144f8b2d118ae04513d92340e29d102e459639637f0a24d02471ad492674ae5c221b74863977f98df158a0319dbc820cf604a5d1acd7f796c2a5e8142efc5c298d493c0e1494117f271edefa06fe94cc2521dd8906bda791fc5680040629714054fbad5431df296de4d3ff80e5b5675b4a2f73c867c6bcab339da27ec909102d714142bfe7207402c9e528a8f93fa3b276064733b12bd509437b594f280efe1ba02cf4400644ee3022d6bfb37077c48d4c06cc762fea83bd5e4b798448b96017b76c41d558da1cc8e3c065b6bc44c4a3a6e4bd9d0be2c5bab87563b642fc40c73f1ae6b553929d7d9af0160732f1e9df66bf0a002fb24003b9ba8d533e7afe7aa1b76a21f8a2293ea5c9c7f9fb6d57d5d34270f6ae12dbd8080d87a9ca71600cf67aa544c68f1549abdf3a0bea05842300455849dc4cfc4aa836acaddec3c6bd04d4ada47aa6b5d2e5c00605fb7dae1dc927012bd1cd61c7fc7a0ffb10d59cababa67b459bfc685fc045e4d92dc58d82b516e896a31fdf27db1dc1d1adec2eb104900499864c2d2253aaad6c735dd68cb79a74cbb777719fb5a2c7234919fbe00eda2b3b238d66d5c18471f5eef131f8ae768d65bce289043c83f69ecb60665bb9b24afa68957de08d9dc6fd326ed1f75fc38802e6358b2ba782261994dda5f80e652db8c2e16d107560a63f33214a3682440aae75faa06ef418a7cb3f53d8ffe1967d41d85e02ee12eb558235d262f6cd5854566e1bf0224c5b40f00e4009fd4458a1bef9d84522a4707a82299a8ddcb68fbb700d45c950c15571940aa39cc6192e3b26b02a928e51763ee10db60a5e923e4f92f50ec0946e1206e11233d7c36c555413b6b11374a120bbf1982003e241e409fb50bfcd8dd16d8f0a4ddb21af9e2a9c210d9dacd07f7c4f5f8d30f825b5a962b0707ee3f0c73bbfdb68d08763d5f3a9895fc9f799bd939cce21dee52102ec6432f9ca1f622b4288781f603286f45ccbbe44e54f6ed73b04db5333bcb18a2c7ab2c02541b17e2f1b9006429c4338a1836f235a375511cf2a1f59388f1cfe5699dfe398ebb18bcfafcf4d313ceb63778511f3642bc244b4cc184304e02506ad0cac2b5c1b60398b709d3b95e919630f2eac318ae4d4e2b212fc34d3e4afe201f6ada1be93fd970827bc7f6962ccf69c440f02abc36341d75da486f3830286242e6bd8f12d4c48dfca7d5b0c31ac16fd5f48351e4d665d350b014f6a08ab05dc4c0326928a1c8229ca8563f92dfa5de729cf8b6609796d0c787a0fd1fe21f5f773796e0ae855062b2a2d2354edfdf9634edc572651c8b0ce40bb5917ed518bd71f7a57c190f414cd8eada3be8a91c77d32ff2f612adfa7101bb53dace3e79cdcf26edd240c2b8c990cb1c882e4c0428ec501feed47945b2b9c8fedddce54dead6c3ae794faedf7d8f3743955199ef72992bc6c4a6dad35fdc49dc07e2aeb61f0dc41f47c6868463b529779aa5f9ad750a87542a83da8fd0088a20c0d8d48ddeb1114e2bcb68c5608cca7d9dacbf2150fbab88f0fce095e3d485adecaa0e511014bba0aa31ab87ce9a39cf75ef36499036507c9dae040389d61ff4fbd03ff046a54ce63254099c19d251a4258674c03a79b45dc6bb42e8dfcacf420f1d5e4891857371554b6cbcedea0821eab97184f301d24a3009839cb450d37e42db2803b49f643ea17babfdbb6b053ee31da5aa7e0ead62c6a353214cfbf27cea6a0cb76d07982bffceffc4c371a68915f5c811139fdff0c8af48ca8dbf89ae1c0a79a6aa43f3680e2dd0fd01b0705607541a4488737cc04df2eb78094a615531e761b8b5b5c8b878bac99efbd75e3fef3041e472cae212744eb3fa44a17a5cb365be9c65203689a8359bbd819908fe5a850c6ea605b346f1a11c75b812825df69f7c949aeee9d507ac05ad80d0c958c1bb5035d96133e1f35655f6c4902e6a0d883f912a6b09063e43b1acba83b9d9538d7660e3216855848f9234bd39a5aee26084a4dfa543c046f694b37b4b92b5e82becc80ce285ae2d9b8f7a22b822776a1ae1d3d7e9cf515d14ce01895c2684415dac87e9b912b62377d17f5e7b8ffbdf7dcdf36f3e31068b687b75bdf552321fca1feb39fa004e8c9765c08c5b12a399080517885b26c09f4dffbb8d2081beecfbea1fdb981965dd2aa8ede11d7611c4dc6cc7b67028e8d94d342850f4249d4ddb03e99bd5a8bedb16b54a90a73b390e1dba1fa399b8c45347077d9b1fcdf27aff79d778c540156e217b5e675a97e6db3fd2e73569b43c9690709a04ef6617bf908eef3db6a5be8be27f5579cabcd14b60617f439d808ba879eac9bbee07b91ff725b4aba1bf239a08d381a544b47aa2281b4522047f8420fd4502b187b7435b9191d5907b3e44bd278c7897f0e97f6fe68cfcecb8932fdfc9135e046c87a8569054821a28565d0f611857e799511264714df32d269f551a3d13fb51a01fa572544e087d138bf7c1de514b407d37514f7e02a160ad6b6599f94443aa948cfd6d1a9d08296aa566ca12eab40c50aec49a050faebf3fc6cae179285448f64c592f7a86dad663e2ef9c2c7e812443710f075a9260e12401988dcaeb88bc3720412ec62ecdaf838a8163ac11952d24bdda0cf496142b6c3d5e334f2e7d1ee7a09f3ae5845b5ab229f22f721889e46644a80f11494495067f2e7945817b3cd80a9c019d44d44a25bff4ca6c742f7b263acb2ede939ad4d23b675935b6552abe430f0fbe86b15ad54b71254d630d2543d5ade2c8362cb48a5045e0b2d51d596149bb3ac02c565e10aa867635cfd7ee22d6952096318eed133e84a0b10dd2db9172a4afeae23124958c23e4bc61d134f75ef205f6f92dadb0e3d2fe6681cc96d3331f8d2c361f93e64b98f12973770bdd0bf7084eee64f1e8bc027b9824640022d4f022369ce957d1f5fa42c2f876dfc8e22bd6ed7de619077a7e4817a22c76767580c91735cc5af1729e2fe39b67d3dedac94933edb728d64429cf63579eb5bee39ad5f71471ac44d20a78ec2d1f8a84f9757ba7bd3adb73aaf34f63aa697e0903827302fae51a4dc54a452e901212681108a9bbacf86df2ea133bd1da0f3f3928b5ba98b60c6024f79988d4942dafb2951e4ed295cc2b0f01e211a5e767fc9b6b853e61a773d36a48ec2860184ed80632951bac3f6ff3de9c5300610f7bb5f5ebe69c565add309c46c89d7442b317800c14dcbb2004359429bd1139bf2358ec4aaa93a7cc99a8dbf590fa8aef29bd705293060a1922d837062b52047787d3938562976cc1088d4845cb6393e00c0d613549716039ca1ff737002756be4a26ef7e648024e5eb09950f3c4ca952f299bdd7c4fedbc8a669c6570c87743745fc60cc47e3d64c1711de3d1e4cba1753ff64737dafd595c3b1730fb383a", 0x60, 0x0, &(0x7f00000004c0)="5d6ee18fff282939ebe63472fbdf4cebcff181add1563ec192be6431520a74c5942a94fded8894c8bf8745dbf4d670723ed1335ba50acd178ad733ad8b751a3155041c003c32df08e44f131642a2fdbde31336aa687a64c7a4288c221a9db452"}) (async) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f00000001c0)) (async) 05:19:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:03 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) (async) r1 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r1, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) (async) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32) preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) (rerun: 32) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000100)={0x28, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_TTL={0x5}]}]}, 0x28}}, 0x0) (async) sendmsg$nl_route_sched(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)=@newtclass={0xdc, 0x28, 0xa20, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xb, 0x1}, {0xfff1, 0x1}, {0xa, 0xfff2}}, [@tclass_kind_options=@c_fq_codel={0xd}, @tclass_kind_options=@c_taprio={0xb}, @tclass_kind_options=@c_atm={{0x8}, {0x1c, 0x2, [@TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r5}]}}, @TCA_RATE={0x6, 0x5, {0xb9, 0x4}}, @TCA_RATE={0x6, 0x5, {0x7f, 0x6}}, @tclass_kind_options=@c_atm={{0x8}, {0x58, 0x2, [@TCA_ATM_EXCESS={0x8, 0x4, {0xfff3, 0xc}}, @TCA_ATM_HDR={0x2a, 0x3, "553a4f77363fbcb3dd20386e25bd9217edaa8b144065f4cda3333ef48da566ade701b8060c09"}, @TCA_ATM_HDR={0x6, 0x3, '|8'}, @TCA_ATM_FD={0x8, 0x1, r2}, @TCA_ATM_FD={0x8}, @TCA_ATM_FD={0x8, 0x1, r2}]}}, @TCA_RATE={0x6, 0x5, {0x0, 0xb8}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4004004}, 0x10) (async) r7 = dup3(r3, 0xffffffffffffffff, 0x80000) pwritev2(r7, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) (async) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000540)={0x1, 0xe9bb14e0841cd589, 0x1000, 0x1000, &(0x7f0000001000)="0e3053a25b344a2fb22d6fd1896f8f610d5cf3336692243d2e40df673acfe61da03e00eb0b8c3d7a16e4b89c3eea0c01a3573daf36f612531a148f05aa0fdcfe6e13cd122cc7f8cc3ba3f4ad07a974e6e58adc0b48f5c20bbf37858894a71000c6f7f88c59d306be9d057cd1ff92264459a13339f16f154da8c5c2424892e95c9e3737589c803006c82babb6ffb2843288b637aeea3aab57d928e46ad0167a68d25b6334caf7f1f08755f9139d30832a407d8759c4ab1481fb82df47a6ba62350dc87e44c86494d25594904cc911dd072f128531c338d32e4c2a624464554d6009d47657e512c25a6c3d9a5f8a05bcac57f9ee9a7e10153f68a6d6dc11f2c9f657cea163568a6875a29998fe90147b0449b8188aab78c51d8974da0123267d2bc2e7ffd85d8d7e12c3cb7c8155d2e88b77c4c24e09a78d1506c73cfdf59c138c962de029d33b04f5650624241f40b32b2e01af8e5d44d0c87f83a7976f134b68fc568d3be494e879cb4bb348e0cf47f290bb8e168b987d569e86e83f0e3b20e85bbcc70e96a2bca3905e23f104819d669a18ba8b40f76ebec019a9ed73a9677c2d0c9a40c540ce9381c178703c91836f5cbc656d1511376ee77877a86db54e3d4e4ecdfdd41e43a7561506dbe136e1b76f5d3fb584851771f38d03b60a5c28cbb1bb27c696b70577618a1fefe9cb033562c1db836108535f7e0c46c2dbc2c19f9bd2ddf18da1dfc75039b24f77b43015587dd42ae72b9c60184f5920396db7d88eb03d40b408443b4b91daa74189c3fba5386ccbd6d671d1a8426e362e8f8762d1331e50c18f900e6f6b078f05923675238c7103579610fff431e7b5d14ecec15b81a30ac2a87383f6ee543106ff7458c5f08af4ce08d117b9aab3ed17c6ece73190a79aa3c912943b5623272a1b3cc440986cfe05a9f6d7b71f64cd00e07f0c7a672ae65238c4aa62b5c6b096e78f4c070a17e336874b8ecb064a0d184c9249665448bf401cd0d474634a763a93faa7df8188bf6ce96beb6c18584e6ecb927feea7b5db36b48be09c9e4303688e8eb181e9691200420fdfa046f5f0066433d591c5f6a57b53f9dab47720e4f25fed021d222ca19ca123db492f80580adaea3dddd7c19d8e7bfdf2f5a99c23311774e6eb14e2017988369065add53ffc8feacdcf1c9051dd9930de0e42a1f83ceb3cde5cc0ce9c61d6cff8b546471882cf888e44c5f0c78ebf0cb2988c2f77c94d52187a740c4e8387c5fdf8d0f07757832a3740c5c8e7824c1b94e2352c09bfff5264abf4dfb14130de195b785318c33da7d3f121c13f39099e5bdddc44840db30bad0d29f6882b2301432d0a4c36c4e2508ca39446fc771e0017da7f4e2adc5f3f2204f46bd357be726e5b5ca359b15b7b5663a6901e62298dfc4a90095ccf0b322d97a932f5d3a4724cf9468cb7accf0bbcbd1b2a2e52cfd591a018b7318189d39091f7330cb6b2c2e1532b208d9a409d3b50eb1f00c0df4879f14f0b628eeb92599a1c8c4522a6edf07ff95fa6805ae226a213da79b97e00981b849dbe0affc44d8faaa0f15a31f8aeea55057dbbfd8bd7b139b15b3e419d1f316795bfcdb2e5e10b19efd7f32b202402f2ad69e48126e1c9b7b5c056c8c3108ed27831011a7fd06fac909fbdf31ec4d7506c5b9846622498c945a040d13f4e85620759aafab3cb5f632419d54908928cc59216d2dc75672fb034b8309ea7f832823b5235393b167c2e8914044935b9c28d6c66f1c94671b3ac8e0e9d6a52adc47e83ce74ed1fbceed0a595c75800441caf5d0a3d4e17ac94c290842e974ed501c0f7239f3c1c12c7d5fe60b69e5da197eb25cf7e13d239e4dab67328868636459ea15b2095e87cbdd9ab8cea2ccbb592499e792d216b810050f8c2faae868a8fc3fcc8350e0b630f0b25dabbc85da0df1075a4233dd5561285501b45530cac260a3af8dda9ffa8f9ddda4efd611ce74eb2c09f9ab8efc3b8cdb67d52f11d16ce9e16de80596811f5abb82e498d5929be631174c1ece84eedfffe6e39eed12d077949a846d525bee46666a7770fcaf594cd7b8a293388f890502bb3d9e1fba11fbb3c5c6325f4efdc3bffb740f69b9fc822f992d560707cdc44150b6120de17efef962c65432ef266935dd03e7b84ad251896470c1cc111ddb00fde9f66b3de2060336bbe49fb25d58a4abba830db7cdf4ef6bb05f0c8c0a70dd1767eb7b53720e615022fbd36d72e4fad0e329bf4e193e8f753b69ceb4c234df80db5772815459ca66e855f4e022a3346cc676dfb7fd01b7ba99840cbc87f393a77aa915afeb99641f62df6cd664d459107cd073460d84697d5397be4509319de9b2d46db0d3759144f8b2d118ae04513d92340e29d102e459639637f0a24d02471ad492674ae5c221b74863977f98df158a0319dbc820cf604a5d1acd7f796c2a5e8142efc5c298d493c0e1494117f271edefa06fe94cc2521dd8906bda791fc5680040629714054fbad5431df296de4d3ff80e5b5675b4a2f73c867c6bcab339da27ec909102d714142bfe7207402c9e528a8f93fa3b276064733b12bd509437b594f280efe1ba02cf4400644ee3022d6bfb37077c48d4c06cc762fea83bd5e4b798448b96017b76c41d558da1cc8e3c065b6bc44c4a3a6e4bd9d0be2c5bab87563b642fc40c73f1ae6b553929d7d9af0160732f1e9df66bf0a002fb24003b9ba8d533e7afe7aa1b76a21f8a2293ea5c9c7f9fb6d57d5d34270f6ae12dbd8080d87a9ca71600cf67aa544c68f1549abdf3a0bea05842300455849dc4cfc4aa836acaddec3c6bd04d4ada47aa6b5d2e5c00605fb7dae1dc927012bd1cd61c7fc7a0ffb10d59cababa67b459bfc685fc045e4d92dc58d82b516e896a31fdf27db1dc1d1adec2eb104900499864c2d2253aaad6c735dd68cb79a74cbb777719fb5a2c7234919fbe00eda2b3b238d66d5c18471f5eef131f8ae768d65bce289043c83f69ecb60665bb9b24afa68957de08d9dc6fd326ed1f75fc38802e6358b2ba782261994dda5f80e652db8c2e16d107560a63f33214a3682440aae75faa06ef418a7cb3f53d8ffe1967d41d85e02ee12eb558235d262f6cd5854566e1bf0224c5b40f00e4009fd4458a1bef9d84522a4707a82299a8ddcb68fbb700d45c950c15571940aa39cc6192e3b26b02a928e51763ee10db60a5e923e4f92f50ec0946e1206e11233d7c36c555413b6b11374a120bbf1982003e241e409fb50bfcd8dd16d8f0a4ddb21af9e2a9c210d9dacd07f7c4f5f8d30f825b5a962b0707ee3f0c73bbfdb68d08763d5f3a9895fc9f799bd939cce21dee52102ec6432f9ca1f622b4288781f603286f45ccbbe44e54f6ed73b04db5333bcb18a2c7ab2c02541b17e2f1b9006429c4338a1836f235a375511cf2a1f59388f1cfe5699dfe398ebb18bcfafcf4d313ceb63778511f3642bc244b4cc184304e02506ad0cac2b5c1b60398b709d3b95e919630f2eac318ae4d4e2b212fc34d3e4afe201f6ada1be93fd970827bc7f6962ccf69c440f02abc36341d75da486f3830286242e6bd8f12d4c48dfca7d5b0c31ac16fd5f48351e4d665d350b014f6a08ab05dc4c0326928a1c8229ca8563f92dfa5de729cf8b6609796d0c787a0fd1fe21f5f773796e0ae855062b2a2d2354edfdf9634edc572651c8b0ce40bb5917ed518bd71f7a57c190f414cd8eada3be8a91c77d32ff2f612adfa7101bb53dace3e79cdcf26edd240c2b8c990cb1c882e4c0428ec501feed47945b2b9c8fedddce54dead6c3ae794faedf7d8f3743955199ef72992bc6c4a6dad35fdc49dc07e2aeb61f0dc41f47c6868463b529779aa5f9ad750a87542a83da8fd0088a20c0d8d48ddeb1114e2bcb68c5608cca7d9dacbf2150fbab88f0fce095e3d485adecaa0e511014bba0aa31ab87ce9a39cf75ef36499036507c9dae040389d61ff4fbd03ff046a54ce63254099c19d251a4258674c03a79b45dc6bb42e8dfcacf420f1d5e4891857371554b6cbcedea0821eab97184f301d24a3009839cb450d37e42db2803b49f643ea17babfdbb6b053ee31da5aa7e0ead62c6a353214cfbf27cea6a0cb76d07982bffceffc4c371a68915f5c811139fdff0c8af48ca8dbf89ae1c0a79a6aa43f3680e2dd0fd01b0705607541a4488737cc04df2eb78094a615531e761b8b5b5c8b878bac99efbd75e3fef3041e472cae212744eb3fa44a17a5cb365be9c65203689a8359bbd819908fe5a850c6ea605b346f1a11c75b812825df69f7c949aeee9d507ac05ad80d0c958c1bb5035d96133e1f35655f6c4902e6a0d883f912a6b09063e43b1acba83b9d9538d7660e3216855848f9234bd39a5aee26084a4dfa543c046f694b37b4b92b5e82becc80ce285ae2d9b8f7a22b822776a1ae1d3d7e9cf515d14ce01895c2684415dac87e9b912b62377d17f5e7b8ffbdf7dcdf36f3e31068b687b75bdf552321fca1feb39fa004e8c9765c08c5b12a399080517885b26c09f4dffbb8d2081beecfbea1fdb981965dd2aa8ede11d7611c4dc6cc7b67028e8d94d342850f4249d4ddb03e99bd5a8bedb16b54a90a73b390e1dba1fa399b8c45347077d9b1fcdf27aff79d778c540156e217b5e675a97e6db3fd2e73569b43c9690709a04ef6617bf908eef3db6a5be8be27f5579cabcd14b60617f439d808ba879eac9bbee07b91ff725b4aba1bf239a08d381a544b47aa2281b4522047f8420fd4502b187b7435b9191d5907b3e44bd278c7897f0e97f6fe68cfcecb8932fdfc9135e046c87a8569054821a28565d0f611857e799511264714df32d269f551a3d13fb51a01fa572544e087d138bf7c1de514b407d37514f7e02a160ad6b6599f94443aa948cfd6d1a9d08296aa566ca12eab40c50aec49a050faebf3fc6cae179285448f64c592f7a86dad663e2ef9c2c7e812443710f075a9260e12401988dcaeb88bc3720412ec62ecdaf838a8163ac11952d24bdda0cf496142b6c3d5e334f2e7d1ee7a09f3ae5845b5ab229f22f721889e46644a80f11494495067f2e7945817b3cd80a9c019d44d44a25bff4ca6c742f7b263acb2ede939ad4d23b675935b6552abe430f0fbe86b15ad54b71254d630d2543d5ade2c8362cb48a5045e0b2d51d596149bb3ac02c565e10aa867635cfd7ee22d6952096318eed133e84a0b10dd2db9172a4afeae23124958c23e4bc61d134f75ef205f6f92dadb0e3d2fe6681cc96d3331f8d2c361f93e64b98f12973770bdd0bf7084eee64f1e8bc027b9824640022d4f022369ce957d1f5fa42c2f876dfc8e22bd6ed7de619077a7e4817a22c76767580c91735cc5af1729e2fe39b67d3dedac94933edb728d64429cf63579eb5bee39ad5f71471ac44d20a78ec2d1f8a84f9757ba7bd3adb73aaf34f63aa697e0903827302fae51a4dc54a452e901212681108a9bbacf86df2ea133bd1da0f3f3928b5ba98b60c6024f79988d4942dafb2951e4ed295cc2b0f01e211a5e767fc9b6b853e61a773d36a48ec2860184ed80632951bac3f6ff3de9c5300610f7bb5f5ebe69c565add309c46c89d7442b317800c14dcbb2004359429bd1139bf2358ec4aaa93a7cc99a8dbf590fa8aef29bd705293060a1922d837062b52047787d3938562976cc1088d4845cb6393e00c0d613549716039ca1ff737002756be4a26ef7e648024e5eb09950f3c4ca952f299bdd7c4fedbc8a669c6570c87743745fc60cc47e3d64c1711de3d1e4cba1753ff64737dafd595c3b1730fb383a", 0x60, 0x0, &(0x7f00000004c0)="5d6ee18fff282939ebe63472fbdf4cebcff181add1563ec192be6431520a74c5942a94fded8894c8bf8745dbf4d670723ed1335ba50acd178ad733ad8b751a3155041c003c32df08e44f131642a2fdbde31336aa687a64c7a4288c221a9db452"}) (async) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r8, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r8, 0x4010ae68, &(0x7f00000001c0)) 05:19:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="fdf0984578ad34cab9c6f06c7c4b9e8ab498c8d8bb67ceef15e402595f4a03398b942a58afb171840000f31043c3ce15b913015e40205bfee065d0192df4a719db4c3af2157b"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:03 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@textreal={0x8, &(0x7f00000000c0)="66b9560300000f3266b90d0a000066b80040000066ba000000000f300f796800ba2000b0faeeb8020c8ee0640fc76d83d8d73e0f0667f0839899daa3ad620fc79b0f00", 0x43}], 0x1, 0x40, &(0x7f0000000240)=[@cr0={0x0, 0x80050010}], 0x1) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r5, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f"], 0xd8) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) sync_file_range(r5, 0x8000, 0x74, 0x4) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x4200, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) 05:19:03 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x4200, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x4200, 0x0) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) 05:19:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f800106c4e667ab1fb0b775b250d4f34e08"], 0xd8) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$BTRFS_IOC_INO_PATHS(r3, 0xc0389423, &(0x7f00000001c0)={0x80000001, 0x8, [0x7, 0x10001, 0x9bf, 0x7], &(0x7f0000000000)=[0x0]}) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}, 0x19ca0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f0000000380)={0x7fff, 0x0, 0x3, 0x400}) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:04 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x4200, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x4200, 0x0) (async) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) (async) 05:19:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_CAP_X2APIC_API(r2, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x2}) 05:19:04 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10001, 0x1, 0x10000, 0x1000, &(0x7f0000003000/0x1000)=nil}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x1) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:04 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) r3 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b3000000000020002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03000000110000000d6039017088d7c27f800106c4e667ab1fb0b775b250d4f34e08"], 0xd8) execveat(r3, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$BTRFS_IOC_INO_PATHS(r3, 0xc0389423, &(0x7f00000001c0)={0x80000001, 0x8, [0x7, 0x10001, 0x9bf, 0x7], &(0x7f0000000000)=[0x0]}) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}, 0x19ca0}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f0000000380)={0x7fff, 0x0, 0x3, 0x400}) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async, rerun: 32) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) (rerun: 32) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CAP_X2APIC_API(r2, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x2}) 05:19:04 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:04 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:04 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r2 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) (async) sendmsg$nl_route(r2, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) (async) ioctl$KVM_CAP_X2APIC_API(r2, 0x4068aea3, &(0x7f0000000000)={0x81, 0x0, 0x2}) 05:19:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0xd000, 0x18000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) 05:19:05 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:05 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0xd000, 0x18000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0xd000, 0x18000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async) 05:19:05 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0xd000, 0x18000}) (async) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (async) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) 05:19:06 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:06 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000280)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'nr0\x00', {}, {}, 0x6}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) r1 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}}) read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r3, &(0x7f0000004200)={0x50, 0x0, r4, {0x7, 0x24, 0x6}}, 0x50) r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0) syz_fuse_handle_req(r3, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r7, {r5, r6}}, './file0/file0\x00'}) ioctl$FS_IOC_GETFSLABEL(r3, 0x81009431, &(0x7f0000000840)) mount$fuseblk(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000100)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r5}, 0x2c, {'group_id', 0x3d, r8}, 0x2c, {[{@allow_other}, {@allow_other}], [{@seclabel}]}}) syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7, 0x1, &(0x7f0000000180)=[{&(0x7f0000000080)="edb2a16aabaa62caee93f346176594358df29083a1b02c3c7b3b01b364b4665f801a6a43f441644c1582f96f74e8c28fb2d136d870872632dbfbb0e47529affd76496240be56750d711760ff3029c2518dcfeec33aae3e59e56fb99dcbfb7a5d443a021dd0f9a6aa0195cdcefe53f429b1ef32966d4d40ee084d3a0739e3ef954ae4249264b9e939d9f2108b2f300503b33de7985f2213841d8b1cf011a0a854ac2d3dbae9a37ed6cfc30d89d352565d80e863ab4e9264a96599e67344715d785cfaa7d2aa405b9c3c68cf0b39850808ff20", 0xd2, 0x1}], 0x801800, &(0x7f0000000940)={[{@uid={'uid', 0x3d, r2}}, {@session={'session', 0x3d, 0x8}}, {@gid_forget}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}], [{@obj_type={'obj_type', 0x3d, '}'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '!'}}, {@dont_appraise}]}) write$FUSE_INIT(0xffffffffffffffff, &(0x7f00000007c0)={0x50, 0x0, r4, {0x7, 0x24, 0xb17, 0x400000, 0xf6f6, 0x8000, 0x1, 0x6}}, 0x50) write$binfmt_elf32(r1, &(0x7f0000000140)=ANY=[@ANYBLOB], 0xd8) 05:19:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f00000003c0)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:06 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1023.039113] x_tables: ip_tables: ah match: only valid for protocol 51 05:19:06 executing program 2: recvmsg(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000380)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast2}}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000400)=""/206, 0xce}, {}, {&(0x7f0000000500)=""/212, 0xd4}], 0x3, &(0x7f0000000600)=""/166, 0xa6}, 0x10000) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:06 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="311012350002c8123b85e834066cb038abbf06e9863c8ffae996accf877288ed83882979c64f0f5f08f8fa4fe2afd8ab6007a0cda9"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000380)="b9800000c00f3235000400000f30f30f09b9000900000f32b8010000000f01d9363e66450f3a0f949f00000100548f4908012df5ffffff0f01c20f20e035000200000f22e0c4c161ed8262000000f3440fc77600", 0x54}], 0x1, 0x1, &(0x7f00000001c0)=[@cr0={0x0, 0x40000002}], 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:06 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:06 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x3, 0x7fffffffffffffff, 0x9ea, 0x0, 0x0, 0x1, 0xffffffffffffffff, 0x8, 0x80, 0x200, 0x8, 0x101, 0x52, 0x800, 0x7, 0x8], 0x2000, 0x4}) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000380)={"861bdb5d656535b53a98d329a7bb8e1e", 0x0, 0x0, {0x9, 0x6}, {0x4, 0x10000}, 0x0, [0x16, 0x0, 0x8000000000000000, 0x1, 0x6, 0x5, 0x2f, 0x6, 0x8000, 0x55, 0x8, 0x9, 0x100000001, 0x200, 0x2, 0x7fffffffffffffff]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, &(0x7f0000000500)={{r2}, r3, 0x10, @inherit={0x80, &(0x7f0000000480)=ANY=[@ANYBLOB="0100000000000000070040000000000005000000000100000000000000ffff7f08ffa4df3a670000000000000001f0ffffffffffff4707000000000000040000000000000001000000000000800600000000000000040000000000000000fcffffffffffff010400000000000009000000000000000100000000000080000000"]}, @devid}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffe000/0x1000)=nil) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f00000003c0)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:07 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="4b34f8d87446471b956b946c002300150002002dbd7000ffdbdf250a1f0bfd8762be806005b1b094000000000000e7000000000000f3ffc5101a70eb51e4a529342dd94a739c481aff0b7f5fdb166bb06d5021f147682b6fcead8ed15627cb2e49a9fe9fe67614e1b84e03da2acdf468088bf0287c83b6314d7e0b5047d695d864388f2d847a2efc64036a4c0bd49634adc512956384801fa40ad6aa857991f546ea7d7ab857c54e20221b6b8f0067bb2ba8d3422429adab98c86e52541d31ae57cc88ef2f9970d09208d1b98a4959dfcd3e00266e393e3bee4d1b66388281cd90223183277ea29032706a0144d51936d6ff55c0eae4259a57a3ff84b382625a3c2694c47c02abf8e5ec623a45de21ff7abc2ca41eb3989346bfd62511464c105a72f2e34d93baa5c07dbae151e25b4fefc187c14bf2386680df196e14ea4f52bd2a1b79f9e36fcbd307ddc072d496e1cd86e1062600af7c70d582ad51dc0ab84d0f20e7d094e6ad940ada05a2a06dd1584190995f3e7ab5d7198e2f393e985a5c4c00728d768a84fe1f79b3c2a16d7f160b13d83c20a92cf1ee105207af5a7072c09eee1e094ccbb6697ee93dc9530556dfb3725f84595ef2d3f339f78a7148cdbb332bfb22a6c5c42999d91e726a041abcbd09fc00550c22ff8b56eb351548262679d06856dac69c526092d6f013c22c456930cfbaec0acff540cbba684018cfe9a87be928248685a78a15f47311a27d1f2ef5a136bf7bbf69d102b74be8b8c6b6bd8eeda9f1c50a1fa22530bd5cad0b7c1a682eef7a113c397e4b07ca68f275f941", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="311012350002c8123b85e834066cb038abbf06e9863c8ffae996accf877288ed83882979c64f0f5f08f8fa4fe2afd8ab6007a0cda9"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000380)="b9800000c00f3235000400000f30f30f09b9000900000f32b8010000000f01d9363e66450f3a0f949f00000100548f4908012df5ffffff0f01c20f20e035000200000f22e0c4c161ed8262000000f3440fc77600", 0x54}], 0x1, 0x1, &(0x7f00000001c0)=[@cr0={0x0, 0x40000002}], 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:07 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) 05:19:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="311012350002c8123b85e834066cb038abbf06e9863c8ffae996accf877288ed83882979c64f0f5f08f8fa4fe2afd8ab6007a0cda9"], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f000000f000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000380)="b9800000c00f3235000400000f30f30f09b9000900000f32b8010000000f01d9363e66450f3a0f949f00000100548f4908012df5ffffff0f01c20f20e035000200000f22e0c4c161ed8262000000f3440fc77600", 0x54}], 0x1, 0x1, &(0x7f00000001c0)=[@cr0={0x0, 0x40000002}], 0x1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:07 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x10200, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r5, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000000)="66b9311001c066b8a574be1d66ba000000000f303edb2a0fa0f30f09bad00466b82b00000066ef66b80d0000000f23c80f21f866350800d0000f23f80f300a4bcd0f4afcb800008ec8", 0x49}], 0x1, 0x24, &(0x7f0000000200)=[@efer={0x2, 0x2400}, @cstype0], 0x2) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="666906003000a4ede2837c7e3f57df0fbd6c61ef12fd71c5f2a982fa3b73d43f6bd4625848f33dda7fe21f2ab376cc37f22f749909e81879df181de0d9233f2675e45c00b56113363e9a8a7a"]) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000000)="dc43000f01dfb836000f00d0bad104b853f1ef0f09ba420066b8bb00000066efd8e766b9800000c00f326635010000000f300f01b619f5b8ed008ee8", 0x3c}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000240)={[{0x200, 0x1ff, 0x7f, 0x0, 0xfa, 0x8, 0x8, 0xd1, 0x3f, 0xe1, 0x0, 0xaf, 0x3}, {0x0, 0x0, 0x20, 0x1, 0x6, 0x4, 0xff, 0x40, 0x9, 0x1, 0x4, 0x4, 0x8}, {0x1, 0x4, 0x4, 0x7f, 0x5, 0x3f, 0x36, 0x1f, 0x40, 0xff, 0x7, 0x6, 0xb76}], 0x5c55}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f00000003c0)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000005000/0x18000)=nil, &(0x7f0000002680)=[@text32={0x20, &(0x7f0000002600)="66ba4300ec0f2197dfd00f205466baf80cb8c924f787ef66bafc0cec0f79d8b8cc0000000f23d80f21f835400000900f23f867f0819500000a870000652626f40f01cb", 0x43}], 0x1, 0x20, &(0x7f00000026c0), 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) pwritev(r0, &(0x7f0000002580)=[{&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000000140)="1ca3e365077bb372de7b5f0672584d8f9e242afc122bdf1cd27ebb7bb0", 0x1d}, {&(0x7f0000001380)="ce9fb601fba694f74a86ba37ee2e0ce0f6ae68acbe6e92713008e8907b70f57e3cf4fc9eaca8f060d24ea5a62e8077730f1d29ed4343e40a6baecc07a8c5d880362097d75d48b29cedf222ffdfa7f19cf04ab9af9851123d43e25505cf184749f1522da69b4485beab9986593645051434031108d5bb5e75b7e9d5a7c7bfa3219279c24fd2bd650fea2f726b11ddffa0f1e148660295915fcf125370744d398d4e4ae56a5eab8d09b164203334ed492d8dc929251ce39e4664ce1af5b1672559cd5000a4568dc80bdb431c056fc7dcf1db757f41393f0cec2418902fc3709315e95540f3fcbd24220334f79191336baa3070", 0xf2}, {&(0x7f0000001480)="d8a38acaf29a25cef2a53a0903f7cc47e6aa4a4b2dfbe80d6a9561b67b4558664be6ec26cacebced6a1c06bdc7e04665a632284c01f8a52702a40252922157e94f4567fcc7000d35e178ed2035198ab43871bf0e3a204e8fd8d4eb001946a3c615c4514460023b4022d84fff2fd525c0eea606b9599f742a37804347a1d108a330a442f20cf86a67a4d8d7899da2d439c64bc72d89dfc72fd1afdb0cb7e6ae7507bb7d43b96087d22cba16abe71471ef4db307dc888a0f47d55f1fe19d9db3e45c56197b6be2a4a40123724ba53291632f4be4a743747b2f815708531f1fe14d55a665b524ffc5eedd58878cd81ea8ba24db9f09", 0xf4}, {&(0x7f00000001c0)="7b0b1f8750e92a8733fc905220f9f802345698072571bb50098f5fd38a62fad9d8f421d1caf70f427bcdbae02979637616", 0x31}, {&(0x7f0000001580)="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", 0x1000}], 0x6, 0xbf, 0x200) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) 05:19:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) 05:19:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) 05:19:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) io_submit(0x0, 0x3, &(0x7f0000000700)=[&(0x7f0000000500)={0x0, 0x0, 0x0, 0x7, 0x7ff, 0xffffffffffffffff, &(0x7f0000000440)="9027e5b92d09f4a05f72468cc33af98cf074a9e6be96be2f2b1218b012c9590d5f0d150a9eb5adaa4fba71198317a0aaaa2729423cbead5ce9ac99e588e760e760d0bfdad02e8566029be2f91fe833da361a8c10b17338e4c27ed3a0d8d161aacb68f745aae3eb82d8f5d002a840dec7909092a2b3e455eb62301efe77ba9619692092159670238687cb3fa1dd", 0x8d, 0x2, 0x0, 0x2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x5, 0x80, r1, &(0x7f0000000540)="2e0e88bf7842e338aa6bca085df0d148a1c0b69ca25c2badfa4d0418dd66784949072cbd721655eadedd62e9f5dde8384ef5b754efb003d806b2f6916cf496981e", 0x41, 0x7a, 0x0, 0x1, r4}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x7, 0x4, 0xffffffffffffffff, &(0x7f0000000640)="6993f9b4136056f99a17e0b1e1d1878d3f6a5315e4395cd089531ad6c660f0d4c6faa8c797e06944a909f28afa20f3403e1ac697e33abf22105f86b5e3f5ca11d88a4933875c4128ad359355ca9e4a", 0x4f, 0xfffffffffffffff8, 0x0, 0x1}]) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) syz_kvm_setup_cpu$x86(r4, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000380)="0f09c4c2790f47336f3e2667663ed9f867670f01d52e0f01c2b9800000c00f3235010000000f300fc72966baf80cb870dbd982ef66bafc0c66b8140066eff0fe06", 0x41}], 0x1, 0x6d, &(0x7f00000001c0)=[@vmwrite={0x8, 0x0, 0x1b, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8}, @vmwrite={0x8, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x3, 0x0, 0x9deb}], 0x2) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000740)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 0: ioctl$KVM_ARM_SET_DEVICE_ADDR(0xffffffffffffffff, 0x4010aeab, &(0x7f00000003c0)={0x1f}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(r2, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/fib_triestat\x00') ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) r6 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r6, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000400)={&(0x7f00000008c0)=ANY=[@ANYBLOB="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"/566, @ANYRES32=0x0, @ANYRESDEC=r5], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="440f20c066350e000000440f22c00f01c3640f07660fdd5614baf80c66b8d3613c8266efbafc0cec66b9710200000f32f866b80500000066b9000001000f01d9baf80c66b862fe428366efbafc0ced0fc79d36ef", 0x54}], 0x1, 0x16, &(0x7f0000000100)=[@cr0], 0x1) syz_kvm_setup_cpu$x86(r5, r6, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000240)="f2ac99660f38813a0f35baf80c66b88810a48966efbafc0c66b80d00000066efb810008ed00f01ca0f0666b8010000000f01d9baf80c66b89d88e68166efbafc0cb045ee", 0x44}], 0x1, 0x40, &(0x7f00000002c0)=[@cstype3], 0x1) 05:19:08 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) 05:19:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)=0x2) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) r3 = perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="baf0ffffffffffff2e2f66696c653000"]) ioctl$KVM_GET_SREGS(r3, 0x8138ae83, &(0x7f0000000380)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x260800, 0x0) ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000640)={0x1, 0x0, @pic={0x4, 0x3, 0x48, 0x9, 0x3f, 0x0, 0x5, 0x0, 0x38, 0x6, 0x7f, 0xe0, 0x40, 0x6a, 0x20, 0x1}}) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) r5 = signalfd(r3, &(0x7f00000001c0)={[0x4]}, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000240)={0x2, 0x6, 0x1, 0x1000, &(0x7f0000006000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x30000, 0x0) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x87ec, 0x7a1f, 0x8, 0x1, 0xff, 0x7, 0xffff, 0x1, 0x3, 0x1a0, 0x7f, 0x3, 0x4d4, 0xa0, 0x6, 0x1], 0x1, 0x1040}) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x511, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x5}, 0x10862}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000300)='/dev/loop-control\x00') perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0xff, 0x0, 0x1f, 0xc3, 0x0, 0x3f, 0x80, 0x6, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_bp={&(0x7f00000001c0), 0x7}, 0x4010, 0x9, 0x8, 0x2, 0xffffffff, 0x10001, 0xcb8, 0x0, 0x5}, 0x0, 0x1, r4, 0xa) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) fsync(r1) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x3000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000380)={"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"}) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r5 = dup3(r3, r4, 0x80000) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000780)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x1ff, 0x2, 0x5000, 0x1000, &(0x7f0000ffe000/0x1000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) fsync(r1) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:09 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(r2, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)={0x0, 0x0, 0x1b000}) 05:19:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) preadv(r4, &(0x7f0000000480)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0, 0xffffffffffffffd9}, {0x0}, {&(0x7f0000000240)=""/167}, {&(0x7f00000003c0)=""/91}, {&(0x7f0000000440)=""/40}], 0x4, 0x0, 0x5) r5 = dup3(r2, r3, 0x0) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000040)={0x101ff, 0x3, 0x1, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)) 05:19:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) fsync(r1) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:09 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r3, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r4 = dup3(0xffffffffffffffff, r3, 0x80000) pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) mmap$dsp(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x0, 0x1010, r4, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000240)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) preadv(r4, &(0x7f0000000480)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0, 0xffffffffffffffd9}, {0x0}, {&(0x7f0000000240)=""/167}, {&(0x7f00000003c0)=""/91}, {&(0x7f0000000440)=""/40}], 0x4, 0x0, 0x5) r5 = dup3(r2, r3, 0x0) pwritev2(r5, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000040)={0x101ff, 0x3, 0x1, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000000)) 05:19:09 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r1, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) r2 = dup3(r0, r1, 0x80000) pwritev2(r2, &(0x7f0000000140)=[{&(0x7f0000000100)="cc65a478a99d4ed104672aa2ec386a9cc5b6daa40f348b3db7a3990dd8f7c50a058b258d615c", 0x26}], 0x1, 0x0, 0x8, 0x8) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x600400, 0x0) vmsplice(r3, &(0x7f0000000040)=[{&(0x7f00000001c0)="8acd325b922c2f6a5547fdd6b3cf337cac824501264f6afb0e225ffb94dccce97abc53c5c783dab9b97740bc4402192aa57f18e7c944d9b7822a0b4c541b4c14cf0c7e5c06de22c4acc481ebc00543eeb659ceb40299017054e63910eab188ae19b23006001278a5070655a040699ddae13378b425c6fe42718fe2d8e8172f2bf3a8ebf7be465c7d65e9331138a98f17b771796587d5a8aea67266d6685e3573faec7c6ed65de24dabddee637ab63fdb2c43c5cceb804cbb962a5faf28721f00b7540e60e2c7915174c020e6b4332e09025f0966c02ce3fa7ecc832a3f1cf12c35c5c2900960baf1588c1965132306c9", 0xf0}], 0x1, 0x0) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 05:19:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:09 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) sendmsg$nl_route(r3, &(0x7f0000000340)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB], 0x6c}, 0x1, 0x0, 0x0, 0x8000005}, 0x4) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)={0x80ffff00000000}) 05:19:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:09 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f00000007c0)=@raw={'raw\x00', 0x8, 0x3, 0x228, 0xc0, 0x0, 0x148, 0xc0, 0x0, 0x190, 0x2a8, 0x2a8, 0x190, 0x2a8, 0x3, 0x0, {[{{@ip={@remote, @loopback, 0x0, 0x0, 'wg0\x00', 'veth1_to_bridge\x00', {}, {}, 0x6, 0x3}, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SYNPROXY={0x28}}, {{@ip={@local, @multicast2, 0x0, 0x0, 'xfrm0\x00', 'veth1_virt_wifi\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) r1 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x9, &(0x7f0000000040)=0x1524, 0x4) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @loopback}, 0x10) r2 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x10000, 0x0) bind(0xffffffffffffffff, &(0x7f0000000340)=@generic={0x18, "8bd8d78517a0c493dd7d8a00fccdcd2c1f35a3539d04478e774eff86adea586b1bfad028c1a4455fa84f1c0a6f7c583b7c7268c8def33feba90bd7325f8e83d49efa3efefd7661e6e282a5e1bc04e1f9a6c8450a0223f5d473c13db420f1f54f697218674d6a3029b610b38187dc06f6e803676108316a9460ab5509e91d"}, 0x80) r4 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0), 0x80301, 0x0) r5 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) write$binfmt_elf32(r5, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0xd8) execveat(r5, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) r6 = memfd_create(&(0x7f0000000600)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6\x1e\x835F\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94az\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00', 0x0) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000200)={0xcf3f, 0x1, 0x8, 0x0, 0x0, [{{r3}}, {{r4}, 0xfffffffffffffff9}, {{r6}, 0x8b3a}, {{r2}, 0xfffffffbfffffffd}, {}, {{r0}, 0x9}, {{}, 0x7ff}, {{r2}, 0x80000001}]}) r7 = memfd_create(&(0x7f0000001040)='\xa1\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\x01 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xac/\xfd\xd3\x83\x18\x04\nE\xbe\xf5E\x90\xc0Vz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.\x00\x00\x01\x00\x82o\x8e\x93\x11\xc1h\xa7\x88\x11\x8e\xaey\xa2\xb7c\x8c\xa6\x98\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8c\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\x15\xeb\xfa[\xca[\x177\xca\xc2j\x8b\xb5\xe8\xc9\xff \xd8\x9d\xad\x11B\x84\xb6f\x01\x99\x82\xef\x19\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\xb8\xfe4\xda\x80e\x94a{\x04\xf1k\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x12\x95\x85\x95]\xeb\xf4C`\fh\xf5h\xc1\xc7\x18>\xef\xf2F\xbe~\xc0\xe1\xf3\xbd\xb3_\x05\x0e\xc3\xc9\xcff^\xef\x10\x03\x05\x8b\t\xfb\xf5\t\xa5\xfc\xfcM\xe9N\f\xf5I\xfcY4f\xe4\xb3\x10\xb4O\xc2\xe7\x9fv\x82\x81\xc6\xe6X\x1b\x87\xda[N\x05\\\xc2\xa0\x02\xc0\x129d\x97\x05<\'\x1a\x11\xb5\xf8;\x7f\xb2\x12\xffe%\xb00\"\xe1\x98\x01&\x84M\x1e\xe6\xa0\x86\x10\x81\r!|\f\xab\x96\xbd\x00Q\x1c\x02\xb2\b\v\x9b\x98\x04\xfd\x9a\xb1!Z.$\x0f\x1byk\xa2\xf2\xde+;\n\x86v6\x8bW\x13\x053B\xc9\x0ee\xa3J\xde\xb0\xcbB\xc5\xe0\xcf\\\xf9\xd62Yc-\xd05l+(\xa5\x90\x8d\xb7\f\x88*\xa3\x9bx\xd5V[\xc1\x8a2\xe4\xec\xb1Z\xd8\xbfT\x83\x830\xe83\xb4\xb9\x1e\x06Up\x0eh~\r\x1bB\xe9\xb4\x99\xa9\t\x0fm\xca\xbf 89 bc 24 b8 00 00 00 4c 8d ac 24 30 07 00 00 48 89 b4 24 b0 00 [ 1027.018974] RSP: 002b:00007f207c4d25e0 EFLAGS: 00010202 [ 1027.024338] RAX: 00007f207db02570 RBX: 00007f207dc71f80 RCX: 0000000020000040 [ 1027.031663] RDX: 0000000020018000 RSI: 0000000000000005 RDI: 0000000000000006 [ 1027.038934] RBP: 00007f207c4d41d0 R08: 0000000000000001 R09: 0000000000000000 05:19:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) (fail_nth: 1) 05:19:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 1) [ 1027.046231] R10: 0000000000000006 R11: 0000000020018000 R12: 00000000fec00000 [ 1027.053506] R13: 00007ffd4ebba08f R14: 00007f207c4d4300 R15: 0000000000022000 [ 1027.114059] syz-executor.2 invoked oom-killer: gfp_mask=0x0(), nodemask=(null), order=0, oom_score_adj=1000 [ 1027.162538] syz-executor.2 cpuset=/ mems_allowed=0-1 [ 1027.179519] CPU: 0 PID: 12801 Comm: syz-executor.2 Not tainted 4.19.211-syzkaller #0 [ 1027.187423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1027.196777] Call Trace: [ 1027.199379] dump_stack+0x1fc/0x2ef [ 1027.203016] dump_header+0x15d/0xc3f [ 1027.206743] ? _raw_spin_unlock_irqrestore+0x66/0xe0 [ 1027.211848] ? ___ratelimit+0x319/0x590 [ 1027.215834] oom_kill_process.cold+0x10/0x692 [ 1027.220338] ? check_preemption_disabled+0x41/0x280 [ 1027.225361] ? has_intersects_mems_allowed+0x1d6/0x290 [ 1027.230646] out_of_memory+0x1072/0x1390 [ 1027.234740] ? lock_acquire+0x170/0x3c0 [ 1027.238719] ? oom_killer_disable+0x270/0x270 [ 1027.243223] ? mutex_trylock+0x15f/0x1a0 [ 1027.247288] pagefault_out_of_memory+0x102/0x120 [ 1027.252055] ? out_of_memory+0x1390/0x1390 [ 1027.252343] FAULT_INJECTION: forcing a failure. [ 1027.252343] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1027.256297] ? lock_downgrade+0x720/0x720 [ 1027.256321] mm_fault_error+0x106/0x390 [ 1027.256348] __do_page_fault+0xc34/0xd60 [ 1027.280369] ? trace_hardirqs_off_caller+0x6e/0x210 [ 1027.285395] ? spurious_fault+0x840/0x840 [ 1027.289547] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1027.294454] ? page_fault+0x8/0x30 [ 1027.298002] page_fault+0x1e/0x30 [ 1027.301459] RIP: 0033:0x7f207db02587 [ 1027.305173] Code: c7 c0 ff ff ff ff e9 1e fc ff ff 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 41 54 41 bc 00 00 c0 fe 55 53 48 81 ec 48 1b 00 00 <48> 89 bc 24 b8 00 00 00 4c 8d ac 24 30 07 00 00 48 89 b4 24 b0 00 [ 1027.324072] RSP: 002b:00007f207c4d25e0 EFLAGS: 00010202 [ 1027.329435] RAX: 00007f207db02570 RBX: 00007f207dc71f80 RCX: 0000000020000040 [ 1027.336709] RDX: 0000000020018000 RSI: 0000000000000005 RDI: 0000000000000006 [ 1027.343981] RBP: 00007f207c4d41d0 R08: 0000000000000001 R09: 0000000000000000 [ 1027.351251] R10: 0000000000000006 R11: 0000000020018000 R12: 00000000fec00000 [ 1027.358524] R13: 00007ffd4ebba08f R14: 00007f207c4d4300 R15: 0000000000022000 [ 1027.368586] CPU: 1 PID: 12831 Comm: syz-executor.0 Not tainted 4.19.211-syzkaller #0 [ 1027.376479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1027.385835] Call Trace: [ 1027.388432] dump_stack+0x1fc/0x2ef [ 1027.390620] FAULT_INJECTION: forcing a failure. [ 1027.390620] name failslab, interval 1, probability 0, space 0, times 0 [ 1027.392063] should_fail.cold+0xa/0xf [ 1027.392080] ? lock_acquire+0x170/0x3c0 [ 1027.392096] ? setup_fault_attr+0x200/0x200 [ 1027.392121] __alloc_pages_nodemask+0x239/0x2890 [ 1027.420515] ? __lock_acquire+0x6de/0x3ff0 [ 1027.424769] ? __lock_acquire+0x6de/0x3ff0 [ 1027.429100] ? __might_fault+0x11f/0x1d0 [ 1027.433245] ? gfp_pfmemalloc_allowed+0x150/0x150 [ 1027.438079] ? lock_downgrade+0x720/0x720 [ 1027.442214] ? lock_acquire+0x170/0x3c0 [ 1027.446177] ? mark_held_locks+0xf0/0xf0 [ 1027.450251] ? _kstrtoull+0x297/0x540 [ 1027.454042] ? _copy_from_user+0xd2/0x130 [ 1027.458185] ? get_pid_task+0xcd/0x190 [ 1027.462065] alloc_pages_vma+0xf2/0x780 [ 1027.466052] do_anonymous_page+0x7c2/0x1be0 [ 1027.470370] ? __pte_alloc+0x340/0x340 [ 1027.474244] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1027.479162] ? mark_held_locks+0xf0/0xf0 [ 1027.483214] __handle_mm_fault+0x227a/0x41c0 [ 1027.487618] ? vm_insert_page+0x9c0/0x9c0 [ 1027.491752] ? lock_downgrade+0x720/0x720 [ 1027.495897] ? check_preemption_disabled+0x41/0x280 [ 1027.500929] handle_mm_fault+0x436/0xb10 [ 1027.504985] __do_page_fault+0x68e/0xd60 [ 1027.509038] ? trace_hardirqs_off_caller+0x6e/0x210 [ 1027.514044] ? spurious_fault+0x840/0x840 [ 1027.518181] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 1027.523016] ? page_fault+0x8/0x30 [ 1027.526550] page_fault+0x1e/0x30 [ 1027.529991] RIP: 0033:0x7f7bf1aa2587 [ 1027.533694] Code: c7 c0 ff ff ff ff e9 1e fc ff ff 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 41 54 41 bc 00 00 c0 fe 55 53 48 81 ec 48 1b 00 00 <48> 89 bc 24 b8 00 00 00 4c 8d ac 24 30 07 00 00 48 89 b4 24 b0 00 [ 1027.552578] RSP: 002b:00007f7bf04515e0 EFLAGS: 00010202 [ 1027.557942] RAX: 00007f7bf1aa2570 RBX: 00007f7bf1c12050 RCX: 0000000020000040 [ 1027.565198] RDX: 0000000020018000 RSI: ffffffffffffffff RDI: 0000000000000004 [ 1027.572453] RBP: 00007f7bf04531d0 R08: 0000000000000001 R09: 0000000000000000 [ 1027.579708] R10: 0000000000000004 R11: 0000000020018000 R12: 00000000fec00000 [ 1027.586963] R13: 00007fff348700af R14: 00007f7bf0453300 R15: 0000000000022000 [ 1027.619153] CPU: 0 PID: 12826 Comm: syz-executor.1 Not tainted 4.19.211-syzkaller #0 [ 1027.627058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1027.636408] Call Trace: [ 1027.638996] dump_stack+0x1fc/0x2ef [ 1027.642631] should_fail.cold+0xa/0xf [ 1027.646431] ? setup_fault_attr+0x200/0x200 [ 1027.650760] ? lock_acquire+0x1ec/0x3c0 [ 1027.654742] __should_failslab+0x115/0x180 [ 1027.658979] should_failslab+0x5/0x10 [ 1027.662782] kmem_cache_alloc+0x277/0x370 [ 1027.666935] mmu_topup_memory_caches+0x8f/0x370 [ 1027.671623] kvm_mmu_load+0x1e/0x1200 [ 1027.675428] ? kvm_arch_vcpu_ioctl_run+0x49d8/0x6f70 [ 1027.680548] ? kvm_arch_vcpu_ioctl_run+0x49e5/0x6f70 [ 1027.685660] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1027.690603] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1027.695443] ? get_task_pid+0x143/0x2a0 [ 1027.699426] ? lock_downgrade+0x720/0x720 [ 1027.703577] ? check_preemption_disabled+0x41/0x280 [ 1027.708598] ? check_preemption_disabled+0x41/0x280 [ 1027.713625] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1027.717770] kvm_vcpu_ioctl+0x493/0xe10 [ 1027.721747] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1027.727636] ? get_pid_task+0xf4/0x190 [ 1027.731528] ? mark_held_locks+0xf0/0xf0 [ 1027.735591] ? proc_fail_nth_write+0x95/0x1d0 [ 1027.740086] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1027.745017] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1027.749778] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1027.754363] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1027.759150] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1027.765036] do_vfs_ioctl+0xcdb/0x12e0 [ 1027.768949] ? lock_downgrade+0x720/0x720 [ 1027.773104] ? ioctl_preallocate+0x200/0x200 [ 1027.777524] ? __fget+0x356/0x510 [ 1027.780984] ? do_dup2+0x450/0x450 [ 1027.784525] ? vfs_write+0x393/0x540 [ 1027.788239] ? fput+0x2b/0x190 [ 1027.791438] ksys_ioctl+0x9b/0xc0 [ 1027.794895] __x64_sys_ioctl+0x6f/0xb0 [ 1027.798788] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1027.803379] do_syscall_64+0xf9/0x620 [ 1027.807188] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1027.812381] RIP: 0033:0x7fc445a1d279 [ 1027.816104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1027.835002] RSP: 002b:00007fc444392168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1027.842722] RAX: ffffffffffffffda RBX: 00007fc445b2ff80 RCX: 00007fc445a1d279 [ 1027.849987] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1027.857253] RBP: 00007fc4443921d0 R08: 0000000000000000 R09: 0000000000000000 [ 1027.864519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1027.871786] R13: 00007ffe9b2463af R14: 00007fc444392300 R15: 0000000000022000 05:19:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000000)="660f38809e00a0f20f4b160000d9e1ae0f01c4660f1ad466643d00400000baf80c66b8c415d08e66efbafc0c66edb8f60f8ed80f00da", 0x36}], 0x1, 0x3, &(0x7f0000000380), 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x20804, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}, 0x4004}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffeffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$video(&(0x7f0000000040), 0xe535, 0x0) preadv(r4, &(0x7f0000000600)=[{&(0x7f0000000300)=""/159, 0x9f}, {0x0}, {0x0}, {0x0}], 0x4, 0x0, 0x0) dup3(r3, r4, 0x80000) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000640)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) [ 1028.081626] Mem-Info: [ 1028.097491] active_anon:212399 inactive_anon:10935 isolated_anon:0 [ 1028.097491] active_file:5843 inactive_file:10796 isolated_file:0 [ 1028.097491] unevictable:0 dirty:119 writeback:0 unstable:0 [ 1028.097491] slab_reclaimable:20436 slab_unreclaimable:131275 [ 1028.097491] mapped:31217 shmem:11754 pagetables:1106 bounce:0 [ 1028.097491] free:1268504 free_pcp:675 free_cma:0 05:19:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 05:19:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x21, 0x0}], 0x1, 0x0, 0x0, 0x0) [ 1028.311499] Node 0 active_anon:855844kB inactive_anon:43740kB active_file:23256kB inactive_file:43184kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:124868kB dirty:472kB writeback:0kB shmem:47016kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 716800kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1028.496933] Node 1 active_anon:0kB inactive_anon:0kB active_file:116kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:0kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1028.556132] Node 0 DMA free:15908kB min:204kB low:252kB high:300kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1028.604202] lowmem_reserve[]: 0 2693 2695 2695 2695 [ 1028.609553] Node 0 DMA32 free:1018948kB min:35996kB low:44992kB high:53988kB active_anon:849568kB inactive_anon:43840kB active_file:23256kB inactive_file:43184kB unevictable:0kB writepending:472kB present:3129332kB managed:2763452kB mlocked:0kB kernel_stack:7968kB pagetables:4276kB bounce:0kB free_pcp:2048kB local_pcp:780kB free_cma:0kB [ 1028.640445] lowmem_reserve[]: 0 0 1 1 1 [ 1028.644813] Node 0 Normal free:8kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:2000kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1028.671318] lowmem_reserve[]: 0 0 0 0 0 [ 1028.675681] Node 1 Normal free:4040064kB min:53876kB low:67344kB high:80812kB active_anon:0kB inactive_anon:0kB active_file:116kB inactive_file:0kB unevictable:0kB writepending:4kB present:4194304kB managed:4128248kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1028.703781] lowmem_reserve[]: 0 0 0 0 0 [ 1028.708088] Node 0 DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB [ 1028.722466] Node 0 DMA32: 5267*4kB (UME) 220*8kB (UME) 2536*16kB (UME) 1027*32kB (UME) 275*64kB (UME) 92*128kB (UME) 17*256kB (UM) 5*512kB (UME) 57*1024kB (UME) 32*2048kB (UM) 186*4096kB (UM) = 1018316kB [ 1028.741859] Node 0 Normal: 0*4kB 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB [ 1028.753554] Node 1 Normal: 92*4kB (UM) 396*8kB (UE) 309*16kB (UME) 77*32kB (UM) 29*64kB (UM) 11*128kB (UM) 10*256kB (UME) 8*512kB (UME) 3*1024kB (UM) 1*2048kB (U) 980*4096kB (M) = 4040064kB [ 1028.771230] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1028.780678] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1028.789876] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1028.799326] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1028.808486] 28409 total pagecache pages [ 1028.813076] 0 pages in swap cache [ 1028.816622] Swap cache stats: add 0, delete 0, find 0/0 [ 1028.822623] Free swap = 0kB [ 1028.825742] Total swap = 0kB [ 1028.829345] 2097051 pages RAM [ 1028.833098] 0 pages HighMem/MovableOnly [ 1028.837163] 369649 pages reserved [ 1028.840908] 0 pages cma reserved [ 1028.844653] Out of memory (oom_kill_allocating_task): Kill process 12801 (syz-executor.2) score 0 or sacrifice child 05:19:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x50, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x2, 0x0) 05:19:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1028.856336] Killed process 12801 (syz-executor.2) total-vm:60648kB, anon-rss:2476kB, file-rss:15136kB, shmem-rss:80kB [ 1028.869956] oom_reaper: reaped process 12801 (syz-executor.2), now anon-rss:0kB, file-rss:14336kB, shmem-rss:16kB 05:19:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 1) 05:19:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0xe8, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x21, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5421, 0x0) 05:19:12 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x223, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1029.280796] FAULT_INJECTION: forcing a failure. [ 1029.280796] name failslab, interval 1, probability 0, space 0, times 0 [ 1029.302435] CPU: 0 PID: 12929 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1029.310331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1029.319686] Call Trace: [ 1029.322283] dump_stack+0x1fc/0x2ef [ 1029.325925] should_fail.cold+0xa/0xf [ 1029.329739] ? setup_fault_attr+0x200/0x200 [ 1029.334069] ? lock_acquire+0x170/0x3c0 [ 1029.338055] __should_failslab+0x115/0x180 [ 1029.342300] should_failslab+0x5/0x10 [ 1029.346105] kmem_cache_alloc+0x277/0x370 [ 1029.350267] mmu_topup_memory_caches+0x8f/0x370 [ 1029.354944] kvm_mmu_load+0x1e/0x1200 [ 1029.358761] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1029.363728] ? construct_eptp+0x3b0/0x3b0 [ 1029.367906] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1029.372935] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 05:19:12 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000001c0)) 05:19:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5450, 0x0) [ 1029.377894] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1029.382743] ? get_task_pid+0x143/0x2a0 [ 1029.386729] ? lock_downgrade+0x720/0x720 [ 1029.390882] ? check_preemption_disabled+0x41/0x280 [ 1029.395905] ? check_preemption_disabled+0x41/0x280 [ 1029.400936] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1029.405086] kvm_vcpu_ioctl+0x493/0xe10 [ 1029.409078] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1029.414983] ? get_pid_task+0xf4/0x190 [ 1029.418965] ? mark_held_locks+0xf0/0xf0 [ 1029.423030] ? proc_fail_nth_write+0x95/0x1d0 [ 1029.427531] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1029.432466] ? __fdget_pos+0x26f/0x310 [ 1029.436491] ? ksys_write+0x241/0x2a0 [ 1029.440303] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1029.446197] do_vfs_ioctl+0xcdb/0x12e0 [ 1029.450095] ? lock_downgrade+0x720/0x720 [ 1029.454251] ? check_preemption_disabled+0x41/0x280 [ 1029.459273] ? ioctl_preallocate+0x200/0x200 [ 1029.463689] ? __fget+0x356/0x510 [ 1029.467149] ? do_dup2+0x450/0x450 [ 1029.470688] ? vfs_write+0x393/0x540 [ 1029.474411] ? fput+0x2b/0x190 [ 1029.477615] ksys_ioctl+0x9b/0xc0 05:19:12 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1029.481075] __x64_sys_ioctl+0x6f/0xb0 [ 1029.484972] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1029.484986] do_syscall_64+0xf9/0x620 [ 1029.485005] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1029.485017] RIP: 0033:0x7f2381f95279 [ 1029.485030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1029.485037] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:19:12 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000001c0)) [ 1029.485050] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1029.485058] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1029.485066] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1029.485077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1029.557901] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 2) 05:19:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x50, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0xfffff000, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:12 executing program 5: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000001c0)) 05:19:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5451, 0x0) 05:19:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0xe8, 0x0}], 0x1, 0x0, 0x0, 0x0) [ 1029.776181] FAULT_INJECTION: forcing a failure. [ 1029.776181] name failslab, interval 1, probability 0, space 0, times 0 05:19:12 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x2}], 0x1, 0x0, 0x0, 0x0) [ 1029.847093] CPU: 0 PID: 12988 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1029.854995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1029.864354] Call Trace: [ 1029.866951] dump_stack+0x1fc/0x2ef [ 1029.870586] should_fail.cold+0xa/0xf [ 1029.874383] ? setup_fault_attr+0x200/0x200 [ 1029.878698] ? lock_acquire+0x170/0x3c0 [ 1029.882674] __should_failslab+0x115/0x180 [ 1029.886903] should_failslab+0x5/0x10 [ 1029.890692] kmem_cache_alloc+0x277/0x370 [ 1029.894827] mmu_topup_memory_caches+0x8f/0x370 [ 1029.899485] kvm_mmu_load+0x1e/0x1200 [ 1029.903270] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1029.908188] ? construct_eptp+0x3b0/0x3b0 [ 1029.912335] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1029.917341] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1029.922286] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1029.927112] ? get_task_pid+0x143/0x2a0 [ 1029.931074] ? lock_downgrade+0x720/0x720 [ 1029.935210] ? check_preemption_disabled+0x41/0x280 [ 1029.940215] ? check_preemption_disabled+0x41/0x280 [ 1029.945220] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1029.949350] kvm_vcpu_ioctl+0x493/0xe10 [ 1029.953313] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1029.959196] ? get_pid_task+0xf4/0x190 [ 1029.963070] ? mark_held_locks+0xf0/0xf0 [ 1029.967120] ? proc_fail_nth_write+0x95/0x1d0 [ 1029.971635] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1029.976557] ? __fdget_pos+0x26f/0x310 [ 1029.980438] ? ksys_write+0x241/0x2a0 [ 1029.984226] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1029.990099] do_vfs_ioctl+0xcdb/0x12e0 [ 1029.993976] ? lock_downgrade+0x720/0x720 [ 1029.998119] ? check_preemption_disabled+0x41/0x280 [ 1030.003134] ? ioctl_preallocate+0x200/0x200 [ 1030.007531] ? __fget+0x356/0x510 [ 1030.010972] ? do_dup2+0x450/0x450 [ 1030.014496] ? vfs_write+0x393/0x540 [ 1030.018200] ? fput+0x2b/0x190 [ 1030.021384] ksys_ioctl+0x9b/0xc0 [ 1030.024825] __x64_sys_ioctl+0x6f/0xb0 [ 1030.028700] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1030.033268] do_syscall_64+0xf9/0x620 [ 1030.037059] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1030.042231] RIP: 0033:0x7f2381f95279 [ 1030.045932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1030.064819] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1030.072511] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1030.079762] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1030.087025] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1030.094297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1030.101549] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x223, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x4}], 0x1, 0x0, 0x0, 0x0) 05:19:13 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 3) 05:19:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5452, 0x0) 05:19:13 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x5}], 0x1, 0x0, 0x0, 0x0) 05:19:13 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0xfffff000, 0x0}], 0x1, 0x0, 0x0, 0x0) 05:19:13 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000001c0)) 05:19:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x6}], 0x1, 0x0, 0x0, 0x0) [ 1030.454241] FAULT_INJECTION: forcing a failure. [ 1030.454241] name failslab, interval 1, probability 0, space 0, times 0 [ 1030.522570] CPU: 1 PID: 13051 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1030.530470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1030.539821] Call Trace: [ 1030.542414] dump_stack+0x1fc/0x2ef [ 1030.546051] should_fail.cold+0xa/0xf [ 1030.549863] ? setup_fault_attr+0x200/0x200 [ 1030.554195] ? lock_acquire+0x170/0x3c0 [ 1030.558174] __should_failslab+0x115/0x180 [ 1030.562426] should_failslab+0x5/0x10 [ 1030.566226] kmem_cache_alloc+0x277/0x370 [ 1030.570379] mmu_topup_memory_caches+0x8f/0x370 [ 1030.575046] kvm_mmu_load+0x1e/0x1200 [ 1030.578848] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1030.583773] ? construct_eptp+0x3b0/0x3b0 [ 1030.587919] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1030.592937] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1030.597878] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1030.602717] ? get_task_pid+0x143/0x2a0 [ 1030.606698] ? lock_downgrade+0x720/0x720 [ 1030.610844] ? check_preemption_disabled+0x41/0x280 [ 1030.615868] ? check_preemption_disabled+0x41/0x280 [ 1030.620887] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1030.625027] kvm_vcpu_ioctl+0x493/0xe10 [ 1030.629003] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1030.634887] ? get_pid_task+0xf4/0x190 [ 1030.638770] ? mark_held_locks+0xf0/0xf0 [ 1030.642829] ? proc_fail_nth_write+0x95/0x1d0 [ 1030.647322] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1030.652243] ? __fdget_pos+0x26f/0x310 [ 1030.656146] ? ksys_write+0x241/0x2a0 [ 1030.659944] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1030.665823] do_vfs_ioctl+0xcdb/0x12e0 [ 1030.669704] ? lock_downgrade+0x720/0x720 [ 1030.673851] ? check_preemption_disabled+0x41/0x280 [ 1030.678862] ? ioctl_preallocate+0x200/0x200 [ 1030.683269] ? __fget+0x356/0x510 [ 1030.686722] ? do_dup2+0x450/0x450 [ 1030.690253] ? vfs_write+0x393/0x540 [ 1030.693960] ? fput+0x2b/0x190 [ 1030.697152] ksys_ioctl+0x9b/0xc0 [ 1030.700603] __x64_sys_ioctl+0x6f/0xb0 [ 1030.704486] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1030.709068] do_syscall_64+0xf9/0x620 [ 1030.712873] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1030.718057] RIP: 0033:0x7f2381f95279 [ 1030.721766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1030.740655] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1030.748357] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1030.755618] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1030.762894] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:13 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000001c0)) 05:19:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x5460, 0x0) 05:19:13 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x2}], 0x1, 0x0, 0x0, 0x0) [ 1030.770153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1030.777412] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:14 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(0xffffffffffffffff, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 4) 05:19:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x7}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x4}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 5: openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r0, 0x4010ae68, &(0x7f00000001c0)) 05:19:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x40049409, 0x0) 05:19:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x8}], 0x1, 0x0, 0x0, 0x0) [ 1031.135556] FAULT_INJECTION: forcing a failure. [ 1031.135556] name failslab, interval 1, probability 0, space 0, times 0 [ 1031.180540] CPU: 1 PID: 13116 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1031.188437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1031.197793] Call Trace: [ 1031.200380] dump_stack+0x1fc/0x2ef [ 1031.204015] should_fail.cold+0xa/0xf [ 1031.207822] ? setup_fault_attr+0x200/0x200 [ 1031.212144] ? lock_acquire+0x170/0x3c0 [ 1031.216126] __should_failslab+0x115/0x180 [ 1031.220362] should_failslab+0x5/0x10 [ 1031.224164] kmem_cache_alloc+0x277/0x370 [ 1031.228318] mmu_topup_memory_caches+0x8f/0x370 [ 1031.233000] kvm_mmu_load+0x1e/0x1200 [ 1031.236805] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1031.241732] ? construct_eptp+0x3b0/0x3b0 [ 1031.245880] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1031.250909] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1031.255945] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1031.260790] ? get_task_pid+0x143/0x2a0 [ 1031.264773] ? lock_downgrade+0x720/0x720 [ 1031.268923] ? check_preemption_disabled+0x41/0x280 [ 1031.273944] ? check_preemption_disabled+0x41/0x280 [ 1031.279140] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1031.283288] kvm_vcpu_ioctl+0x493/0xe10 [ 1031.287271] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1031.293164] ? get_pid_task+0xf4/0x190 [ 1031.297056] ? mark_held_locks+0xf0/0xf0 [ 1031.301119] ? proc_fail_nth_write+0x95/0x1d0 [ 1031.305618] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1031.310549] ? __fdget_pos+0x26f/0x310 [ 1031.314448] ? ksys_write+0x241/0x2a0 [ 1031.318260] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1031.324145] do_vfs_ioctl+0xcdb/0x12e0 [ 1031.328038] ? lock_downgrade+0x720/0x720 [ 1031.332211] ? check_preemption_disabled+0x41/0x280 [ 1031.337234] ? ioctl_preallocate+0x200/0x200 [ 1031.341652] ? __fget+0x356/0x510 [ 1031.345110] ? do_dup2+0x450/0x450 [ 1031.348652] ? vfs_write+0x393/0x540 [ 1031.352382] ? fput+0x2b/0x190 [ 1031.355582] ksys_ioctl+0x9b/0xc0 [ 1031.359039] __x64_sys_ioctl+0x6f/0xb0 [ 1031.362930] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1031.367516] do_syscall_64+0xf9/0x620 [ 1031.371330] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1031.376603] RIP: 0033:0x7f2381f95279 [ 1031.380317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1031.399303] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1031.407009] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1031.414283] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1031.421553] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x9}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x5}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4004ae8b, 0x0) 05:19:14 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:14 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1031.428823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1031.436093] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xa}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 5) 05:19:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x6}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:14 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4004ae99, 0x0) 05:19:14 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xb}], 0x1, 0x0, 0x0, 0x0) 05:19:14 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x7}], 0x1, 0x0, 0x0, 0x0) [ 1031.830881] FAULT_INJECTION: forcing a failure. [ 1031.830881] name failslab, interval 1, probability 0, space 0, times 0 [ 1031.854293] CPU: 0 PID: 13184 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1031.862192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1031.871541] Call Trace: [ 1031.874139] dump_stack+0x1fc/0x2ef 05:19:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)={0x5000, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) [ 1031.877779] should_fail.cold+0xa/0xf [ 1031.881592] ? setup_fault_attr+0x200/0x200 [ 1031.885921] ? lock_acquire+0x170/0x3c0 [ 1031.889908] __should_failslab+0x115/0x180 [ 1031.894150] should_failslab+0x5/0x10 [ 1031.897951] kmem_cache_alloc+0x277/0x370 [ 1031.902105] mmu_topup_memory_caches+0x8f/0x370 [ 1031.906781] kvm_mmu_load+0x1e/0x1200 [ 1031.910584] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1031.915515] ? construct_eptp+0x3b0/0x3b0 [ 1031.919673] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1031.924791] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 05:19:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4020940d, 0x0) [ 1031.929745] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1031.934586] ? get_task_pid+0x143/0x2a0 [ 1031.938600] ? lock_downgrade+0x720/0x720 [ 1031.942750] ? check_preemption_disabled+0x41/0x280 [ 1031.947777] ? check_preemption_disabled+0x41/0x280 [ 1031.952809] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1031.956958] kvm_vcpu_ioctl+0x493/0xe10 [ 1031.960937] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1031.966828] ? get_pid_task+0xf4/0x190 [ 1031.970721] ? mark_held_locks+0xf0/0xf0 [ 1031.974790] ? proc_fail_nth_write+0x95/0x1d0 [ 1031.979291] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1031.984223] ? __fdget_pos+0x26f/0x310 [ 1031.988130] ? ksys_write+0x241/0x2a0 [ 1031.991939] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1031.997829] do_vfs_ioctl+0xcdb/0x12e0 [ 1032.001728] ? lock_downgrade+0x720/0x720 [ 1032.005882] ? check_preemption_disabled+0x41/0x280 [ 1032.010902] ? ioctl_preallocate+0x200/0x200 [ 1032.015315] ? __fget+0x356/0x510 [ 1032.018774] ? do_dup2+0x450/0x450 [ 1032.022314] ? vfs_write+0x393/0x540 [ 1032.026032] ? fput+0x2b/0x190 [ 1032.029235] ksys_ioctl+0x9b/0xc0 [ 1032.032696] __x64_sys_ioctl+0x6f/0xb0 [ 1032.036588] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1032.041176] do_syscall_64+0xf9/0x620 [ 1032.044986] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1032.050178] RIP: 0033:0x7f2381f95279 [ 1032.053892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1032.072790] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 05:19:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x8}], 0x1, 0x0, 0x0, 0x0) 05:19:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xd}], 0x1, 0x0, 0x0, 0x0) 05:19:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) [ 1032.080497] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1032.087763] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1032.095028] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.102295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.109563] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 6) 05:19:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4048ae9b, 0x0) 05:19:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x50}], 0x1, 0x0, 0x0, 0x0) 05:19:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x9}], 0x1, 0x0, 0x0, 0x0) 05:19:15 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:15 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4090ae82, 0x0) 05:19:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xc0}], 0x1, 0x0, 0x0, 0x0) 05:19:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xa}], 0x1, 0x0, 0x0, 0x0) [ 1032.547301] FAULT_INJECTION: forcing a failure. [ 1032.547301] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.607585] CPU: 0 PID: 13265 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1032.615487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1032.624846] Call Trace: [ 1032.627445] dump_stack+0x1fc/0x2ef [ 1032.631081] should_fail.cold+0xa/0xf [ 1032.634894] ? setup_fault_attr+0x200/0x200 [ 1032.639220] ? lock_acquire+0x170/0x3c0 [ 1032.643209] __should_failslab+0x115/0x180 [ 1032.647451] should_failslab+0x5/0x10 [ 1032.651254] kmem_cache_alloc+0x277/0x370 [ 1032.655419] mmu_topup_memory_caches+0x8f/0x370 [ 1032.660098] kvm_mmu_load+0x1e/0x1200 [ 1032.663902] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1032.668839] ? construct_eptp+0x3b0/0x3b0 [ 1032.673426] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1032.678475] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1032.683424] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1032.688270] ? get_task_pid+0x143/0x2a0 [ 1032.692258] ? lock_downgrade+0x720/0x720 [ 1032.696415] ? check_preemption_disabled+0x41/0x280 [ 1032.701438] ? check_preemption_disabled+0x41/0x280 [ 1032.706468] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1032.710617] kvm_vcpu_ioctl+0x493/0xe10 [ 1032.714598] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1032.720493] ? get_pid_task+0xf4/0x190 [ 1032.724397] ? mark_held_locks+0xf0/0xf0 [ 1032.728465] ? proc_fail_nth_write+0x95/0x1d0 [ 1032.732967] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1032.737899] ? __fdget_pos+0x26f/0x310 [ 1032.741800] ? ksys_write+0x241/0x2a0 [ 1032.745606] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1032.751495] do_vfs_ioctl+0xcdb/0x12e0 [ 1032.755392] ? lock_downgrade+0x720/0x720 [ 1032.759554] ? check_preemption_disabled+0x41/0x280 [ 1032.764570] ? ioctl_preallocate+0x200/0x200 [ 1032.768983] ? __fget+0x356/0x510 [ 1032.772527] ? do_dup2+0x450/0x450 [ 1032.776072] ? vfs_write+0x393/0x540 [ 1032.779790] ? fput+0x2b/0x190 [ 1032.782992] ksys_ioctl+0x9b/0xc0 [ 1032.786448] __x64_sys_ioctl+0x6f/0xb0 [ 1032.790338] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1032.794952] do_syscall_64+0xf9/0x620 [ 1032.798763] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1032.803956] RIP: 0033:0x7f2381f95279 [ 1032.807669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1032.826568] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1032.834276] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1032.841540] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1032.848803] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:15 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xb}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x10d}], 0x1, 0x0, 0x0, 0x0) [ 1032.856072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.863344] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 7) 05:19:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x4138ae84, 0x0) 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x500}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x0, 0x100000}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xd}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x600}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x50}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x41a0ae8d, 0x0) [ 1033.129094] FAULT_INJECTION: forcing a failure. [ 1033.129094] name failslab, interval 1, probability 0, space 0, times 0 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x700}], 0x1, 0x0, 0x0, 0x0) [ 1033.202108] CPU: 1 PID: 13340 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1033.210006] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1033.219359] Call Trace: [ 1033.221954] dump_stack+0x1fc/0x2ef [ 1033.225592] should_fail.cold+0xa/0xf [ 1033.229402] ? setup_fault_attr+0x200/0x200 [ 1033.233729] ? lock_acquire+0x170/0x3c0 [ 1033.237712] __should_failslab+0x115/0x180 [ 1033.241955] should_failslab+0x5/0x10 [ 1033.245766] kmem_cache_alloc+0x277/0x370 [ 1033.249924] mmu_topup_memory_caches+0x8f/0x370 [ 1033.254609] kvm_mmu_load+0x1e/0x1200 [ 1033.258410] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1033.263345] ? construct_eptp+0x3b0/0x3b0 [ 1033.267496] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1033.272527] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1033.277473] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1033.282323] ? get_task_pid+0x143/0x2a0 [ 1033.286308] ? lock_downgrade+0x720/0x720 [ 1033.290458] ? check_preemption_disabled+0x41/0x280 [ 1033.295569] ? check_preemption_disabled+0x41/0x280 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x900}], 0x1, 0x0, 0x0, 0x0) [ 1033.300594] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1033.304744] kvm_vcpu_ioctl+0x493/0xe10 [ 1033.308724] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1033.314616] ? get_pid_task+0xf4/0x190 [ 1033.318512] ? mark_held_locks+0xf0/0xf0 [ 1033.322579] ? proc_fail_nth_write+0x95/0x1d0 [ 1033.327080] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1033.332014] ? __fdget_pos+0x26f/0x310 [ 1033.335943] ? ksys_write+0x241/0x2a0 [ 1033.339752] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1033.345734] do_vfs_ioctl+0xcdb/0x12e0 [ 1033.349625] ? lock_downgrade+0x720/0x720 [ 1033.353775] ? check_preemption_disabled+0x41/0x280 [ 1033.358800] ? ioctl_preallocate+0x200/0x200 [ 1033.363224] ? __fget+0x356/0x510 [ 1033.366688] ? do_dup2+0x450/0x450 [ 1033.370231] ? vfs_write+0x393/0x540 [ 1033.374395] ? fput+0x2b/0x190 [ 1033.377597] ksys_ioctl+0x9b/0xc0 [ 1033.381055] __x64_sys_ioctl+0x6f/0xb0 [ 1033.384949] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1033.389538] do_syscall_64+0xf9/0x620 [ 1033.393352] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1033.398543] RIP: 0033:0x7f2381f95279 [ 1033.402261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1033.421157] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1033.428868] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1033.436137] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1033.443406] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1033.450677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1033.457947] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 8) 05:19:16 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xa00}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8004ae98, 0x0) 05:19:16 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xc0}], 0x1, 0x0, 0x0, 0x0) 05:19:16 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xb00}], 0x1, 0x0, 0x0, 0x0) [ 1033.699971] FAULT_INJECTION: forcing a failure. [ 1033.699971] name failslab, interval 1, probability 0, space 0, times 0 [ 1033.742839] CPU: 1 PID: 13411 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1033.750736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1033.760088] Call Trace: [ 1033.762681] dump_stack+0x1fc/0x2ef [ 1033.766315] should_fail.cold+0xa/0xf [ 1033.770125] ? setup_fault_attr+0x200/0x200 [ 1033.774451] ? lock_acquire+0x170/0x3c0 [ 1033.778441] __should_failslab+0x115/0x180 [ 1033.782694] should_failslab+0x5/0x10 [ 1033.786500] kmem_cache_alloc+0x277/0x370 [ 1033.790657] mmu_topup_memory_caches+0x8f/0x370 [ 1033.795338] kvm_mmu_load+0x1e/0x1200 [ 1033.799139] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1033.804071] ? construct_eptp+0x3b0/0x3b0 [ 1033.808306] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1033.813330] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1033.818278] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1033.823118] ? get_task_pid+0x143/0x2a0 [ 1033.827099] ? lock_downgrade+0x720/0x720 [ 1033.831244] ? check_preemption_disabled+0x41/0x280 [ 1033.836259] ? check_preemption_disabled+0x41/0x280 [ 1033.841279] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1033.845421] kvm_vcpu_ioctl+0x493/0xe10 [ 1033.849401] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1033.855291] ? get_pid_task+0xf4/0x190 [ 1033.859179] ? mark_held_locks+0xf0/0xf0 [ 1033.863240] ? proc_fail_nth_write+0x95/0x1d0 [ 1033.867905] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1033.872834] ? __fdget_pos+0x26f/0x310 [ 1033.876725] ? ksys_write+0x241/0x2a0 [ 1033.880526] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1033.886407] do_vfs_ioctl+0xcdb/0x12e0 [ 1033.890296] ? lock_downgrade+0x720/0x720 [ 1033.894443] ? check_preemption_disabled+0x41/0x280 [ 1033.899464] ? ioctl_preallocate+0x200/0x200 [ 1033.903873] ? __fget+0x356/0x510 [ 1033.907329] ? do_dup2+0x450/0x450 [ 1033.910872] ? vfs_write+0x393/0x540 [ 1033.914583] ? fput+0x2b/0x190 [ 1033.917778] ksys_ioctl+0x9b/0xc0 [ 1033.921235] __x64_sys_ioctl+0x6f/0xb0 [ 1033.925130] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1033.929705] do_syscall_64+0xf9/0x620 [ 1033.933508] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1033.938692] RIP: 0033:0x7f2381f95279 [ 1033.942399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1033.961304] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1033.969095] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1033.976707] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1033.983974] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8090ae81, 0x0) [ 1033.991236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1033.998496] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:17 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x10d}], 0x1, 0x0, 0x0, 0x0) 05:19:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xd00}], 0x1, 0x0, 0x0, 0x0) 05:19:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 9) [ 1034.291873] FAULT_INJECTION: forcing a failure. [ 1034.291873] name failslab, interval 1, probability 0, space 0, times 0 [ 1034.335697] CPU: 0 PID: 13460 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1034.343593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1034.352947] Call Trace: [ 1034.355541] dump_stack+0x1fc/0x2ef [ 1034.359182] should_fail.cold+0xa/0xf [ 1034.362999] ? setup_fault_attr+0x200/0x200 [ 1034.367326] ? lock_acquire+0x170/0x3c0 [ 1034.371316] __should_failslab+0x115/0x180 [ 1034.375992] should_failslab+0x5/0x10 [ 1034.379795] kmem_cache_alloc+0x277/0x370 [ 1034.383950] mmu_topup_memory_caches+0x8f/0x370 [ 1034.388625] kvm_mmu_load+0x1e/0x1200 [ 1034.392430] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1034.397797] ? construct_eptp+0x3b0/0x3b0 [ 1034.401946] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1034.406962] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1034.411889] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1034.416719] ? get_task_pid+0x143/0x2a0 [ 1034.420688] ? lock_downgrade+0x720/0x720 [ 1034.424923] ? check_preemption_disabled+0x41/0x280 [ 1034.429944] ? check_preemption_disabled+0x41/0x280 [ 1034.434961] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1034.439102] kvm_vcpu_ioctl+0x493/0xe10 [ 1034.443066] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1034.448940] ? get_pid_task+0xf4/0x190 [ 1034.452817] ? mark_held_locks+0xf0/0xf0 [ 1034.456883] ? proc_fail_nth_write+0x95/0x1d0 [ 1034.461376] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1034.466291] ? __fdget_pos+0x26f/0x310 [ 1034.470174] ? ksys_write+0x241/0x2a0 [ 1034.473965] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1034.479840] do_vfs_ioctl+0xcdb/0x12e0 [ 1034.483724] ? lock_downgrade+0x720/0x720 [ 1034.487873] ? check_preemption_disabled+0x41/0x280 [ 1034.492884] ? ioctl_preallocate+0x200/0x200 [ 1034.497283] ? __fget+0x356/0x510 [ 1034.500724] ? do_dup2+0x450/0x450 [ 1034.504250] ? vfs_write+0x393/0x540 [ 1034.507949] ? fput+0x2b/0x190 [ 1034.511131] ksys_ioctl+0x9b/0xc0 [ 1034.514584] __x64_sys_ioctl+0x6f/0xb0 [ 1034.518456] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1034.523023] do_syscall_64+0xf9/0x620 [ 1034.526821] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1034.531998] RIP: 0033:0x7f2381f95279 [ 1034.535714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1034.554599] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1034.562302] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1034.569555] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1034.576827] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1034.584080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1034.591335] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:17 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:17 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x500}], 0x1, 0x0, 0x0, 0x0) 05:19:17 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x8138ae83, 0x0) 05:19:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xd01}], 0x1, 0x0, 0x0, 0x0) 05:19:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 10) 05:19:17 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:17 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x600}], 0x1, 0x0, 0x0, 0x0) [ 1034.838979] FAULT_INJECTION: forcing a failure. [ 1034.838979] name failslab, interval 1, probability 0, space 0, times 0 05:19:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x2000}], 0x1, 0x0, 0x0, 0x0) [ 1034.939768] CPU: 1 PID: 13481 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1034.947672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1034.957024] Call Trace: [ 1034.959622] dump_stack+0x1fc/0x2ef [ 1034.963259] should_fail.cold+0xa/0xf [ 1034.967077] ? setup_fault_attr+0x200/0x200 [ 1034.971405] ? lock_acquire+0x170/0x3c0 [ 1034.975400] __should_failslab+0x115/0x180 [ 1034.979644] should_failslab+0x5/0x10 [ 1034.983881] kmem_cache_alloc+0x277/0x370 [ 1034.988036] mmu_topup_memory_caches+0x8f/0x370 [ 1034.992714] kvm_mmu_load+0x1e/0x1200 [ 1034.996520] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1035.001464] ? construct_eptp+0x3b0/0x3b0 [ 1035.005715] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1035.010744] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1035.015695] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1035.020544] ? get_task_pid+0x143/0x2a0 [ 1035.024528] ? lock_downgrade+0x720/0x720 [ 1035.028687] ? check_preemption_disabled+0x41/0x280 [ 1035.033709] ? check_preemption_disabled+0x41/0x280 [ 1035.038745] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1035.042900] kvm_vcpu_ioctl+0x493/0xe10 [ 1035.046880] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1035.052778] ? get_pid_task+0xf4/0x190 [ 1035.056668] ? mark_held_locks+0xf0/0xf0 [ 1035.060733] ? proc_fail_nth_write+0x95/0x1d0 [ 1035.065240] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1035.070172] ? __fdget_pos+0x26f/0x310 [ 1035.074075] ? ksys_write+0x241/0x2a0 [ 1035.077882] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1035.083773] do_vfs_ioctl+0xcdb/0x12e0 [ 1035.087676] ? lock_downgrade+0x720/0x720 [ 1035.091832] ? check_preemption_disabled+0x41/0x280 [ 1035.096855] ? ioctl_preallocate+0x200/0x200 [ 1035.101270] ? __fget+0x356/0x510 [ 1035.104733] ? do_dup2+0x450/0x450 [ 1035.108273] ? vfs_write+0x393/0x540 [ 1035.111991] ? fput+0x2b/0x190 [ 1035.115198] ksys_ioctl+0x9b/0xc0 [ 1035.118656] __x64_sys_ioctl+0x6f/0xb0 [ 1035.122548] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1035.127137] do_syscall_64+0xf9/0x620 [ 1035.130952] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1035.136140] RIP: 0033:0x7f2381f95279 [ 1035.139856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1035.158762] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1035.166474] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1035.173746] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1035.181012] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0x81a0ae8c, 0x0) 05:19:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x700}], 0x1, 0x0, 0x0, 0x0) [ 1035.188280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1035.196595] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x4000}], 0x1, 0x0, 0x0, 0x0) 05:19:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x900}], 0x1, 0x0, 0x0, 0x0) 05:19:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x5000}], 0x1, 0x0, 0x0, 0x0) 05:19:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) 05:19:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 11) 05:19:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) 05:19:18 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xa00}], 0x1, 0x0, 0x0, 0x0) 05:19:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xfee00}], 0x1, 0x0, 0x0, 0x0) [ 1035.677355] FAULT_INJECTION: forcing a failure. [ 1035.677355] name failslab, interval 1, probability 0, space 0, times 0 05:19:18 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xb00}], 0x1, 0x0, 0x0, 0x0) 05:19:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x200000}], 0x1, 0x0, 0x0, 0x0) 05:19:18 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0045878, 0x0) [ 1035.756613] CPU: 0 PID: 13586 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1035.764518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1035.773870] Call Trace: [ 1035.776467] dump_stack+0x1fc/0x2ef [ 1035.780107] should_fail.cold+0xa/0xf [ 1035.783914] ? setup_fault_attr+0x200/0x200 [ 1035.788245] ? lock_acquire+0x170/0x3c0 [ 1035.792239] __should_failslab+0x115/0x180 [ 1035.796488] should_failslab+0x5/0x10 [ 1035.800302] kmem_cache_alloc+0x277/0x370 [ 1035.804460] mmu_topup_memory_caches+0x8f/0x370 [ 1035.809135] kvm_mmu_load+0x1e/0x1200 [ 1035.812966] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1035.817903] ? construct_eptp+0x3b0/0x3b0 [ 1035.822057] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1035.827090] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1035.832044] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1035.836893] ? get_task_pid+0x143/0x2a0 [ 1035.840877] ? lock_downgrade+0x720/0x720 [ 1035.845041] ? check_preemption_disabled+0x41/0x280 [ 1035.850073] ? check_preemption_disabled+0x41/0x280 [ 1035.855100] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1035.859250] kvm_vcpu_ioctl+0x493/0xe10 [ 1035.863237] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1035.869133] ? get_pid_task+0xf4/0x190 [ 1035.873030] ? mark_held_locks+0xf0/0xf0 [ 1035.877093] ? proc_fail_nth_write+0x95/0x1d0 [ 1035.881592] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1035.886524] ? __fdget_pos+0x26f/0x310 [ 1035.890427] ? ksys_write+0x241/0x2a0 [ 1035.894236] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1035.900216] do_vfs_ioctl+0xcdb/0x12e0 05:19:18 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x80ffff}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xd00}], 0x1, 0x0, 0x0, 0x0) [ 1035.904109] ? lock_downgrade+0x720/0x720 [ 1035.908275] ? check_preemption_disabled+0x41/0x280 [ 1035.913299] ? ioctl_preallocate+0x200/0x200 [ 1035.917715] ? __fget+0x356/0x510 [ 1035.921173] ? do_dup2+0x450/0x450 [ 1035.924717] ? vfs_write+0x393/0x540 [ 1035.928438] ? fput+0x2b/0x190 [ 1035.931639] ksys_ioctl+0x9b/0xc0 [ 1035.935095] __x64_sys_ioctl+0x6f/0xb0 [ 1035.938993] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1035.943579] do_syscall_64+0xf9/0x620 [ 1035.947392] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1035.952584] RIP: 0033:0x7f2381f95279 [ 1035.956303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1035.975465] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1035.983177] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1035.990452] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1035.997726] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1036.004994] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1036.012363] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 12) 05:19:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xee0f00}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xd01}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae68, &(0x7f00000001c0)) 05:19:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc0189436, 0x0) 05:19:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x2000}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, 0x0) [ 1036.200224] FAULT_INJECTION: forcing a failure. [ 1036.200224] name failslab, interval 1, probability 0, space 0, times 0 05:19:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x1000000}], 0x1, 0x0, 0x0, 0x0) [ 1036.264259] CPU: 0 PID: 13654 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1036.272167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1036.281624] Call Trace: [ 1036.284222] dump_stack+0x1fc/0x2ef [ 1036.287864] should_fail.cold+0xa/0xf [ 1036.291673] ? setup_fault_attr+0x200/0x200 [ 1036.296000] ? lock_acquire+0x170/0x3c0 [ 1036.299981] __should_failslab+0x115/0x180 [ 1036.304223] should_failslab+0x5/0x10 [ 1036.308029] kmem_cache_alloc+0x277/0x370 [ 1036.312186] mmu_topup_memory_caches+0x8f/0x370 [ 1036.316872] kvm_mmu_load+0x1e/0x1200 [ 1036.320678] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1036.325609] ? construct_eptp+0x3b0/0x3b0 [ 1036.329769] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1036.334804] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1036.339758] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1036.344795] ? get_task_pid+0x143/0x2a0 [ 1036.348797] ? lock_downgrade+0x720/0x720 [ 1036.352965] ? check_preemption_disabled+0x41/0x280 [ 1036.357993] ? check_preemption_disabled+0x41/0x280 05:19:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, 0x0) [ 1036.363022] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1036.367172] kvm_vcpu_ioctl+0x493/0xe10 [ 1036.371152] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1036.377047] ? get_pid_task+0xf4/0x190 [ 1036.380948] ? mark_held_locks+0xf0/0xf0 [ 1036.385014] ? proc_fail_nth_write+0x95/0x1d0 [ 1036.389518] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1036.394453] ? __fdget_pos+0x26f/0x310 [ 1036.398350] ? ksys_write+0x241/0x2a0 [ 1036.402155] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1036.408046] do_vfs_ioctl+0xcdb/0x12e0 05:19:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x1000040}], 0x1, 0x0, 0x0, 0x0) [ 1036.411972] ? lock_downgrade+0x720/0x720 [ 1036.416131] ? check_preemption_disabled+0x41/0x280 [ 1036.421157] ? ioctl_preallocate+0x200/0x200 [ 1036.425574] ? __fget+0x356/0x510 [ 1036.429032] ? do_dup2+0x450/0x450 [ 1036.432571] ? vfs_write+0x393/0x540 [ 1036.436291] ? fput+0x2b/0x190 [ 1036.439492] ksys_ioctl+0x9b/0xc0 [ 1036.442951] __x64_sys_ioctl+0x6f/0xb0 [ 1036.446848] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1036.451429] do_syscall_64+0xf9/0x620 [ 1036.455234] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1036.460425] RIP: 0033:0x7f2381f95279 [ 1036.464139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1036.483037] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1036.490746] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1036.498019] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1036.505288] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, 0x0) [ 1036.512611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1036.519889] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 13) 05:19:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc018ae85, 0x0) 05:19:19 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x1000080}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x4000}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="f1ff0a0005000a0001000e000600050004050000540108801c0001008d05050006000000020000008100000004000000040000000c000200000800a0060007001c0001003d115ff86218302d7e1e197c2009040000fcffff00000000020000000400000009000000160002001e0aff0fff7f00000200010106000000020000001c00010081010500040000000100000000000000010000000700000012000200ba5b568f8000070003000010010000001c0001000506030000000000010400000900000006000000100002000300020009008100000405001c000100800700100900000002000000ffffffff800000000700000012000200000000000300280008008100a8f900001c0001003d801f00ff0300000000000002000000700e00000100000006000200021000001c000100f83fff0401f8ffff0200000004000000050000000200000008000200000008001c000100010208000100000000000000790f0000080000000000000004000200087f69ee7544f7171b49d51954ed7ab1d64de87dc61280c2ee53b97f63e45ce062efb4e38de94a5f6436eaceec5f55fd0b1612a15adecbe09defdfc78a12a8e15691bdecb857b98583ed93a40e347f1668255131caa3901aada4f3a640b98a1c14a88f6d8ebf4366d2ae3d196d87ebfa9dde9d8a039b987340c09348721c337482c101bdd4151ebaf99d4b905f2f4f04a7a8de2b35131a61db02d5c175c2713fb28bda20d11532b7c3d2b960d4fe4ffe11c786cfe5c9435b6dc995ce66f343d7512b7d7b16eec07aeea02cc5bb58c076dd4f000000002ab4da1d5395d9d3cdc97ba5c34d80e9e1ba6b5b2ce85d9f178aa5b61b3604b6fcf8f64c900c50a51008e67d5dfe0147d4c12f92abce89948e0ff75dd15deb9a985847a600d2"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x10000c0}], 0x1, 0x0, 0x0, 0x0) 05:19:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xc020660b, 0x0) [ 1036.763821] FAULT_INJECTION: forcing a failure. [ 1036.763821] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.835448] CPU: 1 PID: 13722 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1036.843351] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1036.852701] Call Trace: [ 1036.855299] dump_stack+0x1fc/0x2ef [ 1036.858933] should_fail.cold+0xa/0xf [ 1036.862738] ? setup_fault_attr+0x200/0x200 [ 1036.867067] ? lock_acquire+0x170/0x3c0 [ 1036.871050] __should_failslab+0x115/0x180 [ 1036.875287] should_failslab+0x5/0x10 [ 1036.879089] kmem_cache_alloc+0x277/0x370 [ 1036.883248] mmu_topup_memory_caches+0x8f/0x370 [ 1036.887925] kvm_mmu_load+0x1e/0x1200 [ 1036.891729] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1036.896672] ? construct_eptp+0x3b0/0x3b0 [ 1036.900867] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1036.905897] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1036.910864] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1036.915913] ? get_task_pid+0x143/0x2a0 [ 1036.919895] ? lock_downgrade+0x720/0x720 [ 1036.924044] ? check_preemption_disabled+0x41/0x280 [ 1036.929063] ? check_preemption_disabled+0x41/0x280 [ 1036.934099] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1036.938249] kvm_vcpu_ioctl+0x493/0xe10 [ 1036.942244] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1036.948141] ? get_pid_task+0xf4/0x190 [ 1036.952036] ? mark_held_locks+0xf0/0xf0 [ 1036.956099] ? proc_fail_nth_write+0x95/0x1d0 [ 1036.960601] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1036.965535] ? __fdget_pos+0x26f/0x310 [ 1036.969439] ? ksys_write+0x241/0x2a0 [ 1036.973251] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1036.979142] do_vfs_ioctl+0xcdb/0x12e0 [ 1036.983032] ? lock_downgrade+0x720/0x720 [ 1036.987182] ? check_preemption_disabled+0x41/0x280 [ 1036.992216] ? ioctl_preallocate+0x200/0x200 [ 1036.996633] ? __fget+0x356/0x510 [ 1037.000091] ? do_dup2+0x450/0x450 [ 1037.003635] ? vfs_write+0x393/0x540 [ 1037.007351] ? fput+0x2b/0x190 [ 1037.010554] ksys_ioctl+0x9b/0xc0 [ 1037.014012] __x64_sys_ioctl+0x6f/0xb0 [ 1037.017904] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1037.022489] do_syscall_64+0xf9/0x620 [ 1037.026301] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1037.031499] RIP: 0033:0x7f2381f95279 [ 1037.035225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1037.054127] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1037.061836] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1037.069104] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1037.076375] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x10d0000}], 0x1, 0x0, 0x0, 0x0) 05:19:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x5000}], 0x1, 0x0, 0x0, 0x0) 05:19:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1037.083641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1037.090908] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x2) 05:19:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 14) 05:19:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xfee00}], 0x1, 0x0, 0x0, 0x0) 05:19:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x2000000}], 0x1, 0x0, 0x0, 0x0) 05:19:20 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x3) 05:19:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x4000000}], 0x1, 0x0, 0x0, 0x0) 05:19:20 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x200000}], 0x1, 0x0, 0x0, 0x0) [ 1037.466229] FAULT_INJECTION: forcing a failure. [ 1037.466229] name failslab, interval 1, probability 0, space 0, times 0 05:19:20 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x4) [ 1037.561406] CPU: 1 PID: 13807 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1037.569313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1037.579114] Call Trace: [ 1037.581698] dump_stack+0x1fc/0x2ef [ 1037.585319] should_fail.cold+0xa/0xf [ 1037.589129] ? setup_fault_attr+0x200/0x200 [ 1037.593444] ? lock_acquire+0x170/0x3c0 [ 1037.597423] __should_failslab+0x115/0x180 [ 1037.601654] should_failslab+0x5/0x10 [ 1037.605442] kmem_cache_alloc+0x277/0x370 [ 1037.609583] mmu_topup_memory_caches+0x8f/0x370 [ 1037.614242] kvm_mmu_load+0x1e/0x1200 [ 1037.618056] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1037.622987] ? construct_eptp+0x3b0/0x3b0 [ 1037.627132] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1037.632144] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1037.637077] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1037.641910] ? get_task_pid+0x143/0x2a0 [ 1037.645894] ? lock_downgrade+0x720/0x720 [ 1037.650053] ? check_preemption_disabled+0x41/0x280 [ 1037.655062] ? check_preemption_disabled+0x41/0x280 [ 1037.660186] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1037.664322] kvm_vcpu_ioctl+0x493/0xe10 [ 1037.668284] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1037.674161] ? get_pid_task+0xf4/0x190 [ 1037.678061] ? mark_held_locks+0xf0/0xf0 [ 1037.682113] ? proc_fail_nth_write+0x95/0x1d0 [ 1037.686599] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1037.691519] ? __fdget_pos+0x26f/0x310 [ 1037.695401] ? ksys_write+0x241/0x2a0 [ 1037.699195] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1037.705078] do_vfs_ioctl+0xcdb/0x12e0 [ 1037.708963] ? lock_downgrade+0x720/0x720 [ 1037.713105] ? check_preemption_disabled+0x41/0x280 [ 1037.718113] ? ioctl_preallocate+0x200/0x200 [ 1037.722514] ? __fget+0x356/0x510 [ 1037.725983] ? do_dup2+0x450/0x450 [ 1037.729512] ? vfs_write+0x393/0x540 [ 1037.733221] ? fput+0x2b/0x190 [ 1037.736410] ksys_ioctl+0x9b/0xc0 [ 1037.739856] __x64_sys_ioctl+0x6f/0xb0 [ 1037.743733] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1037.748305] do_syscall_64+0xf9/0x620 [ 1037.752098] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1037.757272] RIP: 0033:0x7f2381f95279 [ 1037.760977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1037.779869] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1037.787563] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1037.794823] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1037.802081] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1037.809332] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1037.816587] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x5000000}], 0x1, 0x0, 0x0, 0x0) 05:19:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x80ffff}], 0x1, 0x0, 0x0, 0x0) 05:19:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x6000000}], 0x1, 0x0, 0x0, 0x0) 05:19:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 15) 05:19:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1038.174952] FAULT_INJECTION: forcing a failure. [ 1038.174952] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.202390] CPU: 0 PID: 13871 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1038.210295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1038.219647] Call Trace: [ 1038.222246] dump_stack+0x1fc/0x2ef [ 1038.225884] should_fail.cold+0xa/0xf [ 1038.229701] ? setup_fault_attr+0x200/0x200 [ 1038.234030] ? lock_acquire+0x170/0x3c0 [ 1038.238020] __should_failslab+0x115/0x180 [ 1038.242266] should_failslab+0x5/0x10 [ 1038.246074] kmem_cache_alloc+0x277/0x370 [ 1038.250231] mmu_topup_memory_caches+0x8f/0x370 [ 1038.254915] kvm_mmu_load+0x1e/0x1200 [ 1038.258719] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1038.263653] ? construct_eptp+0x3b0/0x3b0 [ 1038.267808] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1038.272843] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1038.277793] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1038.282643] ? get_task_pid+0x143/0x2a0 [ 1038.286627] ? lock_downgrade+0x720/0x720 [ 1038.290780] ? check_preemption_disabled+0x41/0x280 [ 1038.295803] ? check_preemption_disabled+0x41/0x280 [ 1038.300827] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1038.304976] kvm_vcpu_ioctl+0x493/0xe10 [ 1038.308958] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1038.314853] ? get_pid_task+0xf4/0x190 [ 1038.318746] ? mark_held_locks+0xf0/0xf0 [ 1038.322809] ? proc_fail_nth_write+0x95/0x1d0 [ 1038.327313] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1038.332254] ? __fdget_pos+0x26f/0x310 [ 1038.336155] ? ksys_write+0x241/0x2a0 [ 1038.339967] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1038.345855] do_vfs_ioctl+0xcdb/0x12e0 [ 1038.349757] ? lock_downgrade+0x720/0x720 [ 1038.354004] ? check_preemption_disabled+0x41/0x280 [ 1038.359037] ? ioctl_preallocate+0x200/0x200 [ 1038.363455] ? __fget+0x356/0x510 [ 1038.366919] ? do_dup2+0x450/0x450 [ 1038.370468] ? vfs_write+0x393/0x540 [ 1038.374192] ? fput+0x2b/0x190 [ 1038.377400] ksys_ioctl+0x9b/0xc0 [ 1038.380859] __x64_sys_ioctl+0x6f/0xb0 [ 1038.384758] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1038.389347] do_syscall_64+0xf9/0x620 [ 1038.393162] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1038.398353] RIP: 0033:0x7f2381f95279 [ 1038.402069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 05:19:21 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xee0f00}], 0x1, 0x0, 0x0, 0x0) 05:19:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x5) 05:19:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x7000000}], 0x1, 0x0, 0x0, 0x0) [ 1038.420973] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1038.428689] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1038.435967] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1038.443243] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1038.450516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1038.457787] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) socket$vsock_stream(0x28, 0x1, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:21 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 16) 05:19:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x1000000}], 0x1, 0x0, 0x0, 0x0) 05:19:21 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x7000080}], 0x1, 0x0, 0x0, 0x0) 05:19:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x6) [ 1038.712072] FAULT_INJECTION: forcing a failure. [ 1038.712072] name failslab, interval 1, probability 0, space 0, times 0 05:19:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) [ 1038.796123] CPU: 0 PID: 13912 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1038.804025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1038.813385] Call Trace: [ 1038.815989] dump_stack+0x1fc/0x2ef [ 1038.819627] should_fail.cold+0xa/0xf [ 1038.823438] ? setup_fault_attr+0x200/0x200 [ 1038.827774] ? lock_acquire+0x170/0x3c0 [ 1038.831762] __should_failslab+0x115/0x180 [ 1038.836010] should_failslab+0x5/0x10 [ 1038.839815] kmem_cache_alloc+0x277/0x370 05:19:21 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x1000040}], 0x1, 0x0, 0x0, 0x0) [ 1038.843981] mmu_topup_memory_caches+0x8f/0x370 [ 1038.848659] kvm_mmu_load+0x1e/0x1200 [ 1038.852464] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1038.857395] ? construct_eptp+0x3b0/0x3b0 [ 1038.861543] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1038.866567] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1038.871516] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1038.876374] ? get_task_pid+0x143/0x2a0 [ 1038.880362] ? lock_downgrade+0x720/0x720 [ 1038.884522] ? check_preemption_disabled+0x41/0x280 [ 1038.889545] ? check_preemption_disabled+0x41/0x280 [ 1038.894576] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1038.898729] kvm_vcpu_ioctl+0x493/0xe10 [ 1038.902712] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1038.908606] ? get_pid_task+0xf4/0x190 [ 1038.912501] ? mark_held_locks+0xf0/0xf0 [ 1038.916565] ? proc_fail_nth_write+0x95/0x1d0 [ 1038.921068] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1038.926008] ? __fdget_pos+0x26f/0x310 [ 1038.929910] ? ksys_write+0x241/0x2a0 [ 1038.933720] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1038.939617] do_vfs_ioctl+0xcdb/0x12e0 [ 1038.943516] ? lock_downgrade+0x720/0x720 [ 1038.947671] ? check_preemption_disabled+0x41/0x280 [ 1038.952693] ? ioctl_preallocate+0x200/0x200 [ 1038.957108] ? __fget+0x356/0x510 [ 1038.960571] ? do_dup2+0x450/0x450 [ 1038.964116] ? vfs_write+0x393/0x540 [ 1038.967841] ? fput+0x2b/0x190 [ 1038.971046] ksys_ioctl+0x9b/0xc0 [ 1038.974503] __x64_sys_ioctl+0x6f/0xb0 [ 1038.978394] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1038.982979] do_syscall_64+0xf9/0x620 [ 1038.986773] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1038.991947] RIP: 0033:0x7f2381f95279 [ 1038.995659] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.014566] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1039.022260] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1039.029515] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1039.036772] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 05:19:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x8000000}], 0x1, 0x0, 0x0, 0x0) [ 1039.044025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1039.051279] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 05:19:22 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f00000001c0)) (fail_nth: 1) 05:19:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x1000080}], 0x1, 0x0, 0x0, 0x0) 05:19:22 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x0, &(0x7f0000000140)=[@cr0={0x0, 0x40040000}], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) (fail_nth: 17) 05:19:22 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xff}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_GET_SREGS(0xffffffffffffffff, 0x8138ae83, &(0x7f0000000380)) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sysfs(0xffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6601000000000000001900000000000000bda924c64f0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x180}, 0x1, 0x0, 0x0, 0x20000010}, 0x80) ioctl$KVM_SET_BOOT_CPU_ID(r3, 0xae78, &(0x7f0000000000)=0x2) sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000100)="95", 0x1, 0x200408c0, 0x0, 0x0) 05:19:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x7) 05:19:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x8000080}], 0x1, 0x0, 0x0, 0x0) [ 1039.381517] FAULT_INJECTION: forcing a failure. [ 1039.381517] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.435549] CPU: 0 PID: 13972 Comm: syz-executor.5 Not tainted 4.19.211-syzkaller #0 [ 1039.443456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1039.444805] FAULT_INJECTION: forcing a failure. [ 1039.444805] name failslab, interval 1, probability 0, space 0, times 0 [ 1039.452812] Call Trace: [ 1039.452841] dump_stack+0x1fc/0x2ef [ 1039.452863] should_fail.cold+0xa/0xf [ 1039.452881] ? setup_fault_attr+0x200/0x200 [ 1039.452894] ? lock_acquire+0x170/0x3c0 05:19:22 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x10000c0}], 0x1, 0x0, 0x0, 0x0) 05:19:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x9000000}], 0x1, 0x0, 0x0, 0x0) [ 1039.452916] __should_failslab+0x115/0x180 [ 1039.486519] should_failslab+0x5/0x10 [ 1039.490322] __kmalloc+0x2ab/0x3c0 [ 1039.493867] ? kvm_io_bus_unregister_dev+0x14a/0x3b0 [ 1039.498981] kvm_io_bus_unregister_dev+0x14a/0x3b0 [ 1039.503926] kvm_vm_ioctl_unregister_coalesced_mmio+0x1be/0x2c0 [ 1039.510001] kvm_vm_ioctl+0x532/0x1700 [ 1039.513901] ? _kstrtoull+0x297/0x540 [ 1039.517702] ? kvm_vcpu_release+0xa0/0xa0 [ 1039.521865] ? _copy_from_user+0xd2/0x130 [ 1039.526035] ? __lock_acquire+0x6de/0x3ff0 [ 1039.530282] ? get_pid_task+0xf4/0x190 [ 1039.534174] ? mark_held_locks+0xf0/0xf0 [ 1039.538237] ? proc_fail_nth_write+0x95/0x1d0 [ 1039.542750] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1039.547681] ? __fdget_pos+0x26f/0x310 [ 1039.551592] ? ksys_write+0x241/0x2a0 [ 1039.555393] ? kvm_vcpu_release+0xa0/0xa0 [ 1039.559542] do_vfs_ioctl+0xcdb/0x12e0 [ 1039.563442] ? lock_downgrade+0x720/0x720 [ 1039.567594] ? check_preemption_disabled+0x41/0x280 [ 1039.572621] ? ioctl_preallocate+0x200/0x200 [ 1039.577039] ? __fget+0x356/0x510 [ 1039.580497] ? do_dup2+0x450/0x450 [ 1039.584050] ? vfs_write+0x393/0x540 [ 1039.587772] ? fput+0x2b/0x190 [ 1039.590975] ksys_ioctl+0x9b/0xc0 [ 1039.594424] __x64_sys_ioctl+0x6f/0xb0 [ 1039.598304] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1039.602875] do_syscall_64+0xf9/0x620 [ 1039.606669] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1039.611845] RIP: 0033:0x7efc509d2279 [ 1039.615544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.634426] RSP: 002b:00007efc4f347168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1039.642118] RAX: ffffffffffffffda RBX: 00007efc50ae4f80 RCX: 00007efc509d2279 [ 1039.649371] RDX: 00000000200001c0 RSI: 000000004010ae68 RDI: 0000000000000004 [ 1039.656626] RBP: 00007efc4f3471d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.663881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1039.671131] R13: 00007ffc91766f3f R14: 00007efc4f347300 R15: 0000000000022000 [ 1039.679120] CPU: 1 PID: 13978 Comm: syz-executor.4 Not tainted 4.19.211-syzkaller #0 [ 1039.687011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1039.696362] Call Trace: [ 1039.698956] dump_stack+0x1fc/0x2ef [ 1039.702594] should_fail.cold+0xa/0xf [ 1039.706414] ? setup_fault_attr+0x200/0x200 [ 1039.709217] kvm: failed to shrink bus, removing it completely [ 1039.710736] ? lock_acquire+0x170/0x3c0 [ 1039.710759] __should_failslab+0x115/0x180 [ 1039.710777] should_failslab+0x5/0x10 [ 1039.710790] kmem_cache_alloc+0x277/0x370 [ 1039.710809] mmu_topup_memory_caches+0x8f/0x370 [ 1039.717164] ================================================================== [ 1039.720640] kvm_mmu_load+0x1e/0x1200 [ 1039.720662] ? kvm_lapic_enable_pv_eoi+0x160/0x160 [ 1039.725021] BUG: KASAN: use-after-free in kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1039.728799] ? construct_eptp+0x3b0/0x3b0 [ 1039.732921] Read of size 8 at addr ffff8880a16d3f00 by task syz-executor.5/13972 [ 1039.737595] ? kvm_arch_vcpu_ioctl_run+0x2dd/0x6f70 [ 1039.737618] kvm_arch_vcpu_ioctl_run+0x4e5e/0x6f70 [ 1039.744940] [ 1039.748739] ? kvm_arch_vcpu_runnable+0x690/0x690 [ 1039.790592] ? get_task_pid+0x143/0x2a0 [ 1039.794560] ? lock_downgrade+0x720/0x720 [ 1039.798700] ? check_preemption_disabled+0x41/0x280 [ 1039.803708] ? check_preemption_disabled+0x41/0x280 [ 1039.808730] ? kvm_vcpu_ioctl+0x493/0xe10 [ 1039.812864] kvm_vcpu_ioctl+0x493/0xe10 [ 1039.816832] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1039.822720] ? get_pid_task+0xf4/0x190 [ 1039.826604] ? mark_held_locks+0xf0/0xf0 [ 1039.830655] ? proc_fail_nth_write+0x95/0x1d0 [ 1039.835157] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1039.840075] ? __fdget_pos+0x26f/0x310 [ 1039.843959] ? ksys_write+0x241/0x2a0 [ 1039.847765] ? kvm_vm_ioctl_check_extension_generic+0xb0/0xb0 [ 1039.853660] do_vfs_ioctl+0xcdb/0x12e0 [ 1039.857538] ? lock_downgrade+0x720/0x720 [ 1039.861701] ? check_preemption_disabled+0x41/0x280 [ 1039.866720] ? ioctl_preallocate+0x200/0x200 [ 1039.871140] ? __fget+0x356/0x510 [ 1039.874601] ? do_dup2+0x450/0x450 [ 1039.878129] ? vfs_write+0x393/0x540 [ 1039.881832] ? fput+0x2b/0x190 [ 1039.885020] ksys_ioctl+0x9b/0xc0 [ 1039.888464] __x64_sys_ioctl+0x6f/0xb0 [ 1039.892340] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1039.896909] do_syscall_64+0xf9/0x620 [ 1039.900703] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1039.905890] RIP: 0033:0x7f2381f95279 [ 1039.909594] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1039.928491] RSP: 002b:00007f238090a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1039.936189] RAX: ffffffffffffffda RBX: 00007f23820a7f80 RCX: 00007f2381f95279 [ 1039.943451] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 1039.950715] RBP: 00007f238090a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1039.957977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1039.965243] R13: 00007ffd9ff3fa0f R14: 00007f238090a300 R15: 0000000000022000 [ 1039.972930] CPU: 0 PID: 13972 Comm: syz-executor.5 Not tainted 4.19.211-syzkaller #0 05:19:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0}], 0x1, 0x18, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000200)={0x0, 0x1b000}) ioctl$KVM_NMI(r2, 0xae9a) perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x10000000000, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x8) [ 1039.980810] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1039.990167] Call Trace: [ 1039.992762] dump_stack+0x1fc/0x2ef [ 1039.996400] print_address_description.cold+0x54/0x219 [ 1040.001682] kasan_report_error.cold+0x8a/0x1b9 [ 1040.006532] ? kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1040.012770] __asan_report_load8_noabort+0x88/0x90 [ 1040.017708] ? kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1040.023946] ? kvm_vm_create_worker_thread+0x240/0x240 [ 1040.029228] kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1040.035306] kvm_vm_ioctl+0x532/0x1700 [ 1040.039208] ? _kstrtoull+0x297/0x540 [ 1040.043017] ? kvm_vcpu_release+0xa0/0xa0 [ 1040.047173] ? _copy_from_user+0xd2/0x130 [ 1040.051344] ? __lock_acquire+0x6de/0x3ff0 [ 1040.055602] ? get_pid_task+0xf4/0x190 [ 1040.059504] ? mark_held_locks+0xf0/0xf0 [ 1040.063569] ? proc_fail_nth_write+0x95/0x1d0 [ 1040.068073] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1040.073007] ? __fdget_pos+0x26f/0x310 [ 1040.076908] ? ksys_write+0x241/0x2a0 [ 1040.080722] ? kvm_vcpu_release+0xa0/0xa0 05:19:23 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0x10d0000}], 0x1, 0x0, 0x0, 0x0) [ 1040.084884] do_vfs_ioctl+0xcdb/0x12e0 [ 1040.088776] ? lock_downgrade+0x720/0x720 [ 1040.092927] ? check_preemption_disabled+0x41/0x280 [ 1040.097958] ? ioctl_preallocate+0x200/0x200 [ 1040.102373] ? __fget+0x356/0x510 [ 1040.105839] ? do_dup2+0x450/0x450 [ 1040.109383] ? vfs_write+0x393/0x540 [ 1040.113099] ? fput+0x2b/0x190 [ 1040.116298] ksys_ioctl+0x9b/0xc0 [ 1040.119885] __x64_sys_ioctl+0x6f/0xb0 [ 1040.123788] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1040.128382] do_syscall_64+0xf9/0x620 [ 1040.132202] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1040.137503] RIP: 0033:0x7efc509d2279 [ 1040.141309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1040.160207] RSP: 002b:00007efc4f347168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1040.167916] RAX: ffffffffffffffda RBX: 00007efc50ae4f80 RCX: 00007efc509d2279 [ 1040.175183] RDX: 00000000200001c0 RSI: 000000004010ae68 RDI: 0000000000000004 05:19:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xa000000}], 0x1, 0x0, 0x0, 0x0) [ 1040.182451] RBP: 00007efc4f3471d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.189721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1040.196989] R13: 00007ffc91766f3f R14: 00007efc4f347300 R15: 0000000000022000 [ 1040.204265] [ 1040.205884] Allocated by task 13972: [ 1040.209595] kmem_cache_alloc_trace+0x12f/0x380 [ 1040.214271] kvm_vm_ioctl_register_coalesced_mmio+0x51/0x350 [ 1040.220078] kvm_vm_ioctl+0xc63/0x1700 [ 1040.223969] do_vfs_ioctl+0xcdb/0x12e0 [ 1040.227857] ksys_ioctl+0x9b/0xc0 [ 1040.231321] __x64_sys_ioctl+0x6f/0xb0 [ 1040.235208] do_syscall_64+0xf9/0x620 [ 1040.239010] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1040.244186] [ 1040.245809] Freed by task 13972: [ 1040.249175] kfree+0xcc/0x210 [ 1040.252285] kvm_io_bus_unregister_dev.cold+0xf0/0x110 [ 1040.257573] kvm_vm_ioctl_unregister_coalesced_mmio+0x1be/0x2c0 [ 1040.263635] kvm_vm_ioctl+0x532/0x1700 [ 1040.267532] do_vfs_ioctl+0xcdb/0x12e0 [ 1040.271434] ksys_ioctl+0x9b/0xc0 [ 1040.274888] __x64_sys_ioctl+0x6f/0xb0 [ 1040.278776] do_syscall_64+0xf9/0x620 [ 1040.282579] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1040.287759] [ 1040.289387] The buggy address belongs to the object at ffff8880a16d3f00 [ 1040.289387] which belongs to the cache kmalloc-64 of size 64 [ 1040.301869] The buggy address is located 0 bytes inside of [ 1040.301869] 64-byte region [ffff8880a16d3f00, ffff8880a16d3f40) [ 1040.313588] The buggy address belongs to the page: [ 1040.318517] page:ffffea000285b4c0 count:1 mapcount:0 mapping:ffff88813bff0340 index:0x0 [ 1040.326660] flags: 0xfff00000000100(slab) [ 1040.330938] raw: 00fff00000000100 ffffea0002781248 ffffea0002c1bb08 ffff88813bff0340 05:19:23 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_kvm_setup_cpu$x86(r3, r2, &(0x7f0000018000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, 0x0, 0xb000000}], 0x1, 0x0, 0x0, 0x0) [ 1040.338843] raw: 0000000000000000 ffff8880a16d3000 0000000100000020 0000000000000000 [ 1040.346716] page dumped because: kasan: bad access detected [ 1040.352425] [ 1040.354048] Memory state around the buggy address: [ 1040.358979] ffff8880a16d3e00: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 1040.366338] ffff8880a16d3e80: 00 00 00 00 04 fc fc fc fc fc fc fc fc fc fc fc [ 1040.374214] >ffff8880a16d3f00: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 1040.381568] ^ [ 1040.384966] ffff8880a16d3f80: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc [ 1040.392328] ffff8880a16d4000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff [ 1040.399680] ================================================================== [ 1040.407030] Disabling lock debugging due to kernel taint [ 1040.437860] Kernel panic - not syncing: panic_on_warn set ... [ 1040.437860] [ 1040.445245] CPU: 0 PID: 13972 Comm: syz-executor.5 Tainted: G B 4.19.211-syzkaller #0 [ 1040.454508] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 1040.463852] Call Trace: [ 1040.466438] dump_stack+0x1fc/0x2ef [ 1040.470073] panic+0x26a/0x50e [ 1040.473280] ? __warn_printk+0xf3/0xf3 [ 1040.477202] ? preempt_schedule_common+0x45/0xc0 [ 1040.481966] ? ___preempt_schedule+0x16/0x18 [ 1040.486379] ? trace_hardirqs_on+0x55/0x210 [ 1040.490705] kasan_end_report+0x43/0x49 [ 1040.494681] kasan_report_error.cold+0xa7/0x1b9 [ 1040.499350] ? kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1040.505582] __asan_report_load8_noabort+0x88/0x90 [ 1040.510517] ? kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1040.516753] ? kvm_vm_create_worker_thread+0x240/0x240 [ 1040.522034] kvm_vm_ioctl_unregister_coalesced_mmio+0x25a/0x2c0 [ 1040.528098] kvm_vm_ioctl+0x532/0x1700 [ 1040.531985] ? _kstrtoull+0x297/0x540 [ 1040.535783] ? kvm_vcpu_release+0xa0/0xa0 [ 1040.539938] ? _copy_from_user+0xd2/0x130 [ 1040.544095] ? __lock_acquire+0x6de/0x3ff0 [ 1040.548336] ? get_pid_task+0xf4/0x190 [ 1040.552223] ? mark_held_locks+0xf0/0xf0 [ 1040.556306] ? proc_fail_nth_write+0x95/0x1d0 [ 1040.560805] ? proc_tgid_io_accounting+0x7f0/0x7f0 [ 1040.565731] ? __fdget_pos+0x26f/0x310 [ 1040.569627] ? ksys_write+0x241/0x2a0 [ 1040.573779] ? kvm_vcpu_release+0xa0/0xa0 [ 1040.577933] do_vfs_ioctl+0xcdb/0x12e0 [ 1040.581822] ? lock_downgrade+0x720/0x720 [ 1040.585970] ? check_preemption_disabled+0x41/0x280 [ 1040.590987] ? ioctl_preallocate+0x200/0x200 [ 1040.595395] ? __fget+0x356/0x510 [ 1040.598848] ? do_dup2+0x450/0x450 [ 1040.602387] ? vfs_write+0x393/0x540 [ 1040.606119] ? fput+0x2b/0x190 [ 1040.609319] ksys_ioctl+0x9b/0xc0 [ 1040.612780] __x64_sys_ioctl+0x6f/0xb0 [ 1040.616671] ? lockdep_hardirqs_on+0x3a8/0x5c0 [ 1040.621257] do_syscall_64+0xf9/0x620 [ 1040.625061] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 1040.630244] RIP: 0033:0x7efc509d2279 [ 1040.633954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 1040.652850] RSP: 002b:00007efc4f347168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1040.660554] RAX: ffffffffffffffda RBX: 00007efc50ae4f80 RCX: 00007efc509d2279 [ 1040.667818] RDX: 00000000200001c0 RSI: 000000004010ae68 RDI: 0000000000000004 [ 1040.675081] RBP: 00007efc4f3471d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.682344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1040.689608] R13: 00007ffc91766f3f R14: 00007efc4f347300 R15: 0000000000022000 [ 1040.697038] Kernel Offset: disabled [ 1040.700672] Rebooting in 86400 seconds..